Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/YqBkj1ylfOU3p4nh5tWQJYeuZwc.roa
File: YqBkj1ylfOU3p4nh5tWQJYeuZwc.roa (raw, json)
Hash identifier: e97BhLLiAxaAWW5yEKTWMiYt2ECxgzdgXHgWr5LzCXc=
Subject key identifier: 62:A0:64:8F:5C:A5:7C:E5:37:A7:89:E1:E6:D5:90:25:87:AE:67:07
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 019424B2655CB0363915B640BCAA4AF6B3AC
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/YqBkj1ylfOU3p4nh5tWQJYeuZwc.roa
Signing time: Thu 02 Jan 2025 01:47:38 +0000
ROA not before: Thu 02 Jan 2025 01:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 55808
IP address blocks: 46.16.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:65:5c:b0:36:39:15:b6:40:bc:aa:4a:f6:b3:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jan 2 01:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=62a0648f5ca57ce537a789e1e6d5902587ae6707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2f:58:3b:d2:bc:b4:df:81:53:f6:c6:ea:19:
ae:49:d1:8b:fd:fe:20:04:bd:87:3d:13:d5:19:2b:
da:9d:90:cf:7b:a4:e0:a5:d3:40:99:a7:ee:2f:0b:
97:17:8b:58:e2:f6:de:70:cf:21:7c:c1:96:f5:b1:
d3:5c:a1:2c:b9:54:49:57:ea:3d:02:ec:eb:9d:a8:
70:98:07:32:67:d1:7f:3f:f5:ec:32:90:f0:f1:82:
1f:2e:e6:d7:68:dc:75:64:2b:3b:12:89:f9:02:0f:
17:10:3e:2f:38:b0:2c:78:0d:d5:e8:2a:f7:66:ab:
7c:8d:f9:4e:15:34:96:7c:6b:20:54:48:a2:b8:fd:
8a:f0:81:c2:c0:6c:a0:41:55:da:3e:0b:28:0f:1b:
19:a7:94:b9:13:9f:f8:c1:bf:4f:db:c1:ec:5f:74:
74:f1:9a:d6:12:21:1e:3a:2f:0e:19:41:ab:90:08:
a9:9a:0c:9f:e4:36:6b:52:9d:5e:17:2e:87:d6:29:
e9:a2:6e:c5:a5:ad:08:de:81:85:ab:ea:6b:d2:33:
ae:4e:1c:07:41:45:87:b7:21:cb:67:7f:68:fc:6d:
65:26:e2:87:3f:37:02:09:cd:6c:28:29:c7:6e:24:
bb:37:0c:3a:fe:a6:4a:83:b0:a6:42:f3:0b:7b:fd:
3e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A0:64:8F:5C:A5:7C:E5:37:A7:89:E1:E6:D5:90:25:87:AE:67:07
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/YqBkj1ylfOU3p4nh5tWQJYeuZwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:76:db:7a:3c:88:de:48:02:4a:71:4a:7c:84:1c:16:63:11:
1f:f6:e7:82:89:f3:10:f2:58:27:11:ae:5e:70:f2:5d:7b:f7:
8c:fe:53:ab:71:25:5a:06:bf:67:b5:53:bd:ae:e4:4d:b1:f5:
e7:66:5b:92:f5:b5:31:30:89:5c:ab:2d:88:23:b4:81:ec:15:
d1:ed:5f:86:2c:0d:8e:3f:45:14:8f:b0:2a:f1:8b:7b:00:e4:
6b:11:4e:27:96:78:f0:0a:ea:13:3f:f3:b1:5f:56:40:df:0f:
12:6e:e6:51:db:5e:d8:3c:5f:68:f2:50:e5:98:12:2e:dc:6f:
f4:cb:3f:47:ba:f6:df:02:69:4c:04:f0:cc:5b:d9:c4:9a:c3:
de:58:c7:86:12:8a:76:fd:18:2a:d3:be:c2:8e:ff:9e:1b:3a:
1f:b7:cd:7a:e2:47:6e:f6:26:51:31:43:df:74:ea:5a:9c:42:
35:65:3b:d2:12:92:a1:84:c7:61:a1:ac:a3:c7:7b:c8:c0:c2:
05:70:78:af:0e:fd:18:ce:af:5d:82:ff:67:d8:e6:18:3e:39:
d1:98:87:3f:95:74:5a:cf:de:2b:c6:cd:a3:98:31:12:d3:94:
1e:8c:0d:48:a6:9a:ea:36:b0:a5:f3:5c:a9:d6:28:cc:6c:ac:
89:04:c0:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:13:03 2025 by rpki-client