Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/yZau-DwfbVfRH1H5nBnznu-Gh04.roa
File: yZau-DwfbVfRH1H5nBnznu-Gh04.roa (raw, json)
Hash identifier: u7wjmjDpMKVCur/XQ8T5dAncaG/iDqX0/1UwHJhY4Us=
Subject key identifier: C9:96:AE:F8:3C:1F:6D:57:D1:1F:51:F9:9C:19:F3:9E:EF:86:87:4E
Certificate issuer: /CN=33b1b31396083ce9ed51e462898e294ed8215ae7
Certificate serial: 019424459FC8EEC635B5BEC61049F057DA55
Authority key identifier: 33:B1:B3:13:96:08:3C:E9:ED:51:E4:62:89:8E:29:4E:D8:21:5A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7GzE5YIPOntUeRiiY4pTtghWuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/yZau-DwfbVfRH1H5nBnznu-Gh04.roa
Signing time: Wed 01 Jan 2025 23:48:50 +0000
ROA not before: Wed 01 Jan 2025 23:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5392
IP address blocks: 195.36.0.0/18 maxlen: 18
2a00:1988::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:9f:c8:ee:c6:35:b5:be:c6:10:49:f0:57:da:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b1b31396083ce9ed51e462898e294ed8215ae7
Validity
Not Before: Jan 1 23:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c996aef83c1f6d57d11f51f99c19f39eef86874e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:04:12:5f:35:55:51:37:fe:20:b6:2f:b4:53:
86:e9:00:fc:a6:94:af:4c:e9:41:06:ae:b7:d7:71:
6d:e1:ad:e4:70:75:ce:7a:e7:07:2b:35:73:2b:21:
22:3a:14:63:ce:b4:bc:e9:d2:cb:40:1e:35:5f:67:
89:29:7c:83:b3:94:fa:5c:55:d3:e3:1a:0b:d8:06:
60:2d:35:e9:c7:e2:c1:33:32:94:d5:2d:51:d4:11:
ba:56:05:77:08:cd:45:bd:40:24:c3:32:3f:3b:2d:
31:10:e7:fb:0b:9e:49:c6:a9:ef:ae:af:57:c8:fe:
ba:1e:e9:9a:48:c9:30:ad:c3:67:f7:1d:af:ef:77:
99:83:18:38:a7:af:fb:d9:09:b9:81:50:45:5c:c0:
0e:54:d7:e7:4c:97:af:99:1e:49:e9:4b:55:ff:91:
eb:a5:4e:7f:5b:a5:9d:ed:15:50:66:23:36:5a:8f:
58:8f:bb:19:49:f7:ed:33:0d:18:4a:7a:67:5e:8b:
43:11:f2:db:42:fc:6b:af:32:0d:ba:d4:bc:c7:b0:
af:fd:1f:fc:51:80:50:2c:b0:e4:d1:cc:5d:17:08:
82:62:93:e7:5f:9d:2f:88:be:00:bb:01:d2:66:3f:
0e:e0:d4:d8:d6:a3:07:72:eb:5b:1b:7c:cc:ac:48:
f0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:96:AE:F8:3C:1F:6D:57:D1:1F:51:F9:9C:19:F3:9E:EF:86:87:4E
X509v3 Authority Key Identifier:
keyid:33:B1:B3:13:96:08:3C:E9:ED:51:E4:62:89:8E:29:4E:D8:21:5A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7GzE5YIPOntUeRiiY4pTtghWuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/yZau-DwfbVfRH1H5nBnznu-Gh04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1cc1fa-28dd-44d4-98a0-33e61bd912ea/1/M7GzE5YIPOntUeRiiY4pTtghWuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.36.0.0/18
IPv6:
2a00:1988::/32
Signature Algorithm: sha256WithRSAEncryption
8b:f0:42:c5:5d:92:0b:ee:c9:87:8e:86:7a:9f:5c:fe:80:f3:
0b:fc:bd:37:99:b7:36:68:7a:d1:f9:ee:db:a2:87:eb:30:e4:
76:16:ac:9d:eb:bd:bb:17:9e:9f:90:ca:0a:15:cf:55:ca:d9:
4c:9d:da:aa:46:08:25:4f:bf:0b:ff:08:4a:d5:28:cc:77:39:
1c:80:5f:32:c2:a1:de:dd:e5:d0:fa:8c:ae:35:c2:a5:0c:8d:
90:65:83:12:cc:cd:3e:ce:d2:91:15:80:40:db:3c:c0:f9:20:
bf:4b:3b:3c:63:a7:c3:c5:76:b1:6d:f8:b8:20:46:62:8d:fc:
f5:a6:7a:f2:e2:ba:71:c7:d3:41:cf:2d:59:37:be:fb:58:ab:
d9:2c:86:55:76:1a:66:5c:21:5c:c9:8b:6a:d7:26:02:32:ff:
db:9b:c9:75:44:5d:07:63:35:c6:47:6a:58:1f:ca:7e:3f:b5:
d5:77:da:74:b4:d8:d4:ee:67:4a:6e:2b:ba:1e:a0:d3:21:de:
88:60:66:90:e0:ad:2e:4a:a5:38:c7:84:ba:bf:f1:8d:1f:b0:
e3:7f:42:cd:e2:04:41:00:8f:fa:a5:0b:ac:9b:74:fa:48:99:
5e:2f:fa:79:45:bb:f0:9a:27:80:49:37:53:e0:3d:15:2c:a3:
59:b7:e5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:16 2025 by rpki-client on console.sobornost.net