Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/a69fd7-8e1f-4176-a5df-42837cca00c3/1/YD_zTsYXZHwOdGihQ9GGGJD2yQ4.roa
File: YD_zTsYXZHwOdGihQ9GGGJD2yQ4.roa (raw, json)
Hash identifier: MiVKISLoY4yTYfozn6ttBVBGLS9pCG7wKWYNtkMouG8=
Subject key identifier: 60:3F:F3:4E:C6:17:64:7C:0E:74:68:A1:43:D1:86:18:90:F6:C9:0E
Certificate issuer: /CN=fd538aae4ec4d0a2f3c0a65f89f48746b515e57b
Certificate serial: 0194221FCA1638FBFCB0C66A0E38A9B924B8
Authority key identifier: FD:53:8A:AE:4E:C4:D0:A2:F3:C0:A6:5F:89:F4:87:46:B5:15:E5:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_VOKrk7E0KLzwKZfifSHRrUV5Xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/a69fd7-8e1f-4176-a5df-42837cca00c3/1/YD_zTsYXZHwOdGihQ9GGGJD2yQ4.roa
Signing time: Wed 01 Jan 2025 13:48:16 +0000
ROA not before: Wed 01 Jan 2025 13:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210191
IP address blocks: 185.212.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:ca:16:38:fb:fc:b0:c6:6a:0e:38:a9:b9:24:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd538aae4ec4d0a2f3c0a65f89f48746b515e57b
Validity
Not Before: Jan 1 13:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=603ff34ec617647c0e7468a143d1861890f6c90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4a:f1:5d:7d:62:2d:d1:b4:f0:6c:e1:b6:d1:
bb:f3:4b:75:04:cf:78:53:f0:fe:23:17:57:a1:71:
e6:da:c4:ae:aa:4a:c0:9b:1f:90:ef:1a:27:5c:67:
42:22:8e:ce:94:3d:c4:3d:53:7b:34:22:10:29:05:
40:66:04:26:0f:a1:3f:99:d7:e9:f5:5f:c5:de:17:
45:7f:50:5e:db:e8:e6:7d:37:24:5c:59:98:39:ba:
7d:8d:cd:d1:1e:4b:7f:35:28:9a:0c:e3:0c:82:21:
bc:88:c5:d6:1a:ba:d9:cc:d5:3b:7b:cc:24:20:8c:
ea:40:be:09:eb:a0:8e:4c:1c:56:ee:83:69:fc:5d:
ac:40:af:2c:66:86:94:d8:7a:bb:d0:a0:c8:ef:09:
7d:27:c1:a6:95:12:7f:90:d0:c1:c9:a2:72:c8:24:
81:d4:00:c3:a3:93:91:e4:61:af:69:f7:27:16:54:
7e:2f:40:eb:68:b6:df:67:8b:af:28:d6:24:5b:6c:
6b:fb:aa:d3:66:2e:6e:b2:bf:0b:46:4b:94:ac:18:
77:0f:39:78:52:c6:a2:a4:92:48:0e:7c:fe:75:50:
d8:9f:2d:b5:e4:85:45:47:f5:32:34:42:12:af:52:
6d:24:6f:22:5f:00:88:97:4a:08:93:b3:e3:e5:43:
0e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:3F:F3:4E:C6:17:64:7C:0E:74:68:A1:43:D1:86:18:90:F6:C9:0E
X509v3 Authority Key Identifier:
keyid:FD:53:8A:AE:4E:C4:D0:A2:F3:C0:A6:5F:89:F4:87:46:B5:15:E5:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_VOKrk7E0KLzwKZfifSHRrUV5Xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/a69fd7-8e1f-4176-a5df-42837cca00c3/1/YD_zTsYXZHwOdGihQ9GGGJD2yQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/a69fd7-8e1f-4176-a5df-42837cca00c3/1/_VOKrk7E0KLzwKZfifSHRrUV5Xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.67.0/24
Signature Algorithm: sha256WithRSAEncryption
72:6f:21:05:e2:0b:71:cb:46:e7:ef:83:67:c4:39:8c:89:20:
b4:9b:4a:25:4f:fc:a4:35:e5:14:14:80:52:8c:2c:d8:95:6f:
51:43:d8:e3:58:8f:b0:67:02:7e:8f:fd:17:d2:99:1b:d9:51:
14:d5:55:e1:03:4a:b0:d2:ad:50:4e:18:fa:77:1a:a2:79:d4:
0f:f6:fb:32:a6:ab:b2:2a:6c:a5:00:59:15:47:d3:af:ef:f3:
18:c9:e0:4f:f2:72:69:5e:1d:ca:c4:d7:d2:d8:57:4a:40:a7:
81:6a:24:5a:b4:99:a7:eb:42:aa:68:6c:ee:85:26:56:bd:c7:
f7:df:10:6c:07:a8:33:f2:e0:2d:1f:fe:b4:4f:9c:d4:ab:0d:
7c:8a:77:14:e5:60:fc:af:57:94:07:ff:0a:99:88:6d:e8:da:
1d:d1:d3:f6:ae:69:c6:d0:cc:c7:94:0b:a4:bd:3b:e3:46:ec:
87:83:f1:2d:c4:32:d1:04:c8:44:dc:0d:8b:2b:9b:aa:7a:6a:
cc:7e:8e:25:9d:09:27:ee:27:86:f3:1a:66:6f:40:67:b5:6c:
73:ce:e2:f2:da:fd:5d:66:04:17:ec:7c:e9:5c:5c:ec:19:bf:
b1:bf:09:a1:94:be:c4:9f:8c:ad:6a:38:7a:7d:7c:d3:d7:a7:
51:76:50:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:21:35 2025 by rpki-client