Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/YTWW9SngrAdfCFMbvYET3KuUfEU.roa
File: YTWW9SngrAdfCFMbvYET3KuUfEU.roa (raw, json)
Hash identifier: 5LqHdR8FTKrDytaPT+2HPwBlZV+SaAa5yjfyZa9MS6k=
Subject key identifier: 61:35:96:F5:29:E0:AC:07:5F:08:53:1B:BD:81:13:DC:AB:94:7C:45
Certificate issuer: /CN=bd8f133d1095cd31205c7a3462248cc9941203ac
Certificate serial: 01856F30013D795249101AC34FD40334E4B2
Authority key identifier: BD:8F:13:3D:10:95:CD:31:20:5C:7A:34:62:24:8C:C9:94:12:03:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vY8TPRCVzTEgXHo0YiSMyZQSA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/YTWW9SngrAdfCFMbvYET3KuUfEU.roa
Signing time: Sun 01 Jan 2023 21:14:55 +0000
ROA not before: Sun 01 Jan 2023 21:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34396
IP address blocks: 195.200.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:01:3d:79:52:49:10:1a:c3:4f:d4:03:34:e4:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd8f133d1095cd31205c7a3462248cc9941203ac
Validity
Not Before: Jan 1 21:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=613596f529e0ac075f08531bbd8113dcab947c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cc:c4:65:09:d8:14:e1:55:1a:91:81:92:77:
40:ba:43:18:6f:d5:b2:fc:55:2b:de:72:69:e2:e7:
f9:69:c1:16:85:07:c3:39:0a:bf:64:e5:35:08:ee:
da:59:6a:09:e0:af:29:b2:bb:18:c7:0a:07:07:b7:
c6:09:4c:9d:1f:2f:b3:5c:5e:89:a1:19:f3:ff:6a:
7f:b9:a7:c1:a0:52:85:57:f8:99:3e:87:69:40:cf:
65:25:52:d3:a5:47:19:4c:ff:76:22:8c:c3:f0:c2:
04:82:52:06:f0:8f:c2:f6:86:59:5b:ce:8e:37:77:
8f:d2:76:d6:15:35:de:db:af:c4:96:91:77:cf:5d:
48:46:96:15:8d:ad:9c:70:28:29:00:fa:cf:ca:29:
8d:80:58:a2:e1:b0:be:c0:3e:c8:c6:27:6d:c4:10:
98:33:36:bb:4a:f7:d7:bd:33:83:cd:50:9a:3c:36:
c4:61:73:2a:ef:e2:97:95:8b:98:06:66:93:2e:8e:
73:b4:6e:70:10:98:51:4d:ce:6f:92:e0:8a:3c:8e:
59:19:19:35:34:f3:df:83:e8:2b:c9:91:4d:83:c7:
29:e4:86:d3:d0:fa:2b:ea:30:58:a1:46:38:03:a5:
6e:63:cc:8a:a8:21:95:42:27:23:28:02:a4:5b:6b:
a5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:35:96:F5:29:E0:AC:07:5F:08:53:1B:BD:81:13:DC:AB:94:7C:45
X509v3 Authority Key Identifier:
keyid:BD:8F:13:3D:10:95:CD:31:20:5C:7A:34:62:24:8C:C9:94:12:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vY8TPRCVzTEgXHo0YiSMyZQSA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/YTWW9SngrAdfCFMbvYET3KuUfEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/vY8TPRCVzTEgXHo0YiSMyZQSA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.81.0/24
Signature Algorithm: sha256WithRSAEncryption
58:6a:1a:93:1c:0b:54:74:37:a0:cb:60:02:44:a1:eb:ab:a0:
00:70:ba:36:b9:a4:57:83:de:5b:5b:82:81:96:f3:46:d8:2a:
cf:e8:33:39:99:b6:50:9d:f0:e5:d1:f9:09:34:5d:d8:40:5c:
7d:50:b4:cb:19:6a:a5:0a:bb:2c:3b:f7:2d:bc:5f:a3:a1:55:
6d:6d:d7:84:01:83:5d:0c:2d:53:61:bf:3b:7c:ad:bc:f2:cb:
17:d0:44:cf:21:ac:bb:ae:09:eb:ae:ed:93:d7:29:77:f7:38:
97:0a:56:ee:be:88:15:38:8d:29:de:7c:9b:4d:fb:e0:ab:c2:
07:f3:4a:1b:30:55:14:a1:24:6b:12:cd:9f:9b:89:a9:f7:fa:
5a:b3:5a:9b:9d:13:28:04:d2:2a:b4:a9:32:e0:22:a0:40:cb:
5b:6a:e7:26:26:b1:7f:3e:e1:f7:50:99:73:0e:c6:3f:bb:fd:
f0:2b:2f:51:53:23:a2:49:a8:d3:45:01:eb:de:75:36:4d:35:
a7:0c:ed:3a:cb:25:f3:cb:03:3f:94:e8:cc:63:b8:86:56:38:
2a:da:a7:a5:dd:9f:41:5d:86:03:3d:a9:8b:fa:83:d5:c8:ff:
4f:19:fc:c5:d5:66:44:59:8c:60:86:a8:b5:d9:b6:d1:d9:90:
6b:a4:ef:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvMAE9eVJJEBrDT9QDNOSyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkOGYxMzNkMTA5NWNkMzEyMDVjN2EzNDYyMjQ4Y2M5OTQx
MjAzYWMwHhcNMjMwMTAxMjExNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTM1OTZmNTI5ZTBhYzA3NWYwODUzMWJiZDgxMTNkY2FiOTQ3YzQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsszEZQnYFOFVGpGBkndAukMYb9Wy
/FUr3nJp4uf5acEWhQfDOQq/ZOU1CO7aWWoJ4K8psrsYxwoHB7fGCUydHy+zXF6J
oRnz/2p/uafBoFKFV/iZPodpQM9lJVLTpUcZTP92IozD8MIEglIG8I/C9oZZW86O
N3eP0nbWFTXe26/ElpF3z11IRpYVja2ccCgpAPrPyimNgFii4bC+wD7IxidtxBCY
Mza7SvfXvTODzVCaPDbEYXMq7+KXlYuYBmaTLo5ztG5wEJhRTc5vkuCKPI5ZGRk1
NPPfg+gryZFNg8cp5IbT0Por6jBYoUY4A6VuY8yKqCGVQicjKAKkW2ulbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGE1lvUp4KwHXwhTG72BE9yrlHxFMB8GA1UdIwQY
MBaAFL2PEz0Qlc0xIFx6NGIkjMmUEgOsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlk4VFBSQ1Z6VEVnWEhvMFlpU015WlFTQTZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC8zYjdjNDMtNDI0MS00NGQ0LTg1MzQt
NDA5ZDBmOWM4YTA0LzEvWVRXVzlTbmdyQWRmQ0ZNYnZZRVQzS3VVZkVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC8zYjdjNDMtNDI0MS00NGQ0LTg1MzQtNDA5ZDBmOWM4YTA0
LzEvdlk4VFBSQ1Z6VEVnWEhvMFlpU015WlFTQTZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw8hRMA0G
CSqGSIb3DQEBCwUAA4IBAQBYahqTHAtUdDegy2ACRKHrq6AAcLo2uaRXg95bW4KB
lvNG2CrP6DM5mbZQnfDl0fkJNF3YQFx9ULTLGWqlCrssO/ctvF+joVVtbdeEAYNd
DC1TYb87fK288ssX0ETPIay7rgnrru2T1yl39ziXClbuvogVOI0p3nybTfvgq8IH
80obMFUUoSRrEs2fm4mp9/pas1qbnRMoBNIqtKky4CKgQMtbaucmJrF/PuH3UJlz
DsY/u/3wKy9RUyOiSajTRQHr3nU2TTWnDO06yyXzywM/lOjMY7iGVjgq2qel3Z9B
XYYDPamL+oPVyP9PGfzF1WZEWYxghqi12bbR2ZBrpO+f
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:41:52 2025 by rpki-client