Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/6YXUAhch6iK7-C8KQ2hrr16wnII.roa
File: 6YXUAhch6iK7-C8KQ2hrr16wnII.roa (raw, json)
Hash identifier: ha6skQOPKv2oLaYKEEpJxqmd0116rRvlbheEotuAbZM=
Subject key identifier: E9:85:D4:02:17:21:EA:22:BB:F8:2F:0A:43:68:6B:AF:5E:B0:9C:82
Certificate issuer: /CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Certificate serial: 79AC9D
Authority key identifier: EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/6YXUAhch6iK7-C8KQ2hrr16wnII.roa
Signing time: Sat 01 Jan 2022 02:53:56 +0000
ROA not before: Sat 01 Jan 2022 02:53:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34962
IP address blocks: 185.255.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7974045 (0x79ac9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Validity
Not Before: Jan 1 02:53:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e985d4021721ea22bbf82f0a43686baf5eb09c82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:73:54:00:3e:c4:e6:0d:c2:15:96:c7:e4:a3:
3c:82:91:8a:fe:47:be:e5:54:4e:38:e9:86:53:c7:
a6:11:1a:e3:f0:c4:e2:39:3d:17:e6:2f:c3:7f:97:
dc:8d:11:fc:a5:aa:33:5d:b0:c1:71:3a:eb:5a:ff:
94:bb:23:b5:35:b6:42:05:50:67:4f:c3:87:30:f0:
f1:99:cd:9f:63:eb:7a:13:3c:8d:e9:b7:07:47:19:
2a:3f:c5:73:03:8c:85:a0:3c:83:7b:13:0a:3a:3c:
cc:21:ef:ab:35:a5:a1:f4:88:bb:7f:87:d9:27:e6:
ff:3f:2c:28:1f:ec:5b:33:98:e0:34:eb:9f:3f:1c:
f2:a3:64:80:7a:e2:b9:d7:8d:5f:84:b2:6d:95:0e:
f5:1f:5b:ab:f7:78:b4:e3:b6:50:c8:d9:2a:75:cd:
5d:67:0f:5b:21:c5:5f:c8:16:c1:2c:9b:1b:03:42:
0f:69:f6:f6:d3:16:b7:7b:ab:e9:12:c0:4b:6f:51:
52:84:08:cc:56:c1:ef:49:7f:1d:f0:85:8b:74:68:
5d:40:22:00:91:fe:3a:e8:85:6b:e9:1b:c2:26:0e:
0f:85:90:9a:d6:21:2a:0f:0a:45:ee:d5:02:28:73:
87:d9:a9:50:93:16:ac:21:66:ae:9e:4a:fe:87:92:
c0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:85:D4:02:17:21:EA:22:BB:F8:2F:0A:43:68:6B:AF:5E:B0:9C:82
X509v3 Authority Key Identifier:
keyid:EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/6YXUAhch6iK7-C8KQ2hrr16wnII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/73OJCflNmWhDa7Tgmi1HzHkBczw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.121.0/24
Signature Algorithm: sha256WithRSAEncryption
53:89:78:df:b4:14:d0:c7:60:17:f0:06:83:a1:b6:e4:6a:87:
04:0c:02:91:c1:64:be:27:c0:6c:a0:4a:b7:9a:c7:28:a3:d0:
b6:0c:53:55:a7:69:f9:2e:b8:4c:eb:4e:a3:0a:53:6b:c5:9d:
e8:32:86:a6:29:eb:ea:6b:cc:1b:8a:ca:88:51:ed:1e:e5:d1:
94:a0:20:43:3d:31:66:a6:4a:52:0d:2c:7c:69:9f:71:02:c2:
e1:19:c5:e0:a2:85:ea:ce:25:36:0b:f3:07:02:fc:91:f6:6c:
ad:8b:f8:96:55:db:9a:04:91:93:13:35:db:1e:b8:78:a7:03:
84:a7:96:2e:c7:69:1e:ae:43:85:31:2f:38:77:82:ab:72:fb:
ee:76:9a:7f:d5:50:41:5e:57:32:d7:a1:21:b9:69:0a:34:fd:
fc:0d:2f:65:60:41:b4:2d:dc:5d:bd:34:5a:e3:32:cc:fc:b4:
c1:c5:00:ec:6b:f3:9e:09:12:62:17:2c:b6:82:82:89:64:43:
03:e7:33:06:da:29:41:2f:5e:60:18:14:3c:61:62:14:48:04:
83:de:79:5b:04:b3:8a:cf:39:57:1b:58:f4:e2:67:ba:b8:41:
a7:1e:af:99:be:b7:71:f0:d6:2b:aa:e5:a2:dc:fe:09:a0:d5:
3b:bf:a5:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:52:36 2025 by rpki-client