Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/SYAztygjVndcEsjCgTeE2vVxOUM.roa
File: SYAztygjVndcEsjCgTeE2vVxOUM.roa (raw, json)
Hash identifier: I2w/JubkqWLuJeW2HSMvnAsuZneCQlRCYeKw1LkGXr4=
Subject key identifier: 49:80:33:B7:28:23:56:77:5C:12:C8:C2:81:37:84:DA:F5:71:39:43
Certificate issuer: /CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Certificate serial: 0195D35FDE45B975E750D55A4B2D20D64B7B
Authority key identifier: 17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/SYAztygjVndcEsjCgTeE2vVxOUM.roa
Signing time: Wed 26 Mar 2025 16:53:50 +0000
ROA not before: Wed 26 Mar 2025 16:53:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213762
IP address blocks: 86.110.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d3:5f:de:45:b9:75:e7:50:d5:5a:4b:2d:20:d6:4b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Validity
Not Before: Mar 26 16:53:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=498033b7282356775c12c8c2813784daf5713943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c4:92:c8:47:70:76:d3:a9:70:a1:0c:50:38:
c2:28:96:2a:00:63:e8:09:d0:8d:51:5c:4b:75:16:
6a:b2:6d:ae:02:c7:9f:13:a9:2d:f9:31:cc:c1:e8:
e6:e3:ca:81:4e:9d:48:27:55:a2:15:56:94:60:d2:
35:7d:9c:44:51:84:7d:27:3d:62:a2:a8:0d:0f:ad:
84:c1:c5:de:8e:22:d7:ba:05:20:4c:44:06:e8:21:
39:98:ad:93:17:1f:25:be:09:15:51:1d:90:aa:f8:
de:22:20:1e:ef:15:75:6f:3b:26:f5:77:0e:53:2e:
72:92:a1:6d:14:81:5f:8c:c1:87:85:e3:b0:10:3f:
75:32:ad:df:37:d5:88:45:14:c4:04:37:7e:b7:28:
31:e5:9a:f4:0b:9d:e7:a1:1b:b4:e0:de:85:c0:6b:
e1:ba:58:3b:80:f8:37:23:d0:77:9b:03:50:08:66:
c6:5a:8e:3b:8d:ee:65:23:0e:ac:0c:23:dd:f5:2c:
29:3b:ad:47:ef:bb:f0:b7:2c:c6:e1:15:11:99:a7:
fd:60:a1:1c:da:92:fe:80:9a:84:85:24:9a:aa:8b:
04:3a:99:a6:29:11:1d:f1:91:88:a8:9b:e2:56:42:
a4:05:af:ba:9a:e3:a2:e9:43:55:59:0a:4c:03:80:
13:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:80:33:B7:28:23:56:77:5C:12:C8:C2:81:37:84:DA:F5:71:39:43
X509v3 Authority Key Identifier:
keyid:17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/SYAztygjVndcEsjCgTeE2vVxOUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.53.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d3:71:38:9d:b7:e0:27:84:27:96:bd:e4:92:cb:a0:c8:e6:
42:4a:31:d7:60:af:0b:7c:7f:7b:7c:e9:22:0b:c9:f2:37:02:
25:5c:f1:c2:7e:e3:a0:7c:e3:15:cd:6a:40:69:15:dc:ad:c6:
2f:5d:bc:b1:aa:d4:c2:8c:46:1b:58:6d:1f:c8:94:e0:b8:c9:
45:aa:e7:3a:7b:fe:a9:23:0f:fd:3b:9a:dc:ae:6c:47:bb:19:
5b:d1:da:ea:96:da:0d:fa:ae:36:51:3d:70:20:67:25:4c:6f:
cd:4b:74:b0:96:d0:ee:d4:a8:e2:76:b2:55:79:b0:76:03:68:
d0:89:21:92:9b:fc:67:26:17:30:2b:fe:f5:c1:47:0c:e7:d1:
0b:f1:cf:3c:f6:89:c7:80:7d:f0:45:f1:1c:be:e2:36:ae:d4:
e0:de:12:cd:fb:e1:c9:ae:ba:a1:f6:b1:78:3b:55:4e:1e:22:
a1:45:70:0e:f6:28:bb:0e:2a:07:ae:a0:e8:c8:06:8a:35:c6:
53:34:4d:ff:c0:89:de:df:c9:0e:97:0c:77:8a:93:bd:bb:a6:
aa:f4:9b:c3:23:92:6e:eb:7c:5c:bc:2a:31:01:66:d8:6f:75:
ae:da:7b:fb:94:6e:28:69:6d:ea:e2:9f:c9:a2:1f:77:f9:a1:
d0:99:ea:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:24:11 2025 by rpki-client