Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/Yhd6PCSqg8BEgReLxvopZoiyn7s.roa
File: Yhd6PCSqg8BEgReLxvopZoiyn7s.roa (raw, json)
Hash identifier: UanDuvU3Nqa1deF6PEZgRA/8Bn6R8Wi8pttDy/h6UJY=
Subject key identifier: 62:17:7A:3C:24:AA:83:C0:44:81:17:8B:C6:FA:29:66:88:B2:9F:BB
Certificate issuer: /CN=278f3c551309ffa461b77dfcc781a8a3ec669239
Certificate serial: 2381BD
Authority key identifier: 27:8F:3C:55:13:09:FF:A4:61:B7:7D:FC:C7:81:A8:A3:EC:66:92:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J488VRMJ_6Rht338x4Goo-xmkjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/Yhd6PCSqg8BEgReLxvopZoiyn7s.roa
Signing time: Sat 01 Jan 2022 01:53:02 +0000
ROA not before: Sat 01 Jan 2022 01:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212913
IP address blocks: 195.191.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2326973 (0x2381bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278f3c551309ffa461b77dfcc781a8a3ec669239
Validity
Not Before: Jan 1 01:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62177a3c24aa83c04481178bc6fa296688b29fbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bb:ab:68:66:93:c1:58:8b:fd:2e:2e:01:1c:
ac:b7:18:1b:1a:dc:92:4d:4e:0b:08:e3:28:10:6a:
29:4a:39:1e:c9:59:7a:3b:b2:a0:d2:d3:1b:38:b6:
0b:24:54:13:ad:c4:35:14:24:6a:81:05:90:3e:39:
36:89:6d:1e:44:b4:8b:2b:fb:fd:a8:f3:0d:a0:97:
90:8b:51:d3:8f:b5:8d:ed:e4:be:d5:55:25:71:e3:
f2:86:45:3e:d8:90:b4:23:6e:e9:a0:64:fb:74:17:
59:ba:cc:86:d7:9d:5f:0c:63:8c:27:e8:95:19:b9:
ee:35:45:71:d8:d7:46:7c:f6:3c:0b:08:06:02:d8:
58:e5:b9:37:09:d7:32:17:a0:4d:86:1f:84:88:84:
d5:89:99:06:c8:78:30:24:bf:3d:7c:7f:db:cb:3a:
db:32:cc:c1:c2:95:5f:71:30:86:48:78:5b:f5:69:
be:b2:2b:5c:e1:05:0f:8d:15:14:05:9b:c9:13:a4:
8c:83:6b:31:ca:26:4b:a7:22:ce:72:ee:10:0c:d2:
53:8c:c9:85:2e:74:64:64:b4:aa:ba:0f:4d:5f:1c:
af:7b:10:1d:c8:c1:ad:98:4c:33:fc:7a:33:79:58:
7a:5a:d1:d5:f5:85:bf:85:b9:f0:df:4d:f5:15:7d:
37:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:17:7A:3C:24:AA:83:C0:44:81:17:8B:C6:FA:29:66:88:B2:9F:BB
X509v3 Authority Key Identifier:
keyid:27:8F:3C:55:13:09:FF:A4:61:B7:7D:FC:C7:81:A8:A3:EC:66:92:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J488VRMJ_6Rht338x4Goo-xmkjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/Yhd6PCSqg8BEgReLxvopZoiyn7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/J488VRMJ_6Rht338x4Goo-xmkjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.99.0/24
Signature Algorithm: sha256WithRSAEncryption
28:94:ae:10:5e:58:56:d9:49:6f:a7:a2:e5:2b:77:b6:1e:9f:
83:38:bc:c6:d1:72:93:49:fb:a7:38:9d:ef:54:56:a5:a2:41:
d0:0b:b6:da:74:f6:aa:cf:40:ee:a1:65:f0:f1:6d:ce:77:45:
b5:c1:37:3a:78:a8:98:88:8d:8b:2d:3a:67:f4:da:4d:66:b3:
8f:64:49:62:67:92:ce:59:68:f2:55:bf:8b:ac:d4:d9:a4:29:
33:78:77:c8:93:dc:c3:ed:96:0d:ed:7a:3f:73:11:a1:04:2d:
68:0e:54:aa:61:46:d9:75:bd:1b:27:c8:cf:ed:a6:6e:71:f4:
23:c0:be:f4:78:53:44:f5:0c:04:bc:87:e6:1b:ef:a5:3c:24:
9e:ed:07:bb:37:4c:24:3d:3c:0c:dd:ae:02:91:7c:d1:bc:8c:
85:dd:b3:7e:2d:5b:9c:14:6c:f5:c3:ba:74:9d:97:65:3e:ca:
2a:74:3e:bd:1c:c1:ed:dd:74:2b:b8:c1:45:66:1a:11:6e:31:
02:1a:86:ba:a9:9f:c7:74:a6:48:31:51:5f:86:56:9e:03:a8:
ef:a6:13:4e:5d:20:dc:68:ce:a4:60:87:84:7c:19:86:20:78:
ee:9b:19:6f:8c:89:af:2b:96:4b:aa:35:79:aa:b1:0f:40:26:
88:40:89:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:01:14 2025 by rpki-client