Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/YQdnp2VC261uNxqE4Oc-a1f9tGg.roa
File: YQdnp2VC261uNxqE4Oc-a1f9tGg.roa (raw, json)
Hash identifier: XivO/rYxkKb4OFfhsRiFIwL10Nr1ukhnz5M4clOZFnA=
Subject key identifier: 61:07:67:A7:65:42:DB:AD:6E:37:1A:84:E0:E7:3E:6B:57:FD:B4:68
Certificate issuer: /CN=1486b4a08ace60e670edcd89fadb254011562f53
Certificate serial: 019424454921C4D27977CCE61D381650A714
Authority key identifier: 14:86:B4:A0:8A:CE:60:E6:70:ED:CD:89:FA:DB:25:40:11:56:2F:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FIa0oIrOYOZw7c2J-tslQBFWL1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/YQdnp2VC261uNxqE4Oc-a1f9tGg.roa
Signing time: Wed 01 Jan 2025 23:48:27 +0000
ROA not before: Wed 01 Jan 2025 23:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208377
IP address blocks: 193.242.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:49:21:c4:d2:79:77:cc:e6:1d:38:16:50:a7:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1486b4a08ace60e670edcd89fadb254011562f53
Validity
Not Before: Jan 1 23:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=610767a76542dbad6e371a84e0e73e6b57fdb468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ac:f5:ce:33:d0:b5:19:0e:b6:2c:8d:af:3a:
b0:36:6c:64:b4:9d:fb:b2:d4:b7:cc:e1:d6:00:a9:
13:36:a3:8a:bc:61:e5:d0:6d:1c:44:f7:84:cf:dd:
c5:5f:49:5d:63:01:96:6f:3b:69:b5:46:d1:ca:72:
b1:aa:dc:b9:b1:61:23:10:4d:55:77:0c:ee:23:61:
55:fb:3b:94:44:a3:45:7a:af:e9:7c:7d:05:61:63:
e2:24:8c:78:2e:fd:d6:bb:21:7d:dd:b2:ab:72:af:
53:63:ab:cd:57:91:f5:e6:30:ed:d9:95:0b:06:23:
81:06:1d:d9:9f:05:03:5a:04:24:2a:1f:e6:04:ca:
bf:16:7e:a5:b3:3b:42:82:42:3f:e2:94:f4:21:4d:
b7:09:0d:91:73:ee:3a:49:fe:50:9e:45:01:eb:1d:
4a:fb:94:f3:bf:93:98:db:39:bb:a6:4c:13:ba:09:
43:55:63:72:cb:1c:af:cb:b0:bd:d9:46:ec:de:4e:
3e:21:2e:7f:4e:72:1b:10:33:d2:21:7b:98:4f:45:
da:12:90:dc:a1:f3:99:39:f9:e9:c9:d4:c9:2b:54:
98:41:55:24:f7:ea:50:8c:fe:e0:c5:31:57:97:10:
68:f7:38:33:30:92:60:e7:39:34:9c:b0:67:38:04:
33:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:07:67:A7:65:42:DB:AD:6E:37:1A:84:E0:E7:3E:6B:57:FD:B4:68
X509v3 Authority Key Identifier:
keyid:14:86:B4:A0:8A:CE:60:E6:70:ED:CD:89:FA:DB:25:40:11:56:2F:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FIa0oIrOYOZw7c2J-tslQBFWL1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/YQdnp2VC261uNxqE4Oc-a1f9tGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bb9182-cd77-4dd0-bf15-e8187f344c80/1/FIa0oIrOYOZw7c2J-tslQBFWL1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.155.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:71:c1:2f:2c:48:36:c8:d4:7e:54:d1:96:19:36:17:c7:1c:
71:17:3d:a0:51:78:de:cb:d6:33:0e:34:78:aa:fc:c2:0d:c8:
7c:9a:b7:dd:c0:8a:dc:5d:e9:67:10:05:20:e7:d5:94:0f:8a:
94:c7:70:c1:49:a4:d2:f5:44:8e:91:af:d1:4e:6c:53:3d:c1:
b4:ab:61:69:74:70:b9:31:e7:28:3b:42:9d:49:5f:54:da:17:
5d:38:9a:f7:3a:94:f7:99:3c:07:3d:88:04:26:07:81:d4:26:
b6:9e:23:38:0b:48:ed:6d:40:77:d6:3f:89:f7:b6:8e:ae:10:
75:39:7a:97:69:94:57:e4:0a:cd:d4:c6:e5:1b:a9:7b:9a:48:
77:c7:c6:99:89:bd:a5:b1:9c:1b:1f:94:8a:91:46:c2:59:ab:
b0:71:a1:48:bf:36:88:ef:f6:32:96:24:ae:15:59:05:3d:22:
c9:b1:c2:5c:a2:91:90:77:bf:24:a3:25:2c:bd:3c:a3:93:f0:
ad:9e:11:39:69:c0:5c:e6:f9:3a:27:d3:c5:78:ed:b0:f3:5a:
92:6c:31:1e:12:ab:4a:37:86:cf:fc:c7:79:75:2e:c4:89:4c:
8f:cf:2c:89:96:0e:8e:67:a5:8d:cf:43:17:b3:6b:9f:a7:c6:
56:75:90:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:27:20 2025 by rpki-client