Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/yrhYdyJUuDyLHAzDMziEeCqDJFI.roa
File: yrhYdyJUuDyLHAzDMziEeCqDJFI.roa (raw, json)
Hash identifier: G6JVEYgvH80sw+7zP6zIaheoCR0r4+RD30tbsjOvgAo=
Subject key identifier: CA:B8:58:77:22:54:B8:3C:8B:1C:0C:C3:33:38:84:78:2A:83:24:52
Certificate issuer: /CN=828bbad6f4916842bbe320284fafe10caf59edf0
Certificate serial: 019425FD30501DE5CDE4E0F8F2CD104FBBF9
Authority key identifier: 82:8B:BA:D6:F4:91:68:42:BB:E3:20:28:4F:AF:E1:0C:AF:59:ED:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gou61vSRaEK74yAoT6_hDK9Z7fA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/yrhYdyJUuDyLHAzDMziEeCqDJFI.roa
Signing time: Thu 02 Jan 2025 07:48:57 +0000
ROA not before: Thu 02 Jan 2025 07:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51720
IP address blocks: 2a00:d340:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:30:50:1d:e5:cd:e4:e0:f8:f2:cd:10:4f:bb:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828bbad6f4916842bbe320284fafe10caf59edf0
Validity
Not Before: Jan 2 07:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cab858772254b83c8b1c0cc3333884782a832452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:82:22:e6:81:4d:4a:cb:f9:80:6f:bd:e2:61:
23:50:db:52:db:df:fe:9f:03:3d:53:c8:96:82:1a:
55:78:c4:18:fe:dd:67:d3:a7:4e:ea:29:aa:50:22:
cd:fa:b5:94:9b:c0:74:23:3b:1d:1e:b1:77:96:16:
bb:ca:44:e7:8f:06:63:cc:46:d6:8b:6c:3d:e0:05:
c7:70:a3:40:79:6c:d6:5a:50:cd:bb:28:19:35:c0:
4c:70:07:25:c7:7e:74:ef:6a:e4:ab:3a:25:f5:13:
61:93:ff:ae:69:ff:47:a9:4d:60:57:80:71:fd:ba:
b5:e8:84:53:0b:47:99:90:dd:58:71:f2:0d:78:9e:
73:c2:73:ca:39:d3:03:71:ea:78:c5:26:b6:46:87:
9d:0d:10:bd:d5:e1:42:b0:a7:2d:a4:b4:30:df:cc:
81:c4:63:6d:74:56:a7:30:b9:46:aa:c6:97:f9:26:
84:c5:40:2d:e8:09:5e:44:53:68:91:f7:ee:4f:3b:
47:bc:0a:26:33:50:31:61:6a:e9:45:88:0e:98:ab:
87:eb:97:b6:11:e0:d5:bb:cf:fb:b2:1b:b6:dc:97:
ca:60:da:54:ea:ca:0d:65:a8:a8:a5:a2:a1:06:63:
28:e3:ab:83:77:6b:dd:af:90:e3:91:51:f8:fc:8d:
00:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B8:58:77:22:54:B8:3C:8B:1C:0C:C3:33:38:84:78:2A:83:24:52
X509v3 Authority Key Identifier:
keyid:82:8B:BA:D6:F4:91:68:42:BB:E3:20:28:4F:AF:E1:0C:AF:59:ED:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gou61vSRaEK74yAoT6_hDK9Z7fA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/yrhYdyJUuDyLHAzDMziEeCqDJFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/gou61vSRaEK74yAoT6_hDK9Z7fA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:d340:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
32:d9:d7:4d:e3:75:a8:ee:67:98:7d:b8:bd:ff:d2:58:dc:ef:
a3:56:ce:44:47:4f:25:61:73:2f:6f:6b:ea:0d:4d:74:3a:e7:
b8:51:22:e3:c9:fb:69:3f:d4:a6:be:bb:e8:bb:dd:36:45:15:
1b:dd:b1:21:de:08:ed:17:46:27:0d:41:70:67:3b:8c:b7:8f:
bb:a2:40:c1:63:fc:e3:0c:6e:f3:97:2b:86:a5:36:16:01:90:
d9:4b:d0:eb:29:3f:4d:e7:e2:3a:b4:6c:0e:be:dc:35:54:e8:
55:db:c4:2f:db:9a:d9:3e:6f:9f:bc:db:cd:7d:48:9c:f5:25:
d8:4a:7c:59:97:5a:e3:48:fe:6a:02:af:fa:24:22:24:de:67:
4b:30:b5:c0:9f:97:9f:1a:d9:46:2c:93:3c:08:01:c1:7b:d7:
0b:c5:d3:4e:03:6d:93:8f:91:9b:40:45:ef:ac:f6:97:3d:ed:
06:38:51:2b:39:94:d9:bb:77:65:e6:1a:fe:df:82:ca:65:13:
88:21:02:8d:85:41:e3:5e:02:51:6f:72:7b:bf:53:45:84:38:
36:a3:1e:84:36:89:87:4b:e5:81:22:79:a3:fb:ab:c4:e9:7b:
17:7d:dd:dd:cc:81:20:c1:25:8e:27:52:7f:1c:1d:46:f3:fe:
01:9a:47:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:39 2025 by rpki-client on console.sobornost.net