Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/YkEpFHQglRkkx7TW2iOd8M7ku-c.roa
File: YkEpFHQglRkkx7TW2iOd8M7ku-c.roa (raw, json)
Hash identifier: kIeQhyyEYB0FfxtFkPtqVvMk30nvPQUJg2CwKA7jeLY=
Subject key identifier: 62:41:29:14:74:20:95:19:24:C7:B4:D6:DA:23:9D:F0:CE:E4:BB:E7
Certificate issuer: /CN=f2693085b5f75c0f10de08e22cbe4b062451b150
Certificate serial: 01941FFAA12BFB70A8F8DF868EF0DB88B405
Authority key identifier: F2:69:30:85:B5:F7:5C:0F:10:DE:08:E2:2C:BE:4B:06:24:51:B1:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mkwhbX3XA8Q3gjiLL5LBiRRsVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/YkEpFHQglRkkx7TW2iOd8M7ku-c.roa
Signing time: Wed 01 Jan 2025 03:48:26 +0000
ROA not before: Wed 01 Jan 2025 03:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 45023
IP address blocks: 193.200.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:a1:2b:fb:70:a8:f8:df:86:8e:f0:db:88:b4:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2693085b5f75c0f10de08e22cbe4b062451b150
Validity
Not Before: Jan 1 03:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=624129147420951924c7b4d6da239df0cee4bbe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:eb:6a:ee:f1:cc:c2:1c:f0:1f:3f:87:8b:ab:
17:c9:a7:d5:84:ea:bb:d6:1f:7e:f7:c7:54:a5:be:
9a:6b:e6:bf:c6:a1:26:76:60:4a:d1:b1:de:ae:08:
a3:66:0a:65:85:0c:4d:49:e4:d3:d8:b2:38:59:0a:
c0:30:97:97:2c:7b:b2:21:14:d4:f8:b2:ce:84:9a:
27:eb:9a:ef:c2:52:c5:85:ed:c2:f5:9a:45:56:64:
2f:c5:42:b4:6e:4b:18:de:df:02:8e:e1:12:2c:e8:
d2:ae:ef:2e:64:4e:54:0e:5c:d4:8a:0d:76:13:24:
45:33:1d:ab:69:85:c9:af:a6:dd:31:39:dd:82:a7:
2a:e2:72:2d:1a:0f:2c:33:18:79:a9:d9:5a:5f:a8:
9c:63:36:90:e0:7c:af:76:cc:b8:8b:44:e5:6f:d2:
e9:25:72:50:fc:26:06:ea:84:a5:5c:49:54:0e:66:
84:b5:8f:7f:53:ce:48:b1:16:ab:8c:0e:fe:3d:94:
4a:d3:bc:f8:f3:af:9b:37:19:df:d0:e7:e9:66:83:
1b:7b:df:66:e2:2c:13:59:83:ab:20:3e:97:e5:42:
0f:87:a4:9e:a5:18:ce:9b:3e:74:56:eb:6f:b3:3c:
44:25:2f:65:92:33:4f:a0:fa:58:2e:31:35:d1:84:
24:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:41:29:14:74:20:95:19:24:C7:B4:D6:DA:23:9D:F0:CE:E4:BB:E7
X509v3 Authority Key Identifier:
keyid:F2:69:30:85:B5:F7:5C:0F:10:DE:08:E2:2C:BE:4B:06:24:51:B1:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mkwhbX3XA8Q3gjiLL5LBiRRsVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/YkEpFHQglRkkx7TW2iOd8M7ku-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/8mkwhbX3XA8Q3gjiLL5LBiRRsVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.60.0/24
Signature Algorithm: sha256WithRSAEncryption
56:62:56:24:57:8b:8f:43:97:f6:af:10:31:4c:e6:b7:49:40:
a4:35:ca:5e:d7:28:16:70:37:f7:7e:94:b0:a0:3c:a1:f7:23:
57:59:3d:aa:7e:f2:09:b0:cf:a6:c4:06:db:3d:fb:4c:21:b0:
dd:27:11:55:7b:f6:b0:20:32:39:46:17:8d:7d:af:77:90:f8:
2c:ee:0d:dc:59:df:77:ac:df:2f:11:70:4a:42:a9:27:eb:f4:
46:fb:e6:db:82:f0:db:40:12:2c:ab:e9:c9:98:85:a4:4e:3d:
3d:0e:f3:a3:c4:dc:4d:3d:58:6c:49:6a:96:d5:2d:31:48:56:
80:ca:17:ab:d4:a0:ff:fc:64:d1:19:aa:2c:73:e8:32:2b:c5:
e1:6f:f7:38:ec:05:ef:d7:dc:62:0c:4b:8c:6e:9c:b5:a3:7d:
1a:54:7b:93:cb:9e:43:1a:65:c4:c6:15:31:b4:25:1d:5a:6e:
e4:bb:2e:17:8d:bb:d4:ed:3d:e1:62:1f:69:47:47:08:17:3b:
98:34:9c:d8:4d:60:5d:e6:49:0d:e8:01:2b:f1:08:2b:64:45:
4e:9f:5b:fb:2f:f0:fb:a9:f0:aa:d2:16:c1:97:73:f3:be:a1:
6c:0b:c7:d8:1e:fd:af:1e:38:a8:2d:8d:26:ff:9f:18:05:2f:
01:00:55:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:17 2025 by rpki-client on console.sobornost.net