Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/e45be0-6d1e-48c7-b14b-4d051737bff2/1/YsIc5ZYO_MfvghtfwSymn05KEog.roa
File: YsIc5ZYO_MfvghtfwSymn05KEog.roa (raw, json)
Hash identifier: EiS4NupcEP3uYLLgy3lohrYw/RKbe5PU/ZyDx077D1M=
Subject key identifier: 62:C2:1C:E5:96:0E:FC:C7:EF:82:1B:5F:C1:2C:A6:9F:4E:4A:12:88
Certificate issuer: /CN=598bb15fc46c2c6b2036a1c65d404b3667cb4a74
Certificate serial: 01857139ECAF93C397EBE31964D1134BCFFD
Authority key identifier: 59:8B:B1:5F:C4:6C:2C:6B:20:36:A1:C6:5D:40:4B:36:67:CB:4A:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WYuxX8RsLGsgNqHGXUBLNmfLSnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/e45be0-6d1e-48c7-b14b-4d051737bff2/1/YsIc5ZYO_MfvghtfwSymn05KEog.roa
Signing time: Mon 02 Jan 2023 06:44:59 +0000
ROA not before: Mon 02 Jan 2023 06:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202636
IP address blocks: 91.246.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:ec:af:93:c3:97:eb:e3:19:64:d1:13:4b:cf:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=598bb15fc46c2c6b2036a1c65d404b3667cb4a74
Validity
Not Before: Jan 2 06:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62c21ce5960efcc7ef821b5fc12ca69f4e4a1288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:29:5b:41:b8:5f:75:ed:cf:bb:28:dc:44:4b:
d5:e1:04:26:25:15:06:73:32:48:bd:bc:28:69:e1:
67:08:ea:f4:4a:b9:78:c6:30:cd:73:e0:3d:b3:95:
46:7e:c2:26:11:f2:33:3a:e7:eb:2a:ea:f9:40:a8:
74:79:96:05:06:da:5c:b1:5c:76:ca:e7:8c:e7:87:
72:14:a6:68:59:a1:f2:46:fa:85:3d:8f:f5:54:9f:
7c:e9:1a:34:1f:8f:88:f8:42:cb:51:34:67:70:81:
b0:82:6f:b0:9c:26:5b:2b:b5:ab:47:46:0c:f6:b1:
62:0e:a0:a4:c3:2b:fe:b9:1b:5f:b2:6d:c6:6e:4a:
6d:e2:41:89:07:bf:25:cf:9d:0c:13:69:cf:12:1a:
fc:83:5f:76:9d:a2:d2:83:51:e5:94:ca:a0:d1:6b:
49:e6:f8:68:c5:a9:f8:6f:0f:57:90:dc:7a:fc:05:
dd:1f:c0:95:2e:3f:10:9f:e5:e0:8f:21:c7:8d:c9:
c3:65:f6:f7:a6:f5:1b:69:0e:6b:e8:7b:24:55:42:
dd:5f:c9:2c:d2:a0:f5:99:ca:99:0a:1d:64:cf:22:
e5:9d:6a:2f:97:2c:48:a0:7a:94:a3:5e:cf:aa:fe:
f2:1f:a8:61:dd:f4:56:7a:f0:72:3f:69:97:e2:63:
d1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C2:1C:E5:96:0E:FC:C7:EF:82:1B:5F:C1:2C:A6:9F:4E:4A:12:88
X509v3 Authority Key Identifier:
keyid:59:8B:B1:5F:C4:6C:2C:6B:20:36:A1:C6:5D:40:4B:36:67:CB:4A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WYuxX8RsLGsgNqHGXUBLNmfLSnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/e45be0-6d1e-48c7-b14b-4d051737bff2/1/YsIc5ZYO_MfvghtfwSymn05KEog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/e45be0-6d1e-48c7-b14b-4d051737bff2/1/WYuxX8RsLGsgNqHGXUBLNmfLSnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.52.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:64:cf:e5:b0:e0:36:93:21:0a:98:49:de:7e:e0:80:9e:b7:
1a:fc:07:e6:f5:1e:18:b6:4e:e2:60:7c:08:60:04:94:d1:bb:
e5:ad:40:90:d2:2b:9b:eb:5b:fe:6f:7f:b1:74:09:1d:38:1f:
3f:7e:48:b2:07:6f:e5:ec:83:70:ff:91:53:42:50:f8:28:7f:
8d:eb:b3:89:4c:9b:e4:23:b6:af:f6:4b:49:13:e3:53:5f:d1:
a5:6f:c8:94:84:3e:01:e2:eb:ec:1d:db:c5:b0:40:87:37:36:
50:8b:a9:61:85:43:d0:52:dc:f8:6d:a9:c6:31:7f:66:e8:52:
7e:f5:76:11:29:93:a6:6b:78:43:b4:81:07:c9:d6:db:f9:0a:
a8:db:e8:f3:19:4b:a7:9e:8e:db:9b:17:c7:78:16:6b:a3:3a:
40:fb:ac:4f:10:39:a3:df:f2:6f:7a:ea:e9:3c:fd:dc:7f:51:
2e:b2:cb:0f:fc:69:a0:64:d0:f8:b6:cc:c9:a7:57:f9:fc:97:
66:32:87:76:13:26:97:52:2a:e4:ba:0a:c1:90:35:9b:18:c5:
2e:ab:16:99:6c:4b:41:0a:a7:77:a2:d4:11:90:b8:0d:29:4e:
d3:1b:6d:f3:30:1f:c8:f1:13:fd:7d:7e:c5:6b:4a:d7:b3:e6:
b5:3d:29:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:24:38 2025 by rpki-client