Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/YeKkcnaeXVeolYVJ8jD74vI-Mpk.roa
File: YeKkcnaeXVeolYVJ8jD74vI-Mpk.roa (raw, json)
Hash identifier: wWJRZn1hx2gmDmpjtwIZuTiSzdqPT49Zz36euqkWg4g=
Subject key identifier: 61:E2:A4:72:76:9E:5D:57:A8:95:85:49:F2:30:FB:E2:F2:3E:32:99
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0194225F02327E7BC96F602A555FE5043A81
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/YeKkcnaeXVeolYVJ8jD74vI-Mpk.roa
Signing time: Wed 01 Jan 2025 14:57:19 +0000
ROA not before: Wed 01 Jan 2025 14:57:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200193
IP address blocks: 194.116.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:5f:02:32:7e:7b:c9:6f:60:2a:55:5f:e5:04:3a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jan 1 14:57:19 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61e2a472769e5d57a8958549f230fbe2f23e3299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e9:9b:3d:96:10:02:83:d1:9b:4c:88:52:c1:
da:24:61:9d:8c:f7:63:96:b9:a7:2f:7b:fb:bc:02:
be:f0:67:4b:43:0e:17:b3:07:42:16:5d:5b:82:4e:
70:8a:fe:09:51:e7:e5:50:8b:c9:78:f5:20:73:4c:
0d:b0:82:41:b9:ab:2b:7c:28:88:20:84:cc:98:79:
81:cd:a1:fb:94:0e:25:82:19:f4:d3:44:0f:71:9c:
c1:99:8a:02:67:25:78:e6:c0:44:ea:22:85:16:4a:
0a:2b:5b:59:9d:71:f8:98:82:09:6c:5d:d7:4c:81:
ff:ef:39:d1:5e:b8:5f:07:3e:32:c1:60:89:6a:f3:
ef:ed:e7:f0:a9:e0:01:33:89:77:f0:5f:95:6e:a4:
87:bb:41:27:a6:61:b2:4f:07:bf:c1:87:55:48:3a:
34:94:cf:6e:0f:3e:b5:55:bd:5f:b9:dd:c4:bc:dd:
02:8b:38:ab:c9:9a:44:ee:f3:1e:2e:f3:23:c3:b5:
25:9e:1d:60:02:bc:1b:01:79:d1:85:eb:7c:eb:e6:
6e:aa:5a:00:af:47:32:28:30:be:31:2c:1f:c6:41:
0c:9c:0f:ac:41:1d:9d:7a:0a:99:cd:ec:7f:34:aa:
af:53:31:a5:98:06:cf:88:0d:c3:ea:0a:48:d2:df:
8d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E2:A4:72:76:9E:5D:57:A8:95:85:49:F2:30:FB:E2:F2:3E:32:99
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/YeKkcnaeXVeolYVJ8jD74vI-Mpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.229.0/24
Signature Algorithm: sha256WithRSAEncryption
63:5c:41:1c:09:fc:37:90:5b:d5:39:12:44:f3:7f:ba:ec:70:
1e:11:52:60:0e:c8:eb:04:08:1a:49:19:32:c5:f8:16:5d:d5:
30:5c:99:bf:8a:16:73:4a:a1:51:34:d4:fc:c9:60:12:c8:fc:
bb:93:73:96:1b:c9:b2:57:6a:68:01:88:fa:9f:42:94:51:2c:
1d:1f:58:a1:8e:7a:a0:ea:fa:23:0f:f3:2e:15:66:ee:51:47:
d1:76:80:6c:27:14:c7:64:41:75:ad:02:dd:ee:68:c4:ff:fd:
68:80:86:24:bd:43:e6:b3:6e:85:e4:b1:b8:6e:97:8b:90:03:
0a:24:38:d9:4e:05:55:6a:fa:dd:89:a9:3a:53:ad:ff:f9:cc:
fe:aa:3e:21:50:37:c3:ed:d9:c0:59:01:74:26:8e:40:69:9e:
9d:ed:ca:cd:36:09:6d:d1:04:93:14:61:36:2d:d9:c6:79:16:
ed:59:a9:f9:6b:ff:12:15:0f:96:f2:72:eb:88:1e:34:f1:d9:
69:bd:b5:23:c0:29:e4:1a:b8:2e:fe:b9:8b:4c:76:54:57:84:
35:37:55:4e:57:94:d2:c7:d5:d1:2f:31:4c:97:69:42:52:92:
80:dc:0d:bc:e2:79:d3:c4:34:7e:2c:9d:10:74:0e:65:58:75:
46:fd:fc:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:31 2025 by rpki-client