Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/Yhyd6_3--40XbUHLiYyj2qr-Yoc.roa
File: Yhyd6_3--40XbUHLiYyj2qr-Yoc.roa (raw, json)
Hash identifier: 1oOXBnBBaEwXQlaBh7+MdVkKyYQvik1W61cIDXTDdBc=
Subject key identifier: 62:1C:9D:EB:FD:FE:FB:8D:17:6D:41:CB:89:8C:A3:DA:AA:FE:62:87
Certificate issuer: /CN=56bd7f6adfec6d44d16d3e3f798e3f2bd20da3ff
Certificate serial: 0194258F5AFB25B179A72F0E69BDBF1DC245
Authority key identifier: 56:BD:7F:6A:DF:EC:6D:44:D1:6D:3E:3F:79:8E:3F:2B:D2:0D:A3:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vr1_at_sbUTRbT4_eY4_K9INo_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/Yhyd6_3--40XbUHLiYyj2qr-Yoc.roa
Signing time: Thu 02 Jan 2025 05:48:59 +0000
ROA not before: Thu 02 Jan 2025 05:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33182
IP address blocks: 86.111.176.0/20 maxlen: 20
86.111.176.0/22 maxlen: 22
86.111.180.0/23 maxlen: 23
86.111.182.0/23 maxlen: 23
86.111.184.0/21 maxlen: 21
109.73.160.0/24 maxlen: 24
109.73.161.0/24 maxlen: 24
109.73.162.0/24 maxlen: 24
109.73.163.0/24 maxlen: 24
109.73.164.0/24 maxlen: 24
109.73.165.0/24 maxlen: 24
109.73.166.0/24 maxlen: 24
109.73.167.0/24 maxlen: 24
109.73.168.0/24 maxlen: 24
109.73.169.0/24 maxlen: 24
109.73.170.0/24 maxlen: 24
109.73.171.0/24 maxlen: 24
109.73.172.0/24 maxlen: 24
109.73.173.0/24 maxlen: 24
109.73.174.0/24 maxlen: 24
109.73.175.0/24 maxlen: 24
185.38.44.0/22 maxlen: 22
212.18.224.0/20 maxlen: 20
212.18.230.0/24 maxlen: 24
212.18.232.0/24 maxlen: 24
212.18.234.0/23 maxlen: 23
212.18.234.0/24 maxlen: 24
212.18.235.0/24 maxlen: 24
212.18.237.0/24 maxlen: 24
2a04:840::/44 maxlen: 44
2a04:840:10::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:5a:fb:25:b1:79:a7:2f:0e:69:bd:bf:1d:c2:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56bd7f6adfec6d44d16d3e3f798e3f2bd20da3ff
Validity
Not Before: Jan 2 05:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=621c9debfdfefb8d176d41cb898ca3daaafe6287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:39:8b:20:f6:68:75:5a:49:1c:dd:46:7c:a9:
a4:ba:b6:5b:09:81:26:cf:24:d8:dd:a7:c4:c9:8a:
57:61:fb:64:64:61:93:73:b1:0e:2c:7c:5f:7c:47:
d5:05:c2:ba:37:9d:48:83:c0:6f:b0:f8:6f:59:ae:
60:bf:34:7c:b6:20:71:81:71:a7:7b:53:fa:fe:39:
1c:06:20:a3:91:8b:d9:1d:ab:b3:17:06:9d:4e:0b:
4b:be:b4:da:2b:26:be:08:74:45:c5:28:85:03:7a:
12:23:1b:cd:8c:35:66:81:4f:ed:de:2b:8d:f0:f0:
b6:c9:26:05:b6:a7:11:7d:32:ef:6e:b2:a3:eb:1b:
0b:3d:03:ae:94:ca:93:e2:56:82:58:1f:2b:3f:a7:
90:bc:4e:23:e9:52:96:8a:bf:16:9c:04:1a:52:c8:
8b:da:bc:7c:51:4c:87:0a:82:cb:e0:32:1f:e3:5f:
fe:e3:93:fb:db:1e:99:c6:b0:3a:5b:9d:a0:42:96:
27:b5:cc:0b:25:b7:08:3e:3d:8d:ad:c9:cf:5d:21:
40:03:57:8a:f0:23:ea:73:c1:22:9a:ac:7b:18:bd:
fc:8e:40:db:b3:99:9b:31:cd:99:39:99:7f:76:a1:
90:a8:57:c8:91:b6:b1:26:7c:d0:2d:55:04:be:0b:
20:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1C:9D:EB:FD:FE:FB:8D:17:6D:41:CB:89:8C:A3:DA:AA:FE:62:87
X509v3 Authority Key Identifier:
keyid:56:BD:7F:6A:DF:EC:6D:44:D1:6D:3E:3F:79:8E:3F:2B:D2:0D:A3:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vr1_at_sbUTRbT4_eY4_K9INo_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/Yhyd6_3--40XbUHLiYyj2qr-Yoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/Vr1_at_sbUTRbT4_eY4_K9INo_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.176.0/20
109.73.160.0/20
185.38.44.0/22
212.18.224.0/20
IPv6:
2a04:840::/43
Signature Algorithm: sha256WithRSAEncryption
20:5a:b0:47:64:82:b8:b2:90:52:d3:7e:5f:dd:01:fb:d4:ba:
f5:a6:f9:cb:d2:81:af:48:19:82:a7:ae:a9:bf:52:58:3f:98:
5e:51:48:6a:18:33:26:1a:b3:69:d1:5d:d7:d6:bd:4b:af:ca:
cc:68:22:6f:e5:ab:52:64:ab:c9:74:ad:91:a7:97:0a:5c:b1:
55:9d:9a:13:82:3d:f0:ef:0e:16:86:cf:f0:c6:a1:fd:28:28:
6b:98:9c:b4:65:72:5a:e6:e5:fb:de:86:88:b3:e2:a9:52:aa:
2a:41:18:c2:e8:a6:e4:9a:26:c6:42:3a:a8:b8:10:3d:23:fe:
06:5e:95:51:b9:03:6a:48:d5:eb:d8:1e:bc:3b:88:92:25:5f:
fb:6f:4b:f3:1f:0d:5d:19:c4:b8:b8:1e:20:19:3e:16:ba:12:
a3:b1:28:5e:f9:a2:a6:e7:d4:e8:30:1b:f4:4e:dd:8b:b0:f2:
af:b8:9b:1c:74:9e:0e:d0:ce:15:f9:76:95:b3:4e:ad:05:39:
c6:b4:e0:38:1e:c5:55:61:90:dd:48:03:7c:33:6a:1f:72:20:
2a:48:6d:1a:ec:9c:bd:65:5e:6c:09:7e:2f:54:fb:4f:a5:ed:
95:43:15:49:bb:e1:91:6f:85:bf:3f:86:4d:68:d6:e3:7f:c4:
a7:eb:2e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:03:07 2025 by rpki-client