Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/ynjpXZWokRafEcRGyyaiFeQB-5Q.roa
File: ynjpXZWokRafEcRGyyaiFeQB-5Q.roa (raw, json)
Hash identifier: YLsTOiirKaeSIRhniGR9Gaw/lFAimgt4dtBXJJ+shcM=
Subject key identifier: CA:78:E9:5D:95:A8:91:16:9F:11:C4:46:CB:26:A2:15:E4:01:FB:94
Certificate issuer: /CN=0032534e8d560d73553c632bba10344a7c816614
Certificate serial: 018CC79502519881909EC5945927BBE28A4A
Authority key identifier: 00:32:53:4E:8D:56:0D:73:55:3C:63:2B:BA:10:34:4A:7C:81:66:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ADJTTo1WDXNVPGMruhA0SnyBZhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/ynjpXZWokRafEcRGyyaiFeQB-5Q.roa
Signing time: Tue 02 Jan 2024 00:31:20 +0000
ROA not before: Tue 02 Jan 2024 00:31:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31035
IP address blocks: 194.246.99.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:02:51:98:81:90:9e:c5:94:59:27:bb:e2:8a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0032534e8d560d73553c632bba10344a7c816614
Validity
Not Before: Jan 2 00:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca78e95d95a891169f11c446cb26a215e401fb94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4f:22:97:b7:2e:01:da:e2:31:2b:00:2c:ec:
6d:3a:1d:19:eb:a7:a6:ce:10:57:71:8f:1b:d9:75:
d5:40:4c:6b:f4:e4:10:56:36:42:75:6c:cf:9d:bf:
6f:1a:4d:07:60:3a:7d:54:3e:c9:c0:43:4d:e9:c3:
42:e1:9b:eb:2a:47:1f:d2:ca:7f:6d:28:fc:09:d7:
e5:9c:4b:06:42:a8:cc:39:eb:da:fc:1c:42:de:80:
b7:a0:c6:4b:29:70:ee:4e:df:4c:30:ff:f1:55:db:
68:cd:56:e8:25:5e:98:93:a1:6d:60:f2:f6:e2:88:
72:a5:25:9b:2e:67:e7:3e:c6:2a:0b:76:e7:e8:b6:
a0:a7:72:37:94:f7:6f:c6:d1:ae:51:ae:ea:dc:e6:
7f:96:b6:db:29:87:ee:62:c2:27:bd:2b:9f:f3:cb:
42:e6:db:a3:e5:09:76:bb:79:61:97:6e:59:82:9b:
df:bc:a6:c7:d4:4f:5f:78:f8:6e:ee:b0:82:be:b5:
8b:54:ad:72:19:16:0f:21:02:a5:93:1d:e6:6d:79:
01:0a:2b:6a:a5:2c:b0:c4:26:ec:ac:b8:5f:e1:de:
df:49:7f:e9:5e:08:d5:da:32:7b:dc:53:0b:4d:4c:
95:9a:83:de:e3:18:1b:76:af:28:f9:12:e2:58:6b:
4a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:78:E9:5D:95:A8:91:16:9F:11:C4:46:CB:26:A2:15:E4:01:FB:94
X509v3 Authority Key Identifier:
keyid:00:32:53:4E:8D:56:0D:73:55:3C:63:2B:BA:10:34:4A:7C:81:66:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ADJTTo1WDXNVPGMruhA0SnyBZhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/ynjpXZWokRafEcRGyyaiFeQB-5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/ADJTTo1WDXNVPGMruhA0SnyBZhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.99.0/24
Signature Algorithm: sha256WithRSAEncryption
18:cb:61:8e:59:5d:21:5a:f7:cc:cc:f2:ec:e1:04:6b:a8:7c:
c3:3b:74:a1:a7:f3:6c:bd:1e:47:28:a0:45:74:3e:13:b3:47:
c9:c5:26:87:bd:f5:d0:45:24:4c:cf:7a:92:e3:ad:d7:66:39:
46:fe:9b:bb:4b:c9:68:d3:7b:9d:ca:dc:5d:68:d6:a8:a3:93:
cf:1d:0b:85:4b:b9:31:cb:27:f2:18:d4:56:99:2e:55:eb:b9:
3a:01:72:37:95:5e:28:30:28:15:a9:c5:f9:af:51:84:92:76:
8e:40:2f:89:17:ae:12:3c:0c:1e:4e:73:99:94:ca:72:4c:17:
76:43:10:0a:7e:2a:31:65:4b:7e:0a:4a:9a:2f:de:da:96:b6:
31:82:9b:4b:97:b9:e6:04:3f:4f:2b:fd:8f:68:16:29:d2:39:
48:26:7e:1c:86:e8:07:cc:54:15:58:98:bf:53:fe:a6:14:ef:
12:fe:e9:f9:6c:68:88:37:cb:3d:8b:79:a2:b3:af:a7:98:d1:
61:b5:35:8d:bb:d1:4c:b7:2a:89:c7:dc:61:ac:a7:a9:9d:b6:
11:12:09:c1:36:5c:20:a5:f8:b3:bf:8c:ab:dc:0e:39:30:e2:
b3:b5:03:b5:6b:cf:13:55:c3:b1:5d:94:54:ff:73:2e:29:74:
99:3c:f1:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:13:08 2025 by rpki-client