Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/bbb1c6-9f91-4346-b616-c2dc7a058e30/1/yilBdRRmJ9mIX_a1TabLEV03EEk.roa
File: yilBdRRmJ9mIX_a1TabLEV03EEk.roa (raw, json)
Hash identifier: 4eslmC4MgTLkKxmkhr2W/5XHOeBZOMOpeHMJJDH3k34=
Subject key identifier: CA:29:41:75:14:66:27:D9:88:5F:F6:B5:4D:A6:CB:11:5D:37:10:49
Certificate issuer: /CN=061bb0916c853801f22ce723bc2cc418869db7d0
Certificate serial: 01941F8C109554939BD6EAF28E94787CE869
Authority key identifier: 06:1B:B0:91:6C:85:38:01:F2:2C:E7:23:BC:2C:C4:18:86:9D:B7:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BhuwkWyFOAHyLOcjvCzEGIadt9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/bbb1c6-9f91-4346-b616-c2dc7a058e30/1/yilBdRRmJ9mIX_a1TabLEV03EEk.roa
Signing time: Wed 01 Jan 2025 01:47:40 +0000
ROA not before: Wed 01 Jan 2025 01:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208242
IP address blocks: 2001:678:b04::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:10:95:54:93:9b:d6:ea:f2:8e:94:78:7c:e8:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061bb0916c853801f22ce723bc2cc418869db7d0
Validity
Not Before: Jan 1 01:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ca294175146627d9885ff6b54da6cb115d371049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b4:0c:f3:7d:2a:36:0c:e3:51:87:54:98:bc:
0b:fb:21:43:85:ac:fc:38:a4:eb:09:af:72:be:e4:
35:c8:b6:b6:d8:71:9c:d8:9c:51:cb:24:99:a9:7d:
d1:d4:c2:2b:26:ae:b1:c1:e0:36:f6:85:0c:c5:23:
ff:49:7b:bf:21:88:30:f7:5a:fb:f7:60:e6:4c:0e:
09:8b:0f:23:38:ab:d4:41:8f:bc:cc:5d:66:29:87:
68:91:ab:0e:ab:27:29:1e:4d:81:75:39:09:2b:04:
25:23:0d:22:d9:81:5d:7a:37:88:8f:ca:52:56:1b:
20:d9:6f:92:8d:ff:17:cc:62:f2:85:97:eb:5b:75:
f0:8c:d3:69:b4:f5:6f:83:4c:58:64:32:1a:21:73:
34:bf:ce:dc:20:a0:8b:33:be:f4:27:f0:93:23:03:
db:6c:80:c1:b7:3f:f1:1f:39:4f:56:a1:d1:11:4b:
07:71:b4:7b:ef:ed:59:8e:da:14:1b:0b:51:17:b8:
6b:d3:dd:7f:51:17:a7:32:6c:99:fc:7b:10:01:5a:
9b:db:11:5b:59:07:38:a7:cf:b9:50:5e:00:4b:23:
8c:bf:b3:5d:ec:61:a9:8c:60:aa:de:fe:da:62:ed:
d5:8a:bb:2a:7f:24:a9:40:17:b1:e3:98:a0:5b:cf:
5f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:29:41:75:14:66:27:D9:88:5F:F6:B5:4D:A6:CB:11:5D:37:10:49
X509v3 Authority Key Identifier:
keyid:06:1B:B0:91:6C:85:38:01:F2:2C:E7:23:BC:2C:C4:18:86:9D:B7:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BhuwkWyFOAHyLOcjvCzEGIadt9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/bbb1c6-9f91-4346-b616-c2dc7a058e30/1/yilBdRRmJ9mIX_a1TabLEV03EEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/bbb1c6-9f91-4346-b616-c2dc7a058e30/1/BhuwkWyFOAHyLOcjvCzEGIadt9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:b04::/48
Signature Algorithm: sha256WithRSAEncryption
0d:e8:f6:82:f0:12:d8:e7:8e:1b:cf:8c:a9:2e:47:df:a9:5e:
fa:0a:4e:7f:f3:b6:53:52:fc:a4:c7:67:96:ff:27:6a:90:7f:
cb:62:4e:75:7b:c0:5a:96:b4:db:a2:f7:75:aa:df:7a:43:03:
bb:69:5f:63:0f:b4:cd:7d:64:b2:9b:c6:c0:01:4a:17:bb:14:
be:1d:29:88:70:5e:89:ef:0a:b1:bd:89:d3:83:8c:6d:92:94:
cf:d9:da:13:b3:d9:4a:3d:c1:e1:a5:fb:8f:d3:37:8a:f2:41:
18:20:73:46:da:44:e4:92:3b:e8:c2:fb:e8:8f:bd:8c:73:d2:
fb:de:8c:9c:f3:91:22:20:5c:5b:57:81:e8:44:c5:45:47:7a:
1e:b0:21:d3:3c:5d:90:8f:03:19:99:b0:90:21:5b:fe:8f:af:
cc:4e:22:28:97:9a:ce:48:d4:b7:56:19:8b:de:62:49:6e:84:
b7:e3:39:e2:9d:18:0f:6e:3b:54:50:9f:a1:80:a7:33:8c:e6:
ee:71:af:b4:dc:4b:05:ae:d0:1d:58:1a:c5:a5:71:63:f4:19:
91:ed:71:3e:d6:36:c4:53:83:4e:f1:42:4a:bb:e2:b3:74:e5:
56:3c:8a:00:4f:03:be:e5:ad:4c:40:8b:54:7d:a6:ae:fb:95:
04:e6:9d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net