Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0f4abf-4d90-4969-85ad-40159b5313d1/1/YYewIfSW8YZG5GXlXoKgWIZJtMQ.roa
File: YYewIfSW8YZG5GXlXoKgWIZJtMQ.roa (raw, json)
Hash identifier: 8G6IxD39undLVTlM4ffqyy9Xs/BA/MV147QlLhbSDR4=
Subject key identifier: 61:87:B0:21:F4:96:F1:86:46:E4:65:E5:5E:82:A0:58:86:49:B4:C4
Certificate issuer: /CN=95406691f2e374ee37a640492a364dfc53ba4412
Certificate serial: 019422FAE65BB52FA5D6244DC13042D9DF64
Authority key identifier: 95:40:66:91:F2:E3:74:EE:37:A6:40:49:2A:36:4D:FC:53:BA:44:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUBmkfLjdO43pkBJKjZN_FO6RBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0f4abf-4d90-4969-85ad-40159b5313d1/1/YYewIfSW8YZG5GXlXoKgWIZJtMQ.roa
Signing time: Wed 01 Jan 2025 17:47:35 +0000
ROA not before: Wed 01 Jan 2025 17:47:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20712
IP address blocks: 2001:678:c40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fa:e6:5b:b5:2f:a5:d6:24:4d:c1:30:42:d9:df:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95406691f2e374ee37a640492a364dfc53ba4412
Validity
Not Before: Jan 1 17:47:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6187b021f496f18646e465e55e82a0588649b4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f2:66:b9:3d:80:d2:68:a6:ae:67:c2:bc:cb:
ef:dd:51:c6:c3:c1:38:40:4f:cd:a6:93:44:b6:fe:
d2:1f:ad:d8:93:4b:28:47:6c:fc:da:3b:97:a6:ca:
37:75:f7:5e:4f:5b:fc:8f:56:91:e1:d5:c3:f6:52:
a2:b1:56:ff:34:c9:da:74:0e:dd:c1:b2:8c:5c:d9:
b5:f8:61:84:a6:95:e8:c9:17:0c:27:82:19:5c:b8:
a4:f0:a8:f2:8d:eb:60:ac:c8:ee:6a:dc:63:5c:42:
be:32:4a:35:88:a1:87:3c:27:37:b3:17:b8:dd:a8:
ec:68:ff:45:9a:cd:5d:c8:af:5d:a9:02:b9:b3:c5:
36:64:af:38:eb:26:48:e9:69:53:ac:31:f1:e1:a9:
8a:d2:05:5e:84:dc:2a:1e:e8:b2:83:95:22:6b:f0:
cc:b8:d8:15:42:f0:f9:6a:a5:f1:91:9a:f6:f7:9b:
e7:0a:c7:90:89:d3:1a:a3:3e:01:99:17:00:87:6f:
73:cc:5c:63:ac:f7:aa:56:1a:c8:6e:45:0d:b1:a2:
2e:05:71:ff:9f:84:48:37:12:8b:69:78:c4:dd:0d:
16:dc:0b:d6:90:e1:9f:6e:2b:e5:bc:fe:ad:30:86:
5f:08:c9:ea:d8:79:aa:75:f6:be:41:50:01:ab:b4:
1b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:87:B0:21:F4:96:F1:86:46:E4:65:E5:5E:82:A0:58:86:49:B4:C4
X509v3 Authority Key Identifier:
keyid:95:40:66:91:F2:E3:74:EE:37:A6:40:49:2A:36:4D:FC:53:BA:44:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUBmkfLjdO43pkBJKjZN_FO6RBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0f4abf-4d90-4969-85ad-40159b5313d1/1/YYewIfSW8YZG5GXlXoKgWIZJtMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0f4abf-4d90-4969-85ad-40159b5313d1/1/lUBmkfLjdO43pkBJKjZN_FO6RBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c40::/48
Signature Algorithm: sha256WithRSAEncryption
c9:76:91:ed:3e:6f:f7:bb:b6:81:35:2c:51:93:3a:81:ea:87:
18:28:d6:b9:4a:48:44:0e:56:4f:e3:d0:44:e1:fa:4c:4e:27:
9c:26:f8:d3:e5:e5:fb:9f:ca:f2:df:1e:2a:59:64:83:17:bc:
6a:92:ab:9a:5c:1b:28:85:1f:10:83:e3:84:a0:93:e6:49:26:
86:6e:10:09:b7:6c:26:0c:59:49:16:a2:8c:ae:45:f5:2f:dc:
83:e9:a3:48:3a:80:d8:61:33:c5:c5:a8:9d:89:40:ab:dd:74:
cd:99:65:c8:a9:ce:93:73:3e:79:45:a1:ee:8b:64:7c:bf:da:
13:39:3b:65:26:cf:cf:6f:03:a9:95:27:5a:1e:94:86:13:1a:
2c:36:a9:cb:e4:31:8a:1c:cd:93:ae:3d:5b:c4:87:58:f0:94:
d8:7b:16:08:48:d1:29:e3:86:7a:b9:62:88:52:83:29:df:1e:
48:1e:99:f1:08:a1:51:b5:aa:3e:0b:e2:3a:49:ee:60:17:67:
e0:4d:47:0c:ca:c1:32:a6:c5:a0:28:49:cd:e2:d9:3e:11:0b:
a8:d9:2e:b3:15:63:58:c5:0f:14:ba:91:da:d2:ec:44:2a:66:
ab:fe:d8:12:d7:86:5c:7d:c1:36:31:13:1d:e0:bd:5c:8d:84:
22:47:ce:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:45:52 2025 by rpki-client