Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/Y9SFDLuQ5vhJiY-gLqYoOwikhJU.roa
File: Y9SFDLuQ5vhJiY-gLqYoOwikhJU.roa (raw, json)
Hash identifier: 52aUxun/5Ah7J5ko8cXMj/iG0V8QrnSYw3W6QfWb+MM=
Subject key identifier: 63:D4:85:0C:BB:90:E6:F8:49:89:8F:A0:2E:A6:28:3B:08:A4:84:95
Certificate issuer: /CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Certificate serial: 0185CBBA052584D958496AA6B22BADFF7645
Authority key identifier: DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/Y9SFDLuQ5vhJiY-gLqYoOwikhJU.roa
Signing time: Thu 19 Jan 2023 20:30:43 +0000
ROA not before: Thu 19 Jan 2023 20:30:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59210
IP address blocks: 195.128.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cb:ba:05:25:84:d9:58:49:6a:a6:b2:2b:ad:ff:76:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Validity
Not Before: Jan 19 20:30:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63d4850cbb90e6f849898fa02ea6283b08a48495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:4e:3f:94:ef:05:8c:be:9b:a0:fa:8c:02:df:
f9:ee:ab:39:db:3d:3a:a5:9e:59:fb:4b:31:a6:f7:
62:d4:95:d5:ee:1d:c1:95:8a:6e:67:43:f3:fc:20:
be:85:39:2d:50:d0:0a:d0:a5:c3:d3:74:0d:a6:b1:
25:0b:18:4d:33:6b:c4:ea:88:78:dd:02:8e:c4:0b:
ad:20:2b:86:67:63:4d:79:22:97:59:81:ae:78:09:
2a:4f:6b:00:e0:80:80:f8:6c:ec:bc:ba:61:15:d1:
c7:ce:6b:1e:59:95:30:bb:75:4a:b9:e0:a6:ab:80:
9e:a1:6f:db:ba:b0:4c:af:51:24:a7:ad:4e:34:fe:
b0:69:0f:f0:dd:22:9f:24:61:5a:40:30:a1:20:a0:
94:e5:42:88:f9:67:4e:f1:8a:28:cc:44:7c:be:92:
95:e8:2b:0f:cf:a9:a5:8c:12:d9:10:fa:f2:f9:48:
9d:ec:8d:5f:e7:87:1f:63:41:8c:40:6c:40:91:cd:
79:61:ce:68:99:2a:55:7c:0c:11:cd:82:89:ea:46:
34:3a:ac:c9:34:8b:3a:fd:80:17:cd:be:15:66:bf:
2b:3d:09:d1:7f:77:24:54:6f:92:b9:65:1e:ba:24:
90:22:5c:f1:1e:f4:1d:53:b6:bc:db:c6:15:b7:3f:
1c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D4:85:0C:BB:90:E6:F8:49:89:8F:A0:2E:A6:28:3B:08:A4:84:95
X509v3 Authority Key Identifier:
keyid:DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/Y9SFDLuQ5vhJiY-gLqYoOwikhJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/2-jMj1rx5zYtRU892RqClSkZ22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.136.0/24
Signature Algorithm: sha256WithRSAEncryption
62:a0:86:4f:8c:6e:3e:5b:74:ce:c4:92:d8:e2:b0:08:84:38:
76:42:b4:c7:b6:fb:f9:cf:58:b5:96:3f:99:ff:92:52:c3:9e:
fc:18:b8:bf:98:7e:d3:50:f5:69:cf:f1:b6:08:0f:da:07:9b:
af:5f:a7:6f:c4:c4:3a:80:91:14:3f:9b:72:33:5c:c1:1e:8a:
49:52:4d:b3:a7:1b:81:8d:b2:6e:7c:cf:93:1d:73:a0:82:a6:
ac:93:6e:31:05:e2:16:34:ba:7c:58:c4:43:8a:18:9e:0e:ea:
7a:43:28:17:e4:58:db:0a:8b:44:92:f4:b9:3e:b4:56:12:11:
7b:c7:54:30:54:a1:1a:e4:f2:aa:5f:05:21:28:e6:11:f2:c6:
23:10:74:63:90:cc:3b:fb:24:93:b4:25:16:5d:af:e9:e3:52:
ec:04:0f:af:3c:62:82:d7:30:cb:fb:43:cc:17:e3:34:f2:27:
78:f1:62:02:16:6b:f4:9f:ab:e1:d8:95:df:6d:ea:f4:27:4e:
1c:64:b7:3d:65:ba:d9:a3:75:d5:e7:c5:55:8d:fd:e1:21:58:
5a:59:ff:2c:2b:a7:04:c6:d8:b6:ba:71:65:b4:43:f2:db:2d:
bf:f0:a4:c7:33:17:08:64:3f:32:a5:f4:5d:92:07:c9:ab:64:
2f:fd:d3:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 06:57:43 2025 by rpki-client