Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/492c8d-61a9-4804-9b05-c39c2cdc8362/1/YsyyO8L_rSeXswXuSDBnEvMjtXA.roa
File: YsyyO8L_rSeXswXuSDBnEvMjtXA.roa (raw, json)
Hash identifier: FFYhcYissXyX8DCNEMV9KOBiKRLTOTHAb99wI47N+fc=
Subject key identifier: 62:CC:B2:3B:C2:FF:AD:27:97:B3:05:EE:48:30:67:12:F3:23:B5:70
Certificate issuer: /CN=bc075a22749762ecaaff9cbc217b82f17269e362
Certificate serial: 01941F8C6AB1A3B06BFE13358654B54A17F3
Authority key identifier: BC:07:5A:22:74:97:62:EC:AA:FF:9C:BC:21:7B:82:F1:72:69:E3:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vAdaInSXYuyq_5y8IXuC8XJp42I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/492c8d-61a9-4804-9b05-c39c2cdc8362/1/YsyyO8L_rSeXswXuSDBnEvMjtXA.roa
Signing time: Wed 01 Jan 2025 01:48:03 +0000
ROA not before: Wed 01 Jan 2025 01:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25151
IP address blocks: 213.173.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:6a:b1:a3:b0:6b:fe:13:35:86:54:b5:4a:17:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc075a22749762ecaaff9cbc217b82f17269e362
Validity
Not Before: Jan 1 01:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=62ccb23bc2ffad2797b305ee48306712f323b570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:73:bd:65:37:c9:91:a9:14:4a:de:17:2e:12:
1a:f6:e5:72:0b:c0:ce:4f:36:8a:d9:20:95:fb:09:
36:3b:8f:b1:ce:88:b4:e3:d3:1a:92:af:3e:24:dc:
c9:bf:f9:73:3a:d1:fa:9d:66:3a:1f:9b:1b:d3:81:
85:65:72:b3:df:4c:23:1b:08:58:8f:93:f2:09:10:
a9:11:5c:2e:7a:6b:b5:c3:3b:83:f5:43:b6:76:64:
4c:61:37:17:9d:b6:7f:db:34:14:82:26:a1:2f:89:
cd:b2:f0:82:dd:80:ad:66:a6:0b:f5:ad:e6:a7:8f:
d4:f5:3c:2d:0d:1f:0c:91:9f:8c:a5:dd:af:5d:63:
33:64:df:ab:14:4d:69:20:4b:c8:71:fb:57:ec:a5:
3a:52:76:91:39:7b:3f:38:d4:ef:c2:49:31:21:32:
c8:10:cd:4e:3c:1d:72:3a:75:6e:89:af:d3:d0:c6:
57:67:ed:e1:e1:af:22:06:94:7f:be:bf:8d:fd:3d:
52:d7:a6:22:40:7b:51:c7:88:bb:14:d1:80:89:14:
17:5c:53:01:b8:68:00:6d:4d:a1:e8:28:32:a4:64:
65:ab:2c:00:07:11:50:cd:c8:00:44:a9:47:02:7d:
d5:4c:bf:76:10:d1:6e:f2:7f:ab:93:b7:64:46:bf:
ac:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:CC:B2:3B:C2:FF:AD:27:97:B3:05:EE:48:30:67:12:F3:23:B5:70
X509v3 Authority Key Identifier:
keyid:BC:07:5A:22:74:97:62:EC:AA:FF:9C:BC:21:7B:82:F1:72:69:E3:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vAdaInSXYuyq_5y8IXuC8XJp42I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/492c8d-61a9-4804-9b05-c39c2cdc8362/1/YsyyO8L_rSeXswXuSDBnEvMjtXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/492c8d-61a9-4804-9b05-c39c2cdc8362/1/vAdaInSXYuyq_5y8IXuC8XJp42I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.39.0/24
Signature Algorithm: sha256WithRSAEncryption
41:7b:43:0c:1c:ec:bc:d8:05:ac:f6:7f:7e:96:4d:ad:e8:19:
a3:d3:fa:63:6c:45:00:16:9a:01:ca:0e:41:a4:8d:89:ef:fd:
20:ab:7f:17:54:6c:cd:d5:0f:0a:c8:5a:13:5a:35:d9:d1:6d:
ec:e0:5b:75:cc:21:06:cc:f6:7c:7f:52:f1:cb:ba:c5:5b:ee:
7b:44:a4:90:93:4a:7a:15:ac:12:c4:75:f3:c8:36:09:0d:35:
12:02:99:f5:1e:28:8c:56:cd:15:cf:bb:80:68:a2:12:a5:c6:
a5:db:fe:17:88:b7:d7:63:fa:f2:c8:80:13:06:f4:0e:4c:0d:
2d:ec:4f:fa:61:81:8a:57:81:f1:05:63:ed:76:eb:9d:dc:df:
cc:53:27:62:e6:47:b2:13:76:fd:d1:9a:76:df:3b:b0:02:75:
f2:e9:88:2e:30:14:df:95:32:8b:b4:39:ff:68:04:09:fe:a5:
a0:ec:fc:86:b8:92:cd:92:0a:6c:c3:df:76:90:d8:e5:af:9b:
a7:04:a8:1a:66:19:42:d8:e7:0b:db:10:3a:cd:06:cd:1c:87:
bb:80:3f:a4:0c:f3:ac:ed:9a:8f:49:af:34:63:9f:84:69:f8:
10:a6:20:5e:a7:8c:7a:2d:13:d7:2e:77:ad:05:b2:f6:95:f9:
13:6c:e5:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:46:54 2025 by rpki-client