Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/e58e27-cafd-417c-95d0-870544caafab/1/yxSHMNq1K4qzrK8RBcry_vpRL0Y.roa
File: yxSHMNq1K4qzrK8RBcry_vpRL0Y.roa (raw, json)
Hash identifier: ES8XPk3Ggq1Zs2KaMQwv/Lx7ybdkBhCiefUow9lLBOk=
Subject key identifier: CB:14:87:30:DA:B5:2B:8A:B3:AC:AF:11:05:CA:F2:FE:FA:51:2F:46
Certificate issuer: /CN=614e19a2275816a28e5e80c8f9a28cc5a1d9c0d5
Certificate serial: 019423D7F2D72DF5B14495F45634ECB83EBE
Authority key identifier: 61:4E:19:A2:27:58:16:A2:8E:5E:80:C8:F9:A2:8C:C5:A1:D9:C0:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YU4ZoidYFqKOXoDI-aKMxaHZwNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/e58e27-cafd-417c-95d0-870544caafab/1/yxSHMNq1K4qzrK8RBcry_vpRL0Y.roa
Signing time: Wed 01 Jan 2025 21:49:02 +0000
ROA not before: Wed 01 Jan 2025 21:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200551
IP address blocks: 77.73.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:f2:d7:2d:f5:b1:44:95:f4:56:34:ec:b8:3e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614e19a2275816a28e5e80c8f9a28cc5a1d9c0d5
Validity
Not Before: Jan 1 21:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb148730dab52b8ab3acaf1105caf2fefa512f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cb:89:8d:9d:02:19:3c:17:c6:e3:c5:9b:6e:
50:d7:fd:eb:c1:6b:ce:36:3c:66:70:4d:ae:38:64:
3a:29:fd:a1:98:6c:a9:c0:25:3b:2b:4f:e8:69:d8:
45:f0:d0:9c:82:ad:e9:90:da:8c:50:40:e8:b1:96:
bb:cf:59:47:48:db:e2:20:a2:81:df:42:7f:27:eb:
e1:d6:77:f0:fb:b1:31:41:8c:99:f3:d5:3f:f8:f7:
68:ab:82:f3:90:90:9c:01:7b:19:75:05:ed:9a:bb:
29:49:a6:72:2f:e0:5a:d1:05:e3:79:b6:18:e6:5e:
4a:05:04:ad:27:82:85:fb:c3:d0:fd:85:fd:86:e4:
41:5d:a4:8c:5d:16:69:03:ac:44:9c:b3:ad:16:89:
d4:7e:5f:f5:55:6f:3b:20:11:5d:b2:30:b1:a7:6f:
26:d8:65:6a:64:e3:8f:28:b7:c8:fd:a6:04:e1:33:
11:3d:7c:a9:fb:f4:e8:02:97:d2:51:41:02:29:02:
40:80:e9:6a:45:16:77:18:a9:bc:81:1d:83:5e:6b:
a6:65:47:a4:08:54:93:8b:82:6a:ae:99:8b:04:b0:
01:47:e3:c1:75:ce:f3:43:ed:2b:cb:e7:aa:5e:03:
34:7e:72:b2:3d:f6:91:03:b8:6c:88:87:52:ae:0a:
53:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:14:87:30:DA:B5:2B:8A:B3:AC:AF:11:05:CA:F2:FE:FA:51:2F:46
X509v3 Authority Key Identifier:
keyid:61:4E:19:A2:27:58:16:A2:8E:5E:80:C8:F9:A2:8C:C5:A1:D9:C0:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YU4ZoidYFqKOXoDI-aKMxaHZwNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/e58e27-cafd-417c-95d0-870544caafab/1/yxSHMNq1K4qzrK8RBcry_vpRL0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/e58e27-cafd-417c-95d0-870544caafab/1/YU4ZoidYFqKOXoDI-aKMxaHZwNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.95.0/24
Signature Algorithm: sha256WithRSAEncryption
27:bc:b4:08:5f:39:35:a3:6c:93:d4:a4:99:14:42:48:ae:68:
9b:93:a1:ce:d2:7a:85:66:80:98:06:98:fd:a8:b7:a6:f0:58:
c1:97:de:a0:c7:83:3e:56:38:44:4d:c8:5f:7a:2b:c3:64:ac:
28:d8:bc:8d:9a:7a:f2:9d:dc:b7:67:ef:c3:d1:d8:41:07:92:
49:8d:ca:4a:81:01:40:90:58:78:8f:ae:07:2a:f6:aa:ab:1e:
21:7b:23:86:2e:20:4a:04:09:31:51:37:03:08:2e:76:f1:c3:
cd:86:11:0f:bd:9d:fe:e2:21:00:c0:79:5c:d2:8d:80:a5:cf:
07:56:f7:41:d2:d6:77:cb:da:1a:6c:d1:b6:52:0a:9f:72:c3:
db:74:19:59:bb:47:ec:5b:a1:d8:2d:59:ac:82:bd:08:f2:e3:
d8:83:5a:e3:c5:88:07:5c:93:bd:42:dc:99:25:fa:c3:57:29:
33:7d:6f:b1:6b:ea:4c:7a:19:1b:0a:f9:3d:92:e8:51:04:90:
d7:0b:76:2a:06:0d:0b:74:2a:69:60:44:ed:84:82:25:c6:8e:
aa:83:d6:f6:5e:40:55:26:63:89:00:95:c3:70:91:62:f7:d1:
4c:d4:e6:64:c4:51:df:c3:f8:6c:97:4f:29:aa:9e:d6:af:59:
fe:1f:e9:74
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj1/LXLfWxRJX0VjTsuD6+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxNGUxOWEyMjc1ODE2YTI4ZTVlODBjOGY5YTI4Y2M1YTFk
OWMwZDUwHhcNMjUwMTAxMjE0OTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjE0ODczMGRhYjUyYjhhYjNhY2FmMTEwNWNhZjJmZWZhNTEyZjQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsuJjZ0CGTwXxuPFm25Q1/3rwWvO
NjxmcE2uOGQ6Kf2hmGypwCU7K0/oadhF8NCcgq3pkNqMUEDosZa7z1lHSNviIKKB
30J/J+vh1nfw+7ExQYyZ89U/+Pdoq4LzkJCcAXsZdQXtmrspSaZyL+Ba0QXjebYY
5l5KBQStJ4KF+8PQ/YX9huRBXaSMXRZpA6xEnLOtFonUfl/1VW87IBFdsjCxp28m
2GVqZOOPKLfI/aYE4TMRPXyp+/ToApfSUUECKQJAgOlqRRZ3GKm8gR2DXmumZUek
CFSTi4JqrpmLBLABR+PBdc7zQ+0ry+eqXgM0fnKyPfaRA7hsiIdSrgpTvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMsUhzDatSuKs6yvEQXK8v76US9GMB8GA1UdIwQY
MBaAFGFOGaInWBaijl6AyPmijMWh2cDVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVU0Wm9pZFlGcUtPWG9ESS1hS014YUhad05VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9lNThlMjctY2FmZC00MTdjLTk1ZDAt
ODcwNTQ0Y2FhZmFiLzEveXhTSE1OcTFLNHF6cks4UkJjcnlfdnBSTDBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9lNThlMjctY2FmZC00MTdjLTk1ZDAtODcwNTQ0Y2FhZmFi
LzEvWVU0Wm9pZFlGcUtPWG9ESS1hS014YUhad05VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUlfMA0G
CSqGSIb3DQEBCwUAA4IBAQAnvLQIXzk1o2yT1KSZFEJIrmibk6HO0nqFZoCYBpj9
qLem8FjBl96gx4M+VjhETchfeivDZKwo2LyNmnryndy3Z+/D0dhBB5JJjcpKgQFA
kFh4j64HKvaqqx4heyOGLiBKBAkxUTcDCC528cPNhhEPvZ3+4iEAwHlc0o2Apc8H
VvdB0tZ3y9oabNG2UgqfcsPbdBlZu0fsW6HYLVmsgr0I8uPYg1rjxYgHXJO9QtyZ
JfrDVykzfW+xa+pMehkbCvk9kuhRBJDXC3YqBg0LdCppYETthIIlxo6qg9b2XkBV
JmOJAJXDcJFi99FM1OZkxFHfw/hsl08pqp7Wr1n+H+l0
-----END CERTIFICATE-----
Generated at Fri Apr 25 13:33:10 2025 by rpki-client