Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/ywRs-a89Yf3Zz1Mxm7EOZ0IaGgU.roa
File: ywRs-a89Yf3Zz1Mxm7EOZ0IaGgU.roa (raw, json)
Hash identifier: KcIGbva9ede7mLUbD84cHz+pICtWNbvc08mVQzdEhMk=
Subject key identifier: CB:04:6C:F9:AF:3D:61:FD:D9:CF:53:31:9B:B1:0E:67:42:1A:1A:05
Certificate issuer: /CN=65e226bcf4a830b2f448fd6ea9976b152087dd45
Certificate serial: 01941F8C66215A5E069F91D7149310CE0117
Authority key identifier: 65:E2:26:BC:F4:A8:30:B2:F4:48:FD:6E:A9:97:6B:15:20:87:DD:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeImvPSoMLL0SP1uqZdrFSCH3UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/ywRs-a89Yf3Zz1Mxm7EOZ0IaGgU.roa
Signing time: Wed 01 Jan 2025 01:48:02 +0000
ROA not before: Wed 01 Jan 2025 01:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6830
IP address blocks: 185.134.192.0/22 maxlen: 22
188.126.2.0/23 maxlen: 23
188.126.30.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:66:21:5a:5e:06:9f:91:d7:14:93:10:ce:01:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65e226bcf4a830b2f448fd6ea9976b152087dd45
Validity
Not Before: Jan 1 01:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb046cf9af3d61fdd9cf53319bb10e67421a1a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:48:ff:d0:28:22:e8:bf:22:c1:85:9f:7f:ae:
70:53:5b:1b:24:df:cd:0d:68:7e:43:f3:67:e8:96:
03:e8:99:c4:50:4a:71:8c:db:ea:36:f0:df:0c:75:
57:c9:45:7a:db:1b:03:16:59:7c:4d:07:a7:d1:d0:
ed:93:e1:92:a5:ce:ef:fa:65:d3:ee:40:1a:6f:ea:
71:48:c6:5a:6b:fe:b6:dc:f4:62:15:41:8b:09:a1:
27:10:fc:1c:a1:f8:0e:f1:4f:8a:5a:9b:e6:ea:9f:
b7:fc:d9:b5:c9:65:be:b9:b3:29:b7:22:b6:ae:1a:
48:a6:5d:b9:43:1c:bd:1b:24:92:90:d6:e5:ea:ee:
46:45:1e:f0:1f:6a:df:3d:83:c2:18:23:f6:d2:52:
8e:e0:e0:88:40:43:ce:e0:4c:99:e6:44:99:a5:a6:
df:6f:21:0c:83:e0:7b:e4:00:48:7e:c1:06:6b:38:
8c:92:0d:9b:a6:30:96:05:58:93:86:ba:09:2b:64:
48:69:40:af:d0:91:8e:94:2a:b7:1a:61:b6:f3:17:
1d:95:d2:82:2a:0a:d8:44:07:6d:7c:60:80:87:10:
44:39:f1:83:4f:b8:9e:20:36:4e:62:38:47:68:7e:
31:7b:73:b4:a7:7d:23:94:e9:d7:2e:cb:34:b9:5b:
db:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:04:6C:F9:AF:3D:61:FD:D9:CF:53:31:9B:B1:0E:67:42:1A:1A:05
X509v3 Authority Key Identifier:
keyid:65:E2:26:BC:F4:A8:30:B2:F4:48:FD:6E:A9:97:6B:15:20:87:DD:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeImvPSoMLL0SP1uqZdrFSCH3UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/ywRs-a89Yf3Zz1Mxm7EOZ0IaGgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/ZeImvPSoMLL0SP1uqZdrFSCH3UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.192.0/22
188.126.2.0/23
188.126.30.0/23
Signature Algorithm: sha256WithRSAEncryption
03:20:c4:76:55:1c:8c:77:fd:3d:0c:61:3e:f7:1e:8c:b5:4a:
34:38:36:fa:ca:1b:80:10:ea:ad:1e:2e:44:75:24:85:f5:12:
8c:16:c5:53:03:54:5a:ed:2c:31:31:7a:b1:de:84:bc:8b:b0:
55:4b:24:6b:92:af:51:26:6e:89:7c:eb:42:0e:d9:4b:fa:5c:
09:dc:13:49:fc:51:fb:80:22:31:bc:bd:71:c6:e3:bc:10:99:
3c:a6:86:98:68:ae:bb:9b:f8:35:30:f1:cc:9f:f0:14:e1:0e:
b8:e3:24:a6:b7:8b:36:50:b2:d9:2a:b6:99:a1:0b:8c:08:ac:
1c:db:6f:be:ec:f0:1b:40:31:16:f1:62:c6:c1:c7:7f:fb:e4:
d4:b1:81:02:a9:f6:0d:fc:b5:62:fc:80:12:74:c7:1f:03:c2:
1f:7b:e5:bd:26:98:8b:ae:42:77:31:ff:ea:d3:2c:99:cf:c3:
69:b9:5f:71:ab:98:3a:24:3d:0b:73:4a:58:1a:e3:2f:c0:68:
5f:c4:ad:ac:2b:77:d7:09:9b:09:66:7e:cf:8d:7e:bc:50:a4:
32:68:fc:73:29:e9:2e:fd:9f:a3:ac:8c:29:ad:bb:e3:3e:84:
20:fa:f7:0b:6a:5a:cd:fd:b6:31:17:d0:cc:3a:46:73:b3:91:
ee:96:c1:7d
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZQfjGYhWl4Gn5HXFJMQzgEXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1ZTIyNmJjZjRhODMwYjJmNDQ4ZmQ2ZWE5OTc2YjE1MjA4
N2RkNDUwHhcNMjUwMTAxMDE0ODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjA0NmNmOWFmM2Q2MWZkZDljZjUzMzE5YmIxMGU2NzQyMWExYTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEj/0Cgi6L8iwYWff65wU1sbJN/N
DWh+Q/Nn6JYD6JnEUEpxjNvqNvDfDHVXyUV62xsDFll8TQen0dDtk+GSpc7v+mXT
7kAab+pxSMZaa/623PRiFUGLCaEnEPwcofgO8U+KWpvm6p+3/Nm1yWW+ubMptyK2
rhpIpl25Qxy9GySSkNbl6u5GRR7wH2rfPYPCGCP20lKO4OCIQEPO4EyZ5kSZpabf
byEMg+B75ABIfsEGaziMkg2bpjCWBViThroJK2RIaUCv0JGOlCq3GmG28xcdldKC
KgrYRAdtfGCAhxBEOfGDT7ieIDZOYjhHaH4xe3O0p30jlOnXLss0uVvbqQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFMsEbPmvPWH92c9TMZuxDmdCGhoFMB8GA1UdIwQY
MBaAFGXiJrz0qDCy9Ej9bqmXaxUgh91FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmVJbXZQU29NTEwwU1AxdXFaZHJGU0NIM1VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mNTg3M2EtODkzMi00MjZmLTgxNzUt
MzhjOGRhZmIzZTRmLzEveXdScy1hODlZZjNaejFNeG03RU9aMElhR2dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9mNTg3M2EtODkzMi00MjZmLTgxNzUtMzhjOGRhZmIzZTRm
LzEvWmVJbXZQU29NTEwwU1AxdXFaZHJGU0NIM1VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCuYbAAwQB
vH4CAwQBvH4eMA0GCSqGSIb3DQEBCwUAA4IBAQADIMR2VRyMd/09DGE+9x6MtUo0
ODb6yhuAEOqtHi5EdSSF9RKMFsVTA1Ra7SwxMXqx3oS8i7BVSyRrkq9RJm6JfOtC
DtlL+lwJ3BNJ/FH7gCIxvL1xxuO8EJk8poaYaK67m/g1MPHMn/AU4Q644ySmt4s2
ULLZKraZoQuMCKwc22++7PAbQDEW8WLGwcd/++TUsYECqfYN/LVi/IASdMcfA8If
e+W9JpiLrkJ3Mf/q0yyZz8NpuV9xq5g6JD0Lc0pYGuMvwGhfxK2sK3fXCZsJZn7P
jX68UKQyaPxzKeku/Z+jrIwprbvjPoQg+vcLalrN/bYxF9DMOkZzs5HulsF9
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:04:06 2025 by rpki-client