Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/yaeBzALTksFutDMDSo14HWi1pcc.roa
File: yaeBzALTksFutDMDSo14HWi1pcc.roa (raw, json)
Hash identifier: TCSIw7g3HWASSSDxcMQYHErKzGbepcCJReN+FTRV2MI=
Subject key identifier: C9:A7:81:CC:02:D3:92:C1:6E:B4:33:03:4A:8D:78:1D:68:B5:A5:C7
Certificate issuer: /CN=4c3789ecf67e04298c5ee44c67d8fb7f5d6d95a1
Certificate serial: 019421445F1BC70EDFFCA1CBB96C2DECFE48
Authority key identifier: 4C:37:89:EC:F6:7E:04:29:8C:5E:E4:4C:67:D8:FB:7F:5D:6D:95:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDeJ7PZ-BCmMXuRMZ9j7f11tlaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/yaeBzALTksFutDMDSo14HWi1pcc.roa
Signing time: Wed 01 Jan 2025 09:48:36 +0000
ROA not before: Wed 01 Jan 2025 09:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35583
IP address blocks: 185.191.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:5f:1b:c7:0e:df:fc:a1:cb:b9:6c:2d:ec:fe:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3789ecf67e04298c5ee44c67d8fb7f5d6d95a1
Validity
Not Before: Jan 1 09:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c9a781cc02d392c16eb433034a8d781d68b5a5c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:49:a0:7f:47:44:20:9a:16:90:0c:ee:f2:3b:
d3:4d:09:38:69:5d:38:69:d2:f6:38:8f:56:db:47:
d7:93:19:bf:b3:f8:86:3e:d2:29:b8:5d:b3:07:ac:
a3:c0:e8:81:72:d0:85:53:9c:8b:cd:6b:aa:ff:26:
f1:af:50:87:5d:57:eb:44:95:e3:2d:a6:91:f7:a5:
aa:a8:8c:6b:18:6b:ac:5e:5b:d6:49:86:35:bd:2b:
3f:e4:e7:8e:f1:d5:40:5f:b3:eb:5c:34:5e:b1:7a:
23:2a:74:82:e2:20:84:29:f0:bf:27:2b:99:9f:30:
f9:3f:76:d9:e3:c0:8c:22:ab:9f:56:fe:2b:e7:6f:
d9:30:8f:df:21:e6:67:73:cb:a6:3d:fe:7d:3f:4f:
fd:4e:d7:d9:bb:1a:35:8e:a5:bd:c2:fc:d1:c5:99:
40:4f:ef:dc:29:f1:40:31:98:7d:18:66:36:fc:23:
c1:02:dc:e7:e4:1e:5b:c8:ed:25:27:65:e5:85:06:
1e:9e:59:38:29:6b:b8:62:a7:1c:cb:f2:56:7f:80:
34:42:45:85:a1:f6:8c:26:02:67:19:88:fa:32:e8:
4c:74:8d:05:bc:25:a0:09:ea:3e:8b:cd:f1:22:31:
f3:43:bf:88:33:f6:a8:1c:20:06:b1:0c:12:d5:86:
45:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:A7:81:CC:02:D3:92:C1:6E:B4:33:03:4A:8D:78:1D:68:B5:A5:C7
X509v3 Authority Key Identifier:
keyid:4C:37:89:EC:F6:7E:04:29:8C:5E:E4:4C:67:D8:FB:7F:5D:6D:95:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDeJ7PZ-BCmMXuRMZ9j7f11tlaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/yaeBzALTksFutDMDSo14HWi1pcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/TDeJ7PZ-BCmMXuRMZ9j7f11tlaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.150.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:75:62:25:d5:d4:a4:79:6d:85:c2:9f:1d:db:f4:62:79:cc:
51:17:88:fb:71:61:d6:6a:20:0a:ce:cb:11:ef:c1:60:46:20:
10:80:90:2a:bc:c7:76:d9:1c:98:5d:f1:f3:6d:cf:0a:fb:aa:
df:7a:de:7a:fe:2f:d3:a5:9e:38:a2:87:85:09:b1:41:6c:62:
30:5d:61:67:88:ea:13:ba:e4:75:80:b5:47:4c:c1:43:e4:77:
c3:0b:b0:fa:0f:b9:c1:75:8c:c0:70:3e:9d:cc:6f:f6:fa:4b:
8e:e1:31:d8:fc:10:b7:ca:d1:df:64:0a:fe:ae:96:49:59:9e:
2a:bb:cb:c3:76:12:bf:1b:44:12:54:98:c5:4d:b2:86:ba:fe:
74:c3:c2:11:4f:9f:9e:ef:25:b4:e4:89:ef:b4:bf:54:dd:da:
bc:ce:c7:ac:7c:b5:5b:26:a9:81:cc:79:5b:d3:24:c3:98:42:
c2:da:91:59:a4:4f:5d:ce:c2:f8:fd:05:e6:b8:84:a2:9f:17:
6b:f2:a6:ff:8a:95:78:f6:5f:7d:c9:8b:7c:e7:44:6b:0a:dc:
dc:c9:c0:a4:a1:66:74:fb:73:14:3c:a8:b2:19:c8:45:03:bf:
1c:da:b3:64:7a:ec:65:a0:c0:db:00:f1:71:7a:a0:d3:b3:41:
1d:64:4c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:17:37 2025 by rpki-client