Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/Yfhum0KNh2Gnj-D225eaegSifek.roa
File: Yfhum0KNh2Gnj-D225eaegSifek.roa (raw, json)
Hash identifier: hFj3F+5EFPAfEmBnLkE+pwBV9YPDAjNKfqWc9k7TK2Q=
Subject key identifier: 61:F8:6E:9B:42:8D:87:61:A7:8F:E0:F6:DB:97:9A:7A:04:A2:7D:E9
Certificate issuer: /CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Certificate serial: 01941F8C009EA24E8FF08B7C2622F7A61100
Authority key identifier: B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/Yfhum0KNh2Gnj-D225eaegSifek.roa
Signing time: Wed 01 Jan 2025 01:47:36 +0000
ROA not before: Wed 01 Jan 2025 01:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34323
IP address blocks: 91.200.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:00:9e:a2:4e:8f:f0:8b:7c:26:22:f7:a6:11:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Validity
Not Before: Jan 1 01:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=61f86e9b428d8761a78fe0f6db979a7a04a27de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:12:e5:80:48:96:b3:83:1a:42:39:d3:ca:13:
54:83:e6:56:26:7d:7d:ae:49:f2:04:3a:c1:ea:9f:
bd:c6:17:1c:66:f5:3a:1e:03:fc:1c:aa:82:53:ce:
85:4f:60:63:4b:84:00:24:d8:73:f6:66:04:c0:37:
a8:10:1b:62:51:e1:01:cc:48:b8:2b:1c:81:32:62:
f3:61:60:c6:4a:a7:aa:2b:2d:56:e6:6f:7d:d7:d3:
b7:68:83:ca:36:61:67:7a:fd:e5:8b:00:68:19:70:
6b:47:bb:a6:20:ec:a8:f9:4c:8a:0b:4b:d1:01:ce:
fa:70:43:65:fe:a4:0a:5d:75:e4:df:cc:be:ae:f9:
82:10:5c:f5:b9:ce:40:93:9e:c2:de:f1:2b:53:87:
a2:ee:29:0d:a9:45:d2:8f:15:ae:fe:32:72:b7:e0:
df:f7:f0:e2:08:ac:d0:eb:28:c8:a4:1f:68:8a:2c:
c0:2c:a9:56:50:09:2f:8d:de:81:ed:de:aa:17:4b:
a3:66:08:3c:94:8d:27:80:17:35:84:24:5f:c5:de:
2c:17:1e:dd:77:58:4d:18:a8:93:f3:3a:1f:d2:4e:
07:be:90:24:c0:f8:c5:65:7d:a7:80:2c:e3:f8:c4:
eb:32:b2:ee:7d:08:27:16:df:46:32:09:15:0b:49:
1f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F8:6E:9B:42:8D:87:61:A7:8F:E0:F6:DB:97:9A:7A:04:A2:7D:E9
X509v3 Authority Key Identifier:
keyid:B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/Yfhum0KNh2Gnj-D225eaegSifek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/uC57gGjErprkykw6ayCWGZp0H_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.82.0/24
Signature Algorithm: sha256WithRSAEncryption
03:e9:8f:b9:7c:b1:45:c8:c2:99:7f:b2:88:1a:4c:51:8a:83:
ff:fb:01:1d:13:49:59:43:b7:d6:f8:f7:5a:1a:52:e3:1b:90:
5a:6d:02:1b:03:84:c4:df:32:bb:e1:75:87:37:07:6b:97:6b:
d4:8e:3d:c3:66:f5:9e:f0:9f:fc:ff:1f:cd:0d:f3:ea:d5:c4:
12:7c:53:4c:7f:06:18:cb:38:d7:fb:55:af:dd:a4:9d:1c:68:
5d:f4:c6:67:91:42:9b:5d:2c:14:1d:df:e8:41:b4:15:cf:a0:
0e:71:e1:4f:c7:3b:d1:de:b0:01:20:32:88:6a:cd:73:78:e6:
c3:1e:03:53:83:18:21:0a:92:f6:6c:0f:4d:29:7c:6e:d6:3b:
3e:64:fc:c0:43:2a:73:df:5c:04:c9:36:6e:8e:c8:98:38:09:
6b:ca:0e:01:ad:15:5d:d3:ea:1c:57:2c:f7:c3:1d:00:50:d5:
e4:f9:4a:5f:69:7d:eb:b3:a4:12:80:ef:7d:6a:5e:82:cb:bc:
37:fc:ee:d7:78:1d:a5:44:46:4c:a4:dc:56:77:d6:1e:2d:78:
f2:4e:f5:f5:97:4a:8d:7d:71:46:93:8b:95:ae:f5:f8:5c:95:
eb:b3:80:5a:74:92:45:f1:1f:e0:7a:60:f9:cb:f7:e6:07:2c:
62:9f:d4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:57 2025 by rpki-client on console.sobornost.net