Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/YT1slM2SGPPH9JsWIYse3U4LKHU.roa
File: YT1slM2SGPPH9JsWIYse3U4LKHU.roa (raw, json)
Hash identifier: l5uKJCM5o50xoYPBcZFDDBS69omRZrN+aSDtyLXzXaI=
Subject key identifier: 61:3D:6C:94:CD:92:18:F3:C7:F4:9B:16:21:8B:1E:DD:4E:0B:28:75
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019422201B48B78BA6D83A102438398660F7
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/YT1slM2SGPPH9JsWIYse3U4LKHU.roa
Signing time: Wed 01 Jan 2025 13:48:36 +0000
ROA not before: Wed 01 Jan 2025 13:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214915
IP address blocks: 77.90.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:1b:48:b7:8b:a6:d8:3a:10:24:38:39:86:60:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=613d6c94cd9218f3c7f49b16218b1edd4e0b2875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2c:81:af:aa:1d:38:3b:37:7d:57:93:e0:1c:
af:68:b6:a5:e1:34:2d:e1:6c:c5:e8:b0:55:ba:b8:
f1:de:17:16:27:08:3e:6d:cd:9e:b1:4d:5e:ac:aa:
d0:b0:9c:f8:71:a7:6a:30:64:2c:2d:c8:1d:70:c9:
94:38:c0:96:ef:72:89:40:73:e7:3d:38:03:02:87:
13:47:51:9e:f0:23:c5:ab:2e:ad:d1:3f:f4:01:09:
76:b1:ae:35:0a:49:65:ec:61:51:68:85:cd:ca:0b:
6a:6b:b9:05:b7:d0:b4:d5:39:7b:0a:42:1c:6f:f7:
30:48:bb:be:fd:3e:af:ae:12:dc:8f:a5:5f:1f:0f:
43:bb:35:de:94:a9:3d:01:33:ce:71:06:07:61:32:
7d:0b:ea:75:ab:fd:8a:7d:7c:0e:1b:93:9c:25:e9:
70:a5:1b:04:71:a6:54:e7:45:bb:df:48:e3:4e:82:
6c:27:41:fb:1c:7a:bf:5d:cb:37:3e:7a:30:ef:73:
ed:a5:7b:83:b4:bf:ff:13:8b:58:de:b2:f5:e5:25:
38:99:57:e1:7d:a9:51:c7:51:b6:9c:46:17:d8:7b:
94:9d:58:8a:6b:97:a2:3e:45:e0:28:d7:f4:05:9f:
d6:32:c5:c8:bc:5c:80:47:25:d5:7b:ec:50:33:15:
08:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:3D:6C:94:CD:92:18:F3:C7:F4:9B:16:21:8B:1E:DD:4E:0B:28:75
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/YT1slM2SGPPH9JsWIYse3U4LKHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.16.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:5d:75:1d:c4:32:35:78:b4:ac:cb:7f:aa:18:b7:a0:82:42:
67:29:65:d2:23:61:a6:35:23:06:ac:2d:a2:72:0d:30:3a:51:
20:1e:16:ec:39:01:b2:e6:d5:9f:11:77:1f:13:f6:d3:ff:d2:
5e:6b:72:87:45:c7:f6:7a:6e:58:75:0d:85:8b:20:86:25:b1:
e0:6b:46:02:ed:6e:d2:5c:0d:ef:54:c2:e9:36:c3:46:77:9b:
e1:81:ba:41:22:0b:fb:0d:15:6c:32:9e:4d:00:a0:3d:a0:f4:
bf:38:82:58:d9:2d:1c:8d:2b:d2:f1:a6:b5:e5:01:4d:6d:2b:
21:a5:69:b8:2c:4f:20:2e:0e:0f:9a:32:06:25:6b:08:01:98:
34:bf:de:1b:9d:a7:f7:ce:7d:85:f0:3c:90:09:8e:33:bc:52:
f0:66:e2:b9:dc:7d:56:39:b4:6a:34:6e:49:9a:12:a3:f7:6b:
bc:20:4b:c8:02:ba:30:85:5a:9b:a1:22:40:9e:23:da:0a:0e:
1f:31:12:ff:d0:8d:1f:2d:fe:65:e2:82:c7:be:07:80:b8:fd:
fb:7b:4b:9b:b3:de:1f:86:18:e3:c2:4e:2a:18:77:82:09:d3:
e9:3b:41:b9:8d:2e:df:ec:fa:74:8a:c8:2f:f9:d3:c9:ec:eb:
be:15:8d:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiIBtIt4um2DoQJDg5hmD3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTAxMTM0ODM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTNkNmM5NGNkOTIxOGYzYzdmNDliMTYyMThiMWVkZDRlMGIyODc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCyBr6odODs3fVeT4ByvaLal4TQt
4WzF6LBVurjx3hcWJwg+bc2esU1erKrQsJz4cadqMGQsLcgdcMmUOMCW73KJQHPn
PTgDAocTR1Ge8CPFqy6t0T/0AQl2sa41Ckll7GFRaIXNygtqa7kFt9C01Tl7CkIc
b/cwSLu+/T6vrhLcj6VfHw9DuzXelKk9ATPOcQYHYTJ9C+p1q/2KfXwOG5OcJelw
pRsEcaZU50W730jjToJsJ0H7HHq/Xcs3Pnow73PtpXuDtL//E4tY3rL15SU4mVfh
falRx1G2nEYX2HuUnViKa5eiPkXgKNf0BZ/WMsXIvFyARyXVe+xQMxUInwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGE9bJTNkhjzx/SbFiGLHt1OCyh1MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvWVQxc2xNMlNHUFBIOUpzV0lZc2UzVTRMS0hVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVoQMA0G
CSqGSIb3DQEBCwUAA4IBAQAPXXUdxDI1eLSsy3+qGLeggkJnKWXSI2GmNSMGrC2i
cg0wOlEgHhbsOQGy5tWfEXcfE/bT/9Jea3KHRcf2em5YdQ2FiyCGJbHga0YC7W7S
XA3vVMLpNsNGd5vhgbpBIgv7DRVsMp5NAKA9oPS/OIJY2S0cjSvS8aa15QFNbSsh
pWm4LE8gLg4PmjIGJWsIAZg0v94bnaf3zn2F8DyQCY4zvFLwZuK53H1WObRqNG5J
mhKj92u8IEvIArowhVqboSJAniPaCg4fMRL/0I0fLf5l4oLHvgeAuP37e0ubs94f
hhjjwk4qGHeCCdPpO0G5jS7f7Pp0isgv+dPJ7Ou+FY2H
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:02:34 2025 by rpki-client