Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/yMZtz58DYomgIRk5FsQPYH6IxGA.roa
File: yMZtz58DYomgIRk5FsQPYH6IxGA.roa (raw, json)
Hash identifier: O7btd6fDACUp0mAeO18BU5kOJ10eqv87EyNzaFbfEko=
Subject key identifier: C8:C6:6D:CF:9F:03:62:89:A0:21:19:39:16:C4:0F:60:7E:88:C4:60
Certificate issuer: /CN=b3bea0da56e55fa2eb500f150dc478ed1cb39daf
Certificate serial: 01223188
Authority key identifier: B3:BE:A0:DA:56:E5:5F:A2:EB:50:0F:15:0D:C4:78:ED:1C:B3:9D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s76g2lblX6LrUA8VDcR47Ryzna8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/yMZtz58DYomgIRk5FsQPYH6IxGA.roa
Signing time: Sat 01 Jan 2022 10:54:20 +0000
ROA not before: Sat 01 Jan 2022 10:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 146.255.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19018120 (0x1223188)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3bea0da56e55fa2eb500f150dc478ed1cb39daf
Validity
Not Before: Jan 1 10:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8c66dcf9f036289a021193916c40f607e88c460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5b:0a:d3:5a:0e:6e:79:6a:b3:c0:62:b7:da:
68:81:c8:80:ef:71:ff:6c:7e:f5:80:83:ac:12:a7:
77:72:f2:77:e4:7d:f0:04:cb:2a:24:e5:b1:64:c7:
91:4a:18:4b:c6:e8:84:9d:01:55:0e:bc:2f:ab:d1:
fa:0b:ec:2d:1e:f8:a6:c0:79:df:ad:cc:ac:21:fd:
fc:15:86:50:b1:2e:c9:b9:98:4c:5b:73:96:a0:ab:
03:64:2e:41:69:56:d5:eb:3b:bd:4c:30:38:4a:f4:
65:24:c4:67:ee:06:d5:62:e0:3d:5d:92:77:74:d1:
d2:e7:9e:cf:b0:bf:b2:6e:e0:db:d8:8e:b9:ef:cb:
c2:c0:e0:97:d4:55:91:ff:51:f6:d8:ce:b8:d9:31:
07:d4:75:37:6f:4a:93:5b:83:1a:7e:72:4a:e4:0f:
40:5c:fb:2a:c8:86:3b:5d:99:a0:24:7a:45:6e:e4:
23:09:85:20:5e:21:86:bb:e1:dd:00:1e:19:e6:02:
9b:fc:6b:4f:b9:f3:32:14:62:9c:44:d4:3c:f6:1c:
03:e3:12:6b:fd:52:75:e8:b5:e3:c4:cf:5f:63:29:
e6:58:08:8c:ee:13:82:6c:44:c2:4d:9b:b6:f7:db:
0d:e8:9a:dc:89:34:9a:f4:6e:7f:58:6f:41:42:79:
ad:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C6:6D:CF:9F:03:62:89:A0:21:19:39:16:C4:0F:60:7E:88:C4:60
X509v3 Authority Key Identifier:
keyid:B3:BE:A0:DA:56:E5:5F:A2:EB:50:0F:15:0D:C4:78:ED:1C:B3:9D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s76g2lblX6LrUA8VDcR47Ryzna8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/yMZtz58DYomgIRk5FsQPYH6IxGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/s76g2lblX6LrUA8VDcR47Ryzna8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.189.0/24
Signature Algorithm: sha256WithRSAEncryption
91:58:6b:8b:b0:20:6c:d7:d0:6f:00:9c:b9:d0:09:27:bb:3d:
b2:cf:f0:13:a2:cb:b9:7f:5d:3c:b1:f9:6e:61:27:d8:a9:33:
df:61:6c:c1:bc:1d:96:50:55:b6:a6:aa:55:9e:3f:a0:91:90:
56:d6:19:49:ce:97:23:f8:da:1d:50:0a:a8:c3:9d:1d:15:1c:
ec:ff:65:1c:fc:d7:9f:76:bd:6f:e1:ec:87:ec:cc:0c:66:4d:
e7:36:f5:2f:6d:f4:53:2d:78:0d:fd:b3:57:31:53:67:ee:8f:
f6:c1:55:e2:43:4b:af:85:3d:8c:7d:62:ba:30:85:43:35:65:
05:2d:47:44:b2:74:29:9f:a9:3b:b4:63:6f:17:8c:e9:c5:7b:
77:5a:05:61:52:34:85:56:34:7d:bc:0d:70:92:68:62:1a:c8:
00:04:50:26:6f:59:93:ee:7c:06:be:3e:c8:34:c7:ca:80:9b:
33:97:57:59:08:7b:31:74:f4:3d:48:76:75:7f:05:56:bc:db:
aa:f2:60:4a:c3:d3:17:49:f3:bb:4c:33:80:e0:11:46:4d:12:
66:f4:12:91:85:c3:71:df:1d:fb:da:11:b9:3f:4c:fe:e2:fd:
26:f6:ae:33:c6:bd:bc:9e:83:0d:8f:4f:f1:41:3e:84:34:a7:
77:bb:2e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:15 2025 by rpki-client