Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/YEPAMc2C5n1HYq7y7Fm47fB-KeU.roa
File: YEPAMc2C5n1HYq7y7Fm47fB-KeU.roa (raw, json)
Hash identifier: 6b6+vRmLvazXoWjO3TGksOrw8a8+P1HF9PELH/IbSYI=
Subject key identifier: 60:43:C0:31:CD:82:E6:7D:47:62:AE:F2:EC:59:B8:ED:F0:7E:29:E5
Certificate issuer: /CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Certificate serial: 0193ACDE7ECE52950A7B1A0B9C43072FDFDB
Authority key identifier: 2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/YEPAMc2C5n1HYq7y7Fm47fB-KeU.roa
Signing time: Mon 09 Dec 2024 19:21:22 +0000
ROA not before: Mon 09 Dec 2024 19:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213861
IP address blocks: 2a12:9503::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ac:de:7e:ce:52:95:0a:7b:1a:0b:9c:43:07:2f:df:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Validity
Not Before: Dec 9 19:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6043c031cd82e67d4762aef2ec59b8edf07e29e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e2:79:2f:c3:43:d8:46:ef:ee:91:28:ae:05:
84:91:dc:2f:e0:60:6b:36:43:e0:96:0a:bf:de:58:
66:29:66:5f:b9:01:d0:ad:ef:d2:10:56:4b:fc:e6:
49:05:03:59:72:bb:6a:50:78:83:69:71:30:44:71:
f3:0f:f5:cb:ae:ed:8f:39:85:c2:a5:aa:6b:13:c5:
ea:3b:31:11:fd:8b:51:77:41:e5:ff:00:67:34:ce:
65:43:23:f4:13:4e:16:7b:5a:ea:49:95:89:42:1a:
e2:7d:d3:43:51:2d:c1:46:ca:fd:20:38:15:d3:27:
57:92:61:ae:51:a2:c7:7f:50:bb:5f:2a:02:1c:31:
63:8d:38:01:56:f3:25:48:82:2e:ff:c9:83:61:7b:
fa:94:4b:f4:82:6d:64:c6:8e:4a:58:43:aa:08:bb:
d1:e4:6b:ed:52:37:24:25:8f:ee:c2:22:90:ed:17:
b9:58:5a:7a:28:92:67:82:c4:5d:39:d6:84:2f:bc:
51:ad:c2:f8:d3:01:dc:db:b2:27:93:dc:8a:29:cc:
49:c2:f9:87:b9:88:c3:3a:44:fb:f4:7b:c2:a2:e0:
76:b4:2e:e6:27:9a:36:9a:c6:2c:fa:ad:e6:cc:6b:
a8:4a:b4:17:18:79:af:a1:d3:47:60:08:79:c4:57:
0a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:43:C0:31:CD:82:E6:7D:47:62:AE:F2:EC:59:B8:ED:F0:7E:29:E5
X509v3 Authority Key Identifier:
keyid:2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/YEPAMc2C5n1HYq7y7Fm47fB-KeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/L1yrigmp_eI8ljX44WSu8J4XlIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:9503::/32
Signature Algorithm: sha256WithRSAEncryption
b3:b0:bd:7e:1e:18:ba:3c:39:86:e9:dc:45:93:c3:62:79:33:
c6:a8:4e:8d:d1:9b:32:49:71:87:17:4d:2b:b2:bb:f3:00:28:
55:36:e5:01:6b:d9:d9:f6:85:99:51:85:49:80:37:b2:c1:cf:
3c:c2:f1:b7:eb:da:7a:53:3e:45:1c:8a:27:8d:cc:8f:52:dd:
a2:89:56:2e:e8:20:c2:39:d0:17:b9:80:32:13:ca:cd:ad:7c:
94:9c:a7:30:35:ea:5c:b8:91:83:a5:66:91:c0:08:95:eb:15:
af:c4:e0:33:a2:2b:2d:c0:8b:c0:be:af:6a:eb:ba:c1:a7:96:
cb:21:39:f2:93:42:b4:90:4d:e8:1d:88:e1:b8:16:d9:0d:82:
83:f7:3b:01:9b:76:20:81:57:9a:13:2f:22:ad:6a:22:bd:c7:
55:35:ea:c3:46:bb:5a:61:5a:25:a4:15:4b:2e:b4:0a:e4:04:
ac:73:c9:fa:3b:b4:9a:2c:0e:a0:5b:6d:e6:b2:a1:51:e2:9b:
76:f4:b1:14:db:01:a7:93:64:62:22:12:ea:fa:f9:b8:ef:98:
c8:7a:df:ba:b0:01:9d:1a:94:8e:ba:b3:f7:ce:d5:60:d5:10:
51:ee:a9:77:09:ff:f1:da:f9:c6:7a:f1:67:e4:e2:56:0d:cf:
12:28:d9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:19:03 2025 by rpki-client