Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/RyM0TaDcy3MATcF4kZgnomIhcSc.roa
File: RyM0TaDcy3MATcF4kZgnomIhcSc.roa (raw, json)
Hash identifier: u1hwu96g0Ti3Leptf/8mOz/le6P/VB383vy/UE8/YqQ=
Subject key identifier: 47:23:34:4D:A0:DC:CB:73:00:4D:C1:78:91:98:27:A2:62:21:71:27
Certificate issuer: /CN=059f516802c261309a61048772e6eafd5867a990
Certificate serial: 0194228DDB0327A8812C4A0EF8E5895B00BB
Authority key identifier: 05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/RyM0TaDcy3MATcF4kZgnomIhcSc.roa
Signing time: Wed 01 Jan 2025 15:48:29 +0000
ROA not before: Wed 01 Jan 2025 15:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209865
IP address blocks: 213.184.76.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:db:03:27:a8:81:2c:4a:0e:f8:e5:89:5b:00:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059f516802c261309a61048772e6eafd5867a990
Validity
Not Before: Jan 1 15:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4723344da0dccb73004dc178919827a262217127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:11:3c:af:0b:1f:85:98:fe:91:07:c3:87:09:
14:6b:33:cc:96:0f:9f:82:cd:a1:53:bf:e7:9d:7e:
54:50:bd:25:ec:d5:d0:8f:39:d3:9d:18:1a:3d:45:
0c:cd:a2:04:8f:55:14:1c:e2:7e:2a:b4:66:1d:ad:
2d:e2:c2:26:f3:e7:49:96:58:e9:e5:28:5f:cf:ef:
ea:9e:65:2a:f2:92:56:cc:ea:db:fd:18:a3:23:64:
44:10:67:d6:00:cc:d3:af:f1:61:3e:85:d8:db:41:
b1:0e:3a:58:86:e6:85:72:41:3b:7b:ce:c6:de:eb:
16:ac:9b:2f:55:b4:b4:af:12:e7:df:33:52:3a:b7:
27:0e:07:f6:f0:9c:2b:3f:85:7e:57:58:53:3e:79:
98:da:54:74:32:02:10:c9:af:f5:81:3a:7d:4b:75:
de:23:b5:05:09:a1:35:65:6b:a9:06:9c:87:6d:96:
e9:fb:4c:4e:b5:a6:54:5e:94:4d:bb:de:11:50:40:
89:e4:f2:c6:b7:9b:fe:fa:b2:62:f3:91:35:a9:49:
88:3d:50:ff:76:53:4d:3c:0c:6a:f0:e2:fd:42:8b:
1f:e9:ab:35:7c:de:1a:8c:44:0f:bc:51:99:90:8b:
8f:74:73:e6:00:b5:9d:e6:eb:df:56:2c:a9:df:dd:
5e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:23:34:4D:A0:DC:CB:73:00:4D:C1:78:91:98:27:A2:62:21:71:27
X509v3 Authority Key Identifier:
keyid:05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/RyM0TaDcy3MATcF4kZgnomIhcSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.184.76.0/22
Signature Algorithm: sha256WithRSAEncryption
61:3f:4c:8c:78:b6:fd:a2:55:08:83:5f:13:15:0f:62:b7:2c:
9e:0d:5a:25:f0:a4:56:27:c9:e0:b6:ac:c7:17:1c:56:09:ce:
fa:86:a3:27:59:02:e2:b9:1f:26:a2:9f:70:c7:b0:1a:84:67:
a6:c5:ce:38:67:19:39:05:c4:8c:84:58:9d:0b:6c:28:03:af:
f4:fc:af:2d:b5:8b:f9:64:09:e9:00:51:30:3f:27:6b:31:85:
d6:0f:64:ce:44:79:d0:4b:a7:5a:69:e4:ee:67:fc:8b:be:e2:
9c:8f:c8:e5:60:5d:10:e2:20:9e:b5:9c:6f:16:aa:df:9b:49:
0e:a8:ba:ac:0d:32:dd:19:cf:35:0c:9b:ff:be:19:60:53:b4:
99:e5:7b:c6:b4:62:48:3f:93:d4:a6:96:61:12:35:c2:e9:54:
c1:b1:b7:d8:a9:11:b8:6f:67:fc:11:90:7f:89:55:61:ae:a7:
4a:56:43:02:03:57:15:86:44:2f:56:76:e6:15:03:d8:1b:d7:
21:b3:69:98:81:62:0c:e7:7e:57:1a:56:23:44:92:78:3f:6f:
56:3f:21:65:58:42:21:24:d7:48:3e:70:3d:6d:a6:06:2d:c6:
40:c4:9c:3a:75:4e:fc:e0:ce:36:31:fc:a7:77:cb:6f:b7:3a:
04:ca:b4:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:45:51 2025 by rpki-client