Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/YYA24Gwpmr6WLrK2sHYyV54Dc0A.roa
File: YYA24Gwpmr6WLrK2sHYyV54Dc0A.roa (raw, json)
Hash identifier: y8Fe2VWfAJFVAfPInM4iGd7JSb+2Rg0aP2L6gGF+qEQ=
Subject key identifier: 61:80:36:E0:6C:29:9A:BE:96:2E:B2:B6:B0:76:32:57:9E:03:73:40
Certificate issuer: /CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f
Certificate serial: 0195D3CBE5A96C5AB4BB638ED2D67D65A9EF
Authority key identifier: 29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/YYA24Gwpmr6WLrK2sHYyV54Dc0A.roa
Signing time: Wed 26 Mar 2025 18:51:49 +0000
ROA not before: Wed 26 Mar 2025 18:51:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204902
IP address blocks: 5.10.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d3:cb:e5:a9:6c:5a:b4:bb:63:8e:d2:d6:7d:65:a9:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f
Validity
Not Before: Mar 26 18:51:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=618036e06c299abe962eb2b6b07632579e037340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3a:3c:29:30:10:0f:12:73:25:1a:aa:b4:a2:
c2:f8:ba:d9:16:09:2a:53:6c:61:1d:bc:6e:29:36:
d1:bf:cd:c5:58:35:ab:9d:3a:85:92:c3:76:67:22:
8b:e9:69:d8:4f:50:de:d2:7d:53:13:38:39:6c:50:
2c:da:1b:a9:5a:ea:e5:f8:24:c4:d7:05:3f:53:5b:
ba:c6:0d:61:be:a7:81:91:2d:ce:f9:f4:37:ef:e4:
d8:66:fe:94:72:54:e4:c1:5e:0b:67:ba:c1:8e:86:
92:b1:79:ac:1c:25:8a:9a:5a:af:5a:17:ab:67:a0:
bb:76:ae:26:ca:dc:ca:46:f0:2d:74:03:cb:a4:8f:
36:64:a0:c2:54:88:5e:e2:f1:1d:1b:b7:51:0c:89:
a0:4e:6b:59:cb:a9:13:39:73:da:d2:db:85:15:f2:
03:ba:8e:ff:78:ae:3d:83:37:31:6a:fe:6d:99:39:
4b:4c:85:21:dc:9d:46:ab:49:10:98:0d:34:f7:ca:
65:97:db:6f:86:6b:8b:3d:a3:c6:69:e2:0c:13:b1:
f7:9a:0b:f1:93:a5:0f:3e:ba:1c:1d:0a:99:43:72:
76:0e:5c:a9:16:c7:1a:cf:aa:61:3d:85:c0:c8:11:
8b:56:19:c5:b8:28:d1:8f:0f:2f:84:69:57:be:89:
06:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:80:36:E0:6C:29:9A:BE:96:2E:B2:B6:B0:76:32:57:9E:03:73:40
X509v3 Authority Key Identifier:
keyid:29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/YYA24Gwpmr6WLrK2sHYyV54Dc0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.216.0/24
Signature Algorithm: sha256WithRSAEncryption
96:47:50:d6:3c:a8:ca:fd:a3:2a:89:47:3f:10:17:a2:89:88:
09:a6:67:f9:87:f9:89:0e:c7:06:3b:de:97:3a:bb:66:6b:37:
54:38:5f:c9:da:06:02:eb:24:a0:7d:ef:30:cf:90:38:7d:7c:
f7:bb:9a:91:14:18:1f:52:8f:75:85:f5:2d:0f:21:c9:10:89:
0b:d6:8f:9a:c4:9b:fe:d0:ea:aa:c8:85:0d:06:67:43:ac:f1:
f4:20:7a:46:ae:bd:5b:f9:6b:68:a6:ee:41:17:98:6d:a1:c0:
55:e5:4e:41:8b:5d:fc:09:ea:e5:06:d7:16:f6:d0:22:d8:18:
96:a4:d7:98:cc:71:32:fd:fd:04:b4:6b:60:e9:7c:c8:0f:64:
f9:7d:8f:6f:6e:82:bf:d0:73:3d:03:60:94:c3:0f:85:ac:da:
39:01:57:9b:d4:72:df:a1:55:1f:4a:18:60:4c:17:1b:09:b9:
e2:b9:1b:82:b2:a9:fe:45:80:12:ca:2b:de:bd:9d:bb:e2:02:
81:d4:f2:4d:57:08:a2:31:04:65:62:2a:4e:09:13:c8:ad:2c:
6e:50:a4:07:09:63:39:60:16:6e:f2:6d:79:7a:ae:c7:05:c7:
dd:d4:f2:5f:b3:08:bf:64:1f:b0:24:5e:50:34:bb:f4:b1:77:
92:6e:c1:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:01 2025 by rpki-client on console.sobornost.net