Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/b870e7-7f1e-49ce-b1f9-44ccd1b51f10/1/Y5oWWSqH2f4PzIF1caWpoS6C0uI.roa
File: Y5oWWSqH2f4PzIF1caWpoS6C0uI.roa (raw, json)
Hash identifier: 1+Bd1mblfzXz4N7C24HyQvcSfHhcXd/iMBMWLlVj9RQ=
Subject key identifier: 63:9A:16:59:2A:87:D9:FE:0F:CC:81:75:71:A5:A9:A1:2E:82:D2:E2
Certificate issuer: /CN=77e8bbf8643abd62ff3f42bec4c0b2db977596d7
Certificate serial: 019425218BBAE8958D9DCDBB05294BD4B843
Authority key identifier: 77:E8:BB:F8:64:3A:BD:62:FF:3F:42:BE:C4:C0:B2:DB:97:75:96:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-i7-GQ6vWL_P0K-xMCy25d1ltc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/b870e7-7f1e-49ce-b1f9-44ccd1b51f10/1/Y5oWWSqH2f4PzIF1caWpoS6C0uI.roa
Signing time: Thu 02 Jan 2025 03:49:02 +0000
ROA not before: Thu 02 Jan 2025 03:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212018
IP address blocks: 2001:67c:74c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:8b:ba:e8:95:8d:9d:cd:bb:05:29:4b:d4:b8:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77e8bbf8643abd62ff3f42bec4c0b2db977596d7
Validity
Not Before: Jan 2 03:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=639a16592a87d9fe0fcc817571a5a9a12e82d2e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:de:52:e0:ba:7d:d8:92:35:81:4b:02:b5:e2:
d7:b5:44:8c:5f:5b:f8:7e:3e:85:fa:bf:61:e4:03:
ce:fb:30:e7:62:76:a5:02:ea:03:86:e8:a7:b4:07:
60:af:d7:1f:15:d0:18:73:f2:e4:f7:30:e2:df:a4:
93:f1:cc:f1:9b:ef:07:d6:4e:f7:a7:62:8d:18:a2:
fd:10:d5:0a:65:48:e9:a4:b5:06:e0:26:e5:4a:3f:
71:17:99:ac:db:79:77:d3:b7:89:a7:bd:88:a0:44:
12:fd:4e:a7:a4:dd:d4:1e:3c:2d:65:ca:e4:37:a4:
06:99:f8:9d:75:89:f9:84:28:7b:f1:77:1e:21:68:
40:49:52:03:f2:5b:f1:94:46:56:74:20:00:b6:37:
8b:a8:1e:a1:73:fc:c7:e5:dd:7e:c2:3f:c7:2f:0a:
1e:a6:eb:f3:19:80:eb:ca:46:d8:f8:c4:12:fc:c6:
55:c8:11:cf:92:c0:25:f0:2d:fc:8c:fa:0e:0c:0f:
07:a1:ff:ab:00:0a:11:83:78:0b:9e:21:db:fa:b4:
a7:9a:4b:3e:e1:cd:f3:00:a8:5d:03:67:fa:93:c9:
39:4a:cc:93:88:a3:8f:cc:21:d4:3b:7a:e8:45:37:
3a:41:72:b0:84:0c:d4:d0:ec:46:1a:20:6f:c4:2e:
a4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9A:16:59:2A:87:D9:FE:0F:CC:81:75:71:A5:A9:A1:2E:82:D2:E2
X509v3 Authority Key Identifier:
keyid:77:E8:BB:F8:64:3A:BD:62:FF:3F:42:BE:C4:C0:B2:DB:97:75:96:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-i7-GQ6vWL_P0K-xMCy25d1ltc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b870e7-7f1e-49ce-b1f9-44ccd1b51f10/1/Y5oWWSqH2f4PzIF1caWpoS6C0uI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b870e7-7f1e-49ce-b1f9-44ccd1b51f10/1/d-i7-GQ6vWL_P0K-xMCy25d1ltc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:74c::/48
Signature Algorithm: sha256WithRSAEncryption
0d:59:76:4d:53:8f:ed:97:15:84:5b:06:5a:88:2b:fc:e1:e3:
b1:c6:da:a3:b3:b1:d7:b7:2a:45:ce:89:68:69:77:a8:2c:ec:
c2:60:af:95:04:b8:c4:5a:d3:32:fb:47:f6:53:56:23:61:67:
7e:6a:55:86:ba:c5:55:2e:c3:52:67:d7:6a:57:31:d3:4c:51:
c2:2b:eb:29:d8:c2:52:c3:b7:b2:4a:46:0b:7a:e8:64:f7:7f:
95:ba:61:45:5f:48:b9:c6:37:6c:8e:a9:90:b5:50:df:2e:7f:
3e:04:d6:85:02:cc:b5:fa:d1:70:7d:00:e8:d5:80:7b:45:af:
2d:47:e7:81:6e:5b:c6:e8:2d:aa:cb:e0:63:5f:6b:1e:14:ac:
df:0f:81:df:d9:17:ff:ee:d6:4c:46:7d:99:32:30:35:3f:58:
5f:c0:3e:01:86:2f:fd:0c:1d:dd:cb:25:cc:3b:cf:eb:59:84:
c1:02:3e:b2:1c:ab:c6:54:37:b4:ad:51:04:64:2b:99:ae:58:
7e:0d:ac:30:82:2e:29:b3:b1:8c:28:ce:76:60:6e:3a:c1:66:
04:c4:b7:8c:48:36:a7:fd:8f:83:89:3e:d8:44:4c:0c:fc:f8:
16:9d:00:bf:68:85:33:3b:d1:3b:f5:19:81:f7:b8:32:73:71:
54:0a:1e:5c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQlIYu66JWNnc27BSlL1LhDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZThiYmY4NjQzYWJkNjJmZjNmNDJiZWM0YzBiMmRiOTc3
NTk2ZDcwHhcNMjUwMTAyMDM0OTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzlhMTY1OTJhODdkOWZlMGZjYzgxNzU3MWE1YTlhMTJlODJkMmUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAut5S4Lp92JI1gUsCteLXtUSMX1v4
fj6F+r9h5APO+zDnYnalAuoDhuintAdgr9cfFdAYc/Lk9zDi36ST8czxm+8H1k73
p2KNGKL9ENUKZUjppLUG4CblSj9xF5ms23l307eJp72IoEQS/U6npN3UHjwtZcrk
N6QGmfiddYn5hCh78XceIWhASVID8lvxlEZWdCAAtjeLqB6hc/zH5d1+wj/HLwoe
puvzGYDrykbY+MQS/MZVyBHPksAl8C38jPoODA8Hof+rAAoRg3gLniHb+rSnmks+
4c3zAKhdA2f6k8k5SsyTiKOPzCHUO3roRTc6QXKwhAzU0OxGGiBvxC6kTQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGOaFlkqh9n+D8yBdXGlqaEugtLiMB8GA1UdIwQY
MBaAFHfou/hkOr1i/z9CvsTAstuXdZbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZC1pNy1HUTZ2V0xfUDBLLXhNQ3kyNWQxbHRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9iODcwZTctN2YxZS00OWNlLWIxZjkt
NDRjY2QxYjUxZjEwLzEvWTVvV1dTcUgyZjRQeklGMWNhV3BvUzZDMHVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9iODcwZTctN2YxZS00OWNlLWIxZjktNDRjY2QxYjUxZjEw
LzEvZC1pNy1HUTZ2V0xfUDBLLXhNQ3kyNWQxbHRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAdM
MA0GCSqGSIb3DQEBCwUAA4IBAQANWXZNU4/tlxWEWwZaiCv84eOxxtqjs7HXtypF
zoloaXeoLOzCYK+VBLjEWtMy+0f2U1YjYWd+alWGusVVLsNSZ9dqVzHTTFHCK+sp
2MJSw7eySkYLeuhk93+VumFFX0i5xjdsjqmQtVDfLn8+BNaFAsy1+tFwfQDo1YB7
Ra8tR+eBblvG6C2qy+BjX2seFKzfD4Hf2Rf/7tZMRn2ZMjA1P1hfwD4Bhi/9DB3d
yyXMO8/rWYTBAj6yHKvGVDe0rVEEZCuZrlh+Dawwgi4ps7GMKM52YG46wWYExLeM
SDan/Y+DiT7YREwM/PgWnQC/aIUzO9E79RmB97gyc3FUCh5c
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:13 2025 by rpki-client on console.sobornost.net