Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/y4Nw6VYuIuUZOv6I685fKqZhbWQ.roa
File: y4Nw6VYuIuUZOv6I685fKqZhbWQ.roa (raw, json)
Hash identifier: JM0RAslsFdrhEKUBmY+ywDM/Jo6q24Igd7pWLFOkC9Q=
Subject key identifier: CB:83:70:E9:56:2E:22:E5:19:3A:FE:88:EB:CE:5F:2A:A6:61:6D:64
Certificate issuer: /CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Certificate serial: 019427B5D18A55197D79D0901CE212043CB4
Authority key identifier: FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/y4Nw6VYuIuUZOv6I685fKqZhbWQ.roa
Signing time: Thu 02 Jan 2025 15:50:14 +0000
ROA not before: Thu 02 Jan 2025 15:50:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199725
IP address blocks: 212.21.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:d1:8a:55:19:7d:79:d0:90:1c:e2:12:04:3c:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Validity
Not Before: Jan 2 15:50:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb8370e9562e22e5193afe88ebce5f2aa6616d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ec:6d:00:cc:d1:08:2f:c9:db:06:1a:2a:69:
b3:c7:d8:c9:68:66:54:10:ca:fd:62:3a:94:7b:b2:
c5:31:75:56:79:21:ea:17:6c:1b:5d:5c:4e:b7:1b:
46:79:25:94:9a:22:fe:3a:0b:95:19:6f:90:a4:db:
83:b3:00:9d:7c:00:99:2c:d0:bd:26:14:26:e8:5f:
8a:36:8f:63:ef:e9:88:91:9a:ee:2f:cf:70:e8:8d:
7f:d7:1f:51:79:97:14:c5:0a:98:e2:8f:bd:d4:44:
a7:74:ed:da:33:46:a6:fb:b6:2e:c6:81:94:95:7e:
cc:48:0b:16:5d:c0:64:d9:7e:c7:09:f1:9d:4a:e6:
4f:97:32:05:93:6d:e8:cf:f4:f8:89:dd:2c:a8:ab:
c7:8f:0e:44:4f:3d:57:5f:64:fa:91:1f:e8:74:ea:
8c:a6:b1:28:3e:ef:66:6a:54:c5:51:0b:a2:98:31:
ea:8c:de:b8:75:a9:e3:85:20:bb:ae:33:f6:c6:3f:
ff:5b:3b:e4:8b:a5:88:b8:76:b7:7a:6e:88:c1:d6:
92:dc:df:cb:32:b5:a6:08:4f:6d:15:9d:3d:0c:ed:
f9:08:f6:88:50:b7:24:30:00:fe:95:63:46:17:a5:
83:a9:8f:b6:81:6c:e8:ac:54:98:84:51:59:e1:c2:
bc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:83:70:E9:56:2E:22:E5:19:3A:FE:88:EB:CE:5F:2A:A6:61:6D:64
X509v3 Authority Key Identifier:
keyid:FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/y4Nw6VYuIuUZOv6I685fKqZhbWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.21.93.0/24
Signature Algorithm: sha256WithRSAEncryption
69:7d:12:ff:cf:6c:58:90:3e:50:74:71:48:58:40:30:a6:c2:
64:f9:31:92:f6:7f:9b:36:e0:12:02:6c:b6:57:07:f7:23:41:
eb:7b:06:90:87:1d:03:d8:d0:19:ab:a6:53:35:ec:31:71:96:
04:cf:a7:0a:75:eb:78:61:ef:4f:a8:b3:6d:f1:02:4b:f8:9f:
53:0c:c3:4a:39:2c:30:c7:06:9b:b1:d5:9c:26:8a:9b:dd:12:
90:7b:ff:ee:11:ba:93:4a:54:2e:7e:97:bd:8a:3a:c5:0a:bb:
db:0e:85:75:a6:a8:43:10:a7:ec:d9:ff:9f:62:72:f9:07:62:
13:26:d7:e4:30:64:a8:e9:8f:19:79:70:54:df:36:29:41:d5:
25:39:b7:c6:88:85:fd:94:ed:33:f1:e4:06:11:d9:26:fc:24:
27:f2:51:ef:b7:74:12:03:02:48:76:e3:50:64:92:d4:38:0c:
70:eb:54:2b:01:21:62:a3:e7:40:da:64:ac:33:c4:56:84:b8:
93:02:c9:fb:2e:ea:12:4a:e4:9b:de:54:05:18:27:33:b6:5c:
9f:e3:13:85:12:06:25:7a:bb:72:99:6c:ce:c1:34:a6:ff:c5:
59:6e:ae:c9:d6:81:82:60:fc:92:60:76:89:fd:21:00:7e:12:
0a:3b:c7:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:58 2025 by rpki-client on console.sobornost.net