Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/Yfzph1m23vmbClyvIoORpS1CW-E.roa
File: Yfzph1m23vmbClyvIoORpS1CW-E.roa (raw, json)
Hash identifier: SuwU2G9eYZ/n+GS6xB/GEsh3UziEYPdyi1WD5kRpjAo=
Subject key identifier: 61:FC:E9:87:59:B6:DE:F9:9B:0A:5C:AF:22:83:91:A5:2D:42:5B:E1
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 0194258EB37B38E445D44EEB629DF6D2DF0A
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/Yfzph1m23vmbClyvIoORpS1CW-E.roa
Signing time: Thu 02 Jan 2025 05:48:16 +0000
ROA not before: Thu 02 Jan 2025 05:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197328
IP address blocks: 178.171.36.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:b3:7b:38:e4:45:d4:4e:eb:62:9d:f6:d2:df:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Jan 2 05:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=61fce98759b6def99b0a5caf228391a52d425be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:75:a2:15:5d:a5:0b:ac:d3:c1:8d:23:7c:9a:
c8:02:fb:5a:c3:52:51:87:07:75:8f:08:9e:5b:2c:
5c:d7:1d:c9:e9:d4:ab:f8:50:a4:6c:93:6f:e0:0f:
ce:48:6d:3e:88:e0:92:64:f0:13:97:cd:ca:ea:2f:
7c:72:cc:3d:d2:75:be:9b:a4:c2:f5:33:69:ea:9e:
ec:ca:9e:13:8f:41:04:48:cd:24:ea:0b:6f:52:8b:
ee:dc:36:b0:c7:52:41:de:35:08:60:55:62:55:d6:
cf:65:c4:71:66:dc:1f:54:7c:2a:db:73:36:b9:8f:
08:6d:20:12:a0:91:5a:77:b2:d1:69:7e:54:7e:7d:
19:9f:3e:70:1b:19:08:ba:03:05:31:3e:81:e5:a6:
7b:af:e4:6c:60:8a:b5:88:57:8e:28:e8:64:e1:31:
3b:05:65:b4:68:03:9d:4d:7a:57:c8:36:46:64:a1:
f6:e0:58:2c:39:e1:5b:a0:14:5d:72:5f:f3:8f:f7:
29:93:1e:5e:28:29:de:0c:e8:32:6b:4d:09:89:21:
6b:20:39:49:79:ee:19:fc:a6:76:b7:e1:82:e5:10:
7e:4e:f9:e3:ea:48:d3:7e:c4:98:8a:e1:da:14:83:
34:7a:54:e4:6f:5b:e6:56:22:98:63:32:6e:42:35:
cd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:FC:E9:87:59:B6:DE:F9:9B:0A:5C:AF:22:83:91:A5:2D:42:5B:E1
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/Yfzph1m23vmbClyvIoORpS1CW-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.171.36.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:18:20:64:86:cf:57:e2:58:f9:53:d4:d0:3b:03:cb:8b:dc:
4f:d8:9a:e2:ae:dc:9d:20:66:78:4f:54:58:5a:cb:13:8a:40:
09:67:8e:c1:dc:ca:93:50:72:8f:79:5c:4b:69:9f:d2:54:9a:
8c:49:e1:4b:60:2f:bd:89:f9:42:14:af:7b:44:66:f2:5f:22:
09:a2:fb:21:a0:38:15:3d:07:4f:41:ed:7d:9a:74:89:21:31:
ca:78:d6:61:04:e9:c7:df:11:91:f6:66:14:c3:f2:08:6a:8a:
d1:fe:f9:50:da:aa:65:a6:dd:a5:3e:a8:dc:64:00:dc:b3:6c:
b0:e7:74:f8:2a:3c:ce:87:f0:ef:58:a7:cf:b7:5b:ea:5e:34:
c1:e9:9f:c2:18:9a:66:62:82:01:ac:fb:51:58:41:eb:d5:91:
cb:76:fc:25:b3:21:fa:37:c7:fb:64:f7:d2:24:24:37:46:de:
d1:13:9e:14:80:ca:ab:68:d7:69:03:f6:c0:53:68:6a:91:2f:
e8:ef:7d:fd:65:5f:ba:b5:fb:2b:58:76:1f:03:a4:6b:23:fa:
ea:24:03:b0:2a:ed:65:f4:1f:7c:10:88:38:32:d4:f2:7d:9c:
ea:26:ce:f2:7a:ff:8c:7c:5d:cf:c4:00:0c:71:94:66:2e:1c:
f9:f7:0a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:00:58 2025 by rpki-client