Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/13a2cf-0f0d-4e44-aa92-8518ca4a5fca/1/yQqcMeWPVR3gPJhw22lJYkcoC6w.roa
File: yQqcMeWPVR3gPJhw22lJYkcoC6w.roa (raw, json)
Hash identifier: gPSCyPa7byqT2dADD2nEHydwwchUGHgO0WIjWbFS9eE=
Subject key identifier: C9:0A:9C:31:E5:8F:55:1D:E0:3C:98:70:DB:69:49:62:47:28:0B:AC
Certificate issuer: /CN=248b8cd2bb744c5720570465de57b4ca35a372f0
Certificate serial: 0194266BAEBA6E0AE2498BDEAE0DB65FBDCE
Authority key identifier: 24:8B:8C:D2:BB:74:4C:57:20:57:04:65:DE:57:B4:CA:35:A3:72:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JIuM0rt0TFcgVwRl3le0yjWjcvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/13a2cf-0f0d-4e44-aa92-8518ca4a5fca/1/yQqcMeWPVR3gPJhw22lJYkcoC6w.roa
Signing time: Thu 02 Jan 2025 09:49:38 +0000
ROA not before: Thu 02 Jan 2025 09:49:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21267
IP address blocks: 45.88.60.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:ae:ba:6e:0a:e2:49:8b:de:ae:0d:b6:5f:bd:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=248b8cd2bb744c5720570465de57b4ca35a372f0
Validity
Not Before: Jan 2 09:49:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c90a9c31e58f551de03c9870db69496247280bac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ef:b8:22:c6:37:7d:7d:d7:99:c8:d3:6c:83:
5c:a0:e5:12:8c:04:e4:e8:41:df:ff:44:0a:70:85:
12:5f:8f:d5:f1:d0:6f:6b:63:8a:eb:a2:5f:e2:c8:
80:68:0d:ee:58:7c:64:a3:d5:84:9b:a8:b6:6a:90:
28:48:97:24:04:44:ba:f2:46:5a:f3:e0:d9:9e:9e:
64:57:e8:f9:4a:67:e8:30:bb:a1:eb:ee:cc:a6:44:
7f:66:8c:8b:5b:11:09:55:06:16:23:6a:69:e7:b9:
4a:4f:1a:d3:c4:4e:50:f7:74:48:ea:c6:92:9b:f8:
77:43:7a:10:73:ef:ca:68:c0:12:7f:c4:83:03:5a:
de:4d:c9:df:f5:ba:a5:0c:cd:b2:4c:e3:d7:a3:e5:
04:58:6f:71:7b:0f:50:10:dc:a9:5c:41:b1:f5:54:
fa:1c:4d:9c:e8:32:f8:f7:d0:d1:c1:b0:51:05:23:
4d:06:6d:89:d7:4c:eb:05:64:00:29:2c:ab:0b:f7:
05:37:87:ec:02:0c:7d:08:5a:9c:42:2c:c1:b5:87:
fb:99:b4:5c:94:a0:a5:94:6a:7c:60:30:40:3b:5e:
9f:61:25:dd:79:22:b6:2d:0a:f8:4f:de:43:cb:62:
dc:73:6d:89:c4:9b:a5:9b:ec:46:b6:f9:b1:f0:4f:
6b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:0A:9C:31:E5:8F:55:1D:E0:3C:98:70:DB:69:49:62:47:28:0B:AC
X509v3 Authority Key Identifier:
keyid:24:8B:8C:D2:BB:74:4C:57:20:57:04:65:DE:57:B4:CA:35:A3:72:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JIuM0rt0TFcgVwRl3le0yjWjcvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/13a2cf-0f0d-4e44-aa92-8518ca4a5fca/1/yQqcMeWPVR3gPJhw22lJYkcoC6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/13a2cf-0f0d-4e44-aa92-8518ca4a5fca/1/JIuM0rt0TFcgVwRl3le0yjWjcvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.60.0/22
Signature Algorithm: sha256WithRSAEncryption
50:4c:52:99:45:9e:6b:bf:60:a5:24:ef:9f:41:54:55:42:ae:
96:71:6e:43:04:68:e3:97:6f:18:06:7c:bf:4d:db:85:8a:34:
e1:2a:c3:b4:e8:e0:4d:e4:b3:d1:b0:ed:1d:9b:de:69:cd:19:
d0:2f:02:8a:de:92:cf:7b:d5:2e:3e:62:85:ac:2a:3b:fd:b8:
3d:af:94:9d:be:87:7e:af:2e:ca:ca:64:ea:dd:9b:42:47:82:
fd:4f:a8:1d:85:4c:cb:7a:ff:52:5e:dd:36:c8:cf:63:87:eb:
ff:af:5d:18:3d:db:b9:e2:7e:71:ee:78:14:6a:22:e0:ab:61:
6d:bc:f5:79:af:a6:61:9a:d9:9f:22:9b:59:5d:cb:a3:8b:cb:
8f:3b:76:cf:ef:02:49:b4:b9:9c:3a:99:39:18:92:8c:06:5e:
08:e5:b7:49:83:3e:62:1f:fc:74:f7:75:e0:46:e8:c6:41:97:
ae:48:95:a8:84:07:8a:3c:68:9c:26:02:95:d5:c7:42:7d:07:
c0:dd:51:c2:cc:90:08:94:8c:ac:1f:da:22:e1:bf:35:99:53:
cd:5c:69:1c:53:6a:3a:f1:d8:98:8d:77:c5:90:40:66:2f:2e:
63:64:91:65:5f:50:79:42:22:33:dc:25:70:de:c1:21:25:f2:
69:05:6e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:14:57 2025 by rpki-client