Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/96ce99-7ebe-4e8a-94bd-0a1ca5490afd/1/y77QbXKRiye418rSbAFqIemComQ.roa
File: y77QbXKRiye418rSbAFqIemComQ.roa (raw, json)
Hash identifier: ssUcd0LDD/xfi2UdCI3WRFi3tuO7iUpDjNv4QY4EqSM=
Subject key identifier: CB:BE:D0:6D:72:91:8B:27:B8:D7:CA:D2:6C:01:6A:21:E9:82:A2:64
Certificate issuer: /CN=555e0d730e1a56d57f827e2e5446d01d8d26158e
Certificate serial: 019421B1CA000EE88BB2D6A39939E6194680
Authority key identifier: 55:5E:0D:73:0E:1A:56:D5:7F:82:7E:2E:54:46:D0:1D:8D:26:15:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VV4Ncw4aVtV_gn4uVEbQHY0mFY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/96ce99-7ebe-4e8a-94bd-0a1ca5490afd/1/y77QbXKRiye418rSbAFqIemComQ.roa
Signing time: Wed 01 Jan 2025 11:48:07 +0000
ROA not before: Wed 01 Jan 2025 11:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210584
IP address blocks: 62.204.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:ca:00:0e:e8:8b:b2:d6:a3:99:39:e6:19:46:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=555e0d730e1a56d57f827e2e5446d01d8d26158e
Validity
Not Before: Jan 1 11:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cbbed06d72918b27b8d7cad26c016a21e982a264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cc:1c:45:0c:9c:6c:5a:2b:d7:a8:7c:29:23:
6a:e4:7d:b6:08:d9:fe:b7:ec:55:f2:95:38:e8:67:
3f:32:6e:f8:5a:08:5d:ed:18:69:e8:8b:0a:79:8a:
fb:83:73:ce:eb:01:a2:64:98:eb:67:65:75:0d:22:
74:1b:b8:34:41:e9:15:dd:39:78:1d:d2:90:74:93:
f2:7f:47:f4:dd:f4:7f:ae:45:34:4b:d2:25:a1:1f:
97:2b:a3:6f:b0:63:3f:54:8b:0b:ac:9a:03:2c:27:
73:48:74:31:fe:56:56:b5:94:ea:1e:6b:aa:bf:bf:
a3:ae:98:d3:f9:b6:7d:8f:48:1d:30:80:a9:2d:84:
a5:75:54:7c:67:e8:39:ae:93:ed:ff:5e:3f:bb:9e:
06:45:08:b4:40:9b:9b:b2:06:3f:88:06:f5:95:b8:
44:d3:4b:a5:a9:8f:75:8a:d9:78:30:dc:a8:57:08:
bc:01:b8:af:23:92:7b:6e:4d:af:9c:4e:35:39:d7:
2e:ad:8e:d1:9b:d6:08:97:4e:c3:67:f0:7f:22:81:
86:7c:2e:24:67:dd:91:7a:c9:c6:01:05:86:85:b6:
78:60:20:d1:e3:53:a8:61:d5:d4:0f:9a:2b:34:64:
94:d8:8c:16:de:04:9a:d2:92:f5:a7:4a:21:fc:01:
12:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BE:D0:6D:72:91:8B:27:B8:D7:CA:D2:6C:01:6A:21:E9:82:A2:64
X509v3 Authority Key Identifier:
keyid:55:5E:0D:73:0E:1A:56:D5:7F:82:7E:2E:54:46:D0:1D:8D:26:15:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VV4Ncw4aVtV_gn4uVEbQHY0mFY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/96ce99-7ebe-4e8a-94bd-0a1ca5490afd/1/y77QbXKRiye418rSbAFqIemComQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/96ce99-7ebe-4e8a-94bd-0a1ca5490afd/1/VV4Ncw4aVtV_gn4uVEbQHY0mFY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.63.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:c6:fe:0e:c1:17:07:41:a4:f8:a1:0d:21:aa:5e:73:75:c7:
dd:6c:fa:bd:7a:97:79:2e:56:1c:93:ad:f2:0e:b1:02:f6:ad:
3f:2e:9e:d9:3c:39:e7:e4:46:7d:da:63:42:ad:e9:b8:00:d1:
8f:d9:7e:b3:61:f0:a6:a1:52:5c:61:a7:94:3a:56:44:1d:3b:
2c:d8:1c:7a:e0:c9:66:4c:d5:f4:3a:4e:3d:d1:f1:28:0c:a6:
36:c2:3d:ea:99:4c:45:7f:dc:ee:71:81:c2:66:65:38:66:22:
5a:40:fa:a7:93:46:18:53:e8:15:11:b0:12:92:a5:e9:7d:55:
b9:02:f9:17:ba:4c:d9:33:33:f5:71:65:08:ef:0d:53:11:94:
70:ac:c1:02:df:c8:5b:87:c8:0e:8e:4e:1d:1c:d2:b2:d7:54:
53:31:40:90:3e:c5:a0:7b:83:81:a4:1a:cd:50:76:7c:48:20:
ea:f9:49:e3:f7:16:c5:68:91:60:12:8a:e7:f2:73:d7:77:10:
6e:cc:7c:88:2e:ed:16:45:92:b8:ff:37:99:33:63:d9:1e:4e:
2d:84:3c:1e:bb:70:58:3a:21:21:20:d7:55:bd:39:d5:df:ac:
c2:d7:d3:4d:ab:c5:30:1f:54:b8:1e:8b:a1:2b:85:1c:5e:5a:
aa:c0:c9:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:05:00 2025 by rpki-client