Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Yk7y7aZDTgCPqiXflDf4ZvzFId8.roa
File: Yk7y7aZDTgCPqiXflDf4ZvzFId8.roa (raw, json)
Hash identifier: XRSCf+TIZGeyMjl86kFwa0WiXQVPCnqObF3wkED47F0=
Subject key identifier: 62:4E:F2:ED:A6:43:4E:00:8F:AA:25:DF:94:37:F8:66:FC:C5:21:DF
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 060E2BC9
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Yk7y7aZDTgCPqiXflDf4ZvzFId8.roa
Signing time: Fri 01 Jul 2022 03:10:02 +0000
ROA not before: Fri 01 Jul 2022 03:10:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56540
IP address blocks: 85.237.192.0/23 maxlen: 24
185.89.78.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101592009 (0x60e2bc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jul 1 03:10:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=624ef2eda6434e008faa25df9437f866fcc521df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2a:6d:8f:5c:f3:17:ee:ee:7b:64:7f:e7:71:
95:ec:74:14:cc:56:57:8e:b9:c7:fe:16:c3:dd:95:
1e:81:83:7c:03:db:80:89:db:70:91:41:36:d2:b8:
67:02:55:c7:c6:b5:61:db:de:57:68:d4:dd:0e:b2:
6a:de:4a:59:c3:c2:62:23:86:8b:6a:8d:03:67:a0:
44:77:8a:e6:01:74:b2:82:d9:eb:b7:3e:f0:bd:17:
61:b2:97:bf:ee:e0:75:70:2c:18:cf:b8:c4:fc:b7:
f9:d0:78:e6:ca:5f:9d:e0:10:58:cb:84:17:a1:a0:
c4:38:42:a4:99:41:58:ff:57:86:96:62:f4:28:60:
d8:04:7d:bc:3a:12:d5:36:ff:2f:35:fc:01:07:6e:
63:e8:73:7a:6c:71:0d:52:22:b3:b1:54:22:b1:59:
1e:34:cb:17:97:78:25:67:29:8d:19:79:0e:3c:d9:
6a:2c:e5:d8:9f:66:14:96:2c:af:69:3e:f2:54:db:
d1:8b:d1:a1:dd:af:da:c8:49:2c:58:e2:e1:13:42:
53:0f:38:50:22:de:5f:ca:e5:7d:76:f8:10:00:02:
b5:87:d9:99:40:a3:54:e0:13:b1:c6:d6:75:d5:39:
c6:16:d0:5b:72:f3:f4:27:ec:42:fa:ce:ee:40:5d:
ec:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:4E:F2:ED:A6:43:4E:00:8F:AA:25:DF:94:37:F8:66:FC:C5:21:DF
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Yk7y7aZDTgCPqiXflDf4ZvzFId8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.192.0/23
185.89.78.0/23
Signature Algorithm: sha256WithRSAEncryption
08:d0:c3:7e:6d:81:19:f3:76:d8:4c:6a:1f:d3:e5:35:5b:d7:
57:62:7c:64:ea:a0:48:10:46:ba:33:e3:e1:7d:ca:76:6e:fa:
9f:26:68:f3:4c:5b:99:6c:f6:56:0a:87:b1:d4:7e:d6:f8:3f:
37:34:a6:3b:8f:26:37:f7:68:50:59:0e:35:d0:06:01:87:e3:
c3:ec:69:cb:60:04:83:6e:b2:26:c3:d6:68:14:ab:5f:42:e6:
0c:ad:07:97:8e:d6:c2:66:41:8b:1f:65:c4:d6:75:88:58:47:
80:c2:5d:d3:dd:a9:65:12:7e:81:44:5d:f6:89:ff:52:db:51:
7e:c4:a0:a6:32:70:66:f8:aa:d0:37:2e:6e:0e:c9:94:4b:62:
d7:1d:e3:4b:52:e0:af:6f:36:12:29:97:01:72:66:36:6d:43:
af:cb:67:3f:53:ce:98:ed:2b:34:b4:c0:d4:5a:0d:6f:f8:27:
6e:45:37:21:05:09:61:90:45:36:83:f2:54:38:74:2b:11:2e:
1a:a2:19:f5:2c:72:01:a6:42:34:10:ac:72:ef:46:19:29:a0:
e5:67:85:5f:58:91:78:df:f3:e5:5c:c5:58:3a:f0:8a:f2:06:
0e:a0:69:7c:34:e8:40:e1:04:0b:99:a0:2e:75:5d:8a:1c:05:
1b:85:4f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:46:14 2025 by rpki-client