Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/yy37HnfCaW61gwGyu1dsgubo12s.roa
File: yy37HnfCaW61gwGyu1dsgubo12s.roa (raw, json)
Hash identifier: iEoXay/v6I8F/MG3qHjPe1FvicHR4Thx5PSijnoSoog=
Subject key identifier: CB:2D:FB:1E:77:C2:69:6E:B5:83:01:B2:BB:57:6C:82:E6:E8:D7:6B
Certificate issuer: /CN=429196310a7f7dd9999ec43e938fd906985a3f87
Certificate serial: 019422FC00ADEF5AA800BD7ECC82E138CD52
Authority key identifier: 42:91:96:31:0A:7F:7D:D9:99:9E:C4:3E:93:8F:D9:06:98:5A:3F:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/yy37HnfCaW61gwGyu1dsgubo12s.roa
Signing time: Wed 01 Jan 2025 17:48:48 +0000
ROA not before: Wed 01 Jan 2025 17:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16171
IP address blocks: 185.144.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:00:ad:ef:5a:a8:00:bd:7e:cc:82:e1:38:cd:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429196310a7f7dd9999ec43e938fd906985a3f87
Validity
Not Before: Jan 1 17:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb2dfb1e77c2696eb58301b2bb576c82e6e8d76b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:be:6b:30:5c:d0:28:6a:a7:a4:de:ac:ff:bf:
ea:e4:5d:b2:e2:69:d8:b8:83:09:5b:a1:ca:10:ef:
fd:be:7a:46:ab:b3:fc:b3:d6:55:4f:41:4a:cf:13:
75:1f:ff:86:06:98:1d:d3:16:60:60:7d:c1:ea:d4:
ac:b5:c1:82:21:d5:e9:b3:4d:5b:a9:98:8f:eb:cd:
77:7e:4c:18:bc:ee:5c:16:c6:41:5d:97:4a:70:5a:
be:e0:a8:8d:8c:83:0a:8b:c5:8a:05:c5:ea:7d:a3:
cc:0c:b1:01:8f:af:d9:07:18:eb:33:96:52:e3:d5:
ec:2f:9b:e1:ab:ab:22:35:4e:e9:62:f7:50:b1:b7:
84:cf:e1:e9:05:4a:c1:b6:eb:e3:d7:7d:87:3e:21:
40:35:12:bd:1d:f6:5b:ce:3c:5b:a6:fa:a7:ec:64:
99:67:a1:14:67:07:c7:45:f4:fd:22:0d:69:0a:89:
d0:ef:39:cb:a6:d8:ae:38:c6:56:39:4d:a2:c7:57:
3c:73:b5:9a:fb:73:4d:13:89:81:a6:0f:d5:8c:70:
86:b3:4e:e8:a9:ac:7d:87:78:80:83:dd:04:7f:a9:
c3:fd:9f:8f:aa:d5:1b:ac:9d:fd:2c:7d:67:79:3a:
25:3a:02:ef:66:34:ee:bc:b8:af:9c:a8:49:06:02:
da:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2D:FB:1E:77:C2:69:6E:B5:83:01:B2:BB:57:6C:82:E6:E8:D7:6B
X509v3 Authority Key Identifier:
keyid:42:91:96:31:0A:7F:7D:D9:99:9E:C4:3E:93:8F:D9:06:98:5A:3F:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/yy37HnfCaW61gwGyu1dsgubo12s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.124.0/22
Signature Algorithm: sha256WithRSAEncryption
42:71:b5:a6:9d:3c:75:34:cd:6b:b7:e1:b6:32:f2:52:85:28:
70:34:9c:09:78:7e:f9:3f:fa:a0:d4:0d:62:ba:be:f1:1b:89:
95:12:a0:29:29:82:f4:a1:90:6f:fc:5f:e6:3e:ac:e6:f8:e6:
c9:68:dc:22:74:a4:b8:53:6b:1d:fb:8d:df:4b:64:d1:f5:de:
ca:0e:4d:c9:f3:21:64:c3:b8:71:f7:92:43:8a:e1:00:88:37:
f7:fc:20:bf:86:b3:de:40:16:63:24:52:7a:49:05:20:e7:cc:
fb:22:26:6d:21:15:f0:83:0e:22:73:e0:d0:5e:cc:01:5c:d1:
c3:6b:26:50:88:13:1d:7d:29:61:e2:9c:c1:fb:61:6a:8a:32:
a0:aa:0e:a5:b8:e7:e0:a8:be:80:d0:d8:4f:34:0c:05:77:c3:
79:e9:c3:e1:ff:ac:ee:7f:6a:51:19:76:a2:77:ea:4a:fa:60:
b9:66:43:86:99:ee:90:57:ed:1a:bc:2b:99:d3:a2:10:eb:1a:
7c:5d:96:2d:d6:1d:38:f2:5c:db:d2:02:8d:e0:e6:6e:88:a4:
dd:0d:a6:46:60:5b:10:e9:24:1b:be:79:c6:c8:bc:fc:e6:3b:
0c:cb:83:da:6c:c0:28:6e:b3:0c:0a:33:23:8d:e4:e9:60:4f:
fa:fd:94:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:47 2025 by rpki-client on console.sobornost.net