Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/U5LzRtt7TqgwcmDyAykCjfC_tyg.roa
File: U5LzRtt7TqgwcmDyAykCjfC_tyg.roa (raw, json)
Hash identifier: MnSBkpXKCh2/fnPZQ+yyW+as55btZcpHuSExX+Fr9KQ=
Subject key identifier: 53:92:F3:46:DB:7B:4E:A8:30:72:60:F2:03:29:02:8D:F0:BF:B7:28
Certificate issuer: /CN=5e280950653a7ec58c53385d00b381efbb465824
Certificate serial: 01942445499DD1FF294DD9A9596B8A29CA30
Authority key identifier: 5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/U5LzRtt7TqgwcmDyAykCjfC_tyg.roa
Signing time: Wed 01 Jan 2025 23:48:28 +0000
ROA not before: Wed 01 Jan 2025 23:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215713
IP address blocks: 185.62.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:49:9d:d1:ff:29:4d:d9:a9:59:6b:8a:29:ca:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e280950653a7ec58c53385d00b381efbb465824
Validity
Not Before: Jan 1 23:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5392f346db7b4ea8307260f20329028df0bfb728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ab:60:f0:2a:bd:21:63:59:08:a2:fc:6e:d7:
3d:e7:88:d6:cd:6e:9c:eb:af:fc:75:1d:b8:84:77:
4d:eb:0a:0a:08:97:f3:1e:1c:13:42:10:cf:89:72:
56:63:a1:8b:ae:0d:6f:1a:47:ba:2d:3a:9f:9d:9a:
d7:11:6b:90:aa:e6:66:3c:4b:a6:2c:c8:77:3a:10:
c2:19:b7:f5:c2:d1:02:03:72:23:1b:b2:4a:2f:3a:
9f:a2:4a:5f:f2:f9:b6:bd:54:89:64:82:2a:a7:ef:
22:d1:35:be:ec:db:99:67:8a:50:38:c3:e9:09:51:
b9:1f:11:1c:5f:b4:80:d0:2c:e3:6f:17:1b:c7:69:
65:0a:89:16:b3:60:59:7a:59:a4:b3:87:a0:06:63:
29:ae:6a:15:32:10:8e:24:b5:f8:0d:22:5f:76:dd:
3a:63:32:46:f5:d3:97:70:7b:46:f9:d1:a4:a9:31:
bf:94:b9:36:d1:3c:5d:e9:97:05:f5:74:2c:71:45:
25:4f:13:30:39:93:6a:72:9b:27:d8:24:c9:e9:a2:
1e:49:40:35:91:a4:b3:64:0d:7f:b6:1e:2e:89:7b:
52:5b:a6:db:88:e8:9f:d1:f7:95:d1:8d:d0:02:10:
75:ba:ee:ce:4d:ed:5c:ea:ad:94:88:a0:8f:39:e2:
eb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:92:F3:46:DB:7B:4E:A8:30:72:60:F2:03:29:02:8D:F0:BF:B7:28
X509v3 Authority Key Identifier:
keyid:5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/U5LzRtt7TqgwcmDyAykCjfC_tyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.230.0/24
Signature Algorithm: sha256WithRSAEncryption
72:c1:8a:d5:63:67:d3:47:14:de:8b:8f:23:6d:da:e0:79:22:
0b:6e:38:4d:45:35:a5:fc:56:74:d6:19:64:4a:51:d9:48:ca:
44:1f:16:12:36:95:7f:d8:2a:b7:89:c0:c0:87:83:6e:d7:4a:
e5:dc:32:f6:36:4d:81:ac:4e:d4:b1:a2:92:06:b2:d3:51:31:
15:01:8e:02:8d:ba:14:7e:74:f2:43:a7:0d:87:ec:7c:ac:b3:
cd:6c:a4:61:a3:3f:b4:45:aa:1e:19:d7:a6:6f:a9:6c:de:c0:
a1:da:d4:b1:8c:bc:49:af:e8:f6:73:57:9a:8a:08:f1:0e:17:
c4:fc:98:7d:2d:6d:c7:50:91:6f:4d:6d:21:16:10:5e:c1:cf:
6a:a6:98:c4:b8:32:16:aa:56:72:e4:49:0d:94:89:e0:bf:d3:
24:36:77:01:10:e1:02:4b:db:23:8e:49:85:9f:37:e8:bc:af:
6c:82:fd:7c:4e:4d:54:fe:6b:18:90:39:97:24:64:45:5e:6c:
73:3b:04:6a:42:96:58:46:80:8f:c5:b1:ff:74:da:2c:3f:94:
65:63:11:06:9b:96:52:d8:d2:9e:81:42:f9:ad:54:80:76:4f:
09:a3:b5:fa:2c:09:e1:78:48:00:e8:a1:7c:e6:34:a2:f8:7e:
18:d6:28:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:31:24 2025 by rpki-client