Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/a44fdd-0dbb-4857-b102-29973b4e342f/1/YhA6PWrwSvVXY7xCmz8MvABsSPM.roa
File: YhA6PWrwSvVXY7xCmz8MvABsSPM.roa (raw, json)
Hash identifier: vkKOmicFPHUfrOJ3Z5R1uB6jMG6mUVj7Q5IAvRJsUDU=
Subject key identifier: 62:10:3A:3D:6A:F0:4A:F5:57:63:BC:42:9B:3F:0C:BC:00:6C:48:F3
Certificate issuer: /CN=e7c84a48be16fc0deb4fde11869237e64954874d
Certificate serial: 019925CF
Authority key identifier: E7:C8:4A:48:BE:16:FC:0D:EB:4F:DE:11:86:92:37:E6:49:54:87:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58hKSL4W_A3rT94RhpI35klUh00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/a44fdd-0dbb-4857-b102-29973b4e342f/1/YhA6PWrwSvVXY7xCmz8MvABsSPM.roa
Signing time: Sat 01 Jan 2022 09:02:24 +0000
ROA not before: Sat 01 Jan 2022 09:02:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 84.54.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26813903 (0x19925cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c84a48be16fc0deb4fde11869237e64954874d
Validity
Not Before: Jan 1 09:02:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62103a3d6af04af55763bc429b3f0cbc006c48f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:31:ff:33:6d:e2:72:cb:65:e5:56:87:91:35:
11:f0:79:1b:b8:ea:21:35:cb:57:8e:fb:f1:83:6e:
ce:89:3a:e4:6f:42:67:e9:8d:00:62:fe:1c:96:64:
72:d1:6d:47:e2:c0:1d:8a:a3:c4:d5:4f:18:fb:df:
f7:94:0d:d3:c4:69:fe:23:e4:7b:66:2c:86:1f:44:
73:4d:0f:ed:78:fa:18:6b:6c:18:a9:9c:a5:30:21:
35:f5:08:39:78:a4:1d:4a:1c:09:6f:81:22:14:ca:
7f:cf:99:fc:0a:98:15:7d:13:e4:a9:33:3b:d4:08:
59:73:9d:3d:76:86:d8:bc:9a:ec:7a:ba:c5:f6:fe:
a2:12:fa:16:b1:9b:8e:c9:ac:06:7f:7b:07:83:c0:
4c:c3:9a:b1:23:5b:02:e8:cb:ec:b5:33:2c:17:5b:
40:c6:09:7c:34:d4:cb:57:77:d9:4e:8a:df:fc:b8:
48:5d:15:85:5e:dc:b2:c5:a1:f3:22:da:ce:fb:25:
ae:fe:5b:85:a6:3e:3d:72:da:36:05:c1:74:00:dd:
c2:b6:f0:0f:05:f6:c2:70:9d:5b:41:73:8c:af:89:
dc:6d:8f:94:7a:77:be:2e:19:b4:eb:d4:dc:f7:6e:
76:1c:b3:f5:7e:3d:f2:a0:a8:b0:63:6c:9c:6e:30:
99:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:10:3A:3D:6A:F0:4A:F5:57:63:BC:42:9B:3F:0C:BC:00:6C:48:F3
X509v3 Authority Key Identifier:
keyid:E7:C8:4A:48:BE:16:FC:0D:EB:4F:DE:11:86:92:37:E6:49:54:87:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58hKSL4W_A3rT94RhpI35klUh00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a44fdd-0dbb-4857-b102-29973b4e342f/1/YhA6PWrwSvVXY7xCmz8MvABsSPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a44fdd-0dbb-4857-b102-29973b4e342f/1/58hKSL4W_A3rT94RhpI35klUh00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.33.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:f4:2c:d8:f3:98:d7:00:06:12:7d:de:f6:2d:1c:05:05:a2:
1c:87:66:31:bb:f0:4e:91:b9:83:ae:72:55:59:5b:16:45:7c:
6b:55:90:6e:cd:f9:80:2f:c0:65:8e:fa:24:99:a4:cf:8b:4c:
22:66:06:2c:93:92:56:ac:ba:30:72:7b:1f:f4:6b:56:bf:c0:
33:8a:c6:1c:9f:3b:19:84:d8:5c:25:32:53:47:34:e6:fb:bc:
a3:38:1e:55:da:4c:92:95:1c:5f:90:7c:7c:26:ee:77:c4:88:
f2:85:34:a3:aa:20:7c:24:f3:85:64:1e:cd:e2:d2:72:3a:fe:
2a:c2:80:4e:27:89:24:af:26:c9:22:e7:e1:97:ce:71:79:00:
81:36:ca:5e:9e:e9:2e:e7:67:bb:db:78:d6:ba:c0:5a:7c:01:
10:a6:aa:7d:21:7b:ec:20:a9:bd:cf:ed:74:d8:d4:0e:60:01:
aa:f5:2c:6f:3d:a7:d1:a3:f1:81:ef:3d:05:19:5b:ed:02:fb:
d9:90:b8:10:b7:ff:e6:30:b0:0f:7d:99:1e:a0:43:e1:9a:27:
33:31:10:60:82:d9:eb:20:a6:cd:9c:e6:50:a2:05:55:81:ea:
6f:a6:2d:0a:2f:34:c6:f0:ad:7d:3e:8d:32:47:fe:ac:c3:0b:
58:5d:4c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:41 2025 by rpki-client