Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa
File: y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa (raw, json)
Hash identifier: ce+FeJaNssRXQv9hff7wkEZwcN/xUnX9DV6JIGk2oTM=
Subject key identifier: CB:78:35:CF:B6:66:8A:0A:9E:8F:50:C6:43:58:31:DE:29:59:68:CF
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 0194221F36414EA1597E6651B7C04E68403E
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa
Signing time: Wed 01 Jan 2025 13:47:38 +0000
ROA not before: Wed 01 Jan 2025 13:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198906
IP address blocks: 176.118.136.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:36:41:4e:a1:59:7e:66:51:b7:c0:4e:68:40:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Jan 1 13:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb7835cfb6668a0a9e8f50c6435831de295968cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5b:d8:04:b6:99:89:7e:44:b2:cf:59:90:8c:
1d:46:5f:4c:30:55:08:62:a2:e8:3a:88:5d:ff:bb:
7d:d8:62:f9:44:9f:c6:fa:d0:9f:e0:c7:be:ed:2f:
77:da:22:39:ef:49:ef:70:1b:08:93:b7:46:a3:60:
94:02:59:06:c9:37:6e:c5:96:82:ac:9e:62:59:bc:
cd:06:fa:8a:22:41:56:6e:36:56:ec:7f:41:1b:35:
60:0e:2b:b8:46:c2:bd:f3:e8:48:71:4a:18:76:c6:
fe:d5:9f:06:c1:34:58:89:6c:09:a9:08:d1:83:b6:
a8:d0:e1:ec:e2:f8:70:bb:0c:19:28:78:25:93:30:
15:a1:55:e8:6e:a8:6f:0f:95:6f:4b:9f:63:63:1b:
97:73:fe:99:0c:d9:71:6b:66:75:74:56:62:98:fe:
36:6a:3c:e0:88:7d:78:64:cc:5f:df:8c:2d:73:9d:
e7:9d:4c:c8:9a:3f:37:46:83:8a:ae:76:72:1c:f6:
20:d7:1d:fd:1d:f4:ff:7d:af:e4:62:93:a9:23:b9:
fd:07:e1:b9:a8:20:e9:d6:e4:67:c2:68:6b:31:aa:
24:8f:e1:9d:2d:e4:71:5d:83:68:9b:49:f9:96:65:
71:38:d6:d9:7e:5d:af:58:a2:9d:aa:e0:71:92:9d:
d2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:78:35:CF:B6:66:8A:0A:9E:8F:50:C6:43:58:31:DE:29:59:68:CF
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.136.0/21
Signature Algorithm: sha256WithRSAEncryption
65:51:c8:4e:b1:58:27:6a:dc:1a:38:36:dc:89:77:5b:22:12:
6a:7e:3b:59:ce:7d:fc:a3:a7:f8:26:b9:e3:88:b9:e7:15:49:
34:73:fb:4a:77:55:d2:43:5f:5a:02:8d:61:57:86:c0:fa:f8:
19:f7:49:86:04:90:ec:05:58:ed:79:57:7d:af:11:6d:bd:71:
9e:62:b4:45:ed:ce:08:05:d8:33:e6:d2:b8:47:01:09:f1:30:
b6:e3:ef:03:bd:fb:b0:af:ac:ac:8e:8a:2a:46:e0:23:56:26:
0c:07:c9:26:8f:03:71:38:ec:09:e0:83:04:e3:e3:66:96:06:
c3:e8:0c:39:42:3c:81:fb:31:5b:a2:e3:3c:7a:65:53:2a:4e:
18:00:05:45:c8:60:02:4c:08:bc:cb:99:57:46:2d:97:7e:a9:
bf:6d:5e:47:4c:93:5a:7c:f8:02:7d:b9:52:bd:f4:f7:f1:94:
7d:28:6e:d3:eb:ef:70:e4:d1:28:ed:db:bb:30:37:65:37:5e:
d4:6d:62:93:26:ea:25:2d:3f:6c:0b:f6:68:3d:9f:e6:7b:84:
af:50:41:66:e4:78:85:ab:c5:a0:80:91:21:84:b6:f6:34:54:
75:30:cb:a3:78:fb:7a:b6:59:a9:44:55:31:d8:17:5d:35:19:
86:89:9f:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:07 2025 by rpki-client on console.sobornost.net