Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/b739e9-16a8-42df-820c-18a768b60fcd/1/yWfF0scZVTP5CTfvSN5AZLRV8Wo.roa
File: yWfF0scZVTP5CTfvSN5AZLRV8Wo.roa (raw, json)
Hash identifier: lubmpITrOYefbF4JNbcAm7bQPDyIFYxHEuPyUf330UI=
Subject key identifier: C9:67:C5:D2:C7:19:55:33:F9:09:37:EF:48:DE:40:64:B4:55:F1:6A
Certificate issuer: /CN=abc3a3091c3b1a8c9e82a09d374090f6d7300b20
Certificate serial: 01942143A8DED88317E806084AE6CEC410CA
Authority key identifier: AB:C3:A3:09:1C:3B:1A:8C:9E:82:A0:9D:37:40:90:F6:D7:30:0B:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8OjCRw7GoyegqCdN0CQ9tcwCyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/b739e9-16a8-42df-820c-18a768b60fcd/1/yWfF0scZVTP5CTfvSN5AZLRV8Wo.roa
Signing time: Wed 01 Jan 2025 09:47:49 +0000
ROA not before: Wed 01 Jan 2025 09:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212978
IP address blocks: 185.50.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:a8:de:d8:83:17:e8:06:08:4a:e6:ce:c4:10:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc3a3091c3b1a8c9e82a09d374090f6d7300b20
Validity
Not Before: Jan 1 09:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c967c5d2c7195533f90937ef48de4064b455f16a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:63:3c:76:3a:4e:d0:0b:03:1f:cf:0f:20:52:
72:dd:40:9c:2f:e9:7c:10:f6:d0:2c:37:29:f9:13:
7b:ae:70:c8:bf:87:66:2b:ed:dc:69:57:11:ec:6c:
dc:c5:92:cf:dc:80:6c:9b:e2:2c:54:67:09:47:29:
44:6c:82:d6:fe:cf:42:22:50:68:30:4c:fa:c1:80:
a7:5f:dd:8d:eb:1a:04:58:5b:8f:0f:62:83:29:11:
22:4d:e4:f9:b1:67:1b:b5:a7:5a:c8:3c:29:7c:98:
d2:55:89:0f:7c:f1:04:48:d1:40:25:45:71:0f:95:
3d:d3:6f:3f:d4:02:85:ec:07:9e:d6:21:79:3e:bf:
6c:50:be:81:8a:99:b4:c9:4c:3f:06:86:10:09:8d:
0c:f9:6d:69:42:2c:6a:20:28:a1:3d:3d:87:7e:a1:
e9:f0:2a:0f:46:21:30:1b:92:5f:51:3a:23:51:f5:
3c:9e:33:25:16:88:34:37:a7:06:f7:f2:c3:80:1a:
0d:29:bc:66:27:60:b8:a4:29:54:f3:c2:46:1c:9d:
bd:86:6d:a6:3d:08:d5:26:ff:4e:d1:d1:13:44:66:
d9:80:d2:82:df:7d:3b:dd:9d:43:16:81:e2:99:ed:
ac:e8:46:7e:7c:a4:90:84:31:03:c7:38:f0:f0:33:
b1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:67:C5:D2:C7:19:55:33:F9:09:37:EF:48:DE:40:64:B4:55:F1:6A
X509v3 Authority Key Identifier:
keyid:AB:C3:A3:09:1C:3B:1A:8C:9E:82:A0:9D:37:40:90:F6:D7:30:0B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8OjCRw7GoyegqCdN0CQ9tcwCyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b739e9-16a8-42df-820c-18a768b60fcd/1/yWfF0scZVTP5CTfvSN5AZLRV8Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b739e9-16a8-42df-820c-18a768b60fcd/1/q8OjCRw7GoyegqCdN0CQ9tcwCyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.36.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:5c:e5:88:06:f6:a1:8d:cf:51:69:66:17:d8:fe:fa:f0:14:
33:6e:00:ae:4f:5e:64:ed:f7:d4:3a:93:a5:aa:b8:d6:08:fc:
db:1d:a4:a6:c3:d2:1c:73:f2:66:99:b4:2d:16:9d:a4:15:d7:
16:0c:58:88:54:a7:7f:a8:13:a7:11:9f:ff:33:4f:f5:da:11:
5f:4c:f0:7d:2f:18:ca:44:5f:cd:53:27:c9:e7:a2:44:34:09:
f8:22:a2:50:be:ea:b0:b8:ba:b7:f8:6a:fd:54:ef:1d:91:f9:
5c:9a:c8:0b:eb:49:9c:9b:38:32:b1:6d:91:43:61:ce:03:81:
0a:e0:1a:8c:a1:9a:53:6d:ba:73:33:64:8f:78:a6:64:a3:c5:
d4:60:1d:51:f7:af:d2:af:d0:99:e6:32:0c:58:f2:3c:0b:75:
25:01:a5:ae:c0:16:3a:2e:9a:96:32:23:f2:2a:77:c8:87:c6:
95:f3:17:6a:54:5c:1c:6e:86:26:a8:cf:97:b3:2a:69:36:22:
af:88:b3:9e:3d:9c:a7:09:d0:15:9f:68:ba:f3:f9:af:11:11:
ef:17:ac:b6:e4:e1:71:e9:b5:f1:9d:89:b8:37:2c:12:6d:f5:
d5:e5:dc:d1:45:76:45:4c:38:12:00:93:c0:cb:64:fe:cb:c8:
67:df:3e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:56:12 2025 by rpki-client