Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/bYDA87Sg7PqPYhGi2OiQLziCuM8.roa
File: bYDA87Sg7PqPYhGi2OiQLziCuM8.roa (raw, json)
Hash identifier: DDEMOiHRCqnuwq3Rjd/1vWr0Ti7JtMON9ShdKjy8qeA=
Subject key identifier: 6D:80:C0:F3:B4:A0:EC:FA:8F:62:11:A2:D8:E8:90:2F:38:82:B8:CF
Certificate issuer: /CN=be3d2d631d8c337fb89aceb2ff04a1ada8085265
Certificate serial: 01857255A249795E644DFF3E75F5A05885E9
Authority key identifier: BE:3D:2D:63:1D:8C:33:7F:B8:9A:CE:B2:FF:04:A1:AD:A8:08:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vj0tYx2MM3-4ms6y_wShragIUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/bYDA87Sg7PqPYhGi2OiQLziCuM8.roa
Signing time: Mon 02 Jan 2023 11:54:52 +0000
ROA not before: Mon 02 Jan 2023 11:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209828
IP address blocks: 178.255.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:a2:49:79:5e:64:4d:ff:3e:75:f5:a0:58:85:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be3d2d631d8c337fb89aceb2ff04a1ada8085265
Validity
Not Before: Jan 2 11:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d80c0f3b4a0ecfa8f6211a2d8e8902f3882b8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c0:0e:9a:11:03:74:b1:fd:27:3f:fc:73:3b:
ee:32:44:03:6c:cc:44:d9:e6:52:61:63:1f:76:41:
bc:e0:8f:71:f5:3e:f7:a8:cb:4b:31:2f:a9:81:84:
e9:0e:b5:2f:a5:06:22:3e:c7:ff:a6:df:83:eb:0f:
56:a0:61:6d:20:c4:95:37:61:4a:f4:db:7f:96:3b:
39:28:6f:9e:b4:ca:6e:e4:ce:77:2f:02:12:e5:29:
a6:67:af:c2:7c:f8:f6:55:de:31:16:a3:3b:61:63:
83:0c:b2:5c:00:eb:8e:f3:c4:9c:03:ef:40:ab:37:
b0:38:53:c6:27:dc:0a:65:32:c0:6e:08:06:42:27:
98:bf:27:11:d4:73:65:3c:e4:0d:2b:a3:3b:9c:90:
31:a9:43:73:fd:00:35:a6:04:07:55:4c:74:92:e0:
17:72:4a:5d:49:d2:be:1c:5a:92:01:a1:22:75:b6:
d3:55:d0:97:bd:a4:e0:43:3d:e5:18:6d:28:0e:9d:
64:a2:49:85:ed:d6:f2:1c:df:fb:e8:fd:fe:dd:59:
32:ce:a7:e3:42:e3:0f:57:a2:fa:00:84:01:0b:e1:
0b:80:be:0c:39:e5:43:fb:a4:7a:70:76:4e:70:e2:
cb:2c:2b:0a:2c:82:87:66:ad:b8:78:18:9d:bb:b2:
1f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:80:C0:F3:B4:A0:EC:FA:8F:62:11:A2:D8:E8:90:2F:38:82:B8:CF
X509v3 Authority Key Identifier:
keyid:BE:3D:2D:63:1D:8C:33:7F:B8:9A:CE:B2:FF:04:A1:AD:A8:08:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vj0tYx2MM3-4ms6y_wShragIUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/bYDA87Sg7PqPYhGi2OiQLziCuM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/00a69d-d768-41ac-bd1a-74ce37ebc193/1/vj0tYx2MM3-4ms6y_wShragIUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.218.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:5b:21:6c:fe:1d:dc:45:d4:6a:3b:0a:b0:71:6c:8b:df:1b:
67:55:fe:b9:d2:70:c3:e9:33:00:a4:f4:b1:c3:a5:0e:1a:ac:
97:4a:35:38:cd:7c:89:a0:7b:b4:38:28:8c:aa:82:35:aa:cb:
1c:3c:3c:93:93:34:7f:5e:83:54:30:17:c5:6c:fd:be:9d:32:
67:61:03:1c:7f:0c:a6:92:3a:d2:d7:fd:79:4b:ef:d6:8b:37:
f1:d4:2a:58:63:73:1f:d1:02:40:cc:d8:d9:17:c4:5e:66:aa:
60:b6:44:c8:26:6e:04:8e:c0:7d:45:23:a5:92:24:19:9b:4d:
d8:74:10:40:b5:db:76:6a:b3:3b:88:e2:a1:80:96:11:2a:c0:
74:62:88:cd:13:4a:dc:02:27:46:e8:cc:2a:05:ea:53:6d:e6:
3d:e6:82:24:70:08:2d:c6:68:77:f5:9e:6e:d1:52:d4:8a:5e:
79:9e:8c:26:56:23:21:fd:d2:9b:42:18:70:45:48:1d:e5:be:
1f:69:75:25:6a:78:bb:79:e0:5d:fc:52:03:c3:ea:c1:99:ac:
34:00:88:d0:a1:2f:b9:0f:ad:53:05:47:85:6c:2f:a9:5f:77:
40:19:a1:d5:c0:8a:0f:0c:08:57:99:1f:cd:4f:20:e5:5e:66:
a5:e3:e1:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:56:02 2025 by rpki-client