Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YumhuVcs-6-MEgQr3KD5OTUCTNY.roa
File: YumhuVcs-6-MEgQr3KD5OTUCTNY.roa (raw, json)
Hash identifier: FyQZkNag0AQZO/ePHYHWgtP+a83U/QyC50o5dJgoLac=
Subject key identifier: 62:E9:A1:B9:57:2C:FB:AF:8C:12:04:2B:DC:A0:F9:39:35:02:4C:D6
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0194236A231903417AB77A34C7156B53B94B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YumhuVcs-6-MEgQr3KD5OTUCTNY.roa
Signing time: Wed 01 Jan 2025 19:49:05 +0000
ROA not before: Wed 01 Jan 2025 19:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 163.5.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:23:19:03:41:7a:b7:7a:34:c7:15:6b:53:b9:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 19:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=62e9a1b9572cfbaf8c12042bdca0f93935024cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fd:ca:81:f0:02:64:5e:4f:00:63:6d:f3:f5:
af:4a:c6:2b:94:57:31:9c:5a:33:f3:5d:81:1b:51:
c1:f2:fd:b8:5e:6d:7e:48:cc:e7:c0:cf:3c:5f:49:
47:2d:32:30:c9:80:1e:a3:d9:3a:b7:87:5b:fe:68:
53:d5:a5:09:e4:7c:35:21:51:c9:e0:25:eb:ae:57:
33:3e:7d:87:43:41:81:cc:da:f7:99:36:2b:c5:60:
84:1a:56:68:13:56:80:6c:05:ad:1a:a2:e8:7a:63:
ca:99:8c:eb:66:a1:47:88:ab:0e:3f:ba:05:13:de:
20:dd:69:90:d3:78:a5:4d:36:29:7d:c3:96:e7:55:
89:f0:cc:c1:01:c2:01:84:2d:0f:ff:d4:a6:04:92:
3b:15:da:d9:66:96:5f:24:ea:b4:54:f8:10:22:86:
fe:a6:2d:a8:ec:a0:e2:01:36:55:d8:b1:e0:ab:d6:
d6:b8:e9:53:9a:b7:84:53:d6:af:07:f5:61:98:a2:
82:03:5e:5b:a6:c2:33:1d:dd:50:2b:96:f0:3e:13:
5c:21:3f:92:64:30:7c:aa:73:bc:3f:1c:51:ff:1c:
22:ef:22:80:ae:f2:90:58:ef:78:ba:05:4f:2f:80:
63:cf:6d:d0:40:bb:d2:92:b2:a5:f0:56:c3:8c:a2:
e0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E9:A1:B9:57:2C:FB:AF:8C:12:04:2B:DC:A0:F9:39:35:02:4C:D6
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YumhuVcs-6-MEgQr3KD5OTUCTNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.12.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e4:92:b9:7b:95:25:4f:cc:0c:39:d4:2d:7b:27:fb:df:a7:
71:96:ab:aa:fc:76:28:a2:14:64:b6:07:2f:a9:e1:29:66:f7:
da:78:b8:05:b3:63:a8:54:8d:d0:50:ff:86:ef:84:99:c6:65:
6e:00:3b:6d:d2:0f:f5:9c:99:32:71:32:82:66:5d:41:40:f3:
ad:96:ff:be:c8:84:23:ab:61:f6:ff:46:b3:92:2e:6a:6f:43:
13:13:ff:87:b1:1e:94:6d:65:44:a8:2a:25:1d:1c:ad:1e:58:
f2:f5:87:af:a8:84:a7:96:fd:87:7a:f6:2b:cc:b6:fe:b8:43:
8c:64:9c:85:35:dc:0e:93:6f:00:97:0b:4c:ab:00:b3:f0:9f:
d6:54:fd:a0:8c:fb:21:24:e0:46:6f:6f:9a:78:02:61:93:71:
3f:23:3e:c9:a1:b2:6c:2c:1e:69:6f:f8:a0:d7:f2:56:52:29:
fb:78:76:be:f6:4b:2e:6b:b6:ea:f9:72:cb:98:ae:5c:d5:a8:
37:f3:8e:a9:ff:a1:ad:27:31:d3:ce:50:25:44:0b:af:80:56:
07:48:20:7c:39:58:7b:c4:2a:e5:36:92:6e:61:65:b9:02:f7:
56:ce:0c:04:d3:99:96:42:e7:7b:aa:fa:9e:3f:d5:d0:35:7b:
64:92:d7:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQjaiMZA0F6t3o0xxVrU7lLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjUwMTAxMTk0OTA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MmU5YTFiOTU3MmNmYmFmOGMxMjA0MmJkY2EwZjkzOTM1MDI0Y2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3v3KgfACZF5PAGNt8/WvSsYrlFcx
nFoz812BG1HB8v24Xm1+SMznwM88X0lHLTIwyYAeo9k6t4db/mhT1aUJ5Hw1IVHJ
4CXrrlczPn2HQ0GBzNr3mTYrxWCEGlZoE1aAbAWtGqLoemPKmYzrZqFHiKsOP7oF
E94g3WmQ03ilTTYpfcOW51WJ8MzBAcIBhC0P/9SmBJI7FdrZZpZfJOq0VPgQIob+
pi2o7KDiATZV2LHgq9bWuOlTmreEU9avB/VhmKKCA15bpsIzHd1QK5bwPhNcIT+S
ZDB8qnO8PxxR/xwi7yKArvKQWO94ugVPL4Bjz23QQLvSkrKl8FbDjKLgtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGLpoblXLPuvjBIEK9yg+Tk1AkzWMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvWXVtaHVWY3MtNi1NRWdRcjNLRDVPVFVDVE5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowUMMA0G
CSqGSIb3DQEBCwUAA4IBAQAp5JK5e5UlT8wMOdQteyf736dxlquq/HYoohRktgcv
qeEpZvfaeLgFs2OoVI3QUP+G74SZxmVuADtt0g/1nJkycTKCZl1BQPOtlv++yIQj
q2H2/0azki5qb0MTE/+HsR6UbWVEqColHRytHljy9YevqISnlv2HevYrzLb+uEOM
ZJyFNdwOk28AlwtMqwCz8J/WVP2gjPshJOBGb2+aeAJhk3E/Iz7JobJsLB5pb/ig
1/JWUin7eHa+9ksua7bq+XLLmK5c1ag3846p/6GtJzHTzlAlRAuvgFYHSCB8OVh7
xCrlNpJuYWW5AvdWzgwE05mWQud7qvqeP9XQNXtkktc4
-----END CERTIFICATE-----
Generated at Wed Apr 9 13:27:54 2025 by rpki-client