Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2fc266-1247-4f00-b161-6eb9a22129e1/1/YVDiu2Bt78Tw59IN2GiD08sPbEY.roa
File: YVDiu2Bt78Tw59IN2GiD08sPbEY.roa (raw, json)
Hash identifier: gfGYuVaf6Cp8c+ZZnEv2bV6oyjPxVpLPDTmNGZk2jGU=
Subject key identifier: 61:50:E2:BB:60:6D:EF:C4:F0:E7:D2:0D:D8:68:83:D3:CB:0F:6C:46
Certificate issuer: /CN=0aaaa79caacff5f0304b9ae9002e2713fbff6d52
Certificate serial: 019422200F1BF39E45F46D1F7401CBF1EA29
Authority key identifier: 0A:AA:A7:9C:AA:CF:F5:F0:30:4B:9A:E9:00:2E:27:13:FB:FF:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CqqnnKrP9fAwS5rpAC4nE_v_bVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2fc266-1247-4f00-b161-6eb9a22129e1/1/YVDiu2Bt78Tw59IN2GiD08sPbEY.roa
Signing time: Wed 01 Jan 2025 13:48:33 +0000
ROA not before: Wed 01 Jan 2025 13:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12525
IP address blocks: 2001:67c:554::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:0f:1b:f3:9e:45:f4:6d:1f:74:01:cb:f1:ea:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0aaaa79caacff5f0304b9ae9002e2713fbff6d52
Validity
Not Before: Jan 1 13:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6150e2bb606defc4f0e7d20dd86883d3cb0f6c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b9:2c:bc:06:e4:39:3a:73:d7:b0:9b:50:38:
6a:66:9a:b2:e1:73:dd:0a:0d:b9:07:67:35:5e:6e:
ec:53:c3:57:df:c0:fd:06:f2:42:34:6e:3c:99:24:
17:3e:63:15:92:d9:46:4d:d4:74:fd:c9:37:60:f8:
04:21:81:af:04:3f:01:87:1e:54:99:e3:8a:55:cd:
dd:49:1a:ec:40:8a:ac:54:f7:9a:c0:a5:a8:a9:ab:
c7:57:65:db:80:fa:15:fa:0b:50:a0:76:3c:d7:94:
72:ed:cf:5b:e4:61:3e:04:4a:bd:f4:54:0e:14:18:
73:9a:62:ed:ca:ac:12:44:be:07:68:c0:df:74:09:
e2:d5:7c:73:1e:0b:05:a0:34:06:19:5c:e6:13:c7:
30:ac:87:d7:53:c7:2f:40:b1:83:89:37:74:8c:92:
ef:f4:d7:a5:d8:ab:0e:f4:77:37:bb:7b:00:39:0b:
13:80:1a:ba:f9:e4:d7:af:6c:89:11:c6:ce:cf:32:
87:92:4d:77:4e:3c:01:24:50:08:ad:60:fc:01:ad:
34:7a:9e:c1:6f:95:18:9a:63:82:43:ef:bb:22:85:
4c:86:4e:87:0d:15:7a:2f:c9:87:bc:44:4a:c3:dd:
2b:fd:51:48:b2:9b:bf:57:01:9c:86:ae:c7:70:60:
95:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:50:E2:BB:60:6D:EF:C4:F0:E7:D2:0D:D8:68:83:D3:CB:0F:6C:46
X509v3 Authority Key Identifier:
keyid:0A:AA:A7:9C:AA:CF:F5:F0:30:4B:9A:E9:00:2E:27:13:FB:FF:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CqqnnKrP9fAwS5rpAC4nE_v_bVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2fc266-1247-4f00-b161-6eb9a22129e1/1/YVDiu2Bt78Tw59IN2GiD08sPbEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2fc266-1247-4f00-b161-6eb9a22129e1/1/CqqnnKrP9fAwS5rpAC4nE_v_bVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:554::/48
Signature Algorithm: sha256WithRSAEncryption
ac:19:28:97:7d:6c:df:57:9f:8b:27:d5:c2:2d:3f:3f:68:86:
ea:5d:c5:ce:a5:01:6b:5d:6f:c4:d1:2d:c0:82:1d:ea:2c:a2:
ea:95:e8:c9:85:29:96:ba:fe:0a:64:9c:77:54:05:94:d9:5c:
55:f7:4d:56:65:aa:53:c1:96:d2:ad:f3:1f:e7:8b:81:5e:22:
c8:2c:e1:bb:79:f7:ec:b3:3f:84:64:10:aa:59:73:1e:a5:20:
8b:e2:d0:61:fa:4a:83:a1:ef:be:9b:32:0c:07:12:3f:05:c1:
23:81:42:c3:eb:d0:c7:26:dd:85:4b:25:9a:45:b0:d9:84:71:
e5:59:ae:76:f4:c2:8d:38:73:73:f0:be:02:43:c3:c2:2f:13:
fb:98:8b:00:1a:f9:b6:74:04:b0:67:e1:d8:39:84:c7:50:69:
c8:15:ca:ff:2d:72:63:19:a2:3f:8d:f9:74:e4:e2:7d:06:ce:
4e:11:e9:7f:b3:dc:bc:f3:93:cd:58:41:75:9b:aa:21:91:73:
49:2c:28:3f:01:26:a3:7d:49:f9:e4:c4:e7:e9:80:46:8b:5e:
02:67:b7:c7:15:0b:43:1d:e0:1d:f4:f7:7c:4a:64:0a:6b:36:
74:6b:63:dc:d1:0d:d6:3e:5e:8d:81:77:2e:10:38:3e:f7:28:
c2:28:5d:c5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQiIA8b855F9G0fdAHL8eopMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhYWFhNzljYWFjZmY1ZjAzMDRiOWFlOTAwMmUyNzEzZmJm
ZjZkNTIwHhcNMjUwMTAxMTM0ODMzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTUwZTJiYjYwNmRlZmM0ZjBlN2QyMGRkODY4ODNkM2NiMGY2YzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjbksvAbkOTpz17CbUDhqZpqy4XPd
Cg25B2c1Xm7sU8NX38D9BvJCNG48mSQXPmMVktlGTdR0/ck3YPgEIYGvBD8Bhx5U
meOKVc3dSRrsQIqsVPeawKWoqavHV2XbgPoV+gtQoHY815Ry7c9b5GE+BEq99FQO
FBhzmmLtyqwSRL4HaMDfdAni1XxzHgsFoDQGGVzmE8cwrIfXU8cvQLGDiTd0jJLv
9Nel2KsO9Hc3u3sAOQsTgBq6+eTXr2yJEcbOzzKHkk13TjwBJFAIrWD8Aa00ep7B
b5UYmmOCQ++7IoVMhk6HDRV6L8mHvERKw90r/VFIspu/VwGchq7HcGCVUwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGFQ4rtgbe/E8OfSDdhog9PLD2xGMB8GA1UdIwQY
MBaAFAqqp5yqz/XwMEua6QAuJxP7/21SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ3Fxbm5LclA5ZkF3UzVycEFDNG5FX3ZfYlZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8yZmMyNjYtMTI0Ny00ZjAwLWIxNjEt
NmViOWEyMjEyOWUxLzEvWVZEaXUyQnQ3OFR3NTlJTjJHaUQwOHNQYkVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy8yZmMyNjYtMTI0Ny00ZjAwLWIxNjEtNmViOWEyMjEyOWUx
LzEvQ3Fxbm5LclA5ZkF3UzVycEFDNG5FX3ZfYlZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAVU
MA0GCSqGSIb3DQEBCwUAA4IBAQCsGSiXfWzfV5+LJ9XCLT8/aIbqXcXOpQFrXW/E
0S3Agh3qLKLqlejJhSmWuv4KZJx3VAWU2VxV901WZapTwZbSrfMf54uBXiLILOG7
effssz+EZBCqWXMepSCL4tBh+kqDoe++mzIMBxI/BcEjgULD69DHJt2FSyWaRbDZ
hHHlWa529MKNOHNz8L4CQ8PCLxP7mIsAGvm2dASwZ+HYOYTHUGnIFcr/LXJjGaI/
jfl05OJ9Bs5OEel/s9y885PNWEF1m6ohkXNJLCg/ASajfUn55MTn6YBGi14CZ7fH
FQtDHeAd9Pd8SmQKazZ0a2Pc0Q3WPl6NgXcuEDg+9yjCKF3F
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net