Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/c3ffdd-b376-4dcb-9841-1415f8c7038e/1/YLMlluYLr6JfK-y1U7Gu2bMProM.roa
File: YLMlluYLr6JfK-y1U7Gu2bMProM.roa (raw, json)
Hash identifier: dLTxCUQo6hqFLyHwLbKwrnQtAYSoW8dcHWFQbKuVfyk=
Subject key identifier: 60:B3:25:96:E6:0B:AF:A2:5F:2B:EC:B5:53:B1:AE:D9:B3:0F:AE:83
Certificate issuer: /CN=ae255affe084311b6ea02fbe4686b7945359861c
Certificate serial: 01942144419DAC116E7FE6D1AECEF0CA5E02
Authority key identifier: AE:25:5A:FF:E0:84:31:1B:6E:A0:2F:BE:46:86:B7:94:53:59:86:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/riVa_-CEMRtuoC--Roa3lFNZhhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/c3ffdd-b376-4dcb-9841-1415f8c7038e/1/YLMlluYLr6JfK-y1U7Gu2bMProM.roa
Signing time: Wed 01 Jan 2025 09:48:28 +0000
ROA not before: Wed 01 Jan 2025 09:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49556
IP address blocks: 88.135.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:41:9d:ac:11:6e:7f:e6:d1:ae:ce:f0:ca:5e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae255affe084311b6ea02fbe4686b7945359861c
Validity
Not Before: Jan 1 09:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60b32596e60bafa25f2becb553b1aed9b30fae83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7c:59:ac:fb:85:8e:2d:9b:96:97:66:cd:f0:
c1:43:cd:75:53:81:29:d5:5b:fa:bd:c3:21:46:1f:
4d:76:ac:80:96:48:a2:e9:67:6c:14:5e:cf:7e:6b:
69:e4:89:d5:bf:73:ca:c6:9a:24:05:b6:9d:7b:d9:
09:85:d2:e7:a0:62:08:02:7a:2b:f4:f4:a2:a5:ec:
a9:dc:ab:c4:37:f7:14:2f:62:ac:4c:d8:75:0d:14:
35:a2:25:fe:70:7e:10:82:bb:79:43:70:59:e3:ab:
33:56:96:d5:27:07:58:f6:0b:3e:c2:b7:83:16:fd:
90:ef:03:f6:46:63:c5:4c:f2:bc:f4:56:9c:92:f6:
a1:d9:f0:11:d5:91:e1:b3:2e:d8:2b:bd:0e:b6:1a:
dd:78:49:22:d9:f8:2d:2a:61:e3:9d:9a:0e:88:34:
b2:9a:c5:53:32:ff:72:b8:e2:16:fe:d0:1a:48:f5:
37:b8:3b:99:07:99:54:14:a9:db:7e:c4:a5:5a:76:
cd:48:f7:52:53:cb:2c:5b:d8:bd:a6:76:38:fd:d1:
c2:d2:b0:36:c8:ae:d4:2d:e6:f7:e3:df:f4:d9:bf:
f7:cc:1f:00:f0:00:42:f2:2b:c5:1a:97:de:cf:25:
c8:96:f6:7d:2c:7c:cc:87:b6:4c:f3:6a:9d:b8:a2:
24:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B3:25:96:E6:0B:AF:A2:5F:2B:EC:B5:53:B1:AE:D9:B3:0F:AE:83
X509v3 Authority Key Identifier:
keyid:AE:25:5A:FF:E0:84:31:1B:6E:A0:2F:BE:46:86:B7:94:53:59:86:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/riVa_-CEMRtuoC--Roa3lFNZhhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c3ffdd-b376-4dcb-9841-1415f8c7038e/1/YLMlluYLr6JfK-y1U7Gu2bMProM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c3ffdd-b376-4dcb-9841-1415f8c7038e/1/riVa_-CEMRtuoC--Roa3lFNZhhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.72.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:7e:94:13:d5:06:53:40:c0:51:58:e4:97:28:3a:f8:1e:29:
f8:34:f6:7f:f4:09:1b:2c:69:18:20:18:0a:6f:39:f8:4b:2e:
53:d6:03:bf:bd:03:f9:8d:d2:72:41:36:46:e6:bb:82:c3:bb:
ff:06:28:e4:a0:3a:33:d9:cd:2a:ac:d9:50:e1:5f:68:50:d1:
66:58:a6:18:9a:6b:d5:e5:41:bb:97:f9:b8:e0:93:99:5c:fb:
3b:9d:cf:7f:cb:6c:c5:a9:83:d2:90:09:fd:c7:12:96:bc:8a:
a0:6d:57:ba:49:29:b2:f3:e5:ba:6e:4e:be:69:87:e4:da:f0:
64:93:98:9a:7b:9b:ea:8d:e3:dd:50:28:6c:54:3f:cb:27:da:
78:4a:aa:fb:77:6a:13:5d:ca:c8:f0:e8:fb:21:da:a7:54:34:
c6:32:55:cd:b4:73:3f:74:c4:6e:2a:72:0f:ee:d1:84:ca:1d:
b9:7b:1c:9a:29:fa:71:98:72:2f:57:20:ff:90:99:9e:71:70:
90:3e:b4:62:b2:78:4f:6e:04:d1:43:97:3e:28:b7:77:45:36:
17:f7:92:2f:29:f5:e2:c2:21:e1:0c:38:7a:f6:0a:63:0b:d9:
6d:82:25:18:76:5c:d8:33:22:58:6c:e4:8e:d0:c0:1a:a2:2c:
4b:64:1f:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhREGdrBFuf+bRrs7wyl4CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlMjU1YWZmZTA4NDMxMWI2ZWEwMmZiZTQ2ODZiNzk0NTM1
OTg2MWMwHhcNMjUwMTAxMDk0ODI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGIzMjU5NmU2MGJhZmEyNWYyYmVjYjU1M2IxYWVkOWIzMGZhZTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4HxZrPuFji2blpdmzfDBQ811U4Ep
1Vv6vcMhRh9NdqyAlkii6WdsFF7Pfmtp5InVv3PKxpokBbade9kJhdLnoGIIAnor
9PSipeyp3KvEN/cUL2KsTNh1DRQ1oiX+cH4Qgrt5Q3BZ46szVpbVJwdY9gs+wreD
Fv2Q7wP2RmPFTPK89Fackvah2fAR1ZHhsy7YK70OthrdeEki2fgtKmHjnZoOiDSy
msVTMv9yuOIW/tAaSPU3uDuZB5lUFKnbfsSlWnbNSPdSU8ssW9i9pnY4/dHC0rA2
yK7ULeb349/02b/3zB8A8ABC8ivFGpfezyXIlvZ9LHzMh7ZM82qduKIk8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGCzJZbmC6+iXyvstVOxrtmzD66DMB8GA1UdIwQY
MBaAFK4lWv/ghDEbbqAvvkaGt5RTWYYcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmlWYV8tQ0VNUnR1b0MtLVJvYTNsRk5aaGh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9jM2ZmZGQtYjM3Ni00ZGNiLTk4NDEt
MTQxNWY4YzcwMzhlLzEvWUxNbGx1WUxyNkpmSy15MVU3R3UyYk1Qcm9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9jM2ZmZGQtYjM3Ni00ZGNiLTk4NDEtMTQxNWY4YzcwMzhl
LzEvcmlWYV8tQ0VNUnR1b0MtLVJvYTNsRk5aaGh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWIdIMA0G
CSqGSIb3DQEBCwUAA4IBAQDHfpQT1QZTQMBRWOSXKDr4Hin4NPZ/9AkbLGkYIBgK
bzn4Sy5T1gO/vQP5jdJyQTZG5ruCw7v/BijkoDoz2c0qrNlQ4V9oUNFmWKYYmmvV
5UG7l/m44JOZXPs7nc9/y2zFqYPSkAn9xxKWvIqgbVe6SSmy8+W6bk6+aYfk2vBk
k5iae5vqjePdUChsVD/LJ9p4Sqr7d2oTXcrI8Oj7IdqnVDTGMlXNtHM/dMRuKnIP
7tGEyh25exyaKfpxmHIvVyD/kJmecXCQPrRisnhPbgTRQ5c+KLd3RTYX95IvKfXi
wiHhDDh69gpjC9ltgiUYdlzYMyJYbOSO0MAaoixLZB+H
-----END CERTIFICATE-----
Generated at Fri Apr 25 08:33:23 2025 by rpki-client