Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/YalgVnakksNwh40oMrmOE7JnFiw.roa
File: YalgVnakksNwh40oMrmOE7JnFiw.roa (raw, json)
Hash identifier: gbDXkJfBddl0cMqhLwkKaHxDqD7d5ODDMug8Nu+NQs0=
Subject key identifier: 61:A9:60:56:76:A4:92:C3:70:87:8D:28:32:B9:8E:13:B2:67:16:2C
Certificate issuer: /CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Certificate serial: 01949CEFC3BB4EBB5337C8819387CFF988D8
Authority key identifier: D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/YalgVnakksNwh40oMrmOE7JnFiw.roa
Signing time: Sat 25 Jan 2025 10:09:06 +0000
ROA not before: Sat 25 Jan 2025 10:09:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 185.160.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:9c:ef:c3:bb:4e:bb:53:37:c8:81:93:87:cf:f9:88:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Validity
Not Before: Jan 25 10:09:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=61a9605676a492c370878d2832b98e13b267162c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:13:7a:21:a7:8c:a2:d4:f3:e8:e3:eb:e2:55:
f5:6d:e8:85:ad:a1:93:7e:9c:01:08:f7:ca:19:f5:
ef:ba:38:2d:91:60:da:e3:a6:db:e6:89:b3:56:02:
03:31:65:16:22:ab:b1:da:1b:75:6d:ac:ca:f5:f6:
32:50:9f:dd:4c:e3:6b:da:6c:90:93:08:e4:68:e0:
9f:88:bb:fa:f0:72:c6:f6:54:0e:ba:6c:74:7d:09:
f0:1b:9a:e5:38:f1:ff:b5:b1:50:d3:65:9d:63:03:
1c:d1:91:d5:91:f0:fd:d7:5b:d8:21:53:45:5d:78:
92:dd:62:48:e3:8f:e7:13:3e:a9:15:dd:5e:4c:7f:
f2:d1:fa:4a:dc:59:dd:db:71:fc:6c:1e:81:ac:39:
5c:eb:48:c0:94:1b:fb:fa:16:8c:dc:d2:c9:53:81:
73:52:72:e1:09:ae:6b:1b:41:bb:ab:d7:fc:16:b1:
44:09:a9:0f:40:67:95:78:31:ca:be:5b:68:68:a1:
26:69:60:c5:72:b7:de:f3:11:c9:7e:83:d2:06:90:
27:5e:8c:ef:2f:92:4a:ad:5a:64:fe:80:4c:3b:0f:
0d:df:88:49:97:8b:b7:19:13:34:a8:c4:1a:d8:c0:
3b:19:f7:ae:2c:91:8f:40:1d:e0:40:be:ce:ce:26:
00:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A9:60:56:76:A4:92:C3:70:87:8D:28:32:B9:8E:13:B2:67:16:2C
X509v3 Authority Key Identifier:
keyid:D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/YalgVnakksNwh40oMrmOE7JnFiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/0eAT7IpcVt8kGpslY9ER-OVDv5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.30.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b8:11:b3:79:d2:64:59:f1:75:66:b3:2a:9d:a7:dc:8e:39:
76:5b:e9:57:2e:96:94:20:6a:be:ab:73:8b:d2:73:0a:53:b0:
50:c5:9a:9f:07:79:54:20:f4:cd:36:99:02:1d:85:b1:2e:33:
51:17:4c:99:1e:91:c6:18:11:43:48:d9:62:4e:a5:a3:bb:0f:
cf:3a:e5:6e:91:3c:48:e9:38:9c:52:9a:43:00:20:aa:87:7a:
3a:a1:38:f6:0c:55:3b:a0:eb:e5:82:b9:3b:b7:4f:36:3c:ed:
d8:c1:c0:04:d7:4c:a6:a5:64:ee:9a:a0:ad:2f:5a:b6:b0:82:
ad:c1:67:99:f9:f0:94:2f:08:99:b7:75:60:7e:ce:c4:a8:a1:
1c:d5:4e:a6:cd:60:17:0a:94:58:b8:a9:1f:aa:dd:da:30:97:
dc:91:52:a0:8b:43:a3:1b:a5:1c:40:7c:94:cc:30:f8:f4:ab:
ac:e4:43:7d:2a:0e:77:84:34:c7:f8:3b:30:af:39:58:22:37:
36:6a:de:48:30:fd:46:2a:6d:2a:38:83:fb:03:70:11:68:83:
0f:cd:a3:00:d5:e6:a6:bc:3b:2b:4b:58:bb:92:95:49:94:f7:
9b:bb:45:10:a3:c5:4c:eb:84:d7:d2:70:bb:36:bd:50:0a:ad:
96:2c:f8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:51:59 2025 by rpki-client