Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/0fcbb8-2765-46fb-8b6d-c855dafadd5c/1/yz-jkDrtoK5DdiijiRq612Hl0rY.roa
File: yz-jkDrtoK5DdiijiRq612Hl0rY.roa (raw, json)
Hash identifier: gA10Xe4y9yV0Ex9NubvBZaq6eJgKJ0C7ozCvT6S5+sM=
Subject key identifier: CB:3F:A3:90:3A:ED:A0:AE:43:76:28:A3:89:1A:BA:D7:61:E5:D2:B6
Certificate issuer: /CN=50c9da1483fe3993d1985260619735c4cfd38033
Certificate serial: 019424B3D369EF0A02CFE87ED59E41789957
Authority key identifier: 50:C9:DA:14:83:FE:39:93:D1:98:52:60:61:97:35:C4:CF:D3:80:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMnaFIP-OZPRmFJgYZc1xM_TgDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/0fcbb8-2765-46fb-8b6d-c855dafadd5c/1/yz-jkDrtoK5DdiijiRq612Hl0rY.roa
Signing time: Thu 02 Jan 2025 01:49:12 +0000
ROA not before: Thu 02 Jan 2025 01:49:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29256
IP address blocks: 185.151.148.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:d3:69:ef:0a:02:cf:e8:7e:d5:9e:41:78:99:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c9da1483fe3993d1985260619735c4cfd38033
Validity
Not Before: Jan 2 01:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb3fa3903aeda0ae437628a3891abad761e5d2b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:50:21:66:7f:2b:16:24:38:f0:c5:68:b0:6d:
24:d0:91:6f:c6:92:5d:3a:49:73:91:53:ed:e8:fb:
18:47:5b:60:b5:c5:22:ac:40:1a:58:6d:e3:76:f8:
8a:d2:8a:57:2c:d3:fc:e9:e2:b2:54:b7:80:24:1e:
6e:98:d3:c9:0e:78:de:23:a8:fa:7f:2a:a6:0f:43:
45:49:a2:01:dc:b0:28:b9:57:de:b4:30:d2:31:cd:
e6:51:c9:7d:c1:04:70:ad:65:e3:c2:c0:9e:d8:d4:
9b:03:9e:16:45:23:68:4b:b3:a1:26:54:e3:cf:1a:
d3:a5:ef:84:2a:ff:9d:1e:da:00:9e:71:0d:f8:9f:
0c:e4:0c:94:35:0c:e1:57:a8:77:f6:52:64:36:9f:
27:fa:94:81:c2:b5:ae:fe:53:88:37:d4:18:09:f8:
12:18:9f:34:25:9d:f9:51:4a:39:5a:6c:fe:93:bd:
4c:29:2e:f8:33:83:59:56:18:47:66:8c:d1:27:0f:
e0:c1:bf:59:5d:18:ba:bc:f9:73:e2:4a:31:17:06:
cc:ae:1f:5c:35:71:9e:3f:54:4b:49:44:f5:09:59:
68:ea:64:23:c0:10:91:5e:ac:da:a1:54:41:0d:d3:
59:68:97:06:f1:91:99:1d:87:36:7a:58:49:2d:2e:
ea:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:3F:A3:90:3A:ED:A0:AE:43:76:28:A3:89:1A:BA:D7:61:E5:D2:B6
X509v3 Authority Key Identifier:
keyid:50:C9:DA:14:83:FE:39:93:D1:98:52:60:61:97:35:C4:CF:D3:80:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMnaFIP-OZPRmFJgYZc1xM_TgDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0fcbb8-2765-46fb-8b6d-c855dafadd5c/1/yz-jkDrtoK5DdiijiRq612Hl0rY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0fcbb8-2765-46fb-8b6d-c855dafadd5c/1/UMnaFIP-OZPRmFJgYZc1xM_TgDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.148.0/22
Signature Algorithm: sha256WithRSAEncryption
37:ac:16:ba:68:b3:0d:ac:97:65:6b:83:70:f2:a8:51:d7:bc:
a0:a7:00:8f:8f:64:dd:b3:5c:25:0b:4c:f0:fd:6c:5e:85:19:
a1:02:dc:8b:47:2e:9b:34:6f:ee:34:fc:e8:54:e8:c1:87:d5:
46:85:64:bb:8e:34:a8:31:0f:46:23:f8:9d:92:98:9a:12:bd:
33:7c:e9:7c:76:46:45:84:64:ae:dc:5f:a4:9b:b4:6d:21:69:
4d:4b:1f:61:7b:68:bd:72:e3:95:4e:dd:e6:21:a9:2a:d1:5e:
52:19:3b:52:39:e2:fa:0e:2e:d6:d1:41:aa:c4:45:d7:ba:d0:
26:7b:e2:75:54:79:65:89:e8:c3:6f:7a:05:cc:15:d7:9d:d2:
20:d3:ca:c3:dd:80:da:c9:b4:70:8a:3f:22:45:a0:29:65:20:
07:6f:5b:81:81:42:bd:6d:43:2d:c7:83:16:a1:6f:66:d4:ad:
1d:e7:7b:70:66:a2:f7:ef:0e:ba:54:71:0d:2a:6c:5f:1e:d9:
3e:0d:59:ab:5f:4f:59:17:53:e6:05:a1:40:ec:59:c1:3b:04:
50:c4:3f:44:72:c8:75:80:8e:01:69:c1:71:c9:9e:ee:0d:18:
d9:67:bc:01:71:4b:3c:8f:40:9b:90:86:76:9f:de:f2:30:f6:
0c:b4:a7:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:01:47 2025 by rpki-client