Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/567876-8d17-46c6-8cdd-4b843e9d04f8/1/YnocbPb6eCTl7D0AAtuW-w6T8XI.roa
File: YnocbPb6eCTl7D0AAtuW-w6T8XI.roa (raw, json)
Hash identifier: 0/3lBvSnn24lW/dA1E4Lwb6/p+92YZin4bwE+8xDWMc=
Subject key identifier: 62:7A:1C:6C:F6:FA:78:24:E5:EC:3D:00:02:DB:96:FB:0E:93:F1:72
Certificate issuer: /CN=2ee29f7f3faa48a940ab8da212b4b1116883f273
Certificate serial: 0194244572846F5483C7D379182A8373E8F7
Authority key identifier: 2E:E2:9F:7F:3F:AA:48:A9:40:AB:8D:A2:12:B4:B1:11:68:83:F2:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LuKffz-qSKlAq42iErSxEWiD8nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/567876-8d17-46c6-8cdd-4b843e9d04f8/1/YnocbPb6eCTl7D0AAtuW-w6T8XI.roa
Signing time: Wed 01 Jan 2025 23:48:38 +0000
ROA not before: Wed 01 Jan 2025 23:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41038
IP address blocks: 91.233.22.0/23 maxlen: 23
195.95.175.0/24 maxlen: 24
2001:678:250::/48 maxlen: 48
2001:67c:25b8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:72:84:6f:54:83:c7:d3:79:18:2a:83:73:e8:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee29f7f3faa48a940ab8da212b4b1116883f273
Validity
Not Before: Jan 1 23:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=627a1c6cf6fa7824e5ec3d0002db96fb0e93f172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0e:b8:d1:4c:b5:ee:f2:82:7f:e8:30:45:9b:
80:24:82:55:8c:4d:e4:e7:c5:d0:bf:4e:ed:23:44:
57:70:9d:b6:54:be:ce:2a:93:cd:2b:2d:81:ff:a3:
01:e8:bd:f8:d7:1f:5b:33:3c:a1:92:06:3e:3a:ef:
54:07:9f:f7:d1:cc:08:48:fb:88:ca:25:26:56:b5:
6c:d9:44:38:89:4d:47:18:7d:13:d1:84:04:25:71:
91:da:0d:54:95:04:b6:3d:43:9e:40:71:04:24:62:
3d:ef:18:f4:b4:7c:b7:a6:29:65:d7:30:66:b1:d9:
63:d2:0c:5e:98:29:72:59:12:f0:6f:08:5b:d2:52:
f5:7a:57:48:9b:5a:d9:a8:01:7d:85:86:a8:36:e5:
e6:5c:07:1c:eb:cc:72:d2:f1:e7:6a:4a:ab:74:8d:
09:bb:6c:db:46:3d:f5:7c:2a:1a:ee:e5:ab:fe:1f:
15:00:f1:db:df:a2:ee:af:e2:ae:ca:ec:86:d2:f5:
a8:58:e0:01:17:1e:b7:fb:6a:e2:b0:f9:8a:e6:63:
a1:6b:77:8f:42:dc:9c:e6:c4:db:78:5b:c3:de:5c:
4a:45:79:30:b6:00:9a:11:1a:0f:33:57:c3:3a:1b:
b6:db:ce:ae:ef:cd:f4:20:6e:e3:2e:50:0f:18:95:
61:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:7A:1C:6C:F6:FA:78:24:E5:EC:3D:00:02:DB:96:FB:0E:93:F1:72
X509v3 Authority Key Identifier:
keyid:2E:E2:9F:7F:3F:AA:48:A9:40:AB:8D:A2:12:B4:B1:11:68:83:F2:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LuKffz-qSKlAq42iErSxEWiD8nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/567876-8d17-46c6-8cdd-4b843e9d04f8/1/YnocbPb6eCTl7D0AAtuW-w6T8XI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/567876-8d17-46c6-8cdd-4b843e9d04f8/1/LuKffz-qSKlAq42iErSxEWiD8nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.22.0/23
195.95.175.0/24
IPv6:
2001:678:250::/48
2001:67c:25b8::/48
Signature Algorithm: sha256WithRSAEncryption
18:dd:80:3d:75:2f:30:ef:9c:c6:6e:7d:66:34:dc:c7:7e:43:
de:ee:09:b8:52:c8:9d:53:5c:df:2a:55:76:ee:ff:3b:ae:8e:
96:02:36:c4:a5:08:4b:e7:41:f8:94:db:52:7e:ea:4d:5d:ee:
e2:f8:91:14:79:f8:8e:9f:c1:18:38:a5:4c:5a:15:65:4a:7c:
f1:d7:05:09:30:f8:1f:bd:08:80:b7:86:28:b0:ad:e0:d2:ce:
a9:c9:33:7d:b4:55:29:d7:ce:5e:80:be:3f:ab:49:56:c0:b1:
93:7c:7e:40:a6:f8:76:f8:3c:a7:19:9f:8f:48:31:2c:d1:9b:
55:7c:ef:05:d3:0d:dd:11:f9:0c:4c:69:da:ec:b2:07:f6:1c:
24:a2:5a:03:30:9d:94:7e:1a:8d:63:b5:18:2b:ea:db:44:e4:
67:25:56:59:44:8a:f6:a2:ea:c1:ed:ea:8d:2b:91:88:1d:e8:
60:5e:ec:2f:2a:1b:14:a0:02:e2:6f:2f:80:10:3c:40:c2:33:
22:2b:3c:57:43:0d:58:5c:a4:85:a3:4c:7a:27:1c:05:40:74:
16:06:00:4d:a4:e8:fa:2e:06:99:d8:ec:6d:49:2a:55:95:52:
32:d0:ea:a3:e8:f4:b4:a9:a2:15:aa:ca:8e:cb:20:8d:66:d4:
b7:d7:b1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:44:36 2025 by rpki-client