Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/YbkABPUPzYLvPsUqJHdyCh8h_zw.roa
File: YbkABPUPzYLvPsUqJHdyCh8h_zw.roa (raw, json)
Hash identifier: zDNmT/iRR5+0d0BCu2G2BV21w4RjgiEQSzy82K6zlC0=
Subject key identifier: 61:B9:00:04:F5:0F:CD:82:EF:3E:C5:2A:24:77:72:0A:1F:21:FF:3C
Certificate issuer: /CN=cfba970db187d18e19a91e64f00b0d3160860db5
Certificate serial: 01821F84A684DED51BF4E4D5D9CCE5EBB470
Authority key identifier: CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/YbkABPUPzYLvPsUqJHdyCh8h_zw.roa
Signing time: Thu 21 Jul 2022 06:49:23 +0000
ROA not before: Thu 21 Jul 2022 06:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 185.5.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:84:a6:84:de:d5:1b:f4:e4:d5:d9:cc:e5:eb:b4:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfba970db187d18e19a91e64f00b0d3160860db5
Validity
Not Before: Jul 21 06:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61b90004f50fcd82ef3ec52a2477720a1f21ff3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c3:b4:eb:ba:5f:84:8f:ba:ec:77:25:bf:49:
bc:40:9c:c6:34:b9:3a:47:d2:30:c2:c2:92:a8:2f:
5a:c9:48:eb:a2:24:5d:9c:7b:ab:18:6d:58:66:72:
be:7f:8c:0d:b7:8f:2f:40:f8:4e:41:77:c0:2a:91:
8b:7c:36:7a:c0:b0:4f:48:72:6c:b4:df:4a:f7:33:
5a:e9:0f:20:4b:c1:bb:e4:f7:59:4a:0f:7a:07:2b:
f6:fd:e5:8b:d4:25:ea:f8:b0:d8:19:3e:23:fd:87:
f4:ce:bf:47:dd:5f:49:d1:75:56:36:b9:78:ae:95:
e0:d5:e6:38:11:33:0f:ab:f2:38:32:df:fe:71:d8:
4e:48:99:90:94:f9:81:85:59:cf:11:27:6a:bb:0e:
54:56:4c:ee:ac:fd:df:75:3e:80:0c:35:3e:f3:f9:
2a:66:21:43:23:88:d1:d1:76:51:24:a2:07:bb:7e:
3f:0c:bf:a2:9e:39:1f:a2:57:1a:dc:20:e4:41:42:
98:da:5e:74:4a:60:77:9f:c1:e5:40:a1:ee:95:f6:
b1:b9:3f:97:bf:a0:eb:5e:37:b6:71:77:44:a6:33:
fc:ed:2b:ea:7b:d8:79:f5:1f:54:bf:7e:3d:be:55:
cb:10:4f:c9:8c:ba:d9:bb:24:e6:56:7d:a4:f9:10:
d3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B9:00:04:F5:0F:CD:82:EF:3E:C5:2A:24:77:72:0A:1F:21:FF:3C
X509v3 Authority Key Identifier:
keyid:CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/YbkABPUPzYLvPsUqJHdyCh8h_zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.144.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:3d:7b:de:7f:04:5f:9e:bf:29:f9:e6:a9:97:47:0c:ea:42:
9b:5b:06:78:bb:88:f3:40:31:ad:ae:ec:ac:ec:e1:2a:57:42:
ff:55:f3:b7:f7:a5:de:08:64:66:58:af:fe:11:78:13:2e:16:
97:3c:50:50:00:d6:c7:7c:56:88:9c:9a:b0:7f:e8:04:19:dc:
36:66:62:8d:65:43:d0:ea:c6:77:64:6a:ff:48:17:a5:87:7a:
22:26:32:e2:46:09:d4:b6:aa:4a:02:a9:15:e2:cd:bc:b2:c1:
54:a6:77:e7:bd:26:f9:55:0c:c9:e2:ff:c9:72:e8:23:ca:d6:
f2:75:66:05:14:9e:7e:61:8e:64:db:31:21:8b:eb:24:f5:cd:
de:98:53:0e:c0:9f:aa:16:3f:6d:a8:4f:75:f2:c0:6f:41:a4:
11:cb:de:8a:77:3f:d6:dd:72:34:11:13:bf:23:8c:b7:33:92:
99:4d:b1:9f:4f:6f:07:80:26:25:65:da:3c:80:f3:d1:3e:42:
0f:70:f5:41:87:c4:9f:85:78:a3:af:b0:58:6b:9d:0d:23:25:
d9:01:19:22:ca:a6:54:cc:09:9d:40:40:4e:0b:c0:57:5b:27:
39:be:95:0b:57:c3:bc:4e:75:66:20:b3:96:fe:29:5f:ad:f4:
a0:35:a1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 06:06:51 2025 by rpki-client