Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/YPErtrY_oYSVWzmRvFXnMGS3kpw.roa
File: YPErtrY_oYSVWzmRvFXnMGS3kpw.roa (raw, json)
Hash identifier: Jf+eSJaNIiv8+YcQmVs/Y7AY/wJCJ7VaHFWnM4vS1FU=
Subject key identifier: 60:F1:2B:B6:B6:3F:A1:84:95:5B:39:91:BC:55:E7:30:64:B7:92:9C
Certificate issuer: /CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Certificate serial: 018572B42CCF3CD8BBAAC34FA2D0A334C900
Authority key identifier: 7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/YPErtrY_oYSVWzmRvFXnMGS3kpw.roa
Signing time: Mon 02 Jan 2023 13:38:08 +0000
ROA not before: Mon 02 Jan 2023 13:38:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 31.222.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:2c:cf:3c:d8:bb:aa:c3:4f:a2:d0:a3:34:c9:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Validity
Not Before: Jan 2 13:38:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60f12bb6b63fa184955b3991bc55e73064b7929c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f1:9b:81:34:31:cc:92:9f:a1:13:ce:d8:18:
83:9c:fc:bc:2b:b3:a3:46:27:a5:cd:38:52:f5:6d:
84:a4:7b:98:b5:a2:f0:a4:67:ec:8c:3f:ef:2d:eb:
03:d7:94:ab:9b:10:9c:63:09:74:bb:a0:b2:86:cb:
37:67:b8:14:89:9a:6f:40:46:a7:76:16:ac:14:8d:
8e:4d:99:70:7d:4e:77:41:56:69:f5:2e:14:12:f1:
34:c1:09:e3:5a:3d:fc:66:d1:76:34:4f:56:7b:84:
af:93:d2:63:36:6a:f7:52:23:87:a8:02:42:35:90:
a3:e0:96:9d:8e:a1:03:60:1e:a3:31:44:fc:59:60:
cd:ce:ec:a4:1e:ca:fc:6b:73:e8:33:95:bb:de:42:
40:b7:9a:51:0a:89:f6:85:b9:df:43:21:61:79:d8:
44:10:1d:e6:05:9d:57:0a:06:c1:c3:b6:17:ac:41:
62:d7:37:14:1e:49:e5:bd:7f:1c:3c:73:92:13:25:
97:3f:b2:f7:82:5f:d1:b3:32:a4:0b:80:2d:52:6e:
fe:7d:74:44:fe:53:a1:d1:d0:78:69:a2:3b:58:2d:
28:40:11:69:d0:c6:cc:4c:11:23:74:c9:23:08:77:
ff:5f:90:a0:56:c5:ab:c3:c3:c7:d0:07:cc:81:e1:
d6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F1:2B:B6:B6:3F:A1:84:95:5B:39:91:BC:55:E7:30:64:B7:92:9C
X509v3 Authority Key Identifier:
keyid:7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/YPErtrY_oYSVWzmRvFXnMGS3kpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/ewqeoIbYHu1NKd5GPWApCI_jvsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.228.0/24
Signature Algorithm: sha256WithRSAEncryption
39:5b:a3:a1:f5:c2:fa:0d:a2:2b:54:2e:6c:25:4d:3a:5a:4c:
45:f4:ec:73:5a:7f:d6:f6:7f:a2:31:5e:42:ae:df:1e:23:2c:
d7:9f:b7:47:30:80:18:36:21:45:48:af:56:4a:f2:96:7d:51:
fb:13:d9:79:ff:08:2d:e9:57:c4:7c:b5:9c:56:23:7e:73:bf:
2e:70:3c:d0:d6:63:47:48:8b:39:cc:c1:3d:a4:b1:9f:14:3f:
29:bf:cc:64:26:06:4e:ae:da:3d:d4:0d:fd:58:98:92:c9:28:
e4:7c:c6:cf:8b:f9:a2:4e:12:0a:b5:cc:1d:23:6d:0e:bc:94:
5d:88:db:46:9a:02:30:d1:1e:9d:b0:a9:c8:02:55:88:9e:25:
10:d6:41:81:5b:60:0a:a9:29:1f:96:4c:27:b4:bd:6f:30:e4:
2b:a7:1f:84:94:0e:fa:79:05:78:66:ff:ae:a6:a5:44:2b:d6:
3f:59:47:57:b0:5f:bd:99:03:d2:e9:d8:30:46:e5:3f:9e:ac:
16:6d:e2:90:b5:ca:f9:c2:5d:7e:45:82:65:72:e2:99:fc:29:
c6:13:74:e6:54:50:39:5c:87:08:b2:11:45:5a:20:7d:d7:0f:
54:f2:53:f7:21:f0:09:78:d2:d3:2f:a0:17:80:d5:2f:fa:a1:
a5:2e:5b:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVytCzPPNi7qsNPotCjNMkAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiMGE5ZWEwODZkODFlZWQ0ZDI5ZGU0NjNkNjAyOTA4OGZl
M2JlYzEwHhcNMjMwMTAyMTMzODA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGYxMmJiNmI2M2ZhMTg0OTU1YjM5OTFiYzU1ZTczMDY0Yjc5MjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjvGbgTQxzJKfoRPO2BiDnPy8K7Oj
RielzThS9W2EpHuYtaLwpGfsjD/vLesD15SrmxCcYwl0u6Cyhss3Z7gUiZpvQEan
dhasFI2OTZlwfU53QVZp9S4UEvE0wQnjWj38ZtF2NE9We4Svk9JjNmr3UiOHqAJC
NZCj4JadjqEDYB6jMUT8WWDNzuykHsr8a3PoM5W73kJAt5pRCon2hbnfQyFhedhE
EB3mBZ1XCgbBw7YXrEFi1zcUHknlvX8cPHOSEyWXP7L3gl/RszKkC4AtUm7+fXRE
/lOh0dB4aaI7WC0oQBFp0MbMTBEjdMkjCHf/X5CgVsWrw8PH0AfMgeHWRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGDxK7a2P6GElVs5kbxV5zBkt5KcMB8GA1UdIwQY
MBaAFHsKnqCG2B7tTSneRj1gKQiP477BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXdxZW9JYllIdTFOS2Q1R1BXQXBDSV9qdnNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS80Yjk3YzQtZGUwYy00NWQ3LThmMTct
NWQwYWUxNDU2M2Q3LzEvWVBFcnRyWV9vWVNWV3ptUnZGWG5NR1Mza3B3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS80Yjk3YzQtZGUwYy00NWQ3LThmMTctNWQwYWUxNDU2M2Q3
LzEvZXdxZW9JYllIdTFOS2Q1R1BXQXBDSV9qdnNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH97kMA0G
CSqGSIb3DQEBCwUAA4IBAQA5W6Oh9cL6DaIrVC5sJU06WkxF9OxzWn/W9n+iMV5C
rt8eIyzXn7dHMIAYNiFFSK9WSvKWfVH7E9l5/wgt6VfEfLWcViN+c78ucDzQ1mNH
SIs5zME9pLGfFD8pv8xkJgZOrto91A39WJiSySjkfMbPi/miThIKtcwdI20OvJRd
iNtGmgIw0R6dsKnIAlWIniUQ1kGBW2AKqSkflkwntL1vMOQrpx+ElA76eQV4Zv+u
pqVEK9Y/WUdXsF+9mQPS6dgwRuU/nqwWbeKQtcr5wl1+RYJlcuKZ/CnGE3TmVFA5
XIcIshFFWiB91w9U8lP3IfAJeNLTL6AXgNUv+qGlLluw
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:59 2025 by rpki-client