Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/5526d4-afc1-401f-a09f-0b697a3b762a/1/yPI4iRYmm1fwcu2gPm48e2JKRd8.roa
File: yPI4iRYmm1fwcu2gPm48e2JKRd8.roa (raw, json)
Hash identifier: BDXqRGsDwDyhjpTf6VKbLY0k53gndOvrvWCUreaVIQU=
Subject key identifier: C8:F2:38:89:16:26:9B:57:F0:72:ED:A0:3E:6E:3C:7B:62:4A:45:DF
Certificate issuer: /CN=4a341558dba0b6db94c55ce06e306ff6519d6ef1
Certificate serial: 01942445320CF02C0EDEB5B1F80250EBD96D
Authority key identifier: 4A:34:15:58:DB:A0:B6:DB:94:C5:5C:E0:6E:30:6F:F6:51:9D:6E:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SjQVWNugttuUxVzgbjBv9lGdbvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/5526d4-afc1-401f-a09f-0b697a3b762a/1/yPI4iRYmm1fwcu2gPm48e2JKRd8.roa
Signing time: Wed 01 Jan 2025 23:48:22 +0000
ROA not before: Wed 01 Jan 2025 23:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49792
IP address blocks: 2001:67c:1194::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:32:0c:f0:2c:0e:de:b5:b1:f8:02:50:eb:d9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a341558dba0b6db94c55ce06e306ff6519d6ef1
Validity
Not Before: Jan 1 23:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c8f2388916269b57f072eda03e6e3c7b624a45df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f6:51:19:29:06:e3:c7:5d:f1:cd:b2:7f:16:
ad:59:f6:19:fd:b8:ab:27:ea:88:be:4e:a5:73:7c:
fd:d5:7e:6f:9b:c8:37:34:d7:33:6b:cd:4e:bb:55:
ff:85:29:2a:d4:1f:5d:7d:eb:f9:0c:bf:ba:36:3a:
e2:bf:52:9c:06:8f:08:96:d6:70:20:bd:9a:db:f3:
73:af:1f:85:f7:a4:ad:7c:f3:13:82:57:46:5a:1c:
ef:81:0c:76:d7:78:8a:21:a1:46:16:97:dd:4d:14:
72:59:36:e4:a0:c4:c4:1c:70:9d:2e:11:18:7b:49:
dc:0e:23:64:d3:2c:72:5d:61:72:49:40:44:0c:32:
41:5f:40:0c:8c:12:ff:f6:e0:0c:12:be:cc:e3:4e:
31:da:6b:5e:bd:61:53:c5:23:fa:0d:92:c4:06:74:
49:9a:82:84:0f:36:66:82:b3:50:a8:f4:0a:3e:de:
ef:31:3d:a1:6d:af:67:fa:1f:d8:26:de:5f:80:58:
fb:02:9c:5f:0a:49:67:5d:40:bc:f6:0e:f3:5f:4f:
63:0e:ec:71:03:14:54:56:2c:c7:33:ca:b2:6c:06:
33:ab:b5:c3:e0:e9:c6:96:b2:6d:17:69:9f:a1:cb:
66:e7:93:89:7b:e9:92:f8:27:1e:8f:b9:ec:74:f3:
8c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F2:38:89:16:26:9B:57:F0:72:ED:A0:3E:6E:3C:7B:62:4A:45:DF
X509v3 Authority Key Identifier:
keyid:4A:34:15:58:DB:A0:B6:DB:94:C5:5C:E0:6E:30:6F:F6:51:9D:6E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SjQVWNugttuUxVzgbjBv9lGdbvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5526d4-afc1-401f-a09f-0b697a3b762a/1/yPI4iRYmm1fwcu2gPm48e2JKRd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5526d4-afc1-401f-a09f-0b697a3b762a/1/SjQVWNugttuUxVzgbjBv9lGdbvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1194::/48
Signature Algorithm: sha256WithRSAEncryption
58:c3:34:fc:2e:73:32:e9:fb:66:be:11:40:1b:6f:3e:24:ee:
88:38:e0:ef:58:2c:10:4c:01:8d:d1:b9:22:62:3a:de:79:4c:
5c:e9:60:bd:1f:2c:c5:93:57:22:9d:61:7b:55:21:8d:a9:45:
19:05:96:7f:f2:e1:7f:95:fa:e9:f3:db:3d:43:f0:86:96:b0:
63:66:1d:cf:6e:ec:0c:ec:a0:61:e0:02:4d:db:e0:aa:fe:8c:
9d:e9:ef:eb:f3:81:23:6d:fa:95:3c:a8:f6:da:b5:a7:6a:2b:
96:26:05:f2:b7:02:c6:db:0a:d1:02:1a:0a:5b:7f:23:3b:f7:
3c:ef:c9:47:e7:6c:e7:6e:5d:c3:ad:31:75:2d:0d:93:3e:7d:
f3:4a:3b:c5:d2:cc:71:06:83:cf:2e:55:df:19:28:01:47:f5:
f2:00:5e:ae:b8:a4:1d:01:34:31:ee:35:cb:9d:9e:13:ca:e6:
7c:87:ab:99:36:40:be:5f:f7:be:90:e6:d5:e5:8c:7e:1a:c6:
c8:55:1d:06:b3:3b:c5:6c:8c:26:d5:c4:67:10:a9:37:5a:fa:
f1:9a:74:63:89:57:88:fc:d7:f7:b0:4f:9d:65:fa:af:d6:7e:
ff:bd:44:7c:86:2f:5f:ef:c1:dd:bd:94:6f:72:0e:b6:fa:ce:
f6:ff:c9:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:14 2025 by rpki-client on console.sobornost.net