Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/YvmB2uElOud7Wbdeq2CN_NGYy08.roa
File: YvmB2uElOud7Wbdeq2CN_NGYy08.roa (raw, json)
Hash identifier: tdffuHZsymdXKRNXQ4s0czmr74x1VVOxYZhSSbC1JVE=
Subject key identifier: 62:F9:81:DA:E1:25:3A:E7:7B:59:B7:5E:AB:60:8D:FC:D1:98:CB:4F
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0192D8BB280BF826312F701C9090771FC5DF
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/YvmB2uElOud7Wbdeq2CN_NGYy08.roa
Signing time: Tue 29 Oct 2024 14:43:17 +0000
ROA not before: Tue 29 Oct 2024 14:43:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 93.152.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d8:bb:28:0b:f8:26:31:2f:70:1c:90:90:77:1f:c5:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Oct 29 14:43:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62f981dae1253ae77b59b75eab608dfcd198cb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e0:a5:c9:3a:8c:97:52:91:99:9c:d1:e9:da:
c6:ba:f6:9b:7f:98:e0:a7:31:9a:61:82:87:9f:4f:
fb:75:2d:3b:ee:4f:d5:b7:20:6c:c8:80:da:2a:94:
7e:aa:8a:42:27:b1:fe:13:5e:cc:74:3e:10:29:85:
50:38:ef:74:40:f2:61:32:9e:aa:63:91:ff:ae:14:
d1:59:55:06:6c:9a:6e:a6:38:f4:60:6b:c1:9c:82:
a2:6f:32:f4:2a:b4:87:22:74:36:47:2d:f3:7f:6d:
b8:39:39:49:71:10:c9:f3:a6:7c:a4:cc:03:a5:19:
cf:5c:7f:71:0f:4a:26:56:46:91:1f:e7:b0:11:c9:
c8:b3:1b:1d:dd:13:f2:7a:0d:5c:86:86:26:09:02:
9c:7b:63:9f:cc:9b:4e:c0:71:5f:4b:51:3f:5f:f4:
a7:ba:fc:ac:ae:47:67:96:75:4f:a5:78:c5:fd:ac:
e4:11:f9:43:21:de:a3:10:43:b5:dc:c2:da:4c:eb:
ee:5f:ba:25:0f:cf:54:4f:96:f2:ab:e2:11:f4:cc:
4b:fd:d8:01:13:21:96:ef:4f:a7:ac:46:ab:20:fb:
11:a0:2b:2f:f5:e7:e1:71:d4:c0:45:41:59:ca:5f:
98:5e:d7:9d:af:33:14:47:8c:a5:82:83:45:d9:66:
99:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F9:81:DA:E1:25:3A:E7:7B:59:B7:5E:AB:60:8D:FC:D1:98:CB:4F
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/YvmB2uElOud7Wbdeq2CN_NGYy08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.207.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:24:75:fe:f2:b4:37:84:b0:fb:49:4e:40:80:45:71:f3:83:
db:16:99:84:76:36:5d:ac:33:cb:ed:67:0f:0d:c1:cb:18:33:
97:3f:f5:c7:f3:a1:e7:41:01:c7:85:b5:48:56:cb:a2:16:e6:
5c:d9:5c:8d:8e:57:7b:8e:92:42:46:c3:bb:b3:88:86:97:4e:
3b:fa:85:43:80:6a:8d:e8:05:96:9d:20:a5:e3:f2:01:02:14:
39:89:92:28:4b:d8:32:45:8b:98:37:6f:04:a6:cc:50:1d:3a:
1d:4e:4d:52:0e:9d:77:d8:93:15:19:00:d5:6a:2c:45:e3:d7:
55:db:1a:7d:0c:74:7a:6c:3f:d9:28:01:a8:2b:a1:a7:f6:c5:
e2:f7:a1:04:dd:83:df:86:71:e8:ca:53:66:92:98:93:82:5d:
f0:df:df:2b:58:c7:0a:1a:29:f7:a6:1d:78:40:81:94:32:00:
7f:e0:1e:12:0a:ae:83:17:6a:33:c0:56:bd:24:03:c7:94:ea:
0e:1b:a2:75:19:1d:08:49:27:73:13:cd:25:64:19:c5:40:d5:
f0:25:fc:3d:90:86:4d:68:70:7d:a4:62:81:ad:57:91:40:f7:
ed:61:aa:4e:9f:f7:7b:7b:0f:4b:9b:e6:84:3a:27:95:3d:27:
21:58:55:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 00:01:10 2025 by rpki-client