Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/yGpfiqzDKZTq05o5iU1_cuGEXPo.roa
File: yGpfiqzDKZTq05o5iU1_cuGEXPo.roa (raw, json)
Hash identifier: pKaY13eaKRL1mfEWrWBH3DNMaWh/QsmEBxm+vvl4ktA=
Subject key identifier: C8:6A:5F:8A:AC:C3:29:94:EA:D3:9A:39:89:4D:7F:72:E1:84:5C:FA
Certificate issuer: /CN=7f203c1419ec6a21e66127203f51c1fa74dc044f
Certificate serial: 0B4EA004
Authority key identifier: 7F:20:3C:14:19:EC:6A:21:E6:61:27:20:3F:51:C1:FA:74:DC:04:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyA8FBnsaiHmYScgP1HB-nTcBE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/yGpfiqzDKZTq05o5iU1_cuGEXPo.roa
Signing time: Thu 12 May 2022 05:12:01 +0000
ROA not before: Thu 12 May 2022 05:12:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 185.126.158.0/23 maxlen: 24
185.126.156.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189702148 (0xb4ea004)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f203c1419ec6a21e66127203f51c1fa74dc044f
Validity
Not Before: May 12 05:12:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c86a5f8aacc32994ead39a39894d7f72e1845cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6e:f8:1a:b7:cc:45:59:1e:f0:c6:c1:6b:2f:
1d:be:68:7e:9d:38:6d:c6:58:5f:81:33:87:72:3a:
15:f7:6c:52:8b:1b:ef:1d:dc:ce:fb:74:82:c9:35:
29:6a:08:ef:45:bc:71:ab:a4:84:91:79:70:f5:1a:
ff:d2:b9:7c:67:0c:44:02:d2:a1:94:62:7e:9f:2f:
5a:1b:79:b5:49:ce:08:e2:70:61:5d:cf:02:b7:e4:
e0:03:0b:11:62:cb:34:36:a6:22:59:25:bd:a4:1a:
de:60:29:87:77:18:62:00:e3:a2:1a:f9:01:41:6a:
fd:f4:24:e8:de:3e:27:3b:50:08:70:35:f3:fb:cb:
dd:9c:e9:ff:bf:2c:af:a2:82:16:e9:b3:f9:ca:b8:
8b:ad:5d:bf:62:2f:38:e2:5d:93:4c:75:72:8e:03:
96:43:62:4e:71:2f:11:d9:0a:39:d4:59:84:25:af:
d5:87:1c:af:fe:a5:c1:19:3e:cb:ad:ec:73:06:48:
ea:c8:17:4b:e0:db:bb:c3:c5:1c:95:65:fb:96:8a:
99:78:a4:8c:56:3a:f3:de:cd:de:19:9e:81:d7:36:
66:4f:73:55:9b:a1:08:27:c0:ef:6c:c8:96:dd:2e:
55:41:5a:f0:8b:e5:26:83:37:fb:13:50:6f:c4:1d:
3e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6A:5F:8A:AC:C3:29:94:EA:D3:9A:39:89:4D:7F:72:E1:84:5C:FA
X509v3 Authority Key Identifier:
keyid:7F:20:3C:14:19:EC:6A:21:E6:61:27:20:3F:51:C1:FA:74:DC:04:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyA8FBnsaiHmYScgP1HB-nTcBE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/yGpfiqzDKZTq05o5iU1_cuGEXPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c90469-e638-4a57-92ce-534e73cc3b7c/1/fyA8FBnsaiHmYScgP1HB-nTcBE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.156.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:ba:5a:d1:86:0d:20:d7:cd:94:27:4d:6d:fe:90:1f:5b:3c:
dc:49:89:0e:88:4e:6e:d0:1a:13:df:0f:f4:8f:78:a0:a5:d4:
89:85:0f:6e:b4:06:b7:24:36:ea:5a:44:d1:e6:9d:fa:96:ec:
0c:86:9d:81:b5:98:b8:2c:51:df:27:1e:f5:c6:7f:5e:cf:2f:
e0:3b:0b:76:0a:7a:5b:f8:9f:b0:55:41:f5:a3:6b:8c:82:34:
62:36:44:61:0a:5b:fd:8d:1b:71:b8:d7:ac:2a:32:3a:ce:54:
d4:df:ba:1a:44:13:8f:fc:b2:b3:7d:67:f2:af:00:34:02:1e:
2f:08:2b:c2:e4:fe:38:89:80:cc:b9:8e:f4:70:a4:35:b0:a7:
3b:de:fe:e8:88:1c:12:17:a0:50:3c:3a:52:dc:dd:9b:ff:f9:
37:e0:07:38:08:7e:b3:02:64:e8:bc:19:40:e3:1f:c4:97:66:
49:29:45:00:37:65:2a:52:7c:db:5b:c0:28:65:13:7c:ee:97:
7c:ae:b9:6f:9f:9c:43:04:ab:f9:87:5e:3e:dd:52:00:c2:a9:
a5:3e:ad:1e:6e:93:f0:70:a8:1d:8e:df:98:6e:25:ce:89:51:
04:c1:78:c4:53:f1:13:35:48:31:f6:83:e9:ff:a1:17:74:b4:
70:58:ea:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 05:54:45 2025 by rpki-client