Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3b1313-72e2-4c45-8568-ba2d1a0ac42d/1/ysipPHMqIhH9bUVPKzIgsmpaOHk.roa
File: ysipPHMqIhH9bUVPKzIgsmpaOHk.roa (raw, json)
Hash identifier: 4ZJYsZD3y/TKFuheLjKYOqNcURrbFwpNjrFsI+td2qw=
Subject key identifier: CA:C8:A9:3C:73:2A:22:11:FD:6D:45:4F:2B:32:20:B2:6A:5A:38:79
Certificate issuer: /CN=fc8569520e0da7d87aa682124a2774d63666b5e8
Certificate serial: 01613B0A
Authority key identifier: FC:85:69:52:0E:0D:A7:D8:7A:A6:82:12:4A:27:74:D6:36:66:B5:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_IVpUg4Np9h6poISSid01jZmteg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3b1313-72e2-4c45-8568-ba2d1a0ac42d/1/ysipPHMqIhH9bUVPKzIgsmpaOHk.roa
Signing time: Sat 01 Jan 2022 06:59:54 +0000
ROA not before: Sat 01 Jan 2022 06:59:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58349
IP address blocks: 5.44.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23149322 (0x1613b0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc8569520e0da7d87aa682124a2774d63666b5e8
Validity
Not Before: Jan 1 06:59:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cac8a93c732a2211fd6d454f2b3220b26a5a3879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:12:39:6f:ef:a8:3c:b0:47:5a:0e:96:d0:62:
55:1d:b4:c0:70:c4:9c:e6:d2:44:c2:fb:0b:32:a5:
42:50:1f:c3:c1:c4:9e:61:90:13:bb:2e:a2:93:e8:
ad:4e:6c:e2:cf:4c:71:88:90:71:ff:b6:f8:e1:ed:
f3:e9:c7:af:46:6f:b9:9b:1f:9b:ed:e0:5c:63:05:
17:ea:2e:fe:26:db:58:c8:1c:68:7f:84:a2:4f:62:
d0:e4:a4:da:bb:f1:69:e9:38:c5:40:00:a6:7a:8c:
ba:f9:f9:1e:c6:2c:bf:16:00:2d:d1:2e:30:a7:48:
95:ba:59:47:65:d1:cf:c5:2c:5c:87:b5:bf:d7:57:
92:ab:c9:4a:b1:86:7b:99:a7:b5:27:ac:f9:87:ef:
48:a8:83:b0:97:e1:4a:19:ad:82:6d:cc:1f:49:48:
15:94:02:61:fe:6e:2e:b9:a2:c8:16:9d:dd:61:39:
31:ee:da:a5:d0:87:16:cb:50:ab:09:08:4d:ef:29:
fb:c7:d3:27:89:56:12:a9:3a:2b:64:2d:ca:f7:36:
42:0c:dc:f2:08:0d:d9:e3:08:81:61:07:98:e7:41:
7a:40:21:f3:f0:e6:8d:e0:45:3f:5a:65:06:7c:2e:
04:60:8f:62:f0:6c:b6:b9:cb:a5:fe:96:f5:50:65:
37:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C8:A9:3C:73:2A:22:11:FD:6D:45:4F:2B:32:20:B2:6A:5A:38:79
X509v3 Authority Key Identifier:
keyid:FC:85:69:52:0E:0D:A7:D8:7A:A6:82:12:4A:27:74:D6:36:66:B5:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_IVpUg4Np9h6poISSid01jZmteg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3b1313-72e2-4c45-8568-ba2d1a0ac42d/1/ysipPHMqIhH9bUVPKzIgsmpaOHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3b1313-72e2-4c45-8568-ba2d1a0ac42d/1/_IVpUg4Np9h6poISSid01jZmteg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.253.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:23:fd:f6:24:91:fa:00:8f:54:08:50:f7:a8:48:fe:1f:e1:
c7:35:eb:83:1a:62:6a:d2:07:60:0c:f4:de:06:aa:2c:87:36:
d9:07:95:78:86:32:b6:82:d6:70:d1:6a:10:0f:b4:98:10:3b:
9c:3d:94:bb:82:c5:21:3c:c2:43:a2:fa:03:55:a3:1e:1a:9e:
b4:b6:af:52:f4:1f:71:54:db:29:cb:87:2e:d4:2a:35:36:ef:
c5:f1:54:43:54:9b:e3:74:46:6c:3d:61:b1:45:a7:b4:23:1e:
4c:1a:08:19:82:49:94:7d:c7:7d:f2:44:3f:23:5f:1a:2b:78:
52:63:75:d3:07:8f:9f:14:46:00:f4:7f:02:1b:94:8f:f7:25:
5b:00:4f:29:22:f7:e8:f7:28:fe:e5:61:26:7f:91:f2:b4:e3:
78:14:60:0d:0a:a1:ed:48:58:33:52:f6:f8:12:fc:0b:9f:46:
be:a1:f9:47:40:6e:4c:7e:2b:04:40:f2:cb:c5:70:76:d5:72:
12:24:94:a2:b4:51:e5:ff:98:ea:45:90:ed:12:5a:58:94:8a:
1f:8d:ef:6f:fc:12:b4:76:7e:d3:da:ce:84:69:03:3d:d7:97:
09:0e:f6:66:9f:45:0d:2d:93:4d:85:3b:30:65:b3:12:f2:d9:
8f:b6:67:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:14:15 2025 by rpki-client