Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/yqZvxvM3OQB3j7ZhkxBBM7G76fw.roa
File: yqZvxvM3OQB3j7ZhkxBBM7G76fw.roa (raw, json)
Hash identifier: ySnNZMI4aJ2K0py2dKBYDcYAVza5oxn4X5eYVSbGDFk=
Subject key identifier: CA:A6:6F:C6:F3:37:39:00:77:8F:B6:61:93:10:41:33:B1:BB:E9:FC
Certificate issuer: /CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Certificate serial: 0194266BAB4E5FB07CBDE12F840D211057FC
Authority key identifier: F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/yqZvxvM3OQB3j7ZhkxBBM7G76fw.roa
Signing time: Thu 02 Jan 2025 09:49:37 +0000
ROA not before: Thu 02 Jan 2025 09:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396982
IP address blocks: 185.76.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:ab:4e:5f:b0:7c:bd:e1:2f:84:0d:21:10:57:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Validity
Not Before: Jan 2 09:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=caa66fc6f3373900778fb66193104133b1bbe9fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:53:10:a0:75:1d:7b:06:d8:3b:45:3b:aa:ad:
b6:0b:a1:14:28:d7:fd:3f:75:5c:62:e9:38:ca:03:
38:c1:dc:e0:a8:7d:15:8b:f5:97:72:82:d6:75:f7:
f8:b3:e4:da:d3:7f:af:3c:8b:43:35:c5:dc:19:87:
1c:e5:a6:55:2b:86:ad:7a:ba:44:34:e4:be:39:85:
e2:77:ab:e1:2c:d9:6b:eb:5f:5a:fb:ca:e2:33:e5:
8c:33:73:02:59:56:ae:5d:54:34:3e:9c:e9:1c:9b:
35:5d:ab:50:96:c7:05:77:bb:ff:2b:ce:2a:d6:a5:
91:0f:5f:74:40:eb:2d:9f:30:b4:c8:f7:8c:8e:35:
8e:3e:03:ba:d0:71:90:1e:81:57:7b:d9:a7:61:90:
50:33:24:a5:a6:b4:4f:cf:b5:af:95:13:2f:d8:7e:
1b:15:14:d7:3e:12:73:46:94:d8:b1:ec:bb:5c:15:
8e:39:0f:da:62:40:07:c0:4c:3e:4d:f8:98:69:12:
45:60:c3:bc:e9:53:0a:93:9f:2c:12:fc:cc:86:db:
08:aa:21:c8:ab:f9:c2:da:7e:d4:f8:fe:5c:18:6f:
1c:ad:36:20:dd:99:60:12:94:6b:a7:81:f4:73:ce:
2d:ac:4a:09:40:ee:31:75:16:2a:4f:4d:4d:3e:09:
0a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A6:6F:C6:F3:37:39:00:77:8F:B6:61:93:10:41:33:B1:BB:E9:FC
X509v3 Authority Key Identifier:
keyid:F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/yqZvxvM3OQB3j7ZhkxBBM7G76fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.36.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:b4:dc:81:73:1c:a7:51:15:2c:cb:76:dc:7e:a8:db:44:ea:
0b:56:3b:2c:40:ce:0e:b0:d8:cf:45:15:25:39:ea:bc:d1:7f:
27:1e:40:d0:30:bf:b2:9f:90:a6:0f:e3:6e:cf:3a:da:b8:2e:
16:89:c5:4e:a3:09:9c:6d:67:cf:95:b7:ae:c0:9a:0b:f5:5b:
7f:af:3c:1b:81:3d:03:41:3b:2b:79:4f:79:6e:a6:06:8e:1f:
9b:f1:a9:02:78:09:f3:71:d3:fd:e4:a5:5f:53:3a:1e:06:d9:
a4:17:f6:42:e1:3c:3f:73:cd:bc:21:0c:a6:d1:87:37:87:69:
31:07:82:f0:48:f9:05:76:eb:e5:cc:b8:f8:5a:9d:9a:07:bc:
65:55:23:92:85:3e:75:e1:97:24:74:59:c2:29:cf:2c:22:38:
65:a6:82:61:17:28:2c:6d:27:ae:0f:61:f9:b5:d1:ca:07:24:
ef:7c:21:f3:61:60:e1:d3:dd:c4:45:3b:09:1b:6a:6b:13:16:
97:c2:98:b9:03:40:60:4c:ec:57:94:fb:b2:01:39:05:45:d3:
aa:30:a1:4a:1f:4e:35:31:b5:59:69:0d:29:a9:18:05:50:99:
b4:31:08:ab:ef:f4:d0:ab:6f:7d:8e:00:63:98:7d:0e:bd:ab:
21:78:11:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:35:46 2025 by rpki-client