Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/YxHERBDqRVzINYaZYx24sGQ5DjU.roa
File: YxHERBDqRVzINYaZYx24sGQ5DjU.roa (raw, json)
Hash identifier: z9vAtTxka6hlJ3v+MIB3sxbWlZ+xxPgWCTfz3Y+M29Q=
Subject key identifier: 63:11:C4:44:10:EA:45:5C:C8:35:86:99:63:1D:B8:B0:64:39:0E:35
Certificate issuer: /CN=dceb394aae0836d34341f7ad319494765ab56b07
Certificate serial: 01952293241B0188CE2E69D10ACB48B155FC
Authority key identifier: DC:EB:39:4A:AE:08:36:D3:43:41:F7:AD:31:94:94:76:5A:B5:6B:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Os5Sq4INtNDQfetMZSUdlq1awc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/YxHERBDqRVzINYaZYx24sGQ5DjU.roa
Signing time: Thu 20 Feb 2025 08:57:03 +0000
ROA not before: Thu 20 Feb 2025 08:57:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51105
IP address blocks: 2a0c:ab40::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:22:93:24:1b:01:88:ce:2e:69:d1:0a:cb:48:b1:55:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dceb394aae0836d34341f7ad319494765ab56b07
Validity
Not Before: Feb 20 08:57:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6311c44410ea455cc8358699631db8b064390e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ff:57:f4:59:f1:6c:92:3e:5f:6f:38:d0:df:
eb:50:45:f8:51:9e:23:81:58:d5:fd:af:67:74:16:
f0:b2:1d:3e:25:02:a8:15:94:3b:ee:a6:55:af:b2:
c4:09:ff:e9:0c:a0:35:f3:cb:d6:84:35:d3:67:67:
89:57:e8:49:51:41:9e:e6:ec:fc:f7:ab:3c:fe:63:
23:75:de:99:00:0f:f6:d2:d5:17:d6:87:0c:e7:29:
10:ad:de:57:c0:a5:a8:b9:b0:2a:71:a2:4c:ed:54:
09:37:2d:45:54:86:a0:6c:42:f4:2f:f2:79:cd:05:
d9:96:77:97:77:41:95:3b:80:9d:17:48:3a:67:f5:
f8:bf:ec:65:64:13:4d:76:67:14:1d:ce:35:75:cf:
be:7b:73:62:52:79:1c:86:89:2b:92:45:47:b2:1a:
e3:4b:b3:b5:f6:5d:d9:57:cf:a6:56:73:71:98:5a:
fd:74:36:68:50:38:a7:77:dc:b7:8e:63:20:d0:fb:
a3:1c:01:f7:8b:04:44:1a:5b:64:e0:04:35:09:c7:
34:dc:bd:b0:cc:4e:7d:e8:50:b0:08:00:0e:8d:1d:
82:ff:92:e9:d7:6e:bf:1e:ea:2f:8f:64:22:0f:c3:
d1:3a:f0:67:15:7d:1a:04:4b:35:dc:45:d7:ef:12:
0d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:11:C4:44:10:EA:45:5C:C8:35:86:99:63:1D:B8:B0:64:39:0E:35
X509v3 Authority Key Identifier:
keyid:DC:EB:39:4A:AE:08:36:D3:43:41:F7:AD:31:94:94:76:5A:B5:6B:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Os5Sq4INtNDQfetMZSUdlq1awc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/YxHERBDqRVzINYaZYx24sGQ5DjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b064f-b01a-4371-a44a-40c86b32eb22/1/3Os5Sq4INtNDQfetMZSUdlq1awc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:ab40::/29
Signature Algorithm: sha256WithRSAEncryption
4d:10:31:73:7f:2c:d5:88:94:6b:3a:e3:25:cb:83:49:04:07:
28:aa:9c:a4:1c:43:d1:27:c3:3b:fb:1d:8c:af:31:33:f7:58:
f2:93:c0:ed:14:06:44:42:9b:22:72:8a:06:1e:e7:47:38:dc:
cd:e9:d6:4f:18:de:9f:8a:84:4b:fa:3a:e1:22:7e:5f:8f:d9:
f4:76:d0:69:6b:0b:2c:83:34:e9:c9:91:1f:c7:30:b4:82:59:
7e:8a:82:6c:b7:8e:f1:85:91:b7:c6:b7:6b:87:3e:90:f8:7b:
71:76:06:ad:36:e4:88:0a:e5:96:6b:41:d6:e3:ec:c8:ce:89:
9a:2e:45:76:28:18:45:a2:87:4c:6e:ba:33:a6:c6:9a:38:b1:
4b:26:db:0d:f8:bc:fa:58:38:72:bf:43:1a:23:bb:44:5a:7d:
e0:29:bc:76:8c:9e:89:be:e5:e2:a1:2b:d8:38:d3:fb:96:6e:
3b:db:8c:67:49:24:af:0b:10:80:8d:ab:50:0b:c0:2b:f3:49:
fb:03:ad:37:f8:9b:da:14:00:e6:3e:89:49:12:9b:a4:55:c3:
81:24:cc:4e:a3:3f:fe:24:9c:0f:7f:b2:c6:6b:b1:e4:f8:3b:
16:a2:2d:2e:2b:08:e3:73:c1:43:77:24:4b:4a:49:0f:1b:8d:
2e:83:bc:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net