Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/YPwqy-r5Ds6zjUqs83c9wSrz4Xo.roa
File: YPwqy-r5Ds6zjUqs83c9wSrz4Xo.roa (raw, json)
Hash identifier: /OBWcwiTOuByZ0CFtuxP3jPnYcDQxuxVogbCk4BaZIM=
Subject key identifier: 60:FC:2A:CB:EA:F9:0E:CE:B3:8D:4A:AC:F3:77:3D:C1:2A:F3:E1:7A
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 019422FC197E0FC5E3C6BABE3C4617F0ED6B
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/YPwqy-r5Ds6zjUqs83c9wSrz4Xo.roa
Signing time: Wed 01 Jan 2025 17:48:54 +0000
ROA not before: Wed 01 Jan 2025 17:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49871
IP address blocks: 212.19.51.240/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:19:7e:0f:c5:e3:c6:ba:be:3c:46:17:f0:ed:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jan 1 17:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60fc2acbeaf90eceb38d4aacf3773dc12af3e17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3c:6d:b1:89:44:cb:05:ea:13:80:66:b4:46:
27:a3:0a:dc:1b:9d:f6:14:3e:2d:3e:6c:32:da:26:
1b:11:7f:7c:9a:4e:da:2b:b9:06:3e:8f:ea:0d:f5:
b9:57:ad:02:f1:18:93:0e:c8:e3:f6:6a:9f:6d:ee:
4d:67:65:35:61:06:1e:ec:b3:53:3b:a5:1f:2f:3a:
e1:b3:d7:41:83:59:24:e0:e7:e5:f3:8b:a1:4b:61:
c0:ba:5e:66:68:ec:9c:3d:40:a4:4e:d9:0a:6b:ca:
5c:32:89:82:06:80:93:c7:b3:90:81:57:0a:18:96:
b7:63:ec:55:5e:c2:26:62:92:61:98:7b:3a:90:9a:
c7:47:7b:e0:1b:86:35:49:3e:9c:c4:f1:90:31:74:
5f:46:a8:5d:47:87:5a:4f:e6:1a:fe:d6:db:77:16:
d9:ef:f9:96:7e:b5:05:19:ea:a7:86:4e:84:32:fe:
91:60:e7:bb:b5:34:55:f2:6e:a7:bb:e2:e9:05:78:
47:de:79:bc:5f:0e:5a:23:b3:ae:f1:bb:ee:81:21:
17:b9:92:31:d8:75:05:51:f6:ee:d5:c5:7f:be:b4:
e6:4a:22:8b:26:19:b0:7d:f1:89:1a:79:de:f6:09:
6c:16:c6:5e:9f:9f:d4:25:5a:36:40:92:81:a6:94:
ac:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FC:2A:CB:EA:F9:0E:CE:B3:8D:4A:AC:F3:77:3D:C1:2A:F3:E1:7A
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/YPwqy-r5Ds6zjUqs83c9wSrz4Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.19.51.240/29
Signature Algorithm: sha256WithRSAEncryption
8a:37:0b:79:ad:d2:6d:0a:ca:0f:98:9d:a9:1a:9c:a8:1d:df:
33:9f:f3:3a:e4:d5:0c:47:2a:25:6b:e1:24:bc:a4:2d:72:fc:
57:37:75:62:a7:46:14:c1:71:b6:dc:7b:64:ee:78:a4:cf:84:
24:ff:5a:a3:58:cf:c4:5c:e4:5c:af:c8:ec:18:ee:03:60:8e:
51:15:6d:5c:4c:9a:ff:50:bc:be:cc:11:bf:f0:c0:33:32:40:
dd:43:5b:b8:f4:fe:76:04:9f:8e:6b:07:3e:95:95:03:70:f8:
fa:f1:15:6b:f0:59:51:5f:d2:3b:89:17:ee:14:2d:af:b4:57:
54:a6:aa:30:11:a3:37:20:98:e4:d2:90:7b:0f:52:e8:54:1b:
90:c9:6d:59:78:70:f4:eb:71:7a:3c:7e:e8:d2:df:ee:c1:25:
a8:c3:b4:fc:4b:a7:18:98:17:39:9d:da:10:1e:b3:17:ee:76:
bc:46:53:2a:3a:fd:35:c4:fd:ea:19:3a:cc:f3:45:b6:23:a2:
a6:94:7c:3c:55:f7:d3:a2:9d:7d:8a:1d:74:0b:4c:22:70:f4:
31:d0:77:6e:5f:70:70:d4:c9:db:1e:cd:7f:8a:c6:a7:fc:4b:
71:7d:02:bb:60:5e:62:b0:48:bf:38:f4:dc:d3:5c:6d:af:78:
04:fa:4b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:08:39 2025 by rpki-client