Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/y54lwyg0yxWntbnoIO-4zit0Jno.roa
File: y54lwyg0yxWntbnoIO-4zit0Jno.roa (raw, json)
Hash identifier: H4sOyX+DnDSSZx2P69W1kPQ6mzjJ5+oKrKghYFIkZco=
Subject key identifier: CB:9E:25:C3:28:34:CB:15:A7:B5:B9:E8:20:EF:B8:CE:2B:74:26:7A
Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Certificate serial: 01942747ADFBBF08B01E0FC3FE1C63AEA04D
Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/y54lwyg0yxWntbnoIO-4zit0Jno.roa
Signing time: Thu 02 Jan 2025 13:49:56 +0000
ROA not before: Thu 02 Jan 2025 13:49:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210731
IP address blocks: 2001:67c:89c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:ad:fb:bf:08:b0:1e:0f:c3:fe:1c:63:ae:a0:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Validity
Not Before: Jan 2 13:49:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb9e25c32834cb15a7b5b9e820efb8ce2b74267a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e0:96:4c:6f:3a:5b:9f:36:e7:ae:06:9e:07:
2c:59:bb:93:14:08:4a:de:0e:fe:23:45:3e:07:a4:
13:90:d4:d5:15:39:40:fd:62:0d:32:aa:e4:7f:db:
80:3e:b8:6f:fe:e3:06:17:6c:ff:5d:86:83:29:bf:
29:01:84:bc:9f:42:41:5c:02:c9:e4:dc:8a:74:f6:
6c:62:6c:c3:ef:26:64:60:b9:5d:92:4c:72:34:46:
38:87:ac:14:56:36:8f:0c:55:73:87:b0:32:5f:af:
e4:e9:fc:62:aa:69:5e:75:e7:e9:95:4a:c0:45:74:
ce:5b:85:51:c4:f8:8f:05:01:ed:28:56:ae:73:7e:
70:14:66:ad:f8:78:88:6b:f5:bc:53:c6:d3:18:fa:
b0:cc:b8:a8:83:25:21:95:a1:ff:9a:19:fe:c0:96:
c9:c7:de:75:c9:aa:d6:9f:4f:96:2d:db:ce:af:8b:
d6:3b:ba:0d:72:2d:9f:69:2b:7b:7c:be:a6:b2:fb:
6b:ac:20:f2:39:e5:21:01:22:13:17:d7:ff:a4:5f:
ee:5c:4a:e0:67:eb:a8:97:16:1c:d7:c1:d5:42:23:
86:e8:27:7d:f8:5e:f4:40:f0:b6:7a:8f:c7:f4:bd:
65:06:8b:07:98:2b:c7:36:68:a4:fc:6d:92:4c:44:
26:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9E:25:C3:28:34:CB:15:A7:B5:B9:E8:20:EF:B8:CE:2B:74:26:7A
X509v3 Authority Key Identifier:
keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/y54lwyg0yxWntbnoIO-4zit0Jno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:89c::/48
Signature Algorithm: sha256WithRSAEncryption
6d:e2:fc:26:fe:71:a6:65:01:3e:c3:35:29:4f:2e:8c:c4:57:
6d:c2:05:c5:09:8a:42:06:73:74:36:95:c0:ef:82:1e:42:8c:
44:01:ea:d7:03:b4:d6:4f:70:79:70:e2:b1:7a:64:dc:46:b3:
83:97:03:c9:a6:e7:d9:5d:9d:58:41:8c:af:da:11:c2:f9:4a:
04:1d:a8:92:ba:9b:48:de:d0:2a:0e:98:65:28:6e:42:2c:1d:
a6:82:36:b2:89:d0:5f:a7:6b:0e:f5:8a:77:09:cb:38:3a:9a:
f3:1f:a1:cf:40:3a:f4:33:51:d6:78:fd:09:1a:64:38:c8:8a:
c1:6d:8d:f3:06:b9:e4:06:e7:9a:c4:1f:cc:57:b8:c5:19:a3:
8c:0e:01:04:8b:30:c1:08:50:8a:16:7f:5b:4f:48:92:d2:6b:
49:0a:37:67:bd:f4:f4:80:ae:d0:f6:0b:65:93:bd:87:ec:dd:
c2:e3:26:30:b8:d7:bc:cf:34:76:e1:45:16:b0:d5:d9:d9:40:
df:21:27:0f:67:c8:2b:5a:9c:3f:f9:15:66:37:80:00:9a:ca:
3d:4e:e3:a9:1c:cb:08:e6:dd:96:ab:8b:e6:4e:1b:f7:e7:f1:
d7:6f:34:2a:f5:8a:54:dc:1e:46:8e:6a:47:cf:90:6b:ef:8a:
7f:3c:10:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net