Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/a142a9-a00a-4235-b71f-e6b20b09f866/1/YvnoPFlwVSBiKu9iqRFpzb0xlh4.roa
File: YvnoPFlwVSBiKu9iqRFpzb0xlh4.roa (raw, json)
Hash identifier: FIC2N81bANGcoREXZdDhNQ3XBvgX/G7WyyZfKBc7yTA=
Subject key identifier: 62:F9:E8:3C:59:70:55:20:62:2A:EF:62:A9:11:69:CD:BD:31:96:1E
Certificate issuer: /CN=ef7e5c75f648ac692b14bc222e2c180c863b45e2
Certificate serial: 01958A7AAA9FB14DBDC54677C222FF0C6EF0
Authority key identifier: EF:7E:5C:75:F6:48:AC:69:2B:14:BC:22:2E:2C:18:0C:86:3B:45:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/735cdfZIrGkrFLwiLiwYDIY7ReI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/a142a9-a00a-4235-b71f-e6b20b09f866/1/YvnoPFlwVSBiKu9iqRFpzb0xlh4.roa
Signing time: Wed 12 Mar 2025 13:10:49 +0000
ROA not before: Wed 12 Mar 2025 13:10:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213852
IP address blocks: 2a13:bf00::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8a:7a:aa:9f:b1:4d:bd:c5:46:77:c2:22:ff:0c:6e:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef7e5c75f648ac692b14bc222e2c180c863b45e2
Validity
Not Before: Mar 12 13:10:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=62f9e83c59705520622aef62a91169cdbd31961e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9f:16:7a:4d:92:0a:4c:4e:65:7b:bc:72:c1:
83:c9:ec:e9:79:8e:52:f7:32:5e:6f:9e:1c:b9:fc:
6f:98:fa:dc:59:15:b6:bb:e9:60:35:3e:9d:1d:7e:
13:e2:20:f1:d2:20:65:3e:92:48:81:04:c6:23:01:
26:28:68:41:af:bd:a5:be:22:e7:14:a0:7e:e1:f2:
78:d8:dc:1f:bc:9b:3d:90:b0:1f:65:f8:fc:1f:22:
51:19:b4:45:8d:b9:88:36:ba:c6:d5:d3:7e:34:be:
ab:bc:67:1e:07:51:67:59:c1:d0:5e:cd:0c:24:11:
97:6f:ec:de:8a:37:20:87:cf:26:76:93:34:95:c0:
75:07:3d:bb:6b:70:f0:24:ad:23:0f:7a:5c:f8:ba:
15:3f:61:71:bf:80:61:8d:f2:7d:c5:c0:68:21:39:
91:c2:71:4f:c9:ba:16:e8:5a:9c:59:67:79:5a:a3:
bd:3f:04:6e:ef:95:61:ae:5a:ed:44:b1:20:4e:1f:
e3:09:10:d0:6d:2e:7f:17:5e:7e:43:fc:12:92:56:
ad:ac:6f:58:a6:04:b4:fc:c7:66:09:c8:84:c7:46:
b0:1d:60:30:a2:ef:b5:71:da:ed:a5:65:33:97:9a:
a8:cf:34:ba:83:4f:a5:1a:76:31:1b:e4:c7:66:d1:
ab:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F9:E8:3C:59:70:55:20:62:2A:EF:62:A9:11:69:CD:BD:31:96:1E
X509v3 Authority Key Identifier:
keyid:EF:7E:5C:75:F6:48:AC:69:2B:14:BC:22:2E:2C:18:0C:86:3B:45:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/735cdfZIrGkrFLwiLiwYDIY7ReI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/a142a9-a00a-4235-b71f-e6b20b09f866/1/YvnoPFlwVSBiKu9iqRFpzb0xlh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/a142a9-a00a-4235-b71f-e6b20b09f866/1/735cdfZIrGkrFLwiLiwYDIY7ReI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bf00::/29
Signature Algorithm: sha256WithRSAEncryption
cd:ca:41:41:d4:5e:26:f3:18:06:14:b6:db:8b:33:b9:6f:a4:
e4:9c:1d:22:ec:a7:66:00:5d:a0:0b:e4:d9:3a:46:ee:02:59:
4c:3a:82:2c:0e:3b:8e:c1:d8:ab:f5:4e:a1:d8:65:ee:a5:1a:
38:39:ed:69:4a:55:c1:67:d5:3a:87:ee:85:dd:2b:4b:f8:ce:
89:06:cc:80:07:5b:f5:2b:7a:52:ef:ef:08:3a:1c:d7:e0:80:
2b:23:d1:7e:80:85:3f:c1:dc:8f:67:e6:a9:71:0c:82:34:25:
0b:e2:f5:e4:61:dc:0f:a6:ff:dc:e9:32:a5:80:30:08:8c:b9:
3a:d6:3a:9e:a0:f8:8c:60:ad:b8:1d:ee:70:a4:26:50:b3:ef:
f4:ee:82:e3:88:95:d7:d7:39:e5:8f:29:fb:90:7a:53:d7:38:
4f:e9:0a:a5:61:e6:df:e4:67:74:87:f3:9b:9d:bc:f9:f8:e2:
6c:01:54:09:05:21:1c:7a:35:c5:06:4d:9c:f1:85:f3:e6:cc:
22:cc:cf:17:3a:0e:af:25:95:b2:74:20:b4:0f:55:ac:8d:61:
dc:54:f0:c5:cd:dd:15:5e:8d:30:2f:38:ae:ed:c3:99:1d:3d:
26:6b:5d:2e:82:34:b7:00:cd:b5:2a:43:1e:25:35:67:6f:ea:
d3:b5:fe:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:13 2025 by rpki-client on console.sobornost.net