Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/YxVBGHzpZ098_zTBEpObTl9p4Eg.roa
File: YxVBGHzpZ098_zTBEpObTl9p4Eg.roa (raw, json)
Hash identifier: JesGckTpDCNMKUvtvdV1ogwXfe3HeaDGJnDqvGhYCXo=
Subject key identifier: 63:15:41:18:7C:E9:67:4F:7C:FF:34:C1:12:93:9B:4E:5F:69:E0:48
Certificate issuer: /CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Certificate serial: 0195D1350E810C1E590B7EE52019820CE234
Authority key identifier: C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/YxVBGHzpZ098_zTBEpObTl9p4Eg.roa
Signing time: Wed 26 Mar 2025 06:47:49 +0000
ROA not before: Wed 26 Mar 2025 06:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 272988
IP address blocks: 185.240.88.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d1:35:0e:81:0c:1e:59:0b:7e:e5:20:19:82:0c:e2:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Validity
Not Before: Mar 26 06:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=631541187ce9674f7cff34c112939b4e5f69e048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:42:98:80:f3:b4:58:b9:f9:18:4e:2f:c3:b7:
e5:45:3e:a5:27:19:27:74:a5:a7:62:e2:96:8f:f3:
58:c1:96:e9:8b:14:96:b8:8e:56:61:b7:53:41:ce:
2b:f5:51:e3:f5:40:59:2f:01:5d:f1:69:09:b1:6b:
07:5d:14:7f:3d:7a:5c:cc:52:cc:c8:1e:24:46:b5:
9a:45:3f:52:82:3e:bc:e1:16:56:eb:1a:94:ad:0c:
68:32:e8:76:4b:2a:af:f8:08:a2:2f:86:de:5a:55:
cc:93:19:2e:ef:e6:3a:3c:cb:82:db:4d:33:c7:91:
b6:cf:c1:f9:aa:a6:00:d7:08:9f:0e:15:28:a8:52:
84:c6:58:c4:e9:49:4e:e1:8a:61:a5:f2:b2:49:b8:
fb:34:f1:93:18:e6:9a:9a:79:2c:c0:b8:b7:cd:b1:
6d:51:2f:96:c7:9d:0b:fe:7f:60:e9:64:03:72:e6:
7b:84:75:75:f1:55:b2:85:fb:80:39:aa:ac:c9:5c:
59:4b:58:44:98:a6:01:d9:36:7f:50:77:33:89:59:
68:17:69:4e:3b:02:30:14:7b:ad:f9:f9:36:ce:0a:
33:e2:0e:4b:4d:8a:9a:e5:b3:a3:59:94:da:2f:f8:
49:19:06:8a:f2:c2:cd:0a:b4:76:f3:d5:8b:82:41:
1d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:15:41:18:7C:E9:67:4F:7C:FF:34:C1:12:93:9B:4E:5F:69:E0:48
X509v3 Authority Key Identifier:
keyid:C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/YxVBGHzpZ098_zTBEpObTl9p4Eg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/wOVJ_c7rApEsiodByBaAa74ZxEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.88.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:39:d8:6f:66:b1:9b:5b:31:e2:91:2f:7c:bd:2a:84:f1:07:
9c:5a:32:ab:ba:99:8b:12:95:73:39:73:4a:56:81:97:bd:c0:
59:94:db:f7:0f:ea:bf:e5:8f:f5:5e:88:50:5e:14:dd:fd:1a:
f1:cd:0e:9b:1e:33:b5:25:2c:de:46:f4:ad:32:f8:d1:14:38:
fe:dc:ba:b2:19:66:2c:56:dc:0d:a9:46:5c:9f:a0:31:d8:70:
25:87:14:24:a3:fb:f0:5c:89:48:ce:ba:ad:4d:c6:4d:14:5a:
28:9e:a8:f0:a3:06:aa:d3:d1:08:92:c5:6b:dc:f2:93:aa:af:
81:80:9a:8f:81:f8:45:50:43:e3:86:d0:d4:62:b4:28:31:e2:
02:5f:8d:5c:ec:0b:95:f8:75:0f:6f:cb:35:4a:44:61:83:e3:
5f:0c:42:79:c1:8e:4e:7b:03:64:f1:ef:a6:a7:a3:b8:56:a7:
43:92:80:0a:4d:8f:a3:5b:1b:f4:f5:d3:20:fc:74:c9:a7:42:
58:e2:24:14:8e:97:a7:55:c2:89:d6:a6:57:97:e3:e4:7b:a5:
b4:0d:61:66:6a:f6:6a:72:de:fe:e6:80:05:a4:f7:98:21:b1:
f9:8a:36:06:d5:6f:10:19:03:c4:b1:43:b2:38:8f:fc:56:63:
c3:d2:15:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:59:13 2025 by rpki-client