Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/Yad7D0u10l6-G2byoPRYhPza6iI.roa
File: Yad7D0u10l6-G2byoPRYhPza6iI.roa (raw, json)
Hash identifier: AYvuuAYk23DpV2QbnhAJBghdOegUASc3Ay0HmaR8IQE=
Subject key identifier: 61:A7:7B:0F:4B:B5:D2:5E:BE:1B:66:F2:A0:F4:58:84:FC:DA:EA:22
Certificate issuer: /CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Certificate serial: 0195F041A92C2A658A9D7C853B9B9C4E7FC9
Authority key identifier: 11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/Yad7D0u10l6-G2byoPRYhPza6iI.roa
Signing time: Tue 01 Apr 2025 07:29:49 +0000
ROA not before: Tue 01 Apr 2025 07:29:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43647
IP address blocks: 62.122.216.0/22 maxlen: 22
82.148.0.0/21 maxlen: 24
89.232.184.0/22 maxlen: 24
94.154.128.0/22 maxlen: 24
185.76.12.0/22 maxlen: 24
185.228.88.0/22 maxlen: 24
213.232.225.0/24 maxlen: 24
213.232.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f0:41:a9:2c:2a:65:8a:9d:7c:85:3b:9b:9c:4e:7f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Validity
Not Before: Apr 1 07:29:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=61a77b0f4bb5d25ebe1b66f2a0f45884fcdaea22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5f:78:8d:81:4f:e7:8a:a6:69:1c:35:19:ca:
ee:3e:f1:ef:71:49:03:30:af:e2:2b:78:98:38:98:
be:5e:0e:50:1d:2b:ac:3a:ea:bd:cb:1f:7f:84:f1:
e0:ee:56:d7:1a:bf:0e:cb:07:9d:55:20:f8:f3:24:
11:4a:db:6b:6b:1f:0b:bd:9d:35:eb:c3:84:4d:02:
b7:49:c7:9d:fb:bc:96:b6:3f:a7:6e:88:6e:06:b0:
a5:0e:ac:fd:f8:9c:ab:e3:22:65:28:fc:72:42:f9:
6f:a9:14:c1:7a:13:f0:f2:83:c6:43:a2:7b:e1:2c:
da:da:21:6f:00:be:2f:64:f4:9b:29:d6:16:4c:26:
eb:d0:2c:19:de:16:00:93:c0:7e:2e:ef:be:ff:b4:
23:fe:15:6d:ee:12:ee:60:14:88:07:07:23:47:6e:
43:9a:17:db:bd:3f:bd:d9:7e:2e:86:ee:9f:a5:c1:
53:ef:34:86:20:2a:3c:39:0d:b8:eb:02:d3:bd:7f:
bd:4b:91:41:47:31:47:fd:f6:5a:4e:9e:f7:3d:52:
a0:3e:ad:8f:0e:1a:b3:4c:2f:0e:9c:51:eb:64:21:
98:9a:3e:d1:fd:42:78:f1:95:02:ed:6e:7b:2d:7a:
5f:21:3c:61:ff:76:54:af:56:41:03:66:bb:1b:be:
5e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A7:7B:0F:4B:B5:D2:5E:BE:1B:66:F2:A0:F4:58:84:FC:DA:EA:22
X509v3 Authority Key Identifier:
keyid:11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/Yad7D0u10l6-G2byoPRYhPza6iI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/EbabWdGfKYfknxhS1guxd3-AowE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.216.0/22
82.148.0.0/21
89.232.184.0/22
94.154.128.0/22
185.76.12.0/22
185.228.88.0/22
213.232.225.0/24
213.232.245.0/24
Signature Algorithm: sha256WithRSAEncryption
57:91:87:01:e3:09:ec:7d:36:cf:69:a5:34:83:ef:22:9e:de:
5e:fc:c7:2a:18:1b:18:ac:51:df:55:93:18:29:2d:6e:06:df:
57:e5:be:23:cd:76:2b:45:c9:47:ef:c5:60:9c:9d:bc:4b:5a:
09:04:13:ae:2f:e4:d0:f3:2a:89:06:d2:bd:06:ba:4e:eb:23:
62:97:21:03:f2:27:19:1e:73:7a:34:bd:0c:66:88:2b:95:d6:
7c:b8:c2:f6:09:10:25:59:aa:83:ed:e8:81:73:89:55:22:45:
a0:7f:18:3d:9c:cf:03:f1:2f:08:74:4d:13:a8:1a:fd:74:1a:
52:f4:33:50:fa:68:ba:95:16:62:2d:ef:e7:8f:a9:17:2f:a7:
39:fe:ce:40:84:cc:1d:c5:99:aa:c4:b3:2f:5f:79:52:c9:44:
8f:d7:9a:b8:14:f3:4d:4c:fa:44:c9:1e:25:c7:87:dc:78:81:
9c:48:17:64:bd:19:c6:73:29:58:58:56:40:9b:40:f2:83:17:
a5:3b:76:1d:c0:b3:51:f0:cd:0f:a3:10:95:db:3a:68:68:00:
fc:ed:f8:75:ba:cb:6e:2f:00:cd:2e:a4:b7:74:c8:bd:6e:55:
64:bd:92:44:a5:77:c0:38:af:2a:53:ab:bb:f4:9d:0c:cc:44:
1b:53:29:fd
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAZXwQaksKmWKnXyFO5ucTn/JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExYjY5YjU5ZDE5ZjI5ODdlNDlmMTg1MmQ2MGJiMTc3N2Y4
MGEzMDEwHhcNMjUwNDAxMDcyOTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWE3N2IwZjRiYjVkMjVlYmUxYjY2ZjJhMGY0NTg4NGZjZGFlYTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvF94jYFP54qmaRw1GcruPvHvcUkD
MK/iK3iYOJi+Xg5QHSusOuq9yx9/hPHg7lbXGr8OywedVSD48yQRSttrax8LvZ01
68OETQK3Sced+7yWtj+nbohuBrClDqz9+Jyr4yJlKPxyQvlvqRTBehPw8oPGQ6J7
4Sza2iFvAL4vZPSbKdYWTCbr0CwZ3hYAk8B+Lu++/7Qj/hVt7hLuYBSIBwcjR25D
mhfbvT+92X4uhu6fpcFT7zSGICo8OQ246wLTvX+9S5FBRzFH/fZaTp73PVKgPq2P
DhqzTC8OnFHrZCGYmj7R/UJ48ZUC7W57LXpfITxh/3ZUr1ZBA2a7G75eewIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFGGnew9LtdJevhtm8qD0WIT82uoiMB8GA1UdIwQY
MBaAFBG2m1nRnymH5J8YUtYLsXd/gKMBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWJhYldkR2ZLWWZrbnhoUzFndXhkMy1Bb3dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC81ZWRmN2EtYWI5YS00NWU3LWE2MTIt
ZDE2OWMwODhiNDEyLzEvWWFkN0QwdTEwbDYtRzJieW9QUlloUHphNmlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC81ZWRmN2EtYWI5YS00NWU3LWE2MTItZDE2OWMwODhiNDEy
LzEvRWJhYldkR2ZLWWZrbnhoUzFndXhkMy1Bb3dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCPnrYAwQD
UpQAAwQCWei4AwQCXpqAAwQCuUwMAwQCueRYAwQA1ejhAwQA1ej1MA0GCSqGSIb3
DQEBCwUAA4IBAQBXkYcB4wnsfTbPaaU0g+8int5e/McqGBsYrFHfVZMYKS1uBt9X
5b4jzXYrRclH78VgnJ28S1oJBBOuL+TQ8yqJBtK9BrpO6yNilyED8icZHnN6NL0M
ZogrldZ8uML2CRAlWaqD7eiBc4lVIkWgfxg9nM8D8S8IdE0TqBr9dBpS9DNQ+mi6
lRZiLe/nj6kXL6c5/s5AhMwdxZmqxLMvX3lSyUSP15q4FPNNTPpEyR4lx4fceIGc
SBdkvRnGcylYWFZAm0DygxelO3YdwLNR8M0PoxCV2zpoaAD87fh1ustuLwDNLqS3
dMi9blVkvZJEpXfAOK8qU6u79J0MzEQbUyn9
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:49 2025 by rpki-client on console.sobornost.net