Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/801735-97c5-467e-9bc5-9e9da9edf258/1/Ya-2VtqEwkVgbNdyf0tsNokL0vg.roa
File: Ya-2VtqEwkVgbNdyf0tsNokL0vg.roa (raw, json)
Hash identifier: MyOrt7gjkTkZYH3aRgoFjuxK7Ad5nDaNYo1WgY+UNM4=
Subject key identifier: 61:AF:B6:56:DA:84:C2:45:60:6C:D7:72:7F:4B:6C:36:89:0B:D2:F8
Certificate issuer: /CN=45b7f44253c57ffd3ced58ee835d1c219f227d6c
Certificate serial: 01856CAF4385F6EEEAA357EE7CEB98B75B38
Authority key identifier: 45:B7:F4:42:53:C5:7F:FD:3C:ED:58:EE:83:5D:1C:21:9F:22:7D:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rbf0QlPFf_087Vjug10cIZ8ifWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/801735-97c5-467e-9bc5-9e9da9edf258/1/Ya-2VtqEwkVgbNdyf0tsNokL0vg.roa
Signing time: Sun 01 Jan 2023 09:35:03 +0000
ROA not before: Sun 01 Jan 2023 09:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212170
IP address blocks: 88.218.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:43:85:f6:ee:ea:a3:57:ee:7c:eb:98:b7:5b:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45b7f44253c57ffd3ced58ee835d1c219f227d6c
Validity
Not Before: Jan 1 09:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61afb656da84c245606cd7727f4b6c36890bd2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6c:81:a3:72:6a:7f:44:91:32:fe:e2:75:ad:
6d:fe:32:fc:a2:6f:f8:45:2a:82:81:42:52:df:25:
74:b1:02:8d:d2:7d:76:69:00:9b:e5:f0:de:e0:58:
c0:08:ac:b0:f0:e4:fe:01:89:8a:15:83:85:2e:6a:
50:eb:78:24:0b:2f:d2:71:8a:de:65:14:cd:67:9a:
eb:a5:a8:af:4e:0f:0c:0a:d9:2f:92:43:07:6a:6c:
e2:6a:ad:b6:0a:47:eb:37:df:92:2f:b3:e2:1d:5b:
d9:d1:1b:6e:73:26:15:e5:a4:7a:98:f8:c1:9f:0c:
fd:f0:d6:f1:1d:01:f4:6c:53:08:e7:28:3b:99:92:
17:8d:98:b8:c6:1c:43:b2:ec:9c:73:a1:3e:f9:9a:
e9:26:95:d5:07:8c:fd:d0:2d:ea:bd:da:67:cb:9b:
63:d7:2f:8b:39:49:81:35:65:5e:ec:d3:52:f1:95:
16:aa:c2:6f:69:4f:b8:85:5d:ed:39:bc:fe:6f:0f:
c1:82:68:ba:c1:24:17:8e:7d:77:ae:ef:d1:27:7f:
bf:64:05:7b:70:8b:ed:1d:1c:94:72:93:52:29:f7:
58:8d:79:ef:ad:0b:6e:f2:bb:7d:bc:b9:90:6c:00:
72:13:9c:df:33:b4:1e:49:c5:2e:7d:d9:93:11:13:
4d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AF:B6:56:DA:84:C2:45:60:6C:D7:72:7F:4B:6C:36:89:0B:D2:F8
X509v3 Authority Key Identifier:
keyid:45:B7:F4:42:53:C5:7F:FD:3C:ED:58:EE:83:5D:1C:21:9F:22:7D:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rbf0QlPFf_087Vjug10cIZ8ifWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/801735-97c5-467e-9bc5-9e9da9edf258/1/Ya-2VtqEwkVgbNdyf0tsNokL0vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/801735-97c5-467e-9bc5-9e9da9edf258/1/Rbf0QlPFf_087Vjug10cIZ8ifWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.32.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:44:d8:e9:08:88:87:6f:c0:32:81:ec:04:cb:de:f6:c5:4c:
63:30:fe:19:46:a8:6a:eb:2d:ec:cb:3e:da:e8:d7:e1:b1:84:
5b:05:6e:8b:8d:c1:3b:c0:d3:9b:7b:65:ef:3b:42:b9:a2:d4:
0d:63:d3:c1:fe:b1:7a:78:50:2b:c7:c7:e3:9e:60:bb:65:b1:
e0:cb:75:27:83:37:1d:a7:67:64:3e:10:0b:30:d9:ec:2a:27:
a0:a4:c3:58:69:4a:0d:1c:00:63:f3:e3:76:74:ca:7d:b3:e8:
a2:b6:97:c0:08:81:d0:63:a0:15:58:c7:0c:80:f7:a4:ef:30:
f5:40:3a:ab:6b:dd:78:54:d6:b7:d6:a5:5a:02:58:fe:c6:26:
06:2d:71:78:1a:0e:81:41:82:24:9d:f7:78:98:57:b7:ab:c6:
16:2a:c9:a5:48:1b:a6:9a:9b:d4:9a:6b:d9:e3:6a:9f:5f:d6:
41:e6:04:ab:1a:2f:2f:db:f6:fa:83:75:46:8f:ea:2c:a5:c1:
e3:74:e3:c2:ec:7a:ea:af:99:a6:98:9e:c6:14:17:12:22:17:
0b:c7:3e:fb:11:78:41:6e:84:df:2c:7f:b4:52:77:fa:3b:6d:
1a:33:48:0d:b6:0b:76:88:0f:34:4a:56:fb:4c:68:ff:62:85:
38:c1:67:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:55 2025 by rpki-client