Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/YMrVqJkMf9SPFt5j2-Zf0gT9UcY.roa
File: YMrVqJkMf9SPFt5j2-Zf0gT9UcY.roa (raw, json)
Hash identifier: e6HRyjr4qwTjMpOD/wl4WMkJH0N4yLR7+kf231AoUus=
Subject key identifier: 60:CA:D5:A8:99:0C:7F:D4:8F:16:DE:63:DB:E6:5F:D2:04:FD:51:C6
Certificate issuer: /CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Certificate serial: 753F51
Authority key identifier: F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/YMrVqJkMf9SPFt5j2-Zf0gT9UcY.roa
Signing time: Sat 01 Jan 2022 03:51:52 +0000
ROA not before: Sat 01 Jan 2022 03:51:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7683921 (0x753f51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Validity
Not Before: Jan 1 03:51:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60cad5a8990c7fd48f16de63dbe65fd204fd51c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:01:a7:66:25:d7:b4:24:dd:17:83:9b:91:6c:
b8:c4:96:be:28:f1:2f:6c:1d:22:ab:d0:6b:74:67:
ad:ad:d7:6f:26:02:00:14:f8:be:86:81:e5:44:1e:
38:bb:8f:b5:91:67:2f:92:49:1f:69:7d:83:58:dc:
67:de:58:e3:26:0e:d2:7e:ac:1f:bd:3e:1d:b9:1e:
70:d0:00:bb:78:c3:5f:75:50:78:9e:fd:9c:25:c5:
12:3d:84:1c:b2:c3:6a:5a:0b:12:86:56:b2:a4:01:
e4:14:c2:61:12:b3:bf:b2:dc:10:f4:56:92:b7:77:
1b:19:0f:d0:7b:3b:0b:39:f7:62:00:59:6d:ac:54:
e8:4f:da:16:b8:72:c9:44:d8:24:29:bd:75:7b:dd:
ce:c8:7b:54:a9:74:cb:1a:57:c9:eb:f3:68:f0:55:
e6:c1:9a:ff:a4:ab:7e:68:32:9a:b3:0d:80:6e:d7:
2d:95:18:2f:a9:27:2b:2c:24:52:91:33:a5:b5:5c:
45:c1:05:65:8c:db:6f:f8:23:a6:8c:ca:d8:b3:61:
70:db:5b:b3:ef:6b:a3:30:7f:12:54:40:8b:04:dd:
79:02:ba:ed:99:94:f3:d6:5a:a0:dc:88:af:d5:31:
3f:f8:91:46:f0:46:24:a3:d6:a5:57:47:4e:ef:f3:
ad:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:CA:D5:A8:99:0C:7F:D4:8F:16:DE:63:DB:E6:5F:D2:04:FD:51:C6
X509v3 Authority Key Identifier:
keyid:F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/YMrVqJkMf9SPFt5j2-Zf0gT9UcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/1-YDJHr8QlkYqK3RGncYctKOsPTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
41:28:2f:47:7f:07:78:f1:3f:80:94:30:26:d1:37:b9:5a:d5:
b8:68:c9:f2:70:07:55:0f:ee:55:73:bd:a6:2b:e9:dd:0f:21:
78:e1:11:16:ed:d8:d8:12:f9:e5:7b:38:6a:93:2a:0c:27:9f:
6e:66:74:0c:64:3d:1a:f0:4d:39:f5:a0:b9:cf:e1:4d:fd:a9:
9f:c8:cf:01:26:0e:07:48:51:3d:09:61:90:07:54:19:06:f0:
a5:a3:52:8d:ac:e0:83:1f:c7:02:3d:94:0e:e4:78:60:b7:09:
29:29:c1:74:46:6f:5f:1e:bb:fe:03:a1:13:ea:fb:3e:09:05:
15:92:bd:bb:76:6f:4e:10:13:15:2d:75:17:bd:db:d4:3c:75:
ba:03:70:ce:f9:2c:06:16:7e:52:44:24:dd:1e:16:b2:93:45:
43:bc:52:96:62:74:70:2e:6f:36:65:77:97:ae:8d:ac:7f:8c:
3b:74:2d:77:17:74:b7:09:eb:09:20:d9:c1:1f:80:0b:5b:3d:
14:82:04:3c:b2:51:00:b9:00:1b:a2:d4:c0:51:34:ac:82:39:
58:58:2b:a2:a8:b3:00:17:cb:1b:e0:db:eb:10:11:c8:8c:72:
f0:1e:11:e0:87:5b:06:1c:7a:ae:1e:55:52:b6:cd:ba:04:d9:
30:34:01:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:14:11 2025 by rpki-client