Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/ebfce6-2857-404b-9b74-b324e025b929/1/yyyfw4KsAJg-jZTFmN7y25uATk4.roa
File: yyyfw4KsAJg-jZTFmN7y25uATk4.roa (raw, json)
Hash identifier: W5jVJ2j7oOpq8USGYaps3ivfbhLyVIEbErn+9HB1A5I=
Subject key identifier: CB:2C:9F:C3:82:AC:00:98:3E:8D:94:C5:98:DE:F2:DB:9B:80:4E:4E
Certificate issuer: /CN=f9629775283733a45c454b8d7be5a66df0db1a17
Certificate serial: 018CC26D85E45B7453CEAA0B6D3CAF2E4429
Authority key identifier: F9:62:97:75:28:37:33:A4:5C:45:4B:8D:7B:E5:A6:6D:F0:DB:1A:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-WKXdSg3M6RcRUuNe-WmbfDbGhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/ebfce6-2857-404b-9b74-b324e025b929/1/yyyfw4KsAJg-jZTFmN7y25uATk4.roa
Signing time: Mon 01 Jan 2024 00:30:06 +0000
ROA not before: Mon 01 Jan 2024 00:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41956
IP address blocks: 185.254.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:85:e4:5b:74:53:ce:aa:0b:6d:3c:af:2e:44:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9629775283733a45c454b8d7be5a66df0db1a17
Validity
Not Before: Jan 1 00:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb2c9fc382ac00983e8d94c598def2db9b804e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:13:76:9a:0f:64:1b:90:3e:c9:55:da:e6:0b:
f6:ac:db:e4:9a:ad:a9:f6:29:2c:a9:78:a1:9d:92:
0a:62:57:79:6c:ef:64:c8:37:69:12:85:6f:7d:e1:
f1:22:1d:ef:66:82:98:ba:c7:5d:fb:0c:a1:d5:9f:
c2:10:69:2e:26:e6:89:e9:c7:43:c0:70:03:cb:c7:
12:62:4c:35:f3:32:a6:eb:05:46:4f:2b:7a:71:7d:
c6:a9:04:34:0a:8f:20:42:37:1e:44:6e:a4:af:58:
2f:8b:1d:62:a0:79:a4:1c:08:65:75:67:d4:ad:91:
e7:ce:16:e6:aa:d6:30:67:a3:f8:4d:de:9c:fd:e2:
12:8e:f0:ca:f3:3f:7a:62:1a:66:c7:9d:6e:41:e9:
f5:de:99:3d:b3:9a:a8:65:5e:22:e0:50:ed:f5:9a:
82:9d:7c:df:a0:66:81:16:42:1a:44:5a:38:55:ce:
14:d1:9b:76:37:dd:c7:6c:c9:04:e8:8e:7e:b7:7a:
8b:ca:93:62:47:b7:a0:f9:51:43:e0:6a:55:ef:73:
76:0d:31:f5:a6:df:c7:bc:ab:57:87:f3:d9:db:35:
f1:70:c3:53:8f:84:4e:1f:60:bf:5b:fd:a8:cb:8a:
af:25:47:52:cd:2d:3e:bd:b6:66:d4:a2:c9:23:35:
fe:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2C:9F:C3:82:AC:00:98:3E:8D:94:C5:98:DE:F2:DB:9B:80:4E:4E
X509v3 Authority Key Identifier:
keyid:F9:62:97:75:28:37:33:A4:5C:45:4B:8D:7B:E5:A6:6D:F0:DB:1A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-WKXdSg3M6RcRUuNe-WmbfDbGhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ebfce6-2857-404b-9b74-b324e025b929/1/yyyfw4KsAJg-jZTFmN7y25uATk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ebfce6-2857-404b-9b74-b324e025b929/1/1-WKXdSg3M6RcRUuNe-WmbfDbGhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.35.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:22:11:95:fe:b5:f4:f5:ff:a3:6a:76:6b:68:55:29:a2:02:
36:0e:36:7c:d6:8a:15:b1:11:28:7a:f7:7d:7a:f2:05:a2:a9:
ef:75:cd:19:99:fa:34:e7:a8:e6:47:0f:e1:6a:47:e7:65:7f:
4b:4f:1b:42:b6:d6:4f:18:15:b8:2a:04:e8:50:d2:0f:6e:8a:
3c:34:2c:01:27:8a:9a:66:d0:86:b1:ef:42:75:1a:67:0c:a6:
a1:f2:63:5a:33:70:7b:60:d6:77:6c:54:41:ac:5d:e5:ef:7d:
1b:fc:de:7c:ba:d1:49:4f:75:37:6c:28:af:48:66:8b:b0:96:
46:f4:bb:c9:d5:1c:81:5f:6e:76:11:5f:90:61:5d:11:92:7d:
57:d6:cf:dc:90:4a:c2:11:c8:d8:2f:96:82:78:cf:89:93:a3:
4d:2b:6e:82:7d:2f:59:ac:d6:59:4f:7d:70:69:f0:14:27:2a:
c4:85:b0:de:21:68:95:1d:40:65:b1:58:d8:72:fb:42:4a:df:
df:7e:42:84:95:d8:53:97:93:13:cd:b2:40:53:66:d2:a6:ab:
8a:98:ca:ff:4b:4b:ac:fb:cc:d5:f0:96:6a:c0:c0:61:74:8f:
7d:dd:54:72:bd:ce:12:57:cf:d1:23:a6:c8:d1:e9:f5:4b:66:
77:b2:69:89
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYzCbYXkW3RTzqoLbTyvLkQpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5NjI5Nzc1MjgzNzMzYTQ1YzQ1NGI4ZDdiZTVhNjZkZjBk
YjFhMTcwHhcNMjQwMTAxMDAzMDA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjJjOWZjMzgyYWMwMDk4M2U4ZDk0YzU5OGRlZjJkYjliODA0ZTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhN2mg9kG5A+yVXa5gv2rNvkmq2p
9iksqXihnZIKYld5bO9kyDdpEoVvfeHxIh3vZoKYusdd+wyh1Z/CEGkuJuaJ6cdD
wHADy8cSYkw18zKm6wVGTyt6cX3GqQQ0Co8gQjceRG6kr1gvix1ioHmkHAhldWfU
rZHnzhbmqtYwZ6P4Td6c/eISjvDK8z96Yhpmx51uQen13pk9s5qoZV4i4FDt9ZqC
nXzfoGaBFkIaRFo4Vc4U0Zt2N93HbMkE6I5+t3qLypNiR7eg+VFD4GpV73N2DTH1
pt/HvKtXh/PZ2zXxcMNTj4ROH2C/W/2oy4qvJUdSzS0+vbZm1KLJIzX+JwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFMssn8OCrACYPo2UxZje8tubgE5OMB8GA1UdIwQY
MBaAFPlil3UoNzOkXEVLjXvlpm3w2xoXMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1XS1hkU2czTTZSY1JVdU5lLVdtYmZEYkdoYy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2QvZWJmY2U2LTI4NTctNDA0Yi05Yjc0
LWIzMjRlMDI1YjkyOS8xL3l5eWZ3NEtzQUpnLWpaVEZtTjd5MjV1QVRrNC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvN2QvZWJmY2U2LTI4NTctNDA0Yi05Yjc0LWIzMjRlMDI1Yjky
OS8xLzEtV0tYZFNnM002UmNSVXVOZS1XbWJmRGJHaGMuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5/iMw
DQYJKoZIhvcNAQELBQADggEBAJ0iEZX+tfT1/6NqdmtoVSmiAjYONnzWihWxESh6
93168gWiqe91zRmZ+jTnqOZHD+FqR+dlf0tPG0K21k8YFbgqBOhQ0g9uijw0LAEn
ippm0Iax70J1GmcMpqHyY1ozcHtg1ndsVEGsXeXvfRv83ny60UlPdTdsKK9IZouw
lkb0u8nVHIFfbnYRX5BhXRGSfVfWz9yQSsIRyNgvloJ4z4mTo00rboJ9L1ms1llP
fXBp8BQnKsSFsN4haJUdQGWxWNhy+0JK399+QoSV2FOXkxPNskBTZtKmq4qYyv9L
S6z7zNXwlmrAwGF0j33dVHK9zhJXz9EjpsjR6fVLZneyaYk=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:12 2024 by rpki-client on console.sobornost.net