Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/ygDMNPZB6ioJh9v1SV5ZJ0aINDg.roa
File: ygDMNPZB6ioJh9v1SV5ZJ0aINDg.roa (raw, json)
Hash identifier: 0bPn18ewCwFlle0D4D1zaFp/YvFhdd8pfg8oWQqwtM4=
Subject key identifier: CA:00:CC:34:F6:41:EA:2A:09:87:DB:F5:49:5E:59:27:46:88:34:38
Certificate issuer: /CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Certificate serial: 019423D72665737B284DE0B33068DCDC4FDD
Authority key identifier: E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/ygDMNPZB6ioJh9v1SV5ZJ0aINDg.roa
Signing time: Wed 01 Jan 2025 21:48:10 +0000
ROA not before: Wed 01 Jan 2025 21:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34953
IP address blocks: 185.64.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:26:65:73:7b:28:4d:e0:b3:30:68:dc:dc:4f:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Validity
Not Before: Jan 1 21:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ca00cc34f641ea2a0987dbf5495e592746883438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9b:e0:20:70:39:41:b5:60:50:57:e3:c9:f9:
3e:bc:75:79:4a:4c:22:d1:c0:ca:7f:ee:cf:94:29:
4f:39:1b:67:d2:fd:7c:fe:67:ee:18:67:4f:8e:7c:
a5:00:44:76:71:a3:0c:be:48:b2:61:02:ea:7b:a5:
5a:1b:45:67:e2:89:44:2a:7c:cd:48:e5:84:2e:bc:
47:3f:49:5a:65:0d:b9:85:4a:e1:37:14:58:d2:5f:
d5:37:98:9f:cd:82:f8:cb:ac:11:29:a8:65:55:02:
dc:e6:22:3c:0b:1d:35:a1:dd:66:85:b8:a1:dd:94:
61:2e:51:09:ac:3e:73:89:96:10:c1:3b:40:d6:f6:
4b:d0:26:1b:17:ca:e3:b5:6f:5d:c5:19:b0:7d:e0:
17:ac:93:68:a2:08:ec:f8:7e:1a:0a:48:d9:0c:45:
18:d5:d7:20:1c:05:4b:b8:56:54:21:46:ff:0b:14:
34:9a:9e:30:da:4e:61:8c:e6:26:7f:52:e7:66:1c:
bf:8e:71:8e:fb:8b:58:21:a9:9d:2d:92:e8:31:f0:
6a:ba:03:2e:a6:fe:56:cc:75:a3:39:ce:6b:41:49:
28:97:f3:99:a7:21:2b:74:35:ae:4f:41:c9:ed:bf:
06:8c:42:25:f5:84:14:a1:05:10:ce:8c:02:58:cc:
47:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:00:CC:34:F6:41:EA:2A:09:87:DB:F5:49:5E:59:27:46:88:34:38
X509v3 Authority Key Identifier:
keyid:E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/ygDMNPZB6ioJh9v1SV5ZJ0aINDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/59nPsHjtpYFvyAnpjCXLcZY-dbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.96.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:cd:a4:8f:65:6d:b6:32:3b:1d:32:40:df:6f:0a:87:6a:67:
11:6b:c2:9c:9b:54:c2:c3:fd:26:04:56:bc:72:6d:ef:d2:6c:
12:0b:9d:59:49:bb:fc:d5:1d:95:8a:90:88:3c:1d:f6:82:e1:
8e:3f:89:03:80:4f:48:19:8b:01:13:f7:e3:42:97:6c:56:b5:
e2:22:7c:3a:26:92:23:8d:1b:74:c1:96:82:ab:4a:b9:cc:b7:
c9:00:82:35:a1:ab:3d:2f:10:c8:91:53:13:ca:4e:5b:ee:c4:
6e:10:41:ca:86:60:87:24:a4:83:56:69:f5:f1:40:1b:c2:47:
19:b1:87:5b:db:65:7c:65:bd:4d:40:b1:b3:85:97:df:ad:b5:
b1:dd:71:c6:e6:85:11:1e:c1:8d:95:d4:75:5e:cd:d8:10:e9:
fe:af:06:23:66:1a:e4:fe:59:6c:0d:0c:6a:3d:1e:b7:31:2f:
c7:6f:d2:ce:6d:e9:77:ae:de:ac:44:1d:a7:70:69:0c:5e:90:
de:95:29:c2:98:e7:44:ac:2a:de:17:19:59:67:98:d0:a6:8c:
09:fb:e6:ea:5c:b2:93:ee:74:3c:cb:b4:e2:96:a3:85:e9:db:
ae:c0:be:ce:dc:44:8c:5f:35:ed:d2:c5:21:66:03:20:03:de:
8d:fc:33:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:49 2025 by rpki-client on console.sobornost.net