Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/yolKnaasK1MDNBs-8KEuzQMv3x8.roa
File: yolKnaasK1MDNBs-8KEuzQMv3x8.roa (raw, json)
Hash identifier: +6gDclv5ZLF1SUHYCjfJjMWMWSAj91gzEptBrSOV3QY=
Subject key identifier: CA:89:4A:9D:A6:AC:2B:53:03:34:1B:3E:F0:A1:2E:CD:03:2F:DF:1F
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 0193892518F5059DC7CD303D705712CCF2D8
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/yolKnaasK1MDNBs-8KEuzQMv3x8.roa
Signing time: Mon 02 Dec 2024 20:52:09 +0000
ROA not before: Mon 02 Dec 2024 20:52:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42689
IP address blocks: 195.95.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:89:25:18:f5:05:9d:c7:cd:30:3d:70:57:12:cc:f2:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Dec 2 20:52:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca894a9da6ac2b5303341b3ef0a12ecd032fdf1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5a:b7:94:ee:2f:1a:a7:cb:a4:26:1b:c6:c2:
4f:14:f3:17:54:6a:a1:25:ff:d0:43:70:97:89:b8:
3f:2d:d7:67:20:a6:ca:22:61:ab:77:70:3c:a8:78:
aa:3b:f5:40:30:e3:ca:bc:1f:ec:19:62:f2:d1:72:
64:cd:e4:60:e3:70:24:cb:f1:26:1b:e9:20:90:2c:
0d:d2:d0:2e:50:0c:b4:41:0a:0c:86:95:22:cc:0e:
b1:2c:c6:df:92:91:9f:17:b7:f6:4d:0b:12:b4:5a:
cb:52:7a:6a:ab:8f:75:10:be:ce:6c:98:5c:40:9a:
44:af:18:39:40:a2:14:b7:eb:30:90:b0:a9:17:ea:
bd:e6:9e:c2:38:25:56:ab:66:0f:e0:62:56:80:20:
d2:42:6f:62:5a:f0:2e:fe:ea:47:7a:c6:f1:14:39:
24:d7:ec:70:4c:a7:00:0c:8d:ec:e2:fc:b1:a6:0c:
8a:ce:33:4e:6e:65:fc:c4:de:23:f1:24:fa:23:83:
13:12:be:fb:6e:da:53:a5:8c:b3:f8:dc:74:ff:52:
26:3a:82:09:e1:f0:af:d1:00:c3:ce:cc:33:4e:72:
74:32:95:29:96:36:a9:6a:fc:ad:a9:33:81:1b:0d:
9b:61:68:01:89:68:7d:28:94:f2:2c:85:69:22:10:
6d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:89:4A:9D:A6:AC:2B:53:03:34:1B:3E:F0:A1:2E:CD:03:2F:DF:1F
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/yolKnaasK1MDNBs-8KEuzQMv3x8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.200.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:14:54:af:2d:e2:bf:b4:2e:84:70:5e:4f:0c:49:a9:e4:e6:
f3:72:79:1d:0d:86:29:f8:1c:40:a4:89:62:3e:4a:4c:f5:2e:
d1:3f:2d:c5:65:38:52:c7:1c:80:62:be:cb:2a:3f:30:46:e1:
94:35:54:bf:dc:67:6d:ac:8a:93:08:17:cc:e2:86:01:99:ea:
7e:b4:95:b6:d6:1d:d7:e2:32:43:30:06:78:35:48:cb:76:0d:
c9:f4:eb:2b:97:ba:81:fb:b5:ce:b1:86:1e:7f:a2:00:ef:83:
39:86:98:31:85:a0:bf:86:89:e6:b8:5c:f0:6d:12:3f:e9:44:
95:06:f2:dd:85:a4:73:59:39:fd:47:49:a9:b3:62:d7:f0:35:
dd:3d:18:b1:5a:25:ee:31:cb:57:9a:22:e2:a6:b5:ff:02:e3:
3b:10:ed:25:3f:d9:78:09:b5:ea:e1:f0:56:76:5e:c6:b2:2d:
7f:7c:8d:77:a6:1e:a3:40:c0:bc:82:c5:4c:7f:ce:9a:88:59:
f2:1f:22:ed:13:16:70:db:44:63:f1:67:c5:fa:48:e8:aa:6b:
e6:fe:28:9c:63:bb:ec:ba:35:c5:ef:50:4c:72:1c:10:e1:d9:
56:09:5c:61:42:1c:38:2c:9a:83:a0:92:1e:5c:0d:d5:bf:d9:
92:96:5a:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOJJRj1BZ3HzTA9cFcSzPLYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlODI5NjNmZjFhYTcwYWIxMGQxZDMzZTg2YjFkNmQ0OTRk
NmNlNTEwHhcNMjQxMjAyMjA1MjA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTg5NGE5ZGE2YWMyYjUzMDMzNDFiM2VmMGExMmVjZDAzMmZkZjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Vq3lO4vGqfLpCYbxsJPFPMXVGqh
Jf/QQ3CXibg/LddnIKbKImGrd3A8qHiqO/VAMOPKvB/sGWLy0XJkzeRg43Aky/Em
G+kgkCwN0tAuUAy0QQoMhpUizA6xLMbfkpGfF7f2TQsStFrLUnpqq491EL7ObJhc
QJpErxg5QKIUt+swkLCpF+q95p7COCVWq2YP4GJWgCDSQm9iWvAu/upHesbxFDkk
1+xwTKcADI3s4vyxpgyKzjNObmX8xN4j8ST6I4MTEr77btpTpYyz+Nx0/1ImOoIJ
4fCv0QDDzswzTnJ0MpUpljapavytqTOBGw2bYWgBiWh9KJTyLIVpIhBtnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMqJSp2mrCtTAzQbPvChLs0DL98fMB8GA1UdIwQY
MBaAFC6Clj/xqnCrENHTPoax1tSU1s5RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQt
ZGY2NGYwZTgyMzYwLzEveW9sS25hYXNLMU1ETkJzLThLRXV6UU12M3g4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQtZGY2NGYwZTgyMzYw
LzEvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1/IMA0G
CSqGSIb3DQEBCwUAA4IBAQCfFFSvLeK/tC6EcF5PDEmp5ObzcnkdDYYp+BxApIli
PkpM9S7RPy3FZThSxxyAYr7LKj8wRuGUNVS/3GdtrIqTCBfM4oYBmep+tJW21h3X
4jJDMAZ4NUjLdg3J9Osrl7qB+7XOsYYef6IA74M5hpgxhaC/honmuFzwbRI/6USV
BvLdhaRzWTn9R0mps2LX8DXdPRixWiXuMctXmiLiprX/AuM7EO0lP9l4CbXq4fBW
dl7Gsi1/fI13ph6jQMC8gsVMf86aiFnyHyLtExZw20Rj8WfF+kjoqmvm/iicY7vs
ujXF71BMchwQ4dlWCVxhQhw4LJqDoJIeXA3Vv9mSlloF
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:15 2024 by rpki-client on console.sobornost.net