Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/15319c-2b61-4075-af83-2123df050cf2/1/yxVB6AnpltjBrPYnKYDmvCExB38.roa
File: yxVB6AnpltjBrPYnKYDmvCExB38.roa (raw, json)
Hash identifier: ZTcqGdRmA0igb1D+40nh9J7+ROYxF8OGz3XSyYsQCr4=
Subject key identifier: CB:15:41:E8:09:E9:96:D8:C1:AC:F6:27:29:80:E6:BC:21:31:07:7F
Certificate issuer: /CN=a0d60200f4d25c0c1bd7d77d66727556ef5da9f4
Certificate serial: 0185720C4436F4925375B9595E4667EF699A
Authority key identifier: A0:D6:02:00:F4:D2:5C:0C:1B:D7:D7:7D:66:72:75:56:EF:5D:A9:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNYCAPTSXAwb19d9ZnJ1Vu9dqfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/15319c-2b61-4075-af83-2123df050cf2/1/yxVB6AnpltjBrPYnKYDmvCExB38.roa
Signing time: Mon 02 Jan 2023 10:34:44 +0000
ROA not before: Mon 02 Jan 2023 10:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63473
IP address blocks: 188.93.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:44:36:f4:92:53:75:b9:59:5e:46:67:ef:69:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d60200f4d25c0c1bd7d77d66727556ef5da9f4
Validity
Not Before: Jan 2 10:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb1541e809e996d8c1acf6272980e6bc2131077f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8d:f8:ca:ab:24:3c:d0:80:a7:6a:0f:11:34:
99:17:fb:1b:1f:11:92:1c:eb:a0:43:57:ec:72:5d:
b6:9b:6c:a3:54:37:d9:ca:96:81:60:9c:5a:b0:4a:
25:26:75:73:86:85:db:1b:3b:6f:15:15:81:9b:10:
58:ca:a3:c5:c6:3f:b4:53:83:86:3a:b5:ae:32:6b:
48:98:d2:93:50:98:d8:ef:be:91:f8:a1:6a:0c:da:
63:c7:8a:66:05:f9:bf:37:c9:fc:79:64:d5:e6:81:
33:e9:10:9e:41:79:21:e6:ef:62:a0:08:29:a6:9e:
c8:39:3f:f8:66:ff:3a:e6:31:48:7c:59:ba:aa:c0:
46:2f:85:90:b6:b9:97:b7:45:26:37:4c:c6:fc:ba:
ad:77:27:b8:0e:34:f3:e9:7a:82:0a:0a:95:2c:e3:
68:76:5a:14:54:83:53:34:22:0f:1f:36:92:e8:0d:
1a:d7:68:71:71:5e:36:3b:bf:30:d6:19:9c:12:32:
7c:57:14:fc:d4:d5:20:c7:5a:1d:49:d3:11:8c:41:
14:bf:e0:58:41:71:1b:37:13:1a:a2:c4:7f:e5:9a:
46:4d:6a:c7:11:c6:c3:54:10:05:01:5c:0b:79:ad:
47:c1:c9:14:e8:6e:e3:86:96:a5:42:70:de:24:b5:
92:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:15:41:E8:09:E9:96:D8:C1:AC:F6:27:29:80:E6:BC:21:31:07:7F
X509v3 Authority Key Identifier:
keyid:A0:D6:02:00:F4:D2:5C:0C:1B:D7:D7:7D:66:72:75:56:EF:5D:A9:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNYCAPTSXAwb19d9ZnJ1Vu9dqfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/15319c-2b61-4075-af83-2123df050cf2/1/yxVB6AnpltjBrPYnKYDmvCExB38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/15319c-2b61-4075-af83-2123df050cf2/1/oNYCAPTSXAwb19d9ZnJ1Vu9dqfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.140.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:f6:a7:5a:65:43:8c:79:40:9b:a2:06:23:3a:12:77:10:00:
df:71:b6:34:11:78:3b:60:5b:1c:0a:8e:71:43:35:3c:5c:11:
98:d9:38:07:f4:61:ec:f9:8b:c0:f5:c3:bd:83:d4:8c:cf:d1:
3e:dc:13:8d:d3:94:5c:4d:41:c8:28:dd:d2:dc:19:9b:dd:b4:
d5:33:f0:b6:27:c8:42:f9:28:7e:f2:e0:15:eb:81:db:10:4e:
e8:f0:89:1f:5f:57:09:9c:45:e4:83:6b:d8:5b:f1:5e:36:d6:
b6:96:ec:42:83:24:e4:f3:de:78:61:3f:df:d8:67:8a:11:c9:
15:85:33:6c:d8:23:76:a8:d4:7e:5e:02:cd:32:87:08:b0:81:
bb:e3:37:4a:10:44:f4:07:44:0d:61:05:6d:cb:da:76:30:ab:
dd:db:90:76:0c:53:8a:fa:89:00:c6:a9:5e:67:39:42:3a:98:
5d:00:2f:f2:fb:8b:b4:2b:70:fe:e8:b9:f3:bd:96:5b:41:53:
38:9d:20:7c:95:cc:cd:b4:20:d4:75:1c:99:aa:0c:f6:2d:de:
53:ec:79:51:79:3c:c1:0d:21:57:f9:9b:bb:e0:ff:d8:88:13:
7c:47:80:81:d7:f1:ee:c8:51:de:ec:eb:c9:68:ec:2c:d8:de:
f3:37:94:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyDEQ29JJTdblZXkZn72maMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZDYwMjAwZjRkMjVjMGMxYmQ3ZDc3ZDY2NzI3NTU2ZWY1
ZGE5ZjQwHhcNMjMwMTAyMTAzNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjE1NDFlODA5ZTk5NmQ4YzFhY2Y2MjcyOTgwZTZiYzIxMzEwNzdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi434yqskPNCAp2oPETSZF/sbHxGS
HOugQ1fscl22m2yjVDfZypaBYJxasEolJnVzhoXbGztvFRWBmxBYyqPFxj+0U4OG
OrWuMmtImNKTUJjY776R+KFqDNpjx4pmBfm/N8n8eWTV5oEz6RCeQXkh5u9ioAgp
pp7IOT/4Zv865jFIfFm6qsBGL4WQtrmXt0UmN0zG/Lqtdye4DjTz6XqCCgqVLONo
dloUVINTNCIPHzaS6A0a12hxcV42O78w1hmcEjJ8VxT81NUgx1odSdMRjEEUv+BY
QXEbNxMaosR/5ZpGTWrHEcbDVBAFAVwLea1HwckU6G7jhpalQnDeJLWS6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMsVQegJ6ZbYwaz2JymA5rwhMQd/MB8GA1UdIwQY
MBaAFKDWAgD00lwMG9fXfWZydVbvXan0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb05ZQ0FQVFNYQXdiMTlkOVpuSjFWdTlkcWZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy8xNTMxOWMtMmI2MS00MDc1LWFmODMt
MjEyM2RmMDUwY2YyLzEveXhWQjZBbnBsdGpCclBZbktZRG12Q0V4QjM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy8xNTMxOWMtMmI2MS00MDc1LWFmODMtMjEyM2RmMDUwY2Yy
LzEvb05ZQ0FQVFNYQXdiMTlkOVpuSjFWdTlkcWZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvF2MMA0G
CSqGSIb3DQEBCwUAA4IBAQAs9qdaZUOMeUCbogYjOhJ3EADfcbY0EXg7YFscCo5x
QzU8XBGY2TgH9GHs+YvA9cO9g9SMz9E+3BON05RcTUHIKN3S3Bmb3bTVM/C2J8hC
+Sh+8uAV64HbEE7o8IkfX1cJnEXkg2vYW/FeNta2luxCgyTk8954YT/f2GeKEckV
hTNs2CN2qNR+XgLNMocIsIG74zdKEET0B0QNYQVty9p2MKvd25B2DFOK+okAxqle
ZzlCOphdAC/y+4u0K3D+6LnzvZZbQVM4nSB8lczNtCDUdRyZqgz2Ld5T7HlReTzB
DSFX+Zu74P/YiBN8R4CB1/HuyFHe7OvJaOws2N7zN5Re
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:34 2025 by rpki-client