Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/YBiOU9LodRSxT5PuJn9g5UO2M2o.roa
File: YBiOU9LodRSxT5PuJn9g5UO2M2o.roa (raw, json)
Hash identifier: 08SR7+nvpd/XA2umdXMZ+Q/H2vBB7qTfGHTnuA1+CaQ=
Subject key identifier: 60:18:8E:53:D2:E8:75:14:B1:4F:93:EE:26:7F:60:E5:43:B6:33:6A
Certificate issuer: /CN=432ffd36796e90f812a1612ec1f464de3d5e2f38
Certificate serial: 0194228D0D68E00F6AD9462F1101BEB5ABD0
Authority key identifier: 43:2F:FD:36:79:6E:90:F8:12:A1:61:2E:C1:F4:64:DE:3D:5E:2F:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qy_9NnlukPgSoWEuwfRk3j1eLzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/YBiOU9LodRSxT5PuJn9g5UO2M2o.roa
Signing time: Wed 01 Jan 2025 15:47:36 +0000
ROA not before: Wed 01 Jan 2025 15:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62442
IP address blocks: 185.136.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:0d:68:e0:0f:6a:d9:46:2f:11:01:be:b5:ab:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432ffd36796e90f812a1612ec1f464de3d5e2f38
Validity
Not Before: Jan 1 15:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60188e53d2e87514b14f93ee267f60e543b6336a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9f:72:87:72:88:cc:ac:95:64:8d:32:d6:55:
56:41:c5:5b:2a:59:16:00:68:43:c1:ac:4a:dc:06:
9d:35:40:8a:61:6c:37:89:08:09:de:d1:73:e7:29:
51:2b:f9:15:41:c9:4b:44:be:54:13:19:29:4f:71:
5b:ed:8a:f0:42:33:90:ca:f4:81:a9:10:e1:f1:1d:
32:6e:bc:d8:d1:f6:78:55:70:ed:3f:e6:dc:db:21:
01:e3:a5:eb:e0:b4:c3:51:c5:c0:cd:31:a4:7d:2a:
f5:32:d5:75:94:24:78:26:c1:fb:9a:56:b4:cb:1a:
4e:6f:d7:3f:47:48:b1:a4:22:85:87:8d:02:75:84:
7d:ec:9f:18:f5:5b:aa:23:7f:04:15:6b:f7:56:00:
dd:4a:c4:49:5f:0b:bb:65:56:62:dd:7e:f5:b4:a7:
15:0f:01:3b:bf:ed:80:89:6c:ae:c1:93:ae:3f:89:
b8:74:ea:63:6d:e7:d9:b3:64:4b:de:ec:35:00:22:
6a:d6:e9:10:79:f8:c8:a3:ac:58:84:e9:6b:57:90:
a8:83:89:78:98:74:44:1e:12:77:99:df:82:d0:a2:
89:15:6a:66:aa:40:1e:4d:98:72:7b:7d:d8:e3:17:
5b:35:32:36:4f:f3:1f:0f:82:e2:2b:9b:a5:a1:99:
92:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:18:8E:53:D2:E8:75:14:B1:4F:93:EE:26:7F:60:E5:43:B6:33:6A
X509v3 Authority Key Identifier:
keyid:43:2F:FD:36:79:6E:90:F8:12:A1:61:2E:C1:F4:64:DE:3D:5E:2F:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qy_9NnlukPgSoWEuwfRk3j1eLzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/YBiOU9LodRSxT5PuJn9g5UO2M2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/196f89-2421-4bc1-b305-8c6a5e0ea06e/1/Qy_9NnlukPgSoWEuwfRk3j1eLzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.133.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:f7:c6:fb:7b:ba:62:02:5e:c1:e5:67:59:7c:39:e3:ff:39:
45:38:26:16:42:6c:3a:e5:5e:2d:fd:2a:27:2d:15:04:1f:ec:
d8:6b:c7:c8:1b:4e:70:da:a3:c3:df:a1:91:f1:ef:9a:e7:9e:
34:ba:7d:0b:cd:fa:d5:fb:86:24:1b:df:a3:e9:d3:e8:de:a8:
c0:be:a6:0c:fe:99:7f:3d:52:3a:2d:54:87:7f:dc:42:a4:46:
3d:18:78:88:14:57:b3:e5:b1:0d:2a:00:67:ea:75:c7:cd:53:
88:fb:15:f5:97:29:be:4a:84:59:56:fd:a7:ab:c3:0b:b0:43:
6d:73:fa:ea:0e:b3:2b:c8:d1:fb:f9:35:c1:a2:48:cb:5f:1c:
5b:bf:c0:0a:a5:88:13:c0:0e:79:da:0a:67:b4:99:a8:c2:3c:
2a:a2:3b:d0:9e:19:ff:85:53:e9:c6:9c:88:fc:a3:f0:ba:19:
0d:78:77:d1:08:b3:c2:84:55:b0:01:79:5e:ee:4c:2c:77:22:
91:de:74:fc:6b:35:23:7e:96:78:c1:35:cf:cc:6f:1b:3d:02:
c6:55:e8:bd:e5:70:6f:d8:1d:48:68:fe:50:0e:6e:41:58:75:
ec:5a:e8:29:65:42:15:e5:6b:7d:55:1b:e2:37:2f:2d:4c:a6:
56:a7:a7:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:51:19 2025 by rpki-client