Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/YsPCa2LhHTzsReR9IeNzv5T3mos.roa
File: YsPCa2LhHTzsReR9IeNzv5T3mos.roa (raw, json)
Hash identifier: LDFsTcsV1AxqY+xNyJv9Hm+hGyPSKYS1sTcP7lh9G1w=
Subject key identifier: 62:C3:C2:6B:62:E1:1D:3C:EC:45:E4:7D:21:E3:73:BF:94:F7:9A:8B
Certificate issuer: /CN=826905d1c1168b2a660709adb20f34c6e4c03d7f
Certificate serial: 0194214387D247FAE7CD9F647C396BABA6CC
Authority key identifier: 82:69:05:D1:C1:16:8B:2A:66:07:09:AD:B2:0F:34:C6:E4:C0:3D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmkF0cEWiypmBwmtsg80xuTAPX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/YsPCa2LhHTzsReR9IeNzv5T3mos.roa
Signing time: Wed 01 Jan 2025 09:47:41 +0000
ROA not before: Wed 01 Jan 2025 09:47:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59455
IP address blocks: 185.98.108.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:87:d2:47:fa:e7:cd:9f:64:7c:39:6b:ab:a6:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826905d1c1168b2a660709adb20f34c6e4c03d7f
Validity
Not Before: Jan 1 09:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=62c3c26b62e11d3cec45e47d21e373bf94f79a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c3:e5:98:fc:1a:8e:2b:a3:b6:19:58:da:8f:
3a:61:6a:37:8e:73:6f:c8:1f:82:df:51:18:9b:65:
a9:81:a2:a4:cf:29:1e:ce:1b:fb:de:c8:6e:4b:95:
2c:77:f3:37:06:84:56:d9:f5:c8:98:8f:14:65:c6:
b4:82:0e:88:64:33:0d:da:64:c4:f3:55:a7:e7:2e:
67:29:b3:d0:63:1a:00:43:12:83:31:1b:5e:f4:e3:
ae:e4:42:84:21:e3:b7:de:b0:bc:b5:be:c5:c3:92:
21:7a:13:2f:b5:22:57:74:b9:2f:4f:9f:c6:96:46:
c7:96:48:b7:9a:04:9d:29:58:29:84:6f:36:58:18:
6d:ad:0d:2b:fa:a6:9d:46:4b:91:0b:31:09:4a:b5:
73:a1:37:a5:38:31:bf:93:2b:51:c4:8c:f5:24:45:
39:90:f1:4a:e8:ac:14:d2:88:58:0f:bc:8d:44:2e:
49:5b:ef:56:05:a0:7d:18:d2:9c:35:64:9e:45:91:
3e:ba:40:f5:82:cf:34:34:65:ca:0d:c3:07:66:73:
fe:15:6a:03:2d:49:40:2d:85:c8:10:21:45:cc:14:
a4:af:b8:e7:7a:cc:3d:24:e7:30:90:dc:14:7a:32:
5f:66:f8:50:36:78:ae:fd:f5:36:67:75:b7:57:0a:
f3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C3:C2:6B:62:E1:1D:3C:EC:45:E4:7D:21:E3:73:BF:94:F7:9A:8B
X509v3 Authority Key Identifier:
keyid:82:69:05:D1:C1:16:8B:2A:66:07:09:AD:B2:0F:34:C6:E4:C0:3D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmkF0cEWiypmBwmtsg80xuTAPX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/YsPCa2LhHTzsReR9IeNzv5T3mos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/gmkF0cEWiypmBwmtsg80xuTAPX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.108.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:c4:8b:99:dc:ab:6c:69:d3:ec:77:4f:ef:85:ea:d8:8a:6a:
43:70:dd:65:98:17:38:3a:f6:bf:1a:f7:3c:f0:a0:94:61:28:
66:a1:90:52:31:c0:d0:6b:5b:dd:dd:e8:5c:1e:51:86:00:44:
b1:bd:27:9c:4d:3b:18:be:6e:c7:e8:07:f3:0a:fc:1b:6b:39:
8a:c8:33:14:20:6c:3a:3f:a9:e2:71:3b:53:aa:50:ce:ae:55:
d1:68:bb:15:45:b0:51:ec:ad:c5:b8:c9:2c:5d:67:f9:4f:23:
94:af:2d:e8:d7:a5:f1:63:78:59:ee:7e:8a:2b:b0:6d:43:85:
cb:6d:ac:63:7a:9c:21:09:34:22:f9:ad:c3:05:ab:d2:69:c9:
3e:15:74:00:ae:cb:2b:fe:5a:3d:f4:a3:33:fb:61:77:1e:1d:
22:a1:a2:a4:28:35:b4:13:6e:fc:4c:c8:d6:82:82:da:9b:62:
88:92:c4:33:2e:d4:5c:4c:6e:68:7b:10:cf:bb:f8:82:bb:88:
3c:29:e1:59:59:86:e4:ff:5c:40:0c:71:32:7e:39:54:c1:9f:
fe:0f:1b:f6:33:90:9a:05:ed:a2:3a:70:60:50:36:c6:53:76:
cf:17:96:14:32:43:53:f8:8f:11:46:01:bb:80:87:3d:30:05:
dc:c1:55:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:47 2025 by rpki-client on console.sobornost.net