Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ryGZ88BI1HEWdG5wUr-9QX-4uvA.roa
File: ryGZ88BI1HEWdG5wUr-9QX-4uvA.roa (raw, json)
Hash identifier: gYBdnrckksxoe9kv5I7Av/gOWpEr9/76YJjNAY/Au3s=
Subject key identifier: AF:21:99:F3:C0:48:D4:71:16:74:6E:70:52:BF:BD:41:7F:B8:BA:F0
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0195EB70734F9215AE4864105387E18982A5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ryGZ88BI1HEWdG5wUr-9QX-4uvA.roa
Signing time: Mon 31 Mar 2025 09:02:50 +0000
ROA not before: Mon 31 Mar 2025 09:02:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 36530
IP address blocks: 185.206.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:70:73:4f:92:15:ae:48:64:10:53:87:e1:89:82:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 31 09:02:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af2199f3c048d47116746e7052bfbd417fb8baf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:88:b2:01:16:74:44:3e:07:c7:60:de:c8:be:
21:e6:37:1e:26:07:e8:68:37:2a:a0:15:ba:62:aa:
9d:03:1f:2a:4a:f9:5f:f9:95:25:a2:41:97:04:7c:
09:ae:d2:10:9f:f9:42:5a:fd:3c:74:d4:9b:2c:ce:
54:53:dd:09:db:ed:3d:e4:20:28:04:6c:f8:fd:27:
b4:10:1e:31:25:a5:f2:b4:c7:aa:57:70:0f:75:13:
28:5e:d7:cc:f6:9d:50:b0:63:90:43:e2:17:9e:98:
ae:59:3b:6f:b6:45:15:25:c5:5d:5c:ea:2c:93:d2:
91:a1:b4:68:12:48:2a:0c:e4:f8:e5:77:80:1a:27:
d5:35:f8:87:00:43:2b:f5:16:d4:8f:82:05:e7:e5:
97:be:06:3e:90:de:7b:a4:8e:2b:3a:26:c3:01:1f:
60:08:a9:02:1a:96:1a:a2:ff:a7:f4:b9:34:af:01:
aa:f3:fd:af:a1:74:ee:6a:80:96:9f:20:fd:85:67:
38:41:cb:6a:dc:65:20:d0:18:34:c5:2f:64:13:1f:
43:53:d8:4a:16:64:f3:d1:cd:f5:be:4d:d8:a4:df:
49:f3:b6:1f:2a:f0:97:f6:61:8b:e6:3d:db:89:75:
61:25:50:97:6e:94:fa:2f:63:5b:00:a3:e0:9e:e0:
f5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:21:99:F3:C0:48:D4:71:16:74:6E:70:52:BF:BD:41:7F:B8:BA:F0
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ryGZ88BI1HEWdG5wUr-9QX-4uvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.250.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:49:56:76:33:85:4a:5e:b2:18:2d:d1:2a:a2:3a:c4:e8:fb:
80:51:f4:bd:5f:86:79:97:72:26:8d:36:dd:c1:e5:f9:e0:70:
bd:28:8d:f3:9b:f6:6b:35:b4:95:d7:74:86:8b:53:9c:b6:f6:
74:aa:c9:c4:88:c8:c7:61:42:be:db:8f:67:ab:64:6a:39:a8:
a4:8f:f6:a4:03:8a:35:72:88:da:ac:57:ef:46:ec:dd:d8:9c:
7d:5e:0d:46:91:69:11:64:b6:c5:83:7f:15:05:ed:ba:ed:cd:
8d:6e:18:81:8a:45:09:18:43:3c:54:47:78:cd:3c:1a:ee:4e:
ad:67:3d:ca:79:2e:09:80:63:8c:85:e9:81:45:fd:3b:25:48:
eb:18:2e:0f:64:b8:25:22:31:48:ef:75:05:f0:bf:27:28:58:
e2:b6:85:b1:95:38:71:0e:0a:43:7f:59:6e:96:08:ba:5a:bf:
99:65:ba:17:41:0d:d0:90:46:37:29:3c:e2:f7:8b:e4:06:84:
19:c6:70:20:8f:e7:eb:80:f9:1d:bb:ae:32:25:39:63:0b:f3:
c8:de:59:b2:31:6a:b7:bd:23:32:bb:8c:b7:2d:7a:56:d3:26:
ff:69:a3:b3:46:f9:ee:10:05:49:e0:9f:9b:c0:a1:c8:ef:d1:
d6:7e:fd:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:12 2025 by rpki-client on console.sobornost.net