Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/YzoIPg4fMwpBUmuIbeicVf7dQAU.roa
File: YzoIPg4fMwpBUmuIbeicVf7dQAU.roa (raw, json)
Hash identifier: yb4n31Ah0viFB32bf5FwWA1spzlNaPck8SQrqUNepRQ=
Subject key identifier: 63:3A:08:3E:0E:1F:33:0A:41:52:6B:88:6D:E8:9C:55:FE:DD:40:05
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 0194258F0D62CAF4F47F638C974D054E07DC
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/YzoIPg4fMwpBUmuIbeicVf7dQAU.roa
Signing time: Thu 02 Jan 2025 05:48:39 +0000
ROA not before: Thu 02 Jan 2025 05:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 84.19.10.0/24 maxlen: 24
84.19.13.0/24 maxlen: 24
84.19.16.0/24 maxlen: 24
84.19.19.0/24 maxlen: 24
84.19.22.0/24 maxlen: 24
84.19.25.0/24 maxlen: 24
84.19.27.0/24 maxlen: 24
84.19.31.0/24 maxlen: 24
91.190.145.0/24 maxlen: 24
91.190.149.0/24 maxlen: 24
91.228.105.0/24 maxlen: 24
91.228.107.0/24 maxlen: 24
91.230.27.0/24 maxlen: 24
195.191.114.0/24 maxlen: 24
195.225.240.0/24 maxlen: 24
195.225.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:0d:62:ca:f4:f4:7f:63:8c:97:4d:05:4e:07:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: Jan 2 05:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=633a083e0e1f330a41526b886de89c55fedd4005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:42:99:f1:77:c1:79:20:b8:4c:cf:24:79:5b:
59:9e:5b:d6:85:c9:ad:67:e1:95:60:f4:cb:ca:43:
91:e4:73:6d:9c:2b:d5:2c:87:45:ff:03:c2:f5:6c:
35:f5:fe:61:b9:dd:c2:11:2a:0f:66:6b:57:5f:b3:
6e:b5:2a:6c:e5:21:3a:56:aa:bc:27:ed:64:c0:6e:
03:17:fd:b9:1c:0a:15:61:fd:f2:bb:7a:4f:09:25:
d8:e5:f1:0b:c9:67:e2:4a:16:e6:af:4e:9b:00:3a:
2a:e9:97:91:a9:41:16:d9:3b:c0:30:c6:9e:57:e6:
2c:2b:35:52:d6:87:e5:a2:2c:cd:88:71:55:9e:b0:
e0:d1:d4:7c:57:a8:06:a4:58:20:d3:0a:ee:4e:0c:
46:50:c0:46:31:64:4d:3a:cc:b6:ef:c0:ca:12:65:
23:d4:0c:87:78:69:a6:e2:08:91:49:73:67:81:83:
49:fa:b0:ec:bc:26:cb:f3:e0:93:27:6d:83:ec:55:
52:1d:ef:e5:db:c3:43:fb:7c:32:99:58:83:ec:4f:
53:79:0e:3d:76:38:f7:4d:7a:c5:3d:20:64:7b:a1:
96:31:88:45:81:84:ed:e2:89:bd:91:f9:3f:d5:fe:
b0:ee:fd:aa:ff:73:95:04:b3:1e:f9:01:5a:b4:2d:
b6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3A:08:3E:0E:1F:33:0A:41:52:6B:88:6D:E8:9C:55:FE:DD:40:05
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/YzoIPg4fMwpBUmuIbeicVf7dQAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.19.10.0/24
84.19.13.0/24
84.19.16.0/24
84.19.19.0/24
84.19.22.0/24
84.19.25.0/24
84.19.27.0/24
84.19.31.0/24
91.190.145.0/24
91.190.149.0/24
91.228.105.0/24
91.228.107.0/24
91.230.27.0/24
195.191.114.0/24
195.225.240.0/24
195.225.243.0/24
Signature Algorithm: sha256WithRSAEncryption
60:e1:d6:1f:b5:4a:4a:de:45:12:07:e1:c7:99:85:d2:1f:27:
86:d9:aa:c7:94:a3:1d:88:b1:48:85:68:07:ec:cc:33:42:dd:
5f:13:6c:a7:9d:10:49:15:a8:10:39:fa:b5:c9:a1:74:3d:b4:
03:22:ac:48:4c:6a:05:af:84:0f:27:cc:bb:64:be:6a:52:0e:
23:70:66:a3:1f:a5:cf:31:3b:d0:0c:f8:97:52:f0:ef:05:1a:
4b:9b:bb:d4:4e:bc:a2:e3:c6:bc:9b:2d:a5:0a:6f:70:d4:31:
03:4d:fd:cb:2e:e2:64:b0:84:fa:3a:08:c7:64:7c:d0:30:1e:
c7:b8:71:42:3a:d6:b8:ce:af:a1:44:85:51:92:1f:54:d2:22:
d3:32:69:fe:58:5d:1c:60:66:8d:ba:0e:56:c6:e7:34:30:ba:
16:cf:a6:a2:7e:99:c4:e0:6b:f5:9a:58:43:bb:4b:45:40:37:
89:1d:5c:f0:ef:a0:62:26:8d:66:73:ea:06:3d:86:a8:5e:f3:
da:59:cd:f8:1d:4e:54:be:e0:c4:a6:4d:4b:e5:49:00:a3:a2:
7e:b7:3c:39:ba:a5:50:34:e3:e3:cd:2d:d2:48:0f:29:1b:4e:
83:44:c5:55:9b:26:46:b3:b8:04:74:4e:34:f5:a3:3a:86:a6:
16:17:96:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:05:15 2025 by rpki-client