Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/f76b1d-48cb-4ab1-90ec-e615f56f78b1/1/YpoQb4d2ZirnrI3hA0gBb3h8Ui4.roa
File: YpoQb4d2ZirnrI3hA0gBb3h8Ui4.roa (raw, json)
Hash identifier: xAwvy1eVXmw515xL9f1ayxKoN3gZJ8WiMBC17Avnw5o=
Subject key identifier: 62:9A:10:6F:87:76:66:2A:E7:AC:8D:E1:03:48:01:6F:78:7C:52:2E
Certificate issuer: /CN=5f2c7126bc8f39056744de213b2ce26b76bc9923
Certificate serial: 01941F8C2FF472DFE9528A5B5A969D978F03
Authority key identifier: 5F:2C:71:26:BC:8F:39:05:67:44:DE:21:3B:2C:E2:6B:76:BC:99:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XyxxJryPOQVnRN4hOyzia3a8mSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/f76b1d-48cb-4ab1-90ec-e615f56f78b1/1/YpoQb4d2ZirnrI3hA0gBb3h8Ui4.roa
Signing time: Wed 01 Jan 2025 01:47:48 +0000
ROA not before: Wed 01 Jan 2025 01:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206589
IP address blocks: 185.182.96.0/22 maxlen: 22
2a0a:ea80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:2f:f4:72:df:e9:52:8a:5b:5a:96:9d:97:8f:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f2c7126bc8f39056744de213b2ce26b76bc9923
Validity
Not Before: Jan 1 01:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=629a106f8776662ae7ac8de10348016f787c522e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a9:e3:cf:04:b9:33:61:a7:49:6d:88:46:f4:
b9:e8:8f:97:fb:90:5c:a1:0e:57:6e:8b:f7:72:03:
08:be:3b:a7:e5:0c:1d:56:b8:1e:bb:1e:e0:6c:8a:
da:21:05:49:ea:c7:a9:52:59:a9:3e:b0:0b:1d:d5:
95:fe:ea:7d:e8:65:d3:b6:e9:65:4d:e1:40:62:2d:
f5:b4:bc:cf:fa:24:9a:68:6d:5a:28:d9:92:93:fa:
23:9d:6d:b6:a9:dc:d0:80:5c:4a:a4:1e:f0:13:bb:
07:f0:20:60:8a:5a:c4:48:0d:10:e1:5c:11:2f:5c:
f5:fe:a8:1b:72:93:18:89:49:63:2c:10:61:e8:42:
ac:0f:71:72:dd:1e:66:88:96:fa:e4:ec:1a:09:c2:
72:45:38:f5:9f:b7:2e:89:99:52:72:7c:84:5a:50:
b8:6e:7d:3d:d0:15:b5:15:c9:ea:dd:c2:7e:f0:42:
e9:1c:5e:16:fc:4d:b6:4f:ed:11:fe:3f:66:86:92:
a6:7d:af:d8:57:1f:4b:9c:df:0d:20:6b:f7:69:a5:
c3:95:72:8c:fc:94:9d:cc:09:e6:57:ab:b3:79:5d:
92:fd:ac:6a:44:44:4f:99:03:8f:a2:9a:23:e4:e0:
c8:28:4a:e4:23:18:39:9f:1f:69:3e:c2:48:9d:af:
ea:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:9A:10:6F:87:76:66:2A:E7:AC:8D:E1:03:48:01:6F:78:7C:52:2E
X509v3 Authority Key Identifier:
keyid:5F:2C:71:26:BC:8F:39:05:67:44:DE:21:3B:2C:E2:6B:76:BC:99:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XyxxJryPOQVnRN4hOyzia3a8mSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f76b1d-48cb-4ab1-90ec-e615f56f78b1/1/YpoQb4d2ZirnrI3hA0gBb3h8Ui4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f76b1d-48cb-4ab1-90ec-e615f56f78b1/1/XyxxJryPOQVnRN4hOyzia3a8mSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.96.0/22
IPv6:
2a0a:ea80::/29
Signature Algorithm: sha256WithRSAEncryption
8d:7f:29:dc:67:65:76:0e:e7:32:38:a4:a5:51:e6:f4:30:8e:
ad:4e:4f:48:98:ea:71:15:6e:0e:5e:d1:41:ce:ce:36:66:71:
69:c9:b1:a4:bc:9f:ed:4f:44:d6:58:40:de:55:1a:fd:f7:a4:
a9:3e:35:a0:7f:06:73:91:f5:7e:e4:df:23:34:cf:f5:94:19:
9c:5b:a5:61:92:78:fd:6d:84:86:f3:a8:39:15:89:1d:09:7a:
95:cf:e4:0d:ce:c1:92:4f:d4:e0:ee:8c:31:9f:08:13:53:71:
81:6e:dc:f9:97:f8:b9:94:70:37:b4:3b:86:9d:f7:f3:b2:e1:
c8:c7:a5:10:f5:41:1c:06:5f:e0:44:d8:07:77:0f:d7:e8:c4:
d0:8f:c5:18:0f:a1:8e:88:ce:9f:65:1a:38:ae:f2:71:90:cd:
a1:b0:6f:1c:e9:7e:4e:de:2b:c4:a1:b8:ba:65:51:fd:b3:03:
2f:f4:6d:9e:67:fe:98:d0:c1:17:4c:1b:81:53:2d:c8:59:06:
ee:ad:80:68:9b:15:e3:9b:c0:69:4f:21:8c:d5:df:64:8c:bc:
ec:79:74:ea:94:2f:5c:0f:bc:1b:65:cb:f5:81:92:01:85:e2:
b0:de:e4:02:4b:7b:54:9b:fd:f7:38:07:c4:1b:20:20:ec:f5:
a2:91:d8:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:42:43 2025 by rpki-client