Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/YZ4IKL3VI82kHojYvMEpDnn7Ttk.roa
File: YZ4IKL3VI82kHojYvMEpDnn7Ttk.roa (raw, json)
Hash identifier: /ay5+Bvjtyx5aTWN+x50j7spAi6yaynSV6oKHUcA/E8=
Subject key identifier: 61:9E:08:28:BD:D5:23:CD:A4:1E:88:D8:BC:C1:29:0E:79:FB:4E:D9
Certificate issuer: /CN=5e3a7835377b9e849fe7c33f9fca4572d902673f
Certificate serial: 019420683F9B6BC42C4B82F341C393B397E1
Authority key identifier: 5E:3A:78:35:37:7B:9E:84:9F:E7:C3:3F:9F:CA:45:72:D9:02:67:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xjp4NTd7noSf58M_n8pFctkCZz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/YZ4IKL3VI82kHojYvMEpDnn7Ttk.roa
Signing time: Wed 01 Jan 2025 05:48:10 +0000
ROA not before: Wed 01 Jan 2025 05:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201339
IP address blocks: 194.127.204.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:3f:9b:6b:c4:2c:4b:82:f3:41:c3:93:b3:97:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e3a7835377b9e849fe7c33f9fca4572d902673f
Validity
Not Before: Jan 1 05:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=619e0828bdd523cda41e88d8bcc1290e79fb4ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9c:93:0c:db:44:5d:8c:1e:25:17:46:13:5f:
01:c7:b5:89:68:de:09:b5:c2:90:16:81:d2:c3:ee:
51:f8:ed:c9:39:b8:7e:79:1f:fd:9f:ff:02:b1:9a:
b3:3c:6a:2d:de:0c:82:ef:18:61:41:c4:a3:42:79:
3b:88:64:17:cc:21:43:f8:b1:da:85:cb:7d:dc:af:
08:d7:bf:c6:e6:28:97:b6:6e:7f:5e:92:3f:37:b1:
20:13:1a:1b:33:91:1e:5b:75:c1:41:14:14:c8:4d:
e6:c8:4f:c0:a8:4d:cf:69:61:a9:25:64:e7:ea:19:
cf:bd:12:b4:23:5a:bc:95:44:8a:bc:11:05:e1:e7:
92:47:ae:b4:1b:07:c5:49:3f:f5:7b:7d:ea:a7:c0:
ee:d6:b3:43:ef:69:ec:19:45:af:32:16:a3:c9:53:
56:dc:49:21:72:14:15:34:74:1f:da:7e:d3:e9:a8:
bd:0f:7e:db:45:bc:7d:89:74:1f:f5:95:58:c0:ee:
1e:6d:97:60:96:1b:b3:9a:09:a9:86:53:97:19:31:
42:e5:26:26:fb:a8:98:85:c1:99:ea:84:36:26:24:
33:c1:f2:f7:7a:6a:1e:66:05:e2:66:39:a7:49:52:
0b:10:c2:32:2b:ad:fd:c0:e1:5f:1e:f9:20:5b:79:
da:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9E:08:28:BD:D5:23:CD:A4:1E:88:D8:BC:C1:29:0E:79:FB:4E:D9
X509v3 Authority Key Identifier:
keyid:5E:3A:78:35:37:7B:9E:84:9F:E7:C3:3F:9F:CA:45:72:D9:02:67:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xjp4NTd7noSf58M_n8pFctkCZz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/YZ4IKL3VI82kHojYvMEpDnn7Ttk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/Xjp4NTd7noSf58M_n8pFctkCZz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.204.0/23
Signature Algorithm: sha256WithRSAEncryption
41:43:09:84:46:8d:0b:64:fc:d8:64:97:25:37:1a:a7:82:29:
d7:0c:33:db:40:fe:04:ae:11:1c:5f:ab:65:ba:2d:52:79:cc:
59:6c:14:48:72:72:63:54:58:6f:2d:9f:4e:e5:9e:ae:05:28:
5c:91:d2:2c:90:d3:bd:8e:03:7c:70:37:b6:ff:f5:6e:77:5a:
43:93:7d:6a:cf:40:dd:cb:7e:f3:55:c1:f0:0a:9d:cc:60:80:
8f:34:9e:f1:4f:f9:b7:d2:69:64:f3:f9:1b:ac:3e:30:ba:bb:
ce:bb:1e:63:a5:df:52:d3:04:9e:a4:1c:07:af:cc:67:86:7e:
ad:a6:1f:ad:6a:3f:fc:50:71:70:ab:5e:10:04:84:3f:8b:ac:
98:d1:1c:ed:77:d6:9b:15:47:ea:13:ca:86:2a:c4:f4:36:c8:
83:22:fa:b9:81:2c:86:43:14:52:be:f3:3e:85:7c:d3:b8:f6:
9c:24:6b:b9:9a:de:59:51:4a:6a:72:fe:5e:1b:af:2c:7a:b6:
d5:da:bc:7e:ed:25:44:15:30:38:24:99:46:64:f5:93:44:d8:
41:ee:c8:59:7a:3a:94:d6:a0:93:7d:74:e9:51:1a:aa:b0:b6:
d9:83:ab:89:40:79:a8:a4:5e:cf:c5:41:29:89:64:d8:32:cb:
b3:28:94:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:39:25 2025 by rpki-client