Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/y3YJCdjZhFmEU7Ma4yUFjNhHZNM.roa
File: y3YJCdjZhFmEU7Ma4yUFjNhHZNM.roa (raw, json)
Hash identifier: qbvq/f6K8+CfNe8AMox5mmWuIE25V/zdwjJAgn37wO0=
Subject key identifier: CB:76:09:09:D8:D9:84:59:84:53:B3:1A:E3:25:05:8C:D8:47:64:D3
Certificate issuer: /CN=65865968a1d8f4f377865c913af3b9af890d7cce
Certificate serial: 1067197E
Authority key identifier: 65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/y3YJCdjZhFmEU7Ma4yUFjNhHZNM.roa
Signing time: Wed 23 Mar 2022 23:25:33 +0000
ROA not before: Wed 23 Mar 2022 23:25:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8288
IP address blocks: 185.161.175.0/24 maxlen: 24
185.161.174.0/24 maxlen: 24
185.161.174.0/23 maxlen: 23
2a07:c387::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275192190 (0x1067197e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65865968a1d8f4f377865c913af3b9af890d7cce
Validity
Not Before: Mar 23 23:25:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb760909d8d984598453b31ae325058cd84764d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5b:c0:fb:de:7f:6a:ff:79:54:24:af:3f:b7:
6f:67:91:95:47:55:f9:16:a6:44:21:47:0b:33:29:
16:1a:3b:70:cf:c7:3a:b9:91:fe:24:3a:df:6b:a0:
b2:e6:45:48:80:59:cd:ab:30:39:d3:9d:2e:ef:21:
f2:c4:30:12:e3:16:60:1a:69:1f:3f:a2:35:fb:1c:
59:3f:0b:c2:34:55:62:85:03:eb:68:4d:62:3f:1a:
f4:10:da:cc:76:e7:46:71:94:a8:d5:38:da:f9:9a:
5d:42:f7:02:13:d5:db:ef:2e:72:07:cf:62:52:98:
bc:46:a1:0d:99:ed:9d:46:09:c0:30:fd:25:cd:af:
2b:92:58:73:02:02:08:3c:ac:26:e6:a1:a0:80:7c:
61:43:1d:83:e3:cf:01:70:37:33:22:ec:6f:a2:90:
62:a8:ac:93:78:7d:61:02:e2:74:68:f2:b4:83:ed:
0b:88:e0:5c:bc:4a:ae:db:8a:4c:98:08:c5:9d:55:
53:86:e7:a9:e4:32:c8:cf:8a:b0:55:45:08:30:f3:
2d:28:9b:bb:93:22:76:3f:57:35:99:13:16:ee:fe:
09:71:dd:d4:51:79:89:c8:77:9c:c5:7a:11:7c:12:
0c:3b:a9:8e:4b:dc:4b:15:c7:e3:30:25:b2:e0:23:
41:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:76:09:09:D8:D9:84:59:84:53:B3:1A:E3:25:05:8C:D8:47:64:D3
X509v3 Authority Key Identifier:
keyid:65:86:59:68:A1:D8:F4:F3:77:86:5C:91:3A:F3:B9:AF:89:0D:7C:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYZZaKHY9PN3hlyROvO5r4kNfM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/y3YJCdjZhFmEU7Ma4yUFjNhHZNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32c5ce-28b2-47d7-abd5-2e9d6ca08701/1/ZYZZaKHY9PN3hlyROvO5r4kNfM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.174.0/23
IPv6:
2a07:c387::/32
Signature Algorithm: sha256WithRSAEncryption
a4:39:7e:d2:a2:63:47:be:c3:62:0a:91:49:46:e3:b2:65:94:
35:f8:bd:ad:42:10:f1:28:7e:c7:5a:4c:49:7f:13:6f:86:24:
d4:24:78:0b:e1:aa:c6:a7:4d:fc:02:80:a6:bd:3c:37:ae:60:
22:b0:ef:ee:22:00:b6:0a:32:98:57:f4:46:1f:77:d3:65:dc:
f3:ec:61:05:7b:67:c2:2c:27:e6:0f:07:d8:6b:e3:b2:65:eb:
12:ad:35:67:dd:79:5c:c5:3b:ca:b2:8c:24:ee:cf:3b:ee:5f:
da:52:5e:b8:52:37:02:dc:b8:e4:e4:d4:e3:d7:dd:21:7f:ed:
1b:8d:b4:23:35:7f:dc:4f:f1:9e:c4:d0:35:d9:24:1f:0b:36:
b6:23:c5:62:04:3b:4d:fa:1d:ad:09:c3:c1:9a:f7:e3:46:73:
57:ad:aa:ef:b5:fc:71:e6:36:fa:b2:c5:2e:0d:90:fb:e5:4f:
97:91:88:84:5a:6a:b7:27:c0:39:3b:1a:90:03:8c:5e:51:a4:
1b:bb:4a:34:6f:64:d2:de:01:a7:4a:dd:da:e7:e4:ed:ee:69:
78:f6:8d:65:15:86:62:42:f8:f2:b1:0e:45:28:0f:9d:4e:18:
64:f6:c7:c3:df:bc:04:87:e7:38:a9:0a:d2:21:c1:58:79:0d:
fe:64:ae:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:47 2025 by rpki-client