Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/ybOueXNsSJri02mQKQibbKcroL4.roa
File: ybOueXNsSJri02mQKQibbKcroL4.roa (raw, json)
Hash identifier: rsUCG/CXGaoh8At3iU9kgYgz39f7x4KapImvavgysk0=
Subject key identifier: C9:B3:AE:79:73:6C:48:9A:E2:D3:69:90:29:08:9B:6C:A7:2B:A0:BE
Certificate issuer: /CN=bf99d23c82729a8049e7565775a864bc3aa282ef
Certificate serial: 01941FFA6B1E5FF2279EA8995AECEA1BA434
Authority key identifier: BF:99:D2:3C:82:72:9A:80:49:E7:56:57:75:A8:64:BC:3A:A2:82:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5nSPIJymoBJ51ZXdahkvDqigu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/ybOueXNsSJri02mQKQibbKcroL4.roa
Signing time: Wed 01 Jan 2025 03:48:12 +0000
ROA not before: Wed 01 Jan 2025 03:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208950
IP address blocks: 185.134.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:6b:1e:5f:f2:27:9e:a8:99:5a:ec:ea:1b:a4:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf99d23c82729a8049e7565775a864bc3aa282ef
Validity
Not Before: Jan 1 03:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c9b3ae79736c489ae2d3699029089b6ca72ba0be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ee:5c:8b:2f:ad:71:ba:da:6e:dd:81:a2:22:
85:5f:ee:fb:71:89:df:17:5c:13:8b:b4:86:56:07:
76:d3:d0:c7:c5:d2:e0:b4:18:b9:52:43:53:2e:3a:
21:99:e1:c4:88:2d:1e:da:51:71:d7:24:e5:12:04:
d2:cc:45:2d:b5:0b:2d:a8:3a:54:d3:a9:00:8a:2f:
27:12:bb:1e:e2:1e:83:ca:ce:ce:52:41:5b:4e:11:
2e:70:4a:d0:8a:0a:c3:b0:28:59:cc:4a:96:a0:d0:
04:f9:5b:ba:4b:8f:d0:a9:68:e6:5c:ae:ce:ec:67:
7c:44:15:ed:d3:74:9d:27:66:f1:c2:54:d6:12:50:
34:de:57:3f:87:ed:4b:7b:98:cb:8d:9f:74:c2:2c:
8f:3f:97:91:af:a0:25:46:40:43:3b:b8:cf:0d:8a:
e2:39:05:09:d1:23:de:0b:dc:33:8f:8c:ca:87:38:
2f:6a:7e:37:1e:91:05:bd:60:74:8b:fd:c8:57:ad:
0f:6c:9a:fb:cd:e7:87:ca:84:9e:e4:be:ac:23:43:
ec:6b:bf:44:f0:85:58:7b:6a:f4:6d:91:4d:31:39:
2a:02:53:e6:34:9e:22:b2:9f:3d:b8:2b:c9:b2:9b:
b6:f5:c8:d3:99:4b:f0:c4:b0:2f:09:0a:6f:88:97:
36:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B3:AE:79:73:6C:48:9A:E2:D3:69:90:29:08:9B:6C:A7:2B:A0:BE
X509v3 Authority Key Identifier:
keyid:BF:99:D2:3C:82:72:9A:80:49:E7:56:57:75:A8:64:BC:3A:A2:82:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5nSPIJymoBJ51ZXdahkvDqigu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/ybOueXNsSJri02mQKQibbKcroL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/v5nSPIJymoBJ51ZXdahkvDqigu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.62.0/24
Signature Algorithm: sha256WithRSAEncryption
99:f7:51:18:38:2a:f2:49:ec:74:29:37:a6:bf:fb:13:30:34:
5d:fc:0e:db:85:d7:eb:34:0d:ca:d4:fc:a4:e4:70:3a:86:87:
9b:5b:1b:e5:8c:eb:ec:4d:b1:cd:25:28:7e:60:7d:c7:ce:a2:
42:1f:b0:a8:7c:29:dd:5e:d3:19:55:8b:ff:d7:e4:52:14:88:
60:08:b7:bc:9e:0b:39:f0:26:a4:6d:49:1e:14:18:38:1c:a3:
cd:a8:0f:52:a5:9c:37:72:94:f4:54:6b:86:44:e0:50:0d:38:
1e:72:3b:ef:8d:7b:0b:dd:7a:a8:ab:e6:a8:b5:36:d9:56:ec:
e8:90:0f:a0:c1:d2:4b:ae:0d:35:1c:f0:ef:6b:83:2b:5b:0e:
f9:98:80:7d:ff:01:a0:45:f5:6d:95:16:d5:e1:09:08:e4:88:
76:94:0d:23:5f:57:af:64:57:00:f8:fa:4f:03:67:cf:c9:6b:
30:68:16:5f:5d:72:5e:8a:26:0d:a2:89:ae:72:b9:47:4d:ce:
93:bb:e1:3d:f2:13:10:80:19:eb:a6:a7:2e:94:32:20:ab:80:
78:9c:a0:b2:f6:3d:11:ac:30:a0:9b:c1:99:34:55:70:bf:e3:
07:9b:98:f2:57:18:1c:2b:8d:cb:f0:9b:b8:12:e7:b6:fc:9e:
e3:ed:e3:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:14 2025 by rpki-client on console.sobornost.net