Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/YPCVZfdLkRnpwRWt5j9ECFmQgkw.roa
File: YPCVZfdLkRnpwRWt5j9ECFmQgkw.roa (raw, json)
Hash identifier: hjB0AgE/bEo2D0PnqWgeOepZ8iy64G1fbs2WbSURiyc=
Subject key identifier: 60:F0:95:65:F7:4B:91:19:E9:C1:15:AD:E6:3F:44:08:59:90:82:4C
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 019421B1AA25D7122E30EE1195F03B06C671
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/YPCVZfdLkRnpwRWt5j9ECFmQgkw.roa
Signing time: Wed 01 Jan 2025 11:47:59 +0000
ROA not before: Wed 01 Jan 2025 11:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1239
IP address blocks: 178.159.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:aa:25:d7:12:2e:30:ee:11:95:f0:3b:06:c6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Jan 1 11:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60f09565f74b9119e9c115ade63f44085990824c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:37:4f:9f:45:ba:2d:5b:c1:a6:b2:f7:74:0c:
a7:e7:e9:6f:ab:65:b5:c3:e3:27:08:a3:71:78:07:
cf:4d:19:27:52:8e:f8:32:f5:b5:92:51:5a:71:00:
a7:fa:2e:0a:a8:89:6a:8b:6e:2b:87:bb:f0:ac:0b:
ee:35:05:46:02:4c:07:7a:0c:c2:d1:c2:97:3d:7b:
aa:a0:7b:63:b3:15:0b:12:d5:38:ad:ba:0c:5f:f4:
44:27:77:d8:cd:c4:c7:2d:e3:d5:c1:08:c9:30:43:
83:39:76:f7:08:18:db:42:94:79:b2:2a:cf:ef:b7:
41:90:77:db:47:33:67:8d:e8:42:ce:ee:71:41:5e:
93:78:05:5f:21:40:cd:73:d8:bd:76:cf:69:52:6d:
7f:6e:9d:96:72:bb:92:13:bc:94:30:fe:ce:fb:8c:
c3:ab:b1:47:24:60:1e:5c:dd:6b:87:c3:80:8b:ef:
79:2c:6c:97:c2:6b:50:3f:2f:2f:d2:fe:47:5d:5e:
3e:1f:ad:3a:b7:8d:40:31:9f:d1:7e:32:9f:51:7b:
b1:bb:2d:f0:91:8c:79:81:55:44:4b:df:df:81:1b:
16:47:fd:e0:23:26:ab:73:59:ac:9e:4a:0e:80:c1:
82:96:30:6f:5c:21:7e:43:0b:b0:cd:e6:61:a4:18:
c4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F0:95:65:F7:4B:91:19:E9:C1:15:AD:E6:3F:44:08:59:90:82:4C
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/YPCVZfdLkRnpwRWt5j9ECFmQgkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.94.0/24
Signature Algorithm: sha256WithRSAEncryption
78:d7:03:fb:e4:6d:d6:d9:6e:69:b4:53:3d:8b:fa:a0:89:f6:
d7:6c:2b:90:38:13:63:eb:8a:5c:ab:f4:3c:d2:73:c8:a3:57:
5a:c4:86:a6:ec:02:c8:62:4c:1e:c2:99:14:a6:4c:ad:0d:56:
e3:59:a9:dd:78:70:38:84:04:06:32:21:2a:b8:eb:26:0d:85:
c3:e6:88:18:22:9b:c5:84:11:a9:20:bf:82:a6:07:67:81:ef:
85:72:05:8c:db:72:33:ec:ce:d8:a0:50:e8:50:d3:e7:33:fe:
64:ef:01:ad:7b:9a:e5:13:b8:b3:ef:0b:c9:a8:ab:ac:3f:41:
46:5c:66:1e:e6:60:1e:27:dd:4b:6e:5c:2b:b2:cb:18:a8:88:
b0:76:ce:1c:16:83:4a:65:da:7b:83:ed:8c:d3:68:86:d5:93:
49:0a:a2:43:8e:3b:e0:6f:da:64:05:0a:9d:e0:b1:27:ca:b4:
f5:a9:49:3f:7d:06:ee:09:16:d2:b2:b5:a9:2f:86:9d:11:b8:
20:4e:35:c1:a8:3d:d8:b4:47:40:e6:76:6b:2c:d4:34:eb:40:
5c:1a:d6:9d:5c:9a:54:bf:e9:c0:4b:78:36:62:85:e2:12:d7:
59:2a:65:f8:35:33:95:aa:6c:21:cd:7f:ce:d1:fd:21:7b:35:
23:88:52:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsaol1xIuMO4RlfA7BsZxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlOWZkYzdmYjM5ZWJiYmVkNGVlNTRmNzAzZDNhYzYxNTNk
ZGVlNjkwHhcNMjUwMTAxMTE0NzU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGYwOTU2NWY3NGI5MTE5ZTljMTE1YWRlNjNmNDQwODU5OTA4MjRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjdPn0W6LVvBprL3dAyn5+lvq2W1
w+MnCKNxeAfPTRknUo74MvW1klFacQCn+i4KqIlqi24rh7vwrAvuNQVGAkwHegzC
0cKXPXuqoHtjsxULEtU4rboMX/REJ3fYzcTHLePVwQjJMEODOXb3CBjbQpR5sirP
77dBkHfbRzNnjehCzu5xQV6TeAVfIUDNc9i9ds9pUm1/bp2WcruSE7yUMP7O+4zD
q7FHJGAeXN1rh8OAi+95LGyXwmtQPy8v0v5HXV4+H606t41AMZ/RfjKfUXuxuy3w
kYx5gVVES9/fgRsWR/3gIyarc1msnkoOgMGCljBvXCF+QwuwzeZhpBjEVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGDwlWX3S5EZ6cEVreY/RAhZkIJMMB8GA1UdIwQY
MBaAFB6f3H+znru+1O5U9wPTrGFT3e5pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgt
NjkxZmY1YjQ0YjAxLzEvWVBDVlpmZExrUm5wd1JXdDVqOUVDRm1RZ2t3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgtNjkxZmY1YjQ0YjAx
LzEvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsp9eMA0G
CSqGSIb3DQEBCwUAA4IBAQB41wP75G3W2W5ptFM9i/qgifbXbCuQOBNj64pcq/Q8
0nPIo1daxIam7ALIYkwewpkUpkytDVbjWandeHA4hAQGMiEquOsmDYXD5ogYIpvF
hBGpIL+Cpgdnge+FcgWM23Iz7M7YoFDoUNPnM/5k7wGte5rlE7iz7wvJqKusP0FG
XGYe5mAeJ91LblwrsssYqIiwds4cFoNKZdp7g+2M02iG1ZNJCqJDjjvgb9pkBQqd
4LEnyrT1qUk/fQbuCRbSsrWpL4adEbggTjXBqD3YtEdA5nZrLNQ060BcGtadXJpU
v+nAS3g2YoXiEtdZKmX4NTOVqmwhzX/O0f0hezUjiFJP
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:59 2025 by rpki-client