Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/b0675b-e3bc-4dfc-bcca-23cd347d9719/1/y77UWpMS4DRW9Z6BffFmy0sfx48.roa
File: y77UWpMS4DRW9Z6BffFmy0sfx48.roa (raw, json)
Hash identifier: KSiUNsa6U/vvFkusIhQZvpAT5eNjje7RZN6spA/c4iI=
Subject key identifier: CB:BE:D4:5A:93:12:E0:34:56:F5:9E:81:7D:F1:66:CB:4B:1F:C7:8F
Certificate issuer: /CN=6137b5dbaaba28ae28c8e9a9780fb70c24fc9190
Certificate serial: 019420D650FCF1E2D0CD749F0022F9C8D3D0
Authority key identifier: 61:37:B5:DB:AA:BA:28:AE:28:C8:E9:A9:78:0F:B7:0C:24:FC:91:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YTe126q6KK4oyOmpeA-3DCT8kZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/b0675b-e3bc-4dfc-bcca-23cd347d9719/1/y77UWpMS4DRW9Z6BffFmy0sfx48.roa
Signing time: Wed 01 Jan 2025 07:48:23 +0000
ROA not before: Wed 01 Jan 2025 07:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207979
IP address blocks: 95.215.116.0/23 maxlen: 23
95.215.118.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:50:fc:f1:e2:d0:cd:74:9f:00:22:f9:c8:d3:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6137b5dbaaba28ae28c8e9a9780fb70c24fc9190
Validity
Not Before: Jan 1 07:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cbbed45a9312e03456f59e817df166cb4b1fc78f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dd:51:47:04:82:f3:47:e6:50:8a:76:4e:86:
e8:b7:14:a3:70:68:e4:d6:59:e3:8c:49:db:4d:22:
cb:ed:c7:62:3f:2c:8c:7f:57:29:80:6f:07:a8:46:
08:b5:c1:49:16:a2:52:ac:54:cb:87:cc:6c:09:44:
34:de:ba:c3:32:f7:c6:72:a5:19:a8:e3:35:f5:d3:
ec:9c:14:d5:ab:8c:fb:2e:d1:8e:f6:96:98:1f:19:
3e:4e:3b:f0:fa:b0:43:07:bb:a1:7b:38:fc:b0:2d:
39:50:97:cd:a8:d7:94:08:f9:dc:88:65:53:5d:b9:
e1:54:74:8a:6a:93:87:96:44:a5:8f:45:0e:22:02:
4a:95:20:21:d9:f7:d3:e3:03:76:4b:b3:b8:9b:92:
19:4b:ea:d1:62:1d:e4:e9:cc:db:bd:14:42:b7:c8:
4f:9b:88:99:ac:38:81:64:3d:dc:b6:51:c5:d0:fc:
1b:b5:b9:97:42:64:6e:9d:8f:a4:4b:80:8b:4b:d0:
69:d8:3f:04:a2:5a:a5:c0:f7:01:c8:a3:9a:13:a2:
1f:80:a0:50:20:c1:48:3b:44:a9:c5:24:67:94:8f:
23:36:4f:a8:f0:09:42:f2:33:a0:5c:a0:ca:ee:d2:
07:88:2c:ac:53:44:c9:12:8d:03:82:38:e7:5f:e5:
29:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BE:D4:5A:93:12:E0:34:56:F5:9E:81:7D:F1:66:CB:4B:1F:C7:8F
X509v3 Authority Key Identifier:
keyid:61:37:B5:DB:AA:BA:28:AE:28:C8:E9:A9:78:0F:B7:0C:24:FC:91:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YTe126q6KK4oyOmpeA-3DCT8kZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/b0675b-e3bc-4dfc-bcca-23cd347d9719/1/y77UWpMS4DRW9Z6BffFmy0sfx48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/b0675b-e3bc-4dfc-bcca-23cd347d9719/1/YTe126q6KK4oyOmpeA-3DCT8kZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.116.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:f3:7b:a7:7d:b3:87:3f:57:22:db:c8:87:6a:dc:79:6b:74:
4d:7d:ea:d1:88:de:3f:90:fa:32:fd:1a:70:84:a3:65:bb:f4:
7e:f5:8c:e1:ea:cb:3f:8b:e3:42:25:74:a6:e7:43:e9:ad:7f:
cb:26:2f:06:41:be:88:2e:a1:bf:2b:88:7a:0f:8e:c0:01:63:
dc:81:7b:26:bf:89:dc:34:69:ae:c1:df:af:b6:17:95:6f:a4:
c9:c9:51:3e:bb:62:25:f2:0e:46:45:d8:b6:97:f9:68:f2:92:
b6:bd:e2:bb:53:6c:24:82:27:e4:fa:41:0d:15:e9:c1:bb:26:
30:5c:11:71:b8:6c:61:d5:c0:d3:16:55:14:65:88:82:dd:3d:
bc:94:0f:6b:b7:c5:4b:33:4e:34:d1:b5:9f:92:e9:df:ba:1f:
05:10:b2:3e:b8:06:46:00:02:b0:44:69:5a:4f:02:3f:04:9d:
45:74:8a:b3:ae:7b:65:09:0e:f2:ba:1f:36:06:50:57:c8:68:
45:b5:40:38:78:85:9b:96:02:4f:ad:4a:46:62:c6:88:46:5f:
d9:47:59:62:99:85:26:7d:91:0b:a2:79:a7:8e:02:89:0b:81:
95:8a:ad:3c:45:6c:39:e4:32:07:73:84:13:24:ee:9c:df:cc:
3f:d7:5b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:40:49 2025 by rpki-client