Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/yx4Q3HKvT9xnmcJNUOkBRk1ImZ4.roa
File: yx4Q3HKvT9xnmcJNUOkBRk1ImZ4.roa (raw, json)
Hash identifier: WgiNRempsJ6IUjp0ehsr1pYKYHNigoNUIEl5q2rTHSg=
Subject key identifier: CB:1E:10:DC:72:AF:4F:DC:67:99:C2:4D:50:E9:01:46:4D:48:99:9E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019428245ABC469E2AD3DC814614C90A870A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/yx4Q3HKvT9xnmcJNUOkBRk1ImZ4.roa
Signing time: Thu 02 Jan 2025 17:50:58 +0000
ROA not before: Thu 02 Jan 2025 17:50:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8734
IP address blocks: 87.120.140.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:5a:bc:46:9e:2a:d3:dc:81:46:14:c9:0a:87:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 17:50:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb1e10dc72af4fdc6799c24d50e901464d48999e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:04:21:a1:13:64:75:e1:6f:0f:7e:97:70:d7:
80:f9:10:a0:e0:01:e4:ab:a7:89:16:cb:a8:b2:38:
32:d2:6c:98:b1:16:c8:b5:4f:d4:51:d7:c7:85:01:
1d:3f:2e:9a:d6:83:38:3f:5d:91:7e:c5:e0:4a:52:
06:a7:36:74:0c:87:7a:13:52:16:b4:f2:05:4a:04:
4b:dc:b6:5f:02:36:a8:6a:a9:34:c4:24:0e:d4:37:
88:c8:42:05:70:3f:a1:f3:1c:68:3d:75:31:f0:17:
a0:19:38:71:56:b6:5d:56:d3:88:11:3a:1e:6e:b8:
fc:7d:c7:a9:0a:45:98:15:99:ea:b2:6e:36:f7:d6:
55:fd:5e:24:99:98:da:12:01:a9:bd:df:14:45:7a:
66:c7:71:a7:50:c4:be:42:08:40:37:57:23:53:04:
de:26:23:f2:99:3c:7a:de:e7:b7:57:fb:71:e5:5f:
54:90:6b:84:27:b9:fc:a3:bf:54:c3:71:6f:cd:7c:
f7:e8:ed:38:22:ab:29:1d:4c:f0:5a:3b:15:a0:69:
bf:14:29:04:f9:df:cb:e4:43:44:b7:c9:0d:7a:e8:
f8:44:89:5f:1d:31:77:f2:a2:80:65:f3:3b:f3:8e:
26:2a:46:44:97:a8:14:c4:bf:81:01:35:ee:0e:b7:
c1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:1E:10:DC:72:AF:4F:DC:67:99:C2:4D:50:E9:01:46:4D:48:99:9E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/yx4Q3HKvT9xnmcJNUOkBRk1ImZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.140.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:28:a7:c4:ec:11:d4:16:5d:67:99:ee:62:0c:97:03:f8:25:
30:30:c9:8e:77:82:3e:b0:08:a4:4e:1f:3e:64:f6:b1:ba:d3:
e1:b5:ab:2d:6b:d4:5b:20:a1:82:26:9a:65:77:73:db:c3:23:
dd:43:c7:36:8c:02:62:44:fc:52:ee:2d:62:32:bc:76:62:2c:
1d:07:c2:12:60:b3:86:51:94:f7:ef:f8:f4:13:94:7c:b5:a2:
cc:17:2c:b4:67:1a:9e:6c:f8:43:7e:54:6d:22:80:bc:f8:d6:
40:ba:4b:73:12:39:84:e9:3a:3b:89:93:31:1f:aa:b2:2b:f9:
af:f4:79:0b:cb:20:ac:93:e0:cc:8f:38:eb:b6:81:b8:1e:94:
da:bc:48:de:7e:71:eb:82:1d:c2:5f:38:ea:c0:3e:b0:69:22:
16:e8:7d:df:af:c0:06:f7:85:e7:13:18:99:0a:bf:22:6d:97:
a3:f5:56:66:d3:eb:79:39:6d:88:3b:64:42:89:43:8f:95:0a:
d8:f6:ec:de:ef:98:2f:16:5a:61:3a:88:99:b3:8f:9d:e4:52:
2b:fd:1b:76:c5:b9:af:8f:34:26:98:d1:69:b4:f0:97:1e:94:
05:86:79:97:91:fe:25:2d:26:57:5f:9d:5c:af:55:2e:5b:44:
59:91:17:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:27:23 2025 by rpki-client