Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/yIUv-9UBFSosZaxk_SAM-oPYWDg.roa
File: yIUv-9UBFSosZaxk_SAM-oPYWDg.roa (raw, json)
Hash identifier: A5HtFiQ3ZfwDO/6Fs5djNbIUq/3hrajgNOS9o/n1CuA=
Subject key identifier: C8:85:2F:FB:D5:01:15:2A:2C:65:AC:64:FD:20:0C:FA:83:D8:58:38
Certificate issuer: /CN=8b19f3d7ffea957261501e91664ff6823ed936ad
Certificate serial: 0194228E1FD29F197A0880D76784EE8F844A
Authority key identifier: 8B:19:F3:D7:FF:EA:95:72:61:50:1E:91:66:4F:F6:82:3E:D9:36:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ixnz1__qlXJhUB6RZk_2gj7ZNq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/yIUv-9UBFSosZaxk_SAM-oPYWDg.roa
Signing time: Wed 01 Jan 2025 15:48:47 +0000
ROA not before: Wed 01 Jan 2025 15:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8758
IP address blocks: 185.166.96.0/22 maxlen: 22
2a0a:de00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:1f:d2:9f:19:7a:08:80:d7:67:84:ee:8f:84:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b19f3d7ffea957261501e91664ff6823ed936ad
Validity
Not Before: Jan 1 15:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c8852ffbd501152a2c65ac64fd200cfa83d85838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:90:90:24:69:37:5b:e9:eb:00:2c:b9:e3:ea:
92:97:c5:71:7f:55:d5:45:1f:b3:96:04:4e:93:8d:
82:67:ec:ad:3c:1d:a9:ba:95:5f:4c:dc:9d:1f:7f:
4b:2c:9f:78:cf:2a:ca:23:2f:a0:20:de:12:ce:c7:
f7:a2:fb:49:fc:59:16:1b:eb:3b:16:03:f7:87:28:
15:1a:c3:ac:94:b0:44:c3:a7:28:71:ca:3b:23:51:
fd:2d:a6:de:72:4c:4e:74:b0:f7:6f:1e:4c:21:a9:
b4:2c:be:84:1a:9b:d3:0b:7e:b3:d6:28:42:13:cc:
1c:cd:94:2f:63:aa:64:bf:dd:82:c8:f4:26:1c:f9:
d4:03:72:cb:f4:90:a6:31:24:86:38:c2:60:7e:1e:
db:67:fb:f4:13:52:7c:66:9a:c2:09:fc:c3:3e:57:
8f:ab:a4:ab:9e:5b:91:48:01:6a:e9:88:22:33:e5:
08:cd:bf:4e:d1:7e:ac:e6:0d:bf:3b:bc:c4:b6:5b:
72:1b:26:a5:f0:b8:bf:43:38:3b:8f:72:a8:03:2b:
a1:fb:30:63:1e:68:78:d2:d6:df:fc:ab:87:19:6a:
07:80:3a:f7:1d:c4:66:8b:89:a2:00:09:cd:f5:d4:
89:52:a0:3c:3d:dd:ee:2f:cf:8e:b6:cb:0c:72:16:
ed:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:85:2F:FB:D5:01:15:2A:2C:65:AC:64:FD:20:0C:FA:83:D8:58:38
X509v3 Authority Key Identifier:
keyid:8B:19:F3:D7:FF:EA:95:72:61:50:1E:91:66:4F:F6:82:3E:D9:36:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ixnz1__qlXJhUB6RZk_2gj7ZNq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/yIUv-9UBFSosZaxk_SAM-oPYWDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/ixnz1__qlXJhUB6RZk_2gj7ZNq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.96.0/22
IPv6:
2a0a:de00::/32
Signature Algorithm: sha256WithRSAEncryption
69:65:0f:e8:4e:58:80:3c:f5:84:92:19:fb:88:2d:8f:0e:4d:
b3:99:7d:aa:c9:98:96:18:f8:34:4e:0b:3e:5e:03:9a:98:cb:
27:ca:e7:c3:41:c5:ad:55:21:47:89:a4:bd:4b:76:2b:a5:7d:
64:95:c1:60:17:bb:b5:00:cb:ce:6e:6f:e1:c3:14:29:18:57:
9b:bd:4a:35:ab:6a:73:fe:fa:56:4b:2f:79:c0:31:a7:4d:ba:
b1:c9:a3:25:e0:b7:88:88:ea:41:50:60:50:86:8c:e6:2f:cc:
be:fe:07:a7:d9:fe:2f:c8:04:96:00:3e:ec:01:09:bb:f8:3e:
b0:33:6e:0b:82:c2:af:ae:81:a8:2c:fc:27:19:1a:d9:56:8a:
d8:2a:d8:7e:bc:48:f5:c4:f5:91:e8:e2:2d:ba:a9:0c:1e:5e:
52:16:49:b3:50:0d:5e:eb:3a:60:e9:61:98:ed:42:6d:b6:77:
1c:88:ea:9a:d0:24:b2:38:b7:6f:35:96:39:f3:f2:1b:75:4c:
e2:0e:f2:e1:2a:8e:51:ab:24:13:db:30:05:5b:92:04:81:91:
00:b3:0f:cd:56:f4:8b:8b:59:eb:b3:67:37:15:5f:6f:95:89:
2a:e7:a4:35:be:07:a1:ff:33:4a:e2:84:91:a7:02:2c:70:5e:
44:28:28:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:15 2025 by rpki-client