Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/fHM2AB9lWMdrr6W98wCcBfFFZto.roa
File: fHM2AB9lWMdrr6W98wCcBfFFZto.roa (raw, json)
Hash identifier: O5xk5dJ9bNLjoHECEnZnVJ7Que2qp5xFQYolbd9r+sI=
Subject key identifier: 7C:73:36:00:1F:65:58:C7:6B:AF:A5:BD:F3:00:9C:05:F1:45:66:DA
Certificate issuer: /CN=373b47a3cee79982adb170341d02026027332023
Certificate serial: 01942067CDCFAC4E3CFD66518C14BA935728
Authority key identifier: 37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/fHM2AB9lWMdrr6W98wCcBfFFZto.roa
Signing time: Wed 01 Jan 2025 05:47:41 +0000
ROA not before: Wed 01 Jan 2025 05:47:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59503
IP address blocks: 5.159.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:cd:cf:ac:4e:3c:fd:66:51:8c:14:ba:93:57:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=373b47a3cee79982adb170341d02026027332023
Validity
Not Before: Jan 1 05:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c7336001f6558c76bafa5bdf3009c05f14566da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3f:d0:d1:e1:9f:9c:bc:00:2f:19:fe:10:85:
c8:9e:32:cd:09:3c:c2:0b:a0:f9:62:16:22:c0:da:
7d:37:eb:b8:a8:4a:2f:02:4a:c3:64:c0:d2:52:d8:
b9:6d:22:12:f8:55:a9:b1:4c:93:06:25:59:13:0e:
db:74:1e:b4:8a:40:e7:cc:45:b9:c1:e6:e0:13:82:
c5:6e:83:aa:e7:39:5e:24:2c:2e:0d:1c:c8:94:df:
f0:98:4e:b7:3f:bd:0b:52:0f:d0:73:00:ae:fc:b9:
b6:83:5e:e5:ef:f1:f3:b2:a2:16:2b:93:2c:b3:b6:
28:b5:b6:e9:3f:60:23:7a:80:0f:18:5a:d5:89:48:
83:e4:65:1f:5c:b1:8b:d9:73:89:df:55:89:05:ac:
7c:73:aa:1c:fe:ad:c6:9f:07:f5:1f:4b:24:f0:00:
e0:2f:40:38:90:aa:f3:c0:21:ca:53:d5:56:78:c4:
38:4b:e5:db:86:82:05:86:d3:3c:30:ff:65:df:16:
93:f6:2f:e3:39:f6:79:09:7d:50:05:8c:33:06:2c:
6d:5e:eb:67:a4:1a:77:4a:97:52:02:02:1f:54:93:
88:98:eb:ba:f0:84:31:46:e3:cb:55:ba:63:b5:89:
dc:df:4d:75:51:91:be:15:b8:75:f7:fb:be:a8:98:
5c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:73:36:00:1F:65:58:C7:6B:AF:A5:BD:F3:00:9C:05:F1:45:66:DA
X509v3 Authority Key Identifier:
keyid:37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/fHM2AB9lWMdrr6W98wCcBfFFZto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/NztHo87nmYKtsXA0HQICYCczICM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.16.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:6e:3f:4a:f1:04:0b:7a:73:c1:15:87:da:f7:2a:02:87:61:
03:25:3b:4c:28:bb:a8:d3:70:26:4b:ec:95:3c:f2:e0:9e:e3:
be:ba:87:84:0d:06:51:da:7d:c5:0e:db:4c:bc:08:9c:16:9c:
a3:e4:2b:7d:65:cc:9e:fd:58:79:52:cc:5e:7c:77:52:9e:c7:
99:15:2d:ed:6a:ae:b4:f6:db:05:77:3d:a6:ca:37:5e:3f:d6:
2c:72:ed:f2:46:a0:cd:2f:af:26:92:af:96:e6:a1:5f:cd:6f:
7c:36:b1:90:5b:e7:f3:b8:10:c8:97:46:4c:2f:b9:09:35:56:
9d:52:ba:81:5e:fb:da:3f:f4:2d:72:0b:4d:2b:0e:2c:28:b9:
3f:83:8e:82:e2:c0:29:4d:d0:f6:27:0f:49:9e:47:d4:55:16:
66:01:c9:46:c6:c0:cf:ce:d6:cf:61:2b:ef:d4:f7:e1:a9:67:
bd:d3:c9:ea:d5:33:c3:35:9b:5c:cf:30:0b:8c:b3:1d:ab:d2:
81:b3:10:08:8c:d1:da:46:bd:94:8d:82:0a:ae:39:bb:68:3c:
8d:88:7c:f7:fb:87:49:4d:19:1c:96:76:c4:41:24:cb:a7:3e:
c3:77:e0:7f:16:ad:e4:25:56:36:a6:63:54:c5:f6:ea:4e:19:
e7:58:c5:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:45 2025 by rpki-client on console.sobornost.net