Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/ab38bf-14b8-4170-830b-16958dd66802/1/yJdeb1A6KBUZcevyRAdjiuiX2zs.roa
File: yJdeb1A6KBUZcevyRAdjiuiX2zs.roa (raw, json)
Hash identifier: 6oeWPg0nXpIYTK3FwRiUOi++kOGHAKNuoeiQl/pAsew=
Subject key identifier: C8:97:5E:6F:50:3A:28:15:19:71:EB:F2:44:07:63:8A:E8:97:DB:3B
Certificate issuer: /CN=98de16b5d2a3ed24e3215d026700181a184d9dbb
Certificate serial: 018CC79510D34B79E207ED7344299EA130D1
Authority key identifier: 98:DE:16:B5:D2:A3:ED:24:E3:21:5D:02:67:00:18:1A:18:4D:9D:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mN4WtdKj7STjIV0CZwAYGhhNnbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/ab38bf-14b8-4170-830b-16958dd66802/1/yJdeb1A6KBUZcevyRAdjiuiX2zs.roa
Signing time: Tue 02 Jan 2024 00:31:24 +0000
ROA not before: Tue 02 Jan 2024 00:31:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211808
IP address blocks: 185.237.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:10:d3:4b:79:e2:07:ed:73:44:29:9e:a1:30:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98de16b5d2a3ed24e3215d026700181a184d9dbb
Validity
Not Before: Jan 2 00:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c8975e6f503a28151971ebf24407638ae897db3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f0:b4:03:d3:16:d6:9f:fd:28:54:10:93:b2:
39:71:99:72:3f:ab:64:86:bf:89:1c:74:9a:69:1a:
e6:c1:d5:e8:44:0f:e5:97:05:19:d3:99:9c:cb:3f:
9c:41:97:a2:d8:fb:c3:de:0e:4b:f4:31:50:87:e5:
0e:7c:e7:0c:12:cd:19:c6:28:a8:9e:03:7e:c7:5b:
a5:9a:1f:3d:81:16:78:34:1a:4f:d7:52:a7:b1:ff:
81:dc:fe:04:c2:b1:78:16:ee:7c:fd:1a:9e:92:fd:
c6:81:b1:13:75:0e:ee:31:c6:4a:3c:50:29:f2:e1:
9d:81:a6:b5:70:d9:62:ea:1e:f2:ca:5f:d8:8c:b3:
d3:4b:dc:ba:82:6b:26:e9:7b:d6:7b:2f:83:47:d0:
7a:df:31:c6:36:a7:8a:7f:d7:a7:7f:57:dc:bf:64:
9c:e6:eb:d6:26:39:53:4d:d8:3b:0a:37:fc:4e:6a:
21:a4:9c:4a:9d:27:7f:b6:46:0f:de:a0:fb:92:a0:
42:69:b5:60:c4:99:1b:13:65:13:fe:a5:18:47:b3:
8f:33:81:70:5f:ff:da:5d:bc:8f:57:b5:67:42:d4:
3a:c0:ed:4f:58:c0:1f:13:a2:7a:05:ed:4f:e0:9e:
ea:48:27:4a:1e:d1:81:f0:dc:fb:d6:56:70:10:4a:
04:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:97:5E:6F:50:3A:28:15:19:71:EB:F2:44:07:63:8A:E8:97:DB:3B
X509v3 Authority Key Identifier:
keyid:98:DE:16:B5:D2:A3:ED:24:E3:21:5D:02:67:00:18:1A:18:4D:9D:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mN4WtdKj7STjIV0CZwAYGhhNnbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/ab38bf-14b8-4170-830b-16958dd66802/1/yJdeb1A6KBUZcevyRAdjiuiX2zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/ab38bf-14b8-4170-830b-16958dd66802/1/mN4WtdKj7STjIV0CZwAYGhhNnbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.187.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:33:6a:eb:f4:0d:88:d0:ae:e4:10:cb:3b:57:c4:2f:57:ed:
5c:ab:11:4f:32:51:99:a0:2e:a1:0b:ed:fc:87:96:09:01:f5:
f1:9f:55:0d:ad:9f:d2:2e:37:0d:74:18:50:3f:63:34:41:00:
a1:68:15:7e:8d:90:7a:b2:c7:04:15:47:2c:a9:56:a1:d7:05:
58:6e:50:e1:22:ac:f4:f7:d4:51:7b:b8:b0:57:96:5d:fb:39:
45:45:68:cb:95:1a:c0:84:6b:88:80:69:11:79:1f:8e:b3:66:
5d:1f:16:e3:f0:be:32:18:11:51:f1:5b:26:b5:5a:b6:64:20:
02:ae:fd:de:88:22:3e:3a:69:b9:f6:cd:cf:c4:d3:8d:5d:a0:
4d:35:83:35:af:e6:a0:e7:dc:fa:a5:12:a9:05:28:b5:34:7f:
5b:ac:ab:2b:98:6a:21:15:45:f3:00:53:ac:5a:7f:2c:d7:9a:
42:c1:0d:24:1f:a7:43:16:2b:54:cc:0a:f7:ce:6b:32:40:a7:
da:e3:3e:77:0d:46:3e:e4:14:78:1a:13:75:c3:03:11:db:d5:
11:5b:2c:f3:08:e5:7e:d9:26:5c:e8:f8:13:66:1b:98:3a:47:
4b:04:15:ea:76:66:c6:de:b4:65:b5:6d:ab:15:04:d6:a0:11:
f0:58:47:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:42:48 2025 by rpki-client