Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c95a24-226c-476a-addb-a31143463be9/1/YlCiDrXpFZBiYoL2To1xT9iUFaE.roa
File: YlCiDrXpFZBiYoL2To1xT9iUFaE.roa (raw, json)
Hash identifier: 7Gbxh1+sxa+9AxCDaDexmDhESTdhRBbGW1USFM8Nv74=
Subject key identifier: 62:50:A2:0E:B5:E9:15:90:62:62:82:F6:4E:8D:71:4F:D8:94:15:A1
Certificate issuer: /CN=458834c52abe30427f0a22aa46fd3d0809ed4585
Certificate serial: 018A99AD5CC78D7D5B3B268A78DE5B77285A
Authority key identifier: 45:88:34:C5:2A:BE:30:42:7F:0A:22:AA:46:FD:3D:08:09:ED:45:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RYg0xSq-MEJ_CiKqRv09CAntRYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c95a24-226c-476a-addb-a31143463be9/1/YlCiDrXpFZBiYoL2To1xT9iUFaE.roa
Signing time: Fri 15 Sep 2023 16:29:50 +0000
ROA not before: Fri 15 Sep 2023 16:29:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60822
IP address blocks: 46.23.205.0/24 maxlen: 24
46.23.204.0/24 maxlen: 24
46.23.206.0/24 maxlen: 24
46.23.200.0/22 maxlen: 22
46.23.207.0/24 maxlen: 24
195.137.128.0/24 maxlen: 24
195.137.144.0/22 maxlen: 22
195.137.140.0/22 maxlen: 22
195.137.150.0/24 maxlen: 24
195.137.152.0/24 maxlen: 24
195.137.151.0/24 maxlen: 24
195.137.149.0/24 maxlen: 24
195.137.148.0/24 maxlen: 24
195.137.154.0/24 maxlen: 24
195.137.153.0/24 maxlen: 24
195.137.155.0/24 maxlen: 24
46.23.192.0/21 maxlen: 21
185.85.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:99:ad:5c:c7:8d:7d:5b:3b:26:8a:78:de:5b:77:28:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=458834c52abe30427f0a22aa46fd3d0809ed4585
Validity
Not Before: Sep 15 16:29:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6250a20eb5e91590626282f64e8d714fd89415a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e9:01:89:0f:48:30:ce:78:95:80:99:c9:4b:
18:be:38:46:db:c2:72:87:7a:8a:29:3c:3e:cf:9a:
5a:90:70:d5:85:48:8e:50:43:bc:b7:96:3d:50:24:
90:00:2c:de:0e:dc:ac:58:03:ca:23:29:ca:ed:02:
12:2c:ce:ee:cb:55:62:13:d2:46:b0:04:b8:33:b3:
3c:6e:67:27:f2:ff:4d:34:67:0d:11:af:ee:85:53:
10:ab:f0:c2:bd:08:72:46:86:b0:43:2a:0b:73:36:
a9:8c:22:f8:2e:6e:68:93:03:bc:9f:fd:93:e2:3c:
a4:3a:4e:13:7d:f0:a6:23:51:74:8a:6f:5b:43:66:
b5:08:5f:3f:4f:42:1e:0c:58:18:96:2e:ff:36:09:
f9:73:2c:3d:46:73:a2:92:ad:06:3b:fe:8d:29:7a:
59:87:8b:e8:8e:16:1c:b4:10:c3:35:03:b0:7e:63:
f8:1e:db:bc:40:05:bd:0a:de:43:e3:d3:f4:dc:8d:
ce:41:9e:c0:7e:41:91:37:00:08:19:61:a0:35:35:
30:83:d7:42:9b:d1:b2:37:dc:fe:76:a1:03:bd:a4:
d7:d5:14:75:ef:ea:46:e7:bf:03:70:db:fa:a2:36:
71:7e:3f:a7:79:c8:b7:02:52:59:64:2b:bf:a7:84:
d1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:50:A2:0E:B5:E9:15:90:62:62:82:F6:4E:8D:71:4F:D8:94:15:A1
X509v3 Authority Key Identifier:
keyid:45:88:34:C5:2A:BE:30:42:7F:0A:22:AA:46:FD:3D:08:09:ED:45:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RYg0xSq-MEJ_CiKqRv09CAntRYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c95a24-226c-476a-addb-a31143463be9/1/YlCiDrXpFZBiYoL2To1xT9iUFaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c95a24-226c-476a-addb-a31143463be9/1/RYg0xSq-MEJ_CiKqRv09CAntRYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.192.0/20
185.85.212.0/22
195.137.128.0/24
195.137.140.0-195.137.155.255
Signature Algorithm: sha256WithRSAEncryption
18:ec:56:91:12:0e:cf:29:fa:d7:c1:96:d1:8d:04:09:20:81:
c6:89:e8:d6:c0:c9:46:3a:6d:38:4c:e8:e7:81:59:9d:15:bf:
24:af:d9:c5:ef:fd:22:78:f1:d4:d9:be:6c:80:0b:df:c1:0b:
13:29:2f:30:56:8c:1b:e3:29:4f:34:e5:2a:0c:15:0b:b4:93:
7e:70:21:8a:d7:59:cf:6b:3f:76:ad:db:42:ae:94:7a:78:d8:
20:36:ce:96:cf:59:e5:01:0a:59:0c:a2:18:ef:d5:5d:40:d9:
88:e3:56:ae:5d:21:f5:a5:fb:83:10:f9:85:b0:c6:a7:be:06:
d7:b9:78:d7:d8:df:3b:1d:7c:1a:63:03:19:90:94:7e:1c:61:
2c:c2:fe:aa:8f:96:63:f9:fd:21:ca:99:f1:26:00:51:77:3f:
3a:5e:7b:a0:52:49:6e:3c:b5:02:42:62:4d:66:d6:6d:68:7f:
50:a1:ba:dd:1d:f2:b9:50:b6:81:3b:ae:75:f5:e2:e6:f1:5c:
97:fb:4a:82:af:58:c6:2b:dc:57:6e:25:d9:49:4f:a5:b9:6a:
d7:34:cc:6a:da:a1:c8:03:d0:36:bf:7e:01:bf:0c:3a:74:c4:
b2:e9:ed:38:2b:cb:97:53:1e:db:c1:5d:15:9c:c2:7a:50:ef:
d3:72:7b:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:55:59 2025 by rpki-client