Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0831bf-118c-4ece-934d-75295251b1e8/1/1C7VKc2u55exTPgbJjVVBkVOjI0.roa
File: 1C7VKc2u55exTPgbJjVVBkVOjI0.roa (raw, json)
Hash identifier: KRmVo74m9sWKSF23ay7PgVm1woGp8Zi9hAMJIltDmzQ=
Subject key identifier: D4:2E:D5:29:CD:AE:E7:97:B1:4C:F8:1B:26:35:55:06:45:4E:8C:8D
Certificate issuer: /CN=7dc8911682bc5ca71cece1efe3ac135bfdb59dd6
Certificate serial: 01941FFA92D5C9DFB984AC75E066E4F8E6CE
Authority key identifier: 7D:C8:91:16:82:BC:5C:A7:1C:EC:E1:EF:E3:AC:13:5B:FD:B5:9D:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fciRFoK8XKcc7OHv46wTW_21ndY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0831bf-118c-4ece-934d-75295251b1e8/1/1C7VKc2u55exTPgbJjVVBkVOjI0.roa
Signing time: Wed 01 Jan 2025 03:48:22 +0000
ROA not before: Wed 01 Jan 2025 03:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 53786
IP address blocks: 146.255.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:92:d5:c9:df:b9:84:ac:75:e0:66:e4:f8:e6:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc8911682bc5ca71cece1efe3ac135bfdb59dd6
Validity
Not Before: Jan 1 03:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d42ed529cdaee797b14cf81b26355506454e8c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3e:fd:53:5c:cd:35:cd:83:8c:2a:2b:46:92:
ab:fd:fb:1c:de:e0:dc:01:39:4b:e5:fc:cf:94:6b:
03:b9:b9:bf:6e:b4:09:35:f3:69:d9:72:e0:e5:ee:
e3:fc:33:7b:6b:73:57:d3:ff:fd:28:5e:51:65:a6:
ed:57:05:40:03:e2:d8:f8:c2:f4:b5:7e:a6:29:6d:
87:1f:dc:d4:6a:62:30:93:1a:e9:bc:cb:ca:5f:3b:
d5:34:59:94:26:3e:99:cd:ea:d6:2d:5b:d4:cb:23:
c5:c1:46:2b:5d:17:da:49:5b:1c:be:d7:aa:5e:88:
6e:cb:b7:69:ad:bb:34:0c:ad:fa:ea:a9:1e:1f:78:
3a:2e:22:f1:ba:89:84:45:0a:72:71:34:7b:04:6e:
d2:d9:03:ea:9d:e5:14:d0:bd:a5:de:56:20:13:c1:
49:7f:29:11:cf:03:ec:f4:15:31:e5:4d:e4:42:6b:
ef:d3:ab:97:76:79:38:a9:3e:c4:03:9e:8d:b5:9c:
1f:9d:10:6c:68:47:03:8e:bc:57:52:c6:79:90:40:
3b:1c:85:11:41:95:3f:f9:16:73:7d:23:2d:a4:0e:
20:0a:78:a5:fa:03:63:49:7b:30:cf:66:94:b3:eb:
0d:bb:c8:1d:a5:b5:b1:7d:ff:a6:27:10:8c:af:7c:
f0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:2E:D5:29:CD:AE:E7:97:B1:4C:F8:1B:26:35:55:06:45:4E:8C:8D
X509v3 Authority Key Identifier:
keyid:7D:C8:91:16:82:BC:5C:A7:1C:EC:E1:EF:E3:AC:13:5B:FD:B5:9D:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fciRFoK8XKcc7OHv46wTW_21ndY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0831bf-118c-4ece-934d-75295251b1e8/1/1C7VKc2u55exTPgbJjVVBkVOjI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0831bf-118c-4ece-934d-75295251b1e8/1/fciRFoK8XKcc7OHv46wTW_21ndY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.120.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:77:0b:5d:5a:12:8b:2a:ac:3d:41:8f:8e:49:7f:36:4a:33:
ba:6c:1f:95:61:8d:a2:2e:73:af:4b:a5:9b:31:5b:4e:0a:5f:
45:a3:c3:08:49:c5:60:de:f3:6f:8e:24:e6:20:35:a6:62:51:
76:45:08:c3:9d:34:89:91:55:f9:2d:fe:53:9f:ea:eb:62:16:
d4:51:66:23:eb:aa:1b:9f:60:1f:d8:37:63:8e:3f:10:ef:c8:
d9:5e:ba:d0:b1:7a:0b:8a:b2:c6:a5:1f:b6:3a:eb:60:11:b3:
1a:b9:40:c2:fa:d5:1d:27:aa:ca:cd:69:1f:98:29:35:65:f1:
a9:76:be:8e:5e:c1:3d:e9:c4:c0:a1:4d:ac:81:37:c3:e7:d8:
ba:df:ff:27:21:2a:c6:92:bc:a2:29:e3:fb:3d:ad:cd:47:b0:
f9:41:db:96:43:7b:f1:30:d6:a3:f5:ff:b8:24:b4:fb:8a:82:
9d:1f:6e:a3:76:52:49:89:7f:a9:d5:fa:40:66:ea:55:00:ff:
fc:66:f1:1c:7d:02:d6:ca:4f:fa:aa:4e:11:ed:6f:ad:81:34:
e6:ea:18:96:60:7a:fb:8e:79:51:c1:66:af:c8:7c:60:44:34:
c6:04:ca:c7:b1:79:df:6b:55:01:60:f0:a5:38:04:79:3d:0c:
3b:a3:c1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net