Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/YseId6w-wK5VfWBLdiAj4d6boZY.roa
File: YseId6w-wK5VfWBLdiAj4d6boZY.roa (raw, json)
Hash identifier: wh8Vov3CNC6MsCQsUCMvToUSrtlM+qEzITIJ9QcG8fc=
Subject key identifier: 62:C7:88:77:AC:3E:C0:AE:55:7D:60:4B:76:20:23:E1:DE:9B:A1:96
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01962E7853B2ADF0A8C8FC2B55A7677B6699
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/YseId6w-wK5VfWBLdiAj4d6boZY.roa
Signing time: Sun 13 Apr 2025 09:25:59 +0000
ROA not before: Sun 13 Apr 2025 09:25:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 81.22.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2e:78:53:b2:ad:f0:a8:c8:fc:2b:55:a7:67:7b:66:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Apr 13 09:25:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=62c78877ac3ec0ae557d604b762023e1de9ba196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:21:c6:db:3a:74:72:24:4e:f2:41:7e:00:9a:
42:18:df:01:38:ab:70:b3:2f:8d:53:d6:90:ca:ce:
1f:9f:8e:08:32:16:59:23:4f:65:22:ff:4f:e7:33:
89:c4:93:b3:1c:ae:00:5c:44:64:bb:65:c9:5c:7c:
e6:8c:5f:23:77:02:87:61:c2:8a:af:19:cb:7e:d7:
3b:40:99:38:ba:bc:0f:b0:5e:a8:c5:5a:85:7e:9b:
18:84:96:86:62:36:8d:ce:c8:fe:62:85:b2:c4:97:
06:27:9e:47:ef:6d:a7:c2:d3:2b:d2:dc:57:46:80:
90:32:df:9b:68:eb:43:ad:87:96:ce:1c:d3:c4:78:
a1:f5:95:d6:80:fa:1c:d1:8c:6f:25:88:6c:24:b0:
1e:73:8b:27:72:0c:53:36:d3:bb:bf:db:1c:15:37:
ad:c5:9a:47:3b:60:d9:73:6b:bd:e5:c6:01:7c:73:
3b:a1:ee:5c:69:9f:6a:94:7f:89:87:b2:03:12:ca:
73:74:f2:16:2c:08:f8:d5:03:30:9e:fb:74:54:32:
04:88:57:ad:e7:20:39:5b:0d:af:48:4e:52:af:ca:
e8:13:87:97:ed:6f:3f:94:f6:03:fc:12:b4:a9:58:
dd:95:df:d6:95:fa:d6:b2:4e:cc:d9:51:c7:6c:95:
bf:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C7:88:77:AC:3E:C0:AE:55:7D:60:4B:76:20:23:E1:DE:9B:A1:96
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/YseId6w-wK5VfWBLdiAj4d6boZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.139.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:44:97:d6:19:95:a4:b7:dc:e6:65:b3:c7:de:25:aa:30:03:
82:e9:2b:d8:40:5c:c9:3c:54:ea:20:9e:5f:02:76:0b:5c:40:
de:de:f9:ba:0c:b5:6a:37:11:28:5b:15:a7:53:c8:65:6d:97:
da:c8:79:d6:6f:18:49:dc:30:1e:8f:b5:71:c9:2f:a0:14:fa:
6c:61:f1:f6:f5:a2:ef:cd:d6:6d:75:49:17:0b:db:04:c4:7f:
e9:c7:0e:ca:f1:ce:18:15:33:83:d0:8a:23:79:36:ec:f0:f9:
64:73:78:95:31:bf:74:f0:27:b6:f9:9c:c1:c3:4c:44:e3:9a:
95:56:18:55:03:5b:ee:3d:4e:ec:45:e3:49:6e:62:85:40:a3:
13:18:3a:b3:a2:a4:be:a6:67:e5:ea:bf:56:08:28:40:63:d2:
93:90:22:c6:bd:d7:a7:3c:36:27:80:5c:15:1e:87:c6:51:3a:
3b:77:f5:d7:03:70:b4:ee:7d:2a:cc:b8:95:b1:53:af:2f:bd:
92:61:04:e6:12:be:9d:38:ed:39:d1:81:a6:ff:78:05:ce:33:
a7:c4:75:8c:c7:5e:04:1b:7b:65:60:b7:f4:df:ce:b9:06:3c:
9a:ac:02:0a:50:9c:58:5b:75:24:71:8b:0f:d8:65:53:3d:1c:
4c:1d:4c:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net