Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/yYqCLutGy9O9FNj7y1uDxNJWzKw.roa
File: yYqCLutGy9O9FNj7y1uDxNJWzKw.roa (raw, json)
Hash identifier: nYo5OFAaZ+E5firRkPKJgqXk8by6ysICbCqkWl5eIM4=
Subject key identifier: C9:8A:82:2E:EB:46:CB:D3:BD:14:D8:FB:CB:5B:83:C4:D2:56:CC:AC
Certificate issuer: /CN=74733e08ddc25367be6f3ad8a6cefd18e75eed82
Certificate serial: 5067C9
Authority key identifier: 74:73:3E:08:DD:C2:53:67:BE:6F:3A:D8:A6:CE:FD:18:E7:5E:ED:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHM-CN3CU2e-bzrYps79GOde7YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/yYqCLutGy9O9FNj7y1uDxNJWzKw.roa
Signing time: Tue 26 Apr 2022 14:48:58 +0000
ROA not before: Tue 26 Apr 2022 14:48:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 149.62.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5269449 (0x5067c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74733e08ddc25367be6f3ad8a6cefd18e75eed82
Validity
Not Before: Apr 26 14:48:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c98a822eeb46cbd3bd14d8fbcb5b83c4d256ccac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bd:36:e0:a5:93:2d:de:db:5e:27:3d:cd:f1:
f6:58:8d:58:0b:f4:a7:1b:4b:24:c6:11:85:5e:ce:
5f:62:01:20:58:23:c0:22:dc:d5:d7:e2:34:48:46:
1d:d9:bc:ee:61:6f:9c:17:52:0c:00:c9:28:12:07:
aa:46:35:1a:bd:eb:86:03:96:09:f3:6d:96:e5:33:
df:25:3b:1c:c4:eb:6d:9e:4a:ba:26:93:6b:9e:e0:
d8:aa:cd:b8:b8:04:2e:f2:e7:55:d5:a2:36:e4:9f:
98:2f:84:e0:f4:88:12:ee:c3:81:2b:8f:99:83:77:
56:c2:32:fb:60:8c:4e:fd:b2:c5:4e:68:80:71:25:
79:63:dc:48:f3:c5:e8:c3:d6:4e:ff:7b:92:05:06:
0c:a8:c3:66:b1:33:ad:bd:b9:b2:05:6b:21:8b:91:
98:61:24:70:78:10:20:31:ab:94:16:f7:e3:b8:6a:
40:d1:05:ce:7c:19:34:57:06:bf:8f:4b:80:59:dd:
6d:f8:ca:7a:41:f0:f9:50:6d:36:1a:86:17:d0:8d:
1b:09:3a:84:1b:58:ec:c0:e6:5a:31:86:97:cb:e7:
22:db:78:bf:cd:e9:68:87:8e:d7:f6:86:19:10:f4:
b4:22:25:4c:b5:71:be:bb:cd:97:ed:ab:33:f0:c2:
62:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8A:82:2E:EB:46:CB:D3:BD:14:D8:FB:CB:5B:83:C4:D2:56:CC:AC
X509v3 Authority Key Identifier:
keyid:74:73:3E:08:DD:C2:53:67:BE:6F:3A:D8:A6:CE:FD:18:E7:5E:ED:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHM-CN3CU2e-bzrYps79GOde7YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/yYqCLutGy9O9FNj7y1uDxNJWzKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/dHM-CN3CU2e-bzrYps79GOde7YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.62.32.0/22
Signature Algorithm: sha256WithRSAEncryption
24:bc:ef:2a:cb:26:f0:5a:bb:8a:d9:83:d9:10:78:3e:20:3b:
20:b3:da:72:af:8f:51:e3:47:da:41:f6:f0:d1:45:7e:97:d7:
81:7f:8c:11:c0:41:a9:6b:b3:e6:73:de:5f:5f:11:9f:4f:b9:
63:0d:f7:d6:74:61:ab:86:37:1a:1f:ee:c4:36:f1:18:f9:a7:
84:5e:07:87:9a:2c:51:e0:61:61:c2:83:dc:be:51:0a:04:3b:
62:7b:c8:32:4b:e9:53:1d:d8:69:d6:b0:48:7f:a8:c9:79:58:
51:9f:cb:69:2a:a6:9d:ad:6b:d9:2f:ed:b0:49:ec:16:8c:cc:
10:bb:30:46:21:3d:08:1c:83:0f:9c:c5:2a:6d:b6:76:31:ae:
8f:de:43:72:ba:c2:26:5c:ba:c8:5f:3a:bc:e7:f1:06:1a:2a:
c7:6f:c9:b1:24:a0:f6:01:09:63:0a:90:c8:90:7e:80:0a:7f:
fe:7c:6b:08:6e:78:f8:3a:80:1b:2a:f0:61:13:95:6b:65:d4:
eb:0b:b6:21:22:61:49:f4:95:2a:ae:ea:ad:3b:9d:bf:5a:06:
1d:dc:c3:d2:f5:5b:b7:36:b9:b3:49:9a:f0:f5:e5:0d:77:91:
05:bb:88:95:5a:2e:59:c6:64:91:57:68:39:10:48:be:e7:8b:
5f:4d:09:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 06:08:15 2025 by rpki-client