Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2adc39-3630-425f-af29-fbb0d3c10423/1/SX7CKkNX5ke670AWCb1741Boh3c.roa
File: SX7CKkNX5ke670AWCb1741Boh3c.roa (raw, json)
Hash identifier: /+lvUIY6Nj8pitkJ880DAygWMpOJMtNOHpSYINj0dno=
Subject key identifier: 49:7E:C2:2A:43:57:E6:47:BA:EF:40:16:09:BD:7B:E3:50:68:87:77
Certificate issuer: /CN=b16abdd9420f04ba9c1cd2c34dc7b352988af8d9
Certificate serial: 019422FBC1D1F3D152FFE3D34949630B17F7
Authority key identifier: B1:6A:BD:D9:42:0F:04:BA:9C:1C:D2:C3:4D:C7:B3:52:98:8A:F8:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sWq92UIPBLqcHNLDTcezUpiK-Nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2adc39-3630-425f-af29-fbb0d3c10423/1/SX7CKkNX5ke670AWCb1741Boh3c.roa
Signing time: Wed 01 Jan 2025 17:48:31 +0000
ROA not before: Wed 01 Jan 2025 17:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8315
IP address blocks: 2.56.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:c1:d1:f3:d1:52:ff:e3:d3:49:49:63:0b:17:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b16abdd9420f04ba9c1cd2c34dc7b352988af8d9
Validity
Not Before: Jan 1 17:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=497ec22a4357e647baef401609bd7be350688777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:49:f2:60:14:9b:c0:96:e5:a6:4e:57:0a:d5:
84:37:e6:0e:b3:f8:c3:ee:fe:3e:76:51:b6:f3:d2:
9e:3f:06:fa:ce:b3:dc:bd:42:8d:e4:63:7e:b4:8b:
1a:77:27:b0:26:78:de:10:8e:d0:c2:0e:ca:94:4d:
53:78:d1:a2:f4:47:f2:3a:ee:12:9b:80:51:cb:ac:
28:cb:87:93:05:46:4e:6a:04:ae:d2:bf:65:dc:16:
96:9e:10:88:9a:32:78:1f:23:43:bf:de:b6:46:50:
41:f4:f8:37:42:b0:bd:24:24:6a:85:f7:7c:42:de:
82:a5:2b:5a:b3:38:21:6a:56:6d:b6:fe:ca:a5:53:
83:17:38:25:49:a8:ed:86:3e:e3:75:1a:20:07:f3:
87:46:cf:72:88:23:31:28:1d:25:fd:b6:c7:c1:c4:
7c:6d:3d:14:d1:43:90:18:1c:c4:4c:6a:04:85:5c:
f9:d9:e4:a4:67:01:88:f8:62:7a:0f:cd:a5:0a:24:
46:ba:84:14:e4:6a:dc:ce:f4:7b:b0:85:5e:9a:53:
37:ab:43:38:a3:f3:a1:74:d4:79:37:16:f4:e5:ff:
bc:88:ed:08:d6:b0:c8:b1:f3:09:04:4d:38:4e:49:
5d:d0:64:60:2a:f4:54:e8:cc:d9:7b:05:30:33:9a:
c3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7E:C2:2A:43:57:E6:47:BA:EF:40:16:09:BD:7B:E3:50:68:87:77
X509v3 Authority Key Identifier:
keyid:B1:6A:BD:D9:42:0F:04:BA:9C:1C:D2:C3:4D:C7:B3:52:98:8A:F8:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sWq92UIPBLqcHNLDTcezUpiK-Nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2adc39-3630-425f-af29-fbb0d3c10423/1/SX7CKkNX5ke670AWCb1741Boh3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2adc39-3630-425f-af29-fbb0d3c10423/1/sWq92UIPBLqcHNLDTcezUpiK-Nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.171.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:ca:39:ff:02:ed:4f:af:5e:22:ba:5c:09:4f:4b:5a:d7:70:
e7:f2:d6:86:96:70:9b:d7:58:9c:2e:29:da:93:7c:e7:be:e4:
06:0e:84:c3:f6:21:b5:af:4b:53:30:da:9f:51:72:68:54:2c:
2b:44:b3:33:79:9f:99:dc:01:89:b5:99:ec:98:79:1b:6c:e2:
70:42:ca:0c:25:a5:b6:44:62:b7:21:08:78:2e:17:c2:b6:22:
11:9b:ae:0f:ac:dc:44:aa:a6:06:27:37:5f:c7:92:1a:40:ae:
bd:50:8b:e5:90:e2:11:b5:5b:f5:b0:3e:7d:f7:d4:fe:d0:cb:
cf:3f:5e:0a:ba:ee:ee:e2:72:23:ef:35:31:15:65:05:f9:56:
0d:7e:1e:f6:15:3c:eb:03:1e:bd:33:0c:c3:78:03:be:9f:78:
88:c3:1e:f3:fd:16:e8:6e:0a:3d:b8:d0:16:fc:9e:ee:c8:df:
79:e7:77:a5:39:5f:c5:42:b3:9a:6e:4e:5b:1b:e6:92:30:06:
40:4f:ba:99:d1:01:da:f3:8a:d8:d9:86:88:c1:bf:59:19:1c:
d4:8a:c1:d4:35:e3:eb:2d:08:45:09:55:2f:19:45:da:a2:b0:
41:8b:e1:3f:d7:1f:1b:ca:31:c1:fc:a4:f8:5a:dc:ec:66:a4:
94:a6:40:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net