Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Yl0PyxbqZmkrTm0yp8YlsjaVN9M.roa
File: Yl0PyxbqZmkrTm0yp8YlsjaVN9M.roa (raw, json)
Hash identifier: pLmynbrjJYifniOeddxGQHKFldYtLIcdFriMUHBwFxg=
Subject key identifier: 62:5D:0F:CB:16:EA:66:69:2B:4E:6D:32:A7:C6:25:B2:36:95:37:D3
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 4266A67A
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Yl0PyxbqZmkrTm0yp8YlsjaVN9M.roa
Signing time: Sat 01 Jan 2022 14:03:09 +0000
ROA not before: Sat 01 Jan 2022 14:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39870
IP address blocks: 192.36.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1114023546 (0x4266a67a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=625d0fcb16ea66692b4e6d32a7c625b2369537d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e1:0c:e2:19:84:bb:b9:73:f7:ce:00:d4:5f:
2c:60:c4:79:2e:4e:e8:4a:90:e0:fa:1b:c0:54:91:
a4:60:3c:df:14:ff:44:dd:9d:e1:5a:a9:7c:6d:ec:
46:31:73:10:d9:11:88:cc:7f:50:a0:81:35:b3:48:
33:52:ea:35:7b:6a:ca:20:9e:4f:4f:38:dd:1b:f5:
76:38:21:30:fa:e6:85:76:05:00:5d:8f:9e:69:03:
79:88:e0:94:ab:fa:1b:47:bb:bf:5e:78:68:5a:67:
59:e8:b3:06:46:0d:b3:93:5b:f2:e4:b6:e9:19:ab:
10:79:4f:2e:04:01:e8:eb:0c:31:45:b8:6f:3c:09:
85:ca:d2:1c:2e:df:de:b7:44:8b:14:69:51:61:39:
74:a7:e0:22:43:10:e1:1d:ea:18:43:a3:6d:82:ce:
a3:18:c6:c4:12:c1:b0:da:1f:1a:b8:c5:dc:d0:b1:
25:bd:61:4a:c6:a3:9e:1d:3d:d9:04:e8:84:dd:8f:
f2:b3:76:a2:77:26:1b:ad:d9:23:34:81:41:b0:c9:
b3:f5:5e:fb:ad:45:ec:ef:65:aa:39:ff:21:f6:63:
c0:67:37:bc:9e:27:5c:02:cb:c6:98:39:4d:d6:c4:
10:7a:da:72:fd:89:e7:5a:66:e0:71:de:9a:2b:bd:
d2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:5D:0F:CB:16:EA:66:69:2B:4E:6D:32:A7:C6:25:B2:36:95:37:D3
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Yl0PyxbqZmkrTm0yp8YlsjaVN9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.134.0/24
Signature Algorithm: sha256WithRSAEncryption
35:a8:f9:4e:93:b1:ba:d6:07:c9:d7:05:0a:46:e2:78:e5:61:
a0:15:81:6f:5f:a0:6a:e4:71:c7:a6:72:4e:1b:bb:9e:9d:b4:
48:aa:29:5a:48:0d:0a:5f:22:5f:10:47:02:fc:c4:08:b9:05:
e8:ff:c6:03:39:7c:58:7e:e1:e8:0c:b7:40:78:c3:17:6b:2f:
b3:ea:5f:87:b7:de:53:5f:ef:fa:e0:e7:09:c2:b9:77:ef:c0:
51:13:8d:7b:7e:26:fa:37:25:0d:71:2d:43:2e:9d:84:48:68:
8f:b3:ce:9a:f6:b6:9a:87:8d:96:a5:14:f4:41:dd:4b:b4:be:
fb:7f:ca:fb:40:49:2a:0e:64:0d:50:21:bf:35:1a:84:58:da:
12:93:50:d5:bd:73:60:5d:94:0e:d3:6f:da:8f:b8:a5:d6:b9:
0b:04:a4:02:2d:94:cf:de:bb:26:e3:46:8b:91:0a:d1:7b:a8:
1e:38:6d:aa:3c:a9:e4:bd:fc:c0:16:fa:73:50:f3:65:7b:22:
3c:3b:5e:d4:1f:e9:27:3a:64:7e:91:6e:eb:4f:6e:15:66:22:
0d:05:17:a0:ef:7b:b7:8f:83:85:f2:be:50:37:94:59:2e:c7:
0b:61:3d:c4:75:a1:8e:42:5f:a3:60:8f:0e:0c:05:d4:1c:88:
d0:f3:31:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:14 2025 by rpki-client