Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/d8de6b-750e-4150-9be8-fef96e95aba0/1/yze2rcJ637RL8GZo48PGt4d8nY8.roa
File: yze2rcJ637RL8GZo48PGt4d8nY8.roa (raw, json)
Hash identifier: H8OFKVxMCjsZaNXr8DPY/I8jq0ZMaggP4bkjrXxk6OY=
Subject key identifier: CB:37:B6:AD:C2:7A:DF:B4:4B:F0:66:68:E3:C3:C6:B7:87:7C:9D:8F
Certificate issuer: /CN=f185270e83193d3269f7cde9da0808b1eff552ae
Certificate serial: 0194228DDB16C75DB59070547F9643EBD4D4
Authority key identifier: F1:85:27:0E:83:19:3D:32:69:F7:CD:E9:DA:08:08:B1:EF:F5:52:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8YUnDoMZPTJp983p2ggIse_1Uq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/d8de6b-750e-4150-9be8-fef96e95aba0/1/yze2rcJ637RL8GZo48PGt4d8nY8.roa
Signing time: Wed 01 Jan 2025 15:48:29 +0000
ROA not before: Wed 01 Jan 2025 15:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50309
IP address blocks: 217.18.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:db:16:c7:5d:b5:90:70:54:7f:96:43:eb:d4:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f185270e83193d3269f7cde9da0808b1eff552ae
Validity
Not Before: Jan 1 15:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb37b6adc27adfb44bf06668e3c3c6b7877c9d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:df:01:8e:e4:86:35:be:d4:2a:c3:60:41:59:
a8:ac:62:0d:a0:26:20:6f:5e:6b:fe:f3:2e:a9:e6:
2c:72:d0:6d:cc:66:d9:db:34:b9:1d:23:55:a8:a7:
72:cb:ae:24:05:b0:24:88:98:c3:43:a2:48:1f:5c:
e3:2b:e6:77:d2:67:4a:7b:b9:b4:36:15:92:1a:3c:
ca:44:95:20:cb:34:84:b1:bf:d7:9c:97:fc:ba:20:
47:05:58:fd:10:a0:2e:5c:82:8e:d1:91:e1:70:d6:
77:24:fe:b4:33:45:e2:5b:d2:3a:3c:0f:dc:41:c6:
a3:69:a4:dd:11:bf:58:3b:00:e8:49:1d:e6:61:95:
00:df:d5:50:de:b4:bd:a6:13:12:60:f6:f3:4f:aa:
cb:e4:bc:0a:0c:af:7c:9f:b9:99:f6:8f:df:fb:b8:
7c:f3:26:42:ee:b1:77:92:fc:d4:24:c1:3c:ae:20:
1c:5b:f4:66:70:ce:a0:b8:10:b3:ff:1d:1a:ad:96:
f8:7d:d2:c5:99:94:75:5f:82:5d:1f:1e:43:b8:c0:
1a:78:05:50:f2:1c:51:03:bb:09:10:b4:ff:f7:cc:
7e:0b:c1:fc:82:9b:6b:11:4b:6f:17:89:16:e5:c2:
4c:5a:a6:64:b9:57:88:ba:f9:11:5a:3c:28:d1:17:
67:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:37:B6:AD:C2:7A:DF:B4:4B:F0:66:68:E3:C3:C6:B7:87:7C:9D:8F
X509v3 Authority Key Identifier:
keyid:F1:85:27:0E:83:19:3D:32:69:F7:CD:E9:DA:08:08:B1:EF:F5:52:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8YUnDoMZPTJp983p2ggIse_1Uq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d8de6b-750e-4150-9be8-fef96e95aba0/1/yze2rcJ637RL8GZo48PGt4d8nY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d8de6b-750e-4150-9be8-fef96e95aba0/1/8YUnDoMZPTJp983p2ggIse_1Uq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.89.0/24
Signature Algorithm: sha256WithRSAEncryption
61:96:22:c6:1c:85:bb:db:16:1f:01:c4:a3:70:86:2d:c9:e8:
a7:57:90:61:91:c0:a6:71:6b:cd:de:b6:f0:49:16:00:5a:e9:
dc:91:7c:0a:97:d1:08:3d:9d:dc:a9:5e:ed:0a:21:05:a0:50:
cd:6f:07:eb:56:35:dc:c7:07:70:ae:71:3a:5c:ef:fa:2d:11:
b1:90:04:1a:82:29:c9:38:be:47:83:b5:7e:73:d1:16:08:3c:
b2:5e:c2:3a:27:28:68:8f:dd:9b:d8:ea:4c:c0:cd:11:ba:15:
ef:2f:eb:95:e7:cb:78:e5:e8:dd:1f:8d:bf:ff:0e:25:f8:e7:
ee:c6:83:7b:b0:2e:a0:8c:9a:54:be:4b:7f:ed:56:59:89:fc:
14:d3:69:46:e4:50:5f:ba:24:12:eb:d4:a5:0c:19:7d:73:41:
29:a4:c1:ca:ee:f7:7c:80:2a:7b:29:26:cf:20:45:d3:9c:48:
e9:81:17:5e:18:80:bf:2e:76:19:c3:25:e2:66:04:2a:e3:fc:
27:07:7c:29:89:d0:03:51:33:78:32:3c:74:6e:0f:4a:5f:3e:
1b:98:06:ff:49:c4:c2:ca:02:b4:43:d8:4c:12:fb:54:45:41:
cd:91:74:79:24:21:6f:df:9d:1a:f2:94:2f:8a:0b:b1:15:79:
d3:60:62:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijdsWx121kHBUf5ZD69TUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxODUyNzBlODMxOTNkMzI2OWY3Y2RlOWRhMDgwOGIxZWZm
NTUyYWUwHhcNMjUwMTAxMTU0ODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjM3YjZhZGMyN2FkZmI0NGJmMDY2NjhlM2MzYzZiNzg3N2M5ZDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi98BjuSGNb7UKsNgQVmorGINoCYg
b15r/vMuqeYsctBtzGbZ2zS5HSNVqKdyy64kBbAkiJjDQ6JIH1zjK+Z30mdKe7m0
NhWSGjzKRJUgyzSEsb/XnJf8uiBHBVj9EKAuXIKO0ZHhcNZ3JP60M0XiW9I6PA/c
QcajaaTdEb9YOwDoSR3mYZUA39VQ3rS9phMSYPbzT6rL5LwKDK98n7mZ9o/f+7h8
8yZC7rF3kvzUJME8riAcW/RmcM6guBCz/x0arZb4fdLFmZR1X4JdHx5DuMAaeAVQ
8hxRA7sJELT/98x+C8H8gptrEUtvF4kW5cJMWqZkuVeIuvkRWjwo0Rdn5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMs3tq3Cet+0S/BmaOPDxreHfJ2PMB8GA1UdIwQY
MBaAFPGFJw6DGT0yaffN6doICLHv9VKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFlVbkRvTVpQVEpwOTgzcDJnZ0lzZV8xVXE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9kOGRlNmItNzUwZS00MTUwLTliZTgt
ZmVmOTZlOTVhYmEwLzEveXplMnJjSjYzN1JMOEdabzQ4UEd0NGQ4blk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9kOGRlNmItNzUwZS00MTUwLTliZTgtZmVmOTZlOTVhYmEw
LzEvOFlVbkRvTVpQVEpwOTgzcDJnZ0lzZV8xVXE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2RJZMA0G
CSqGSIb3DQEBCwUAA4IBAQBhliLGHIW72xYfAcSjcIYtyeinV5BhkcCmcWvN3rbw
SRYAWunckXwKl9EIPZ3cqV7tCiEFoFDNbwfrVjXcxwdwrnE6XO/6LRGxkAQaginJ
OL5Hg7V+c9EWCDyyXsI6Jyhoj92b2OpMwM0RuhXvL+uV58t45ejdH42//w4l+Ofu
xoN7sC6gjJpUvkt/7VZZifwU02lG5FBfuiQS69SlDBl9c0EppMHK7vd8gCp7KSbP
IEXTnEjpgRdeGIC/LnYZwyXiZgQq4/wnB3wpidADUTN4Mjx0bg9KXz4bmAb/ScTC
ygK0Q9hMEvtURUHNkXR5JCFv350a8pQviguxFXnTYGJr
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:29 2025 by rpki-client on console.sobornost.net