Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/YtytLc7eBc__PQaCZ5bieqE0PK8.roa
File: YtytLc7eBc__PQaCZ5bieqE0PK8.roa (raw, json)
Hash identifier: mcsM6cL8bJan218YWXiYnnarMgYx1KeH/5qg2u68UTU=
Subject key identifier: 62:DC:AD:2D:CE:DE:05:CF:FF:3D:06:82:67:96:E2:7A:A1:34:3C:AF
Certificate issuer: /CN=17be827a580de61538ddefa28239468c4e901b40
Certificate serial: 018CC34923B4F6A7139158693E28990666F7
Authority key identifier: 17:BE:82:7A:58:0D:E6:15:38:DD:EF:A2:82:39:46:8C:4E:90:1B:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F76CelgN5hU43e-igjlGjE6QG0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/YtytLc7eBc__PQaCZ5bieqE0PK8.roa
Signing time: Mon 01 Jan 2024 04:29:59 +0000
ROA not before: Mon 01 Jan 2024 04:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50594
IP address blocks: 176.120.109.0/24 maxlen: 24
176.120.110.0/24 maxlen: 24
176.120.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:23:b4:f6:a7:13:91:58:69:3e:28:99:06:66:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17be827a580de61538ddefa28239468c4e901b40
Validity
Not Before: Jan 1 04:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62dcad2dcede05cfff3d06826796e27aa1343caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6b:19:d8:38:67:b7:21:de:1f:37:f3:91:df:
b0:00:ae:36:8f:84:66:30:04:76:6e:8f:67:66:14:
7e:47:8f:71:91:c7:ff:23:3d:dc:a3:68:89:28:5e:
63:5e:de:40:00:ac:34:b9:fd:8e:f6:c7:c3:73:df:
42:ab:9b:e8:9d:33:28:73:d0:c8:5f:a1:99:c2:6a:
b4:da:b2:12:e6:e7:7a:c2:cf:d3:20:44:51:79:61:
38:2b:54:df:51:68:60:25:06:90:1f:1e:a6:82:46:
a5:45:ac:47:31:0a:ef:a4:ec:e1:e3:1b:48:dd:29:
9b:b5:04:24:e5:39:09:3a:ec:80:b5:fa:af:c2:aa:
35:c3:15:9c:1a:d0:bd:40:77:1e:bc:bb:d9:87:ae:
5a:52:7f:ea:79:4f:66:d7:a9:24:49:be:54:42:ef:
74:91:6d:68:b9:b6:f1:b0:40:15:75:d1:e7:f6:78:
cf:34:70:6b:c0:11:77:dd:0d:49:6c:c1:9a:65:10:
ec:5a:27:35:17:a9:df:06:4b:7b:58:f4:7b:37:a0:
dd:82:87:e9:f5:82:18:9b:8f:a7:c4:19:01:46:b6:
e5:34:fa:94:47:36:d3:b3:3b:47:96:9c:66:39:5a:
cb:65:5f:e6:6c:1f:bb:bd:2d:25:15:23:e4:d5:73:
4a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DC:AD:2D:CE:DE:05:CF:FF:3D:06:82:67:96:E2:7A:A1:34:3C:AF
X509v3 Authority Key Identifier:
keyid:17:BE:82:7A:58:0D:E6:15:38:DD:EF:A2:82:39:46:8C:4E:90:1B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F76CelgN5hU43e-igjlGjE6QG0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/YtytLc7eBc__PQaCZ5bieqE0PK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/F76CelgN5hU43e-igjlGjE6QG0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.120.109.0-176.120.111.255
Signature Algorithm: sha256WithRSAEncryption
90:f5:0b:44:5f:ed:19:f0:50:e6:46:22:1e:85:3f:1c:e3:c7:
2b:0d:1a:3f:01:c7:c5:b8:7f:ea:61:4e:18:ad:84:70:49:59:
44:b8:66:e4:b4:63:61:e0:99:3c:8c:76:93:0f:aa:73:48:1e:
2f:5d:65:31:15:fe:89:26:6e:d9:c3:d8:81:34:53:96:6b:b6:
06:4f:62:66:c3:6a:6d:ad:c5:8c:39:13:5a:ec:44:5f:20:93:
cd:ea:68:a0:8d:7c:17:32:6e:54:9a:c9:91:d2:1f:e3:96:f1:
63:15:a8:9e:6e:e1:9e:fb:ac:60:60:95:c8:0f:2c:7f:c4:be:
27:e1:d1:31:e8:73:83:55:75:95:d0:63:ec:d9:de:a5:7e:4f:
46:ed:6b:0b:8e:2e:82:14:72:2e:cb:2c:83:37:ad:80:9c:04:
0a:df:f1:09:11:00:79:42:d8:66:31:6a:57:54:63:21:73:8e:
b9:aa:e7:19:41:48:99:26:a8:f7:8c:74:ad:5d:11:ff:df:34:
92:8d:dc:28:fb:90:64:b0:fd:39:29:f9:8e:d5:45:02:63:63:
d7:d1:b4:13:41:53:1c:c4:4d:5f:b5:3a:2c:e7:02:68:b5:fd:
bd:7b:3e:a5:f7:49:ac:56:00:01:c2:a9:af:ab:23:0a:d9:02:
94:64:40:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:31 2024 by rpki-client on console-ams.rpki-client.org