Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/be2236-c2ba-478a-abc3-b4cea51456b4/1/yvHmtz-vd__QGyK6PoEkr_n-Dok.roa
File: yvHmtz-vd__QGyK6PoEkr_n-Dok.roa (raw, json)
Hash identifier: K4rgADfkHdT22x5s6vfWG3HXGINmJUAubhmd+BDk2vo=
Subject key identifier: CA:F1:E6:B7:3F:AF:77:FF:D0:1B:22:BA:3E:81:24:AF:F9:FE:0E:89
Certificate issuer: /CN=dceb548762c7d4caccb616d819ce95cf627b2021
Certificate serial: 019424B3F6764BA846E736F20F7B2C489D88
Authority key identifier: DC:EB:54:87:62:C7:D4:CA:CC:B6:16:D8:19:CE:95:CF:62:7B:20:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OtUh2LH1MrMthbYGc6Vz2J7ICE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/be2236-c2ba-478a-abc3-b4cea51456b4/1/yvHmtz-vd__QGyK6PoEkr_n-Dok.roa
Signing time: Thu 02 Jan 2025 01:49:21 +0000
ROA not before: Thu 02 Jan 2025 01:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212011
IP address blocks: 91.206.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:f6:76:4b:a8:46:e7:36:f2:0f:7b:2c:48:9d:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dceb548762c7d4caccb616d819ce95cf627b2021
Validity
Not Before: Jan 2 01:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=caf1e6b73faf77ffd01b22ba3e8124aff9fe0e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:05:5f:fb:75:fb:5c:7b:31:02:8a:44:8e:f1:
fe:e6:74:81:45:18:b3:37:fe:46:a3:14:ac:0b:50:
fc:61:49:de:43:9f:40:15:8b:a2:f5:1f:95:ac:c9:
3e:99:8c:d8:d1:c0:57:33:fd:4a:d6:a6:9e:8a:c7:
e7:11:45:d2:1c:d4:2c:b6:2d:a1:d9:7f:7b:90:ce:
03:d1:8f:4f:37:35:b2:56:4d:aa:df:21:20:4c:b8:
fd:85:11:6c:25:8e:41:85:2b:c6:07:c8:d1:b9:82:
1e:ab:75:97:44:c0:e6:d0:3b:c1:40:8f:f5:e7:7c:
79:3d:62:e9:57:0c:65:0f:8b:a9:81:7d:25:4e:b1:
eb:f4:d7:72:c5:20:de:a4:65:2f:bb:61:20:e2:94:
4c:37:43:1c:f4:53:1c:2d:97:42:b7:c7:85:a2:ac:
a4:2b:e1:97:b6:ad:b0:11:72:3c:fb:1f:20:d4:18:
b7:bd:db:d8:16:a9:ea:9c:f6:40:33:87:dc:8b:3a:
d7:a4:1e:94:51:a3:4f:9e:db:e0:70:db:da:d4:7c:
e5:03:c4:93:63:a5:de:d3:d3:bd:7a:14:85:fa:a7:
47:f2:3b:2f:93:3a:f8:27:6b:57:89:ff:f4:10:37:
52:43:d4:fb:21:82:06:27:2c:33:ad:49:f0:43:c6:
65:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F1:E6:B7:3F:AF:77:FF:D0:1B:22:BA:3E:81:24:AF:F9:FE:0E:89
X509v3 Authority Key Identifier:
keyid:DC:EB:54:87:62:C7:D4:CA:CC:B6:16:D8:19:CE:95:CF:62:7B:20:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OtUh2LH1MrMthbYGc6Vz2J7ICE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/be2236-c2ba-478a-abc3-b4cea51456b4/1/yvHmtz-vd__QGyK6PoEkr_n-Dok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/be2236-c2ba-478a-abc3-b4cea51456b4/1/3OtUh2LH1MrMthbYGc6Vz2J7ICE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.70.0/24
Signature Algorithm: sha256WithRSAEncryption
04:b9:1f:df:b3:0b:39:b8:8f:d9:02:e0:a0:d2:f9:fc:ee:9a:
a7:18:91:32:da:6a:a6:ba:8c:e8:a2:7d:87:70:ff:43:9b:ed:
19:fc:a5:00:ee:67:21:f1:b4:87:ec:34:54:69:b9:31:91:8a:
d8:71:06:64:8e:3c:13:e2:14:18:d4:25:65:64:57:61:92:eb:
97:e4:1d:fa:df:4b:7e:29:14:4e:ad:fe:12:54:5d:50:5a:8f:
8c:7b:39:24:5b:1f:2b:75:b3:f6:c5:27:34:fc:cc:83:08:3f:
67:9c:75:f2:6e:b0:d4:93:b6:af:26:7a:ef:7b:b6:28:56:56:
82:c0:08:e5:23:4c:f6:ef:3a:04:63:f2:79:f3:77:4b:1e:c3:
3a:e4:7a:46:4a:6b:7e:0c:e0:2f:e5:44:be:cb:38:35:36:84:
84:82:f7:44:7f:af:db:e4:9e:98:32:7e:83:ac:2d:81:ee:21:
c1:be:9f:7e:52:61:ab:a3:52:cc:ec:94:34:9d:a9:ef:41:a0:
68:69:7d:71:67:0a:e0:d4:87:cf:81:af:36:af:b9:56:95:17:
4e:3d:60:81:12:e8:1b:ae:74:80:ec:67:dd:d0:7a:79:98:f7:
20:b7:6a:e1:59:2a:aa:5e:bd:12:03:8c:34:61:18:a6:f7:70:
87:21:95:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net