Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/CYe_FylQBC35YAPXurtpIgFimIQ.roa
File: CYe_FylQBC35YAPXurtpIgFimIQ.roa (raw, json)
Hash identifier: DTdje2SGWnkKYzvIScF3Fa/xUC5bG87DDdchy0e9aCI=
Subject key identifier: 09:87:BF:17:29:50:04:2D:F9:60:03:D7:BA:BB:69:22:01:62:98:84
Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Certificate serial: 019440E15F7BB15EB19DEA6FF0297C817FD9
Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/CYe_FylQBC35YAPXurtpIgFimIQ.roa
Signing time: Tue 07 Jan 2025 13:08:19 +0000
ROA not before: Tue 07 Jan 2025 13:08:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215058
IP address blocks: 194.40.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:40:e1:5f:7b:b1:5e:b1:9d:ea:6f:f0:29:7c:81:7f:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Validity
Not Before: Jan 7 13:08:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0987bf172950042df96003d7babb692201629884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1b:70:42:dc:8a:3e:cc:58:67:33:bd:21:f4:
9f:f3:1f:06:8d:aa:1e:b9:d1:17:04:1f:11:5a:81:
b3:fc:ca:76:53:b3:da:a8:3a:88:64:10:b9:65:d9:
7a:ed:c0:e1:67:37:c9:86:3d:26:4d:ad:8b:e7:66:
fb:3e:b1:4c:9e:32:2f:3a:ea:e1:f6:29:b2:b4:c0:
83:d6:93:a1:16:37:10:a1:7f:f7:85:cf:16:3d:9c:
61:1e:f8:44:45:9d:75:57:66:65:8a:90:ac:cd:d0:
bf:5b:c2:89:b4:42:cf:4c:06:2f:17:51:7f:6d:bf:
00:c0:d0:48:fd:28:30:11:25:03:d5:a6:b5:b2:b7:
96:95:ec:e9:9b:1b:3e:29:3c:29:9b:3f:79:c9:67:
7b:73:28:d6:ca:94:98:9d:fa:79:0b:8f:f1:16:65:
11:70:14:71:56:26:ac:aa:fa:41:b9:3c:10:b5:f3:
fd:bd:16:86:c2:db:23:f9:24:7c:9f:52:6a:26:a0:
f7:1d:05:78:7b:3d:7f:5a:d6:42:2c:34:30:93:f2:
43:1e:7c:f0:0d:2a:59:04:d0:bd:0c:f9:67:d9:71:
21:1e:91:67:32:90:e5:8c:1f:ea:11:1a:0e:c9:13:
3e:b9:ae:4e:36:2c:3f:56:70:4d:94:e2:8e:e2:3a:
2d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:87:BF:17:29:50:04:2D:F9:60:03:D7:BA:BB:69:22:01:62:98:84
X509v3 Authority Key Identifier:
keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/CYe_FylQBC35YAPXurtpIgFimIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.40.241.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:82:87:6f:63:b4:24:d5:ce:43:53:fa:d9:03:15:c3:4e:66:
4f:75:64:b5:57:a7:ae:92:cc:93:e9:8d:b0:ad:21:08:76:c4:
2b:4e:be:04:92:45:e4:7c:8e:fb:ee:fd:a1:f9:20:76:50:6e:
18:a9:2c:aa:89:d3:86:81:ba:12:3f:c0:e3:8b:ea:20:69:8e:
9e:e1:29:91:d1:27:fc:56:13:f6:12:fe:82:2d:4e:5b:64:47:
93:eb:93:0d:46:b2:47:9c:6d:5e:10:e6:1a:e9:c2:d7:5b:8d:
95:5c:09:e9:4e:3c:8f:13:a8:8f:a6:a8:94:00:0d:59:08:ed:
a4:94:96:fb:51:bc:8e:8e:5f:f1:e7:93:f7:0a:f5:ab:2c:c4:
3d:30:1a:5d:79:48:e7:1d:4e:ab:aa:42:38:b2:06:b5:8a:a9:
82:d0:17:a7:cf:f7:b6:7e:ff:80:bf:7a:54:38:2e:41:cc:87:
fc:c2:c9:98:04:e8:70:d1:8d:8e:4c:69:78:6d:3b:b8:b1:cb:
e3:f1:dd:11:da:68:9b:07:95:1a:01:86:2c:05:a7:44:6b:16:
3d:8c:fa:0e:88:cf:cb:a8:68:b6:9c:54:a9:cc:14:ca:f3:9b:
f5:4e:b9:a7:e7:d5:91:55:8c:04:f2:16:29:ce:7f:0f:da:8f:
24:eb:5f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:18:18 2025 by rpki-client