Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/ec1b59-9e0a-4ad3-977e-33bd843495f8/1/YyGPwu-_r-eFoNX2ZTx6n9Sl7sU.roa
File: YyGPwu-_r-eFoNX2ZTx6n9Sl7sU.roa (raw, json)
Hash identifier: iag5NIeY+dB9ncpa+rQd04Kk2wb7pISvllYkBby24Kg=
Subject key identifier: 63:21:8F:C2:EF:BF:AF:E7:85:A0:D5:F6:65:3C:7A:9F:D4:A5:EE:C5
Certificate issuer: /CN=f45e79141130ceec857215f9bbdd7a55baf4e77f
Certificate serial: 019423D6BED7AFEC3A36D81D68D4FEA3FAD0
Authority key identifier: F4:5E:79:14:11:30:CE:EC:85:72:15:F9:BB:DD:7A:55:BA:F4:E7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9F55FBEwzuyFchX5u916Vbr0538.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/ec1b59-9e0a-4ad3-977e-33bd843495f8/1/YyGPwu-_r-eFoNX2ZTx6n9Sl7sU.roa
Signing time: Wed 01 Jan 2025 21:47:43 +0000
ROA not before: Wed 01 Jan 2025 21:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57602
IP address blocks: 2001:67c:240c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:be:d7:af:ec:3a:36:d8:1d:68:d4:fe:a3:fa:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f45e79141130ceec857215f9bbdd7a55baf4e77f
Validity
Not Before: Jan 1 21:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63218fc2efbfafe785a0d5f6653c7a9fd4a5eec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:51:fa:ff:41:b6:dd:69:bb:e3:3e:38:cd:b4:
30:6b:89:76:2e:d4:66:77:f9:7e:06:eb:87:59:32:
79:e3:59:ea:66:a5:fd:ea:78:f7:fb:a1:bc:c2:2f:
6e:42:6f:58:b1:3d:b2:c5:93:14:6c:1f:2e:6e:d0:
16:df:4d:93:7d:43:e7:7a:4c:58:04:f9:7b:9f:64:
b4:00:c6:2b:3a:3e:ee:25:92:24:ad:a9:52:5c:54:
3f:79:b6:a6:3c:f8:6a:5f:78:24:75:b8:49:05:52:
e2:f0:ff:94:5b:5d:dc:f1:f4:20:39:06:a8:5c:03:
0e:ce:88:32:e2:3b:51:60:cd:9f:6f:04:72:04:e0:
66:d9:0c:53:bf:a6:df:d8:1b:08:30:98:66:ef:4f:
a1:7d:9d:aa:86:82:81:74:71:15:db:34:27:b1:67:
f5:68:5a:c9:0f:5c:b8:2c:07:00:87:72:5d:cc:a0:
9f:f5:0c:ff:b8:d0:45:7e:80:1a:c6:ce:46:aa:77:
f2:9b:0b:85:7e:b3:19:2a:65:00:76:24:bc:4b:19:
1e:a5:01:c1:af:bb:83:35:75:2c:c7:73:66:27:46:
49:1b:be:a4:80:2d:f2:c3:35:a2:0d:67:d7:56:44:
c9:38:f3:84:29:f8:16:a9:b1:19:d6:82:db:d1:6e:
a1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:21:8F:C2:EF:BF:AF:E7:85:A0:D5:F6:65:3C:7A:9F:D4:A5:EE:C5
X509v3 Authority Key Identifier:
keyid:F4:5E:79:14:11:30:CE:EC:85:72:15:F9:BB:DD:7A:55:BA:F4:E7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9F55FBEwzuyFchX5u916Vbr0538.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/ec1b59-9e0a-4ad3-977e-33bd843495f8/1/YyGPwu-_r-eFoNX2ZTx6n9Sl7sU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/ec1b59-9e0a-4ad3-977e-33bd843495f8/1/9F55FBEwzuyFchX5u916Vbr0538.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:240c::/48
Signature Algorithm: sha256WithRSAEncryption
26:a5:0c:4b:8c:21:6f:f3:ca:5c:3d:20:a9:53:a3:0b:d8:26:
64:15:fb:4c:fe:c9:f2:51:c3:c9:7f:95:a8:7f:b3:a2:56:b1:
90:a4:c2:89:a4:ba:56:e7:ce:af:cc:5a:5d:6b:06:46:78:cd:
8c:91:62:b3:90:fc:6b:82:7a:e9:9f:4d:72:69:41:a4:ee:3d:
06:70:ec:32:69:8d:69:0b:a1:b1:2b:07:af:a5:0e:fb:98:6e:
a0:f0:d1:da:80:79:78:ee:e3:09:5b:2e:71:51:14:4c:77:36:
85:5d:fc:53:8f:9d:bf:f3:d2:37:75:07:24:32:4c:90:41:71:
f0:7d:8c:94:25:e3:43:27:48:b6:ef:b8:1a:3d:c8:05:0b:01:
45:85:35:63:d4:c5:f6:c7:64:5b:d9:49:f4:23:59:f2:6a:da:
74:ec:f5:85:ce:b9:6d:aa:1c:80:a8:cd:6d:23:29:19:c3:71:
00:a8:e4:d2:e2:48:50:e5:93:20:8d:45:dc:7f:6b:d5:8a:51:
1e:64:da:36:61:67:c6:36:1c:7b:01:a4:4b:ca:c2:c4:c3:8b:
09:b2:4b:56:1f:59:3f:9f:1e:ec:39:98:16:f4:ec:0c:79:6e:
9e:c1:15:db:35:e0:82:84:6d:31:2f:3a:69:f5:49:62:2c:f2:
a4:75:cd:35
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQj1r7Xr+w6NtgdaNT+o/rQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0NWU3OTE0MTEzMGNlZWM4NTcyMTVmOWJiZGQ3YTU1YmFm
NGU3N2YwHhcNMjUwMTAxMjE0NzQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzIxOGZjMmVmYmZhZmU3ODVhMGQ1ZjY2NTNjN2E5ZmQ0YTVlZWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1H6/0G23Wm74z44zbQwa4l2LtRm
d/l+BuuHWTJ541nqZqX96nj3+6G8wi9uQm9YsT2yxZMUbB8ubtAW302TfUPnekxY
BPl7n2S0AMYrOj7uJZIkralSXFQ/ebamPPhqX3gkdbhJBVLi8P+UW13c8fQgOQao
XAMOzogy4jtRYM2fbwRyBOBm2QxTv6bf2BsIMJhm70+hfZ2qhoKBdHEV2zQnsWf1
aFrJD1y4LAcAh3JdzKCf9Qz/uNBFfoAaxs5GqnfymwuFfrMZKmUAdiS8SxkepQHB
r7uDNXUsx3NmJ0ZJG76kgC3ywzWiDWfXVkTJOPOEKfgWqbEZ1oLb0W6h5QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGMhj8Lvv6/nhaDV9mU8ep/Upe7FMB8GA1UdIwQY
MBaAFPReeRQRMM7shXIV+bvdelW69Od/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUY1NUZCRXd6dXlGY2hYNXU5MTZWYnIwNTM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9lYzFiNTktOWUwYS00YWQzLTk3N2Ut
MzNiZDg0MzQ5NWY4LzEvWXlHUHd1LV9yLWVGb05YMlpUeDZuOVNsN3NVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9lYzFiNTktOWUwYS00YWQzLTk3N2UtMzNiZDg0MzQ5NWY4
LzEvOUY1NUZCRXd6dXlGY2hYNXU5MTZWYnIwNTM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCQM
MA0GCSqGSIb3DQEBCwUAA4IBAQAmpQxLjCFv88pcPSCpU6ML2CZkFftM/snyUcPJ
f5Wof7OiVrGQpMKJpLpW586vzFpdawZGeM2MkWKzkPxrgnrpn01yaUGk7j0GcOwy
aY1pC6GxKwevpQ77mG6g8NHagHl47uMJWy5xURRMdzaFXfxTj52/89I3dQckMkyQ
QXHwfYyUJeNDJ0i277gaPcgFCwFFhTVj1MX2x2Rb2Un0I1nyatp07PWFzrltqhyA
qM1tIykZw3EAqOTS4khQ5ZMgjUXcf2vVilEeZNo2YWfGNhx7AaRLysLEw4sJsktW
H1k/nx7sOZgW9OwMeW6ewRXbNeCChG0xLzpp9UliLPKkdc01
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net