Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/DyZYi-cF8-jMbyJIcBbQMAwJBgU.roa
File: DyZYi-cF8-jMbyJIcBbQMAwJBgU.roa (raw, json)
Hash identifier: I0i+gg+VVBTU4hDeBVA1hCkD5r9EeN6FpPKb79cHLpM=
Subject key identifier: 0F:26:58:8B:E7:05:F3:E8:CC:6F:22:48:70:16:D0:30:0C:09:06:05
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 0194843C3802652C91862F93CF890FBECDAB
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/DyZYi-cF8-jMbyJIcBbQMAwJBgU.roa
Signing time: Mon 20 Jan 2025 15:02:06 +0000
ROA not before: Mon 20 Jan 2025 15:02:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50952
IP address blocks: 178.18.224.0/22 maxlen: 22
2a03:5f80:9::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:84:3c:38:02:65:2c:91:86:2f:93:cf:89:0f:be:cd:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Jan 20 15:02:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f26588be705f3e8cc6f22487016d0300c090605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b3:c4:36:7a:39:3b:86:14:ca:dc:9c:c0:4a:
6b:f5:35:99:2f:81:0d:43:35:43:52:b5:52:cc:f4:
31:62:d9:54:6e:f7:94:7b:07:4b:fa:b2:f2:33:a7:
30:7d:dc:90:17:76:8e:8f:a0:1e:51:93:7b:e8:be:
17:5f:93:ef:b0:59:d8:b5:08:89:ed:8a:e8:bb:e9:
c2:14:6b:36:40:d3:83:8b:06:b1:1d:9f:d5:1c:01:
93:51:6e:ef:fe:94:3c:d8:4a:fa:62:73:42:2e:30:
2d:41:e5:a4:2e:8d:55:f8:6d:5b:a2:68:e9:a4:e7:
63:8a:2d:c2:f5:3a:2f:38:37:6b:fa:fe:c3:bf:31:
cb:e7:56:ec:7e:ee:f8:95:6a:7a:9b:d4:37:2b:b7:
48:ce:9f:9d:6b:16:74:5e:70:fa:31:48:02:d4:c0:
df:48:df:8a:c4:0c:56:16:8f:97:fe:f2:da:d4:91:
bd:a9:23:7f:d6:e8:d7:cf:5a:70:9a:9d:80:d6:58:
3c:1a:1f:ee:63:50:76:89:24:3b:ff:bd:d4:46:12:
13:12:29:da:07:12:c8:b7:70:3a:ab:81:cb:e9:3b:
2c:c2:c6:04:e8:e4:5b:50:e2:10:35:b4:5e:21:27:
fe:d4:7c:cc:85:3f:af:10:90:09:9a:02:1d:34:54:
16:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:26:58:8B:E7:05:F3:E8:CC:6F:22:48:70:16:D0:30:0C:09:06:05
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/DyZYi-cF8-jMbyJIcBbQMAwJBgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.224.0/22
IPv6:
2a03:5f80:9::/48
Signature Algorithm: sha256WithRSAEncryption
07:38:a2:4b:8e:49:9c:06:1d:09:f5:03:56:75:63:a4:7b:19:
0a:87:6c:ad:f7:d6:e6:88:21:f7:8f:83:fb:de:af:ff:a7:4f:
45:63:8a:bd:5b:6b:ea:ec:d8:1d:2f:a7:44:1a:ba:bf:8e:4a:
17:f1:41:93:e0:78:7c:16:b7:db:db:0e:35:1f:6a:f2:03:48:
53:0b:3e:45:c8:6f:c8:bb:eb:62:1a:59:6a:f6:de:a1:21:d9:
fd:7e:e0:25:a3:6c:9b:c2:1a:70:8e:cb:3a:53:0c:63:80:77:
75:f3:e4:fd:14:1d:0b:9f:c7:00:46:a0:6c:39:58:6d:4d:e4:
0a:e1:0e:88:00:ed:35:37:9e:19:c5:5f:5b:25:d5:fa:81:f9:
91:6a:41:9e:9a:c8:7f:fe:62:51:f1:be:ce:92:a8:62:71:16:
c2:1d:b7:76:c7:1d:3e:37:01:e3:80:62:3c:3c:a0:18:fb:37:
15:57:83:23:79:49:47:85:c5:89:b1:4e:62:d1:a5:3c:77:8f:
9d:98:03:33:e4:2b:46:2f:07:c0:d9:82:60:29:2c:c9:f7:16:
b7:f8:dc:84:cf:ee:a8:98:05:44:f7:5e:d2:e6:bd:85:53:53:
d5:95:e8:36:f6:e6:21:8a:3f:cc:9d:64:89:69:be:ef:3e:14:
1b:2e:8d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 15:45:48 2025 by rpki-client on console.sobornost.net