Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/376853-2abf-4232-91ff-09a5e8d960dd/1/ypiHaIkjWTMZcDzv0-OFLs0Vl8g.roa
File: ypiHaIkjWTMZcDzv0-OFLs0Vl8g.roa (raw, json)
Hash identifier: VEkHUv83f9ifQbOyDH/QRdAXTrrARw1jb4RzCM/pIXA=
Subject key identifier: CA:98:87:68:89:23:59:33:19:70:3C:EF:D3:E3:85:2E:CD:15:97:C8
Certificate issuer: /CN=ebdb225471f2d6e41060b34185725485481014b8
Certificate serial: 019423D6C02E56BEAAB321366E0418D1DC38
Authority key identifier: EB:DB:22:54:71:F2:D6:E4:10:60:B3:41:85:72:54:85:48:10:14:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/69siVHHy1uQQYLNBhXJUhUgQFLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/376853-2abf-4232-91ff-09a5e8d960dd/1/ypiHaIkjWTMZcDzv0-OFLs0Vl8g.roa
Signing time: Wed 01 Jan 2025 21:47:44 +0000
ROA not before: Wed 01 Jan 2025 21:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208045
IP address blocks: 151.249.126.0/24 maxlen: 24
2a01:5b40:ac3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:c0:2e:56:be:aa:b3:21:36:6e:04:18:d1:dc:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebdb225471f2d6e41060b34185725485481014b8
Validity
Not Before: Jan 1 21:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ca9887688923593319703cefd3e3852ecd1597c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:21:81:33:13:dd:46:44:fb:a8:30:ca:b3:a3:
cb:16:e9:22:25:92:ad:ff:5f:c8:51:af:25:50:51:
61:ba:ca:77:98:11:97:1c:70:1b:48:64:87:5c:cd:
7f:ff:27:4f:19:71:b2:e8:5b:c8:81:9a:c0:28:2d:
06:7e:da:fc:57:1f:04:47:3c:24:81:27:52:25:22:
59:63:44:fa:68:86:b4:da:ce:7f:85:cc:cc:a1:db:
71:0a:08:b4:ad:13:ae:f0:40:48:25:a7:55:d4:88:
70:70:f7:ee:c4:12:bb:d4:53:17:57:c2:62:38:b9:
75:bb:40:8c:e0:49:11:dd:fe:a5:90:31:da:9c:76:
b7:b8:cd:a5:4e:92:e5:84:0a:44:75:19:29:f4:f4:
49:57:09:7f:9b:f9:ce:19:63:3f:b5:76:2c:c0:d9:
78:bc:71:33:34:7c:4d:a5:f3:fb:0a:08:fd:4b:fc:
a9:e7:25:8f:ad:2a:5a:9f:0c:d7:cf:ec:9f:ad:90:
9a:87:38:6f:9e:fd:21:ad:04:b0:bf:40:17:99:3a:
de:43:39:29:b0:c3:44:4e:04:9b:85:e5:83:88:8b:
d6:d1:92:7b:39:4a:66:c8:09:b7:91:f5:0d:b4:4e:
b5:1a:a4:00:2f:a4:96:19:57:fe:47:6e:42:7a:d8:
98:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:98:87:68:89:23:59:33:19:70:3C:EF:D3:E3:85:2E:CD:15:97:C8
X509v3 Authority Key Identifier:
keyid:EB:DB:22:54:71:F2:D6:E4:10:60:B3:41:85:72:54:85:48:10:14:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/69siVHHy1uQQYLNBhXJUhUgQFLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/376853-2abf-4232-91ff-09a5e8d960dd/1/ypiHaIkjWTMZcDzv0-OFLs0Vl8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/376853-2abf-4232-91ff-09a5e8d960dd/1/69siVHHy1uQQYLNBhXJUhUgQFLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.249.126.0/24
IPv6:
2a01:5b40:ac3::/48
Signature Algorithm: sha256WithRSAEncryption
7b:42:24:20:6f:e3:ac:5b:b9:e2:2d:b1:49:00:ae:d3:07:17:
8a:f2:26:5f:f1:75:8a:c4:77:a7:05:ea:87:cd:1e:28:a5:bc:
6c:65:f4:8e:05:54:77:56:96:4a:67:ab:56:eb:aa:3f:76:b7:
a1:b5:ca:de:88:c8:8d:ff:a1:a4:24:62:c9:47:8e:be:0f:9e:
37:6f:8a:71:2f:a0:19:53:e1:04:73:62:26:bb:af:2a:f0:dd:
e0:9f:8c:36:c8:ae:69:f9:8b:59:f9:ce:84:dc:47:07:2d:f6:
2a:ab:be:2e:e3:0f:d6:79:60:d6:0c:ab:46:b3:f1:27:0e:44:
23:3e:a1:60:cb:1e:53:0c:c3:33:68:56:21:42:75:d9:e1:09:
1b:fd:5a:79:72:96:fa:3c:1d:d3:d6:d9:4a:00:d1:f8:3f:35:
b8:34:2d:4c:2e:dd:98:76:13:d7:40:66:f9:0e:b0:2b:9b:e6:
85:dd:1d:f4:44:a6:b3:f1:f6:80:d8:4a:dd:ed:7a:65:f0:a5:
c3:a0:0d:a1:1e:f5:fc:47:39:38:d4:98:09:32:e0:9b:4d:75:
78:57:95:7a:7f:ab:d7:23:eb:fd:1a:1e:b0:d8:40:48:c2:fc:
67:69:90:fc:a4:7d:3d:e2:49:92:55:3b:bc:e1:c8:7d:39:69:
4c:d4:8d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net