Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/LTyECeNCqqjLKolS1FQDHB0szi0.roa
File: LTyECeNCqqjLKolS1FQDHB0szi0.roa (raw, json)
Hash identifier: NMqquUf8k9Vi9iSmBBgAYLF5elpajsX2duO3ac5f7EA=
Subject key identifier: 2D:3C:84:09:E3:42:AA:A8:CB:2A:89:52:D4:54:03:1C:1D:2C:CE:2D
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0195EC9914F82DB50AE81125F1B08BD9C651
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/LTyECeNCqqjLKolS1FQDHB0szi0.roa
Signing time: Mon 31 Mar 2025 14:26:49 +0000
ROA not before: Mon 31 Mar 2025 14:26:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63023
IP address blocks: 103.136.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ec:99:14:f8:2d:b5:0a:e8:11:25:f1:b0:8b:d9:c6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 31 14:26:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d3c8409e342aaa8cb2a8952d454031c1d2cce2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fe:dc:62:32:80:c7:e2:df:6f:ba:03:25:f1:
34:41:2e:28:7a:24:0d:2a:92:cc:91:25:82:44:41:
09:77:78:6c:9d:d7:13:63:d2:27:e9:e0:b9:75:91:
0b:fc:7c:11:63:87:fe:0f:61:9e:b3:26:11:d2:c0:
0f:a4:e7:1e:26:c1:be:2f:9d:7f:8c:ab:3d:da:7f:
53:05:99:3f:3e:18:27:68:e8:af:81:c1:85:21:ce:
0f:ce:63:c3:ca:6d:52:1b:70:c6:6c:fa:73:43:c5:
fc:69:fb:ac:77:92:fc:ec:8b:cb:e4:43:ce:65:44:
a9:50:0f:0d:1d:88:f4:fa:21:53:c9:8c:94:73:35:
d2:74:a1:22:68:93:22:a4:8f:fd:f8:37:43:f9:e3:
86:a6:36:54:89:68:5f:1d:24:5a:b9:e5:a2:21:4d:
12:fb:7b:67:99:86:cf:f6:ba:ac:27:b4:05:66:c3:
02:f0:9e:03:37:bc:8a:6b:f6:ed:08:56:8b:98:96:
95:57:9f:27:23:84:a8:7e:fa:74:4b:0b:19:90:a2:
58:dc:ae:dc:8a:1a:50:46:52:aa:7a:4b:d1:06:bd:
b9:0b:bc:c0:35:26:a7:90:46:32:98:93:24:3b:45:
c3:96:29:a7:48:52:55:da:ed:65:53:7f:89:15:37:
af:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3C:84:09:E3:42:AA:A8:CB:2A:89:52:D4:54:03:1C:1D:2C:CE:2D
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/LTyECeNCqqjLKolS1FQDHB0szi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.136.70.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:5e:55:8a:43:82:39:83:95:b1:78:40:67:0d:f3:84:43:17:
3b:87:43:89:30:33:0f:cc:ba:76:85:27:46:e7:cd:1c:d3:d9:
0d:44:1a:7b:f6:55:ef:17:2a:8c:6a:71:cc:e4:0b:6c:3a:7a:
57:6d:57:a2:3c:db:19:a4:6e:71:6a:aa:74:62:bb:9b:0e:ca:
f5:b6:67:4d:3a:7e:b0:fe:40:4c:c5:8c:b5:a5:f0:5d:05:09:
3a:e2:66:28:98:4a:91:22:6b:b2:52:f4:1c:5c:c0:11:31:6f:
44:66:1b:ee:74:1b:35:1a:18:6b:8e:05:5f:65:a2:eb:5c:e9:
65:23:93:46:7a:87:e0:c5:56:aa:8d:6a:04:d6:d3:2f:c0:8e:
01:d2:9b:f5:c8:b6:f0:09:47:51:b9:91:45:55:3d:0d:8c:60:
2e:8b:50:ae:fd:0d:d4:1d:e1:d7:37:d9:7c:6e:7d:c6:7f:1f:
60:62:22:69:81:0e:f9:da:84:de:84:3a:88:8a:10:13:de:30:
63:b4:ec:79:bc:43:57:14:b4:34:58:e7:eb:04:9a:2d:20:99:
52:eb:74:a3:4a:a6:39:a0:63:25:6b:6c:dc:cd:18:aa:e2:39:
35:34:46:6b:61:c7:db:d4:0b:97:09:3e:90:68:ff:01:8f:3b:
9d:d1:a6:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZXsmRT4LbUK6BEl8bCL2cZRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5
M2U0NmIwHhcNMjUwMzMxMTQyNjQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDNjODQwOWUzNDJhYWE4Y2IyYTg5NTJkNDU0MDMxYzFkMmNjZTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwf7cYjKAx+Lfb7oDJfE0QS4oeiQN
KpLMkSWCREEJd3hsndcTY9In6eC5dZEL/HwRY4f+D2GesyYR0sAPpOceJsG+L51/
jKs92n9TBZk/PhgnaOivgcGFIc4PzmPDym1SG3DGbPpzQ8X8afusd5L87IvL5EPO
ZUSpUA8NHYj0+iFTyYyUczXSdKEiaJMipI/9+DdD+eOGpjZUiWhfHSRaueWiIU0S
+3tnmYbP9rqsJ7QFZsMC8J4DN7yKa/btCFaLmJaVV58nI4Sofvp0SwsZkKJY3K7c
ihpQRlKqekvRBr25C7zANSankEYymJMkO0XDlimnSFJV2u1lU3+JFTevlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC08hAnjQqqoyyqJUtRUAxwdLM4tMB8GA1UdIwQY
MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt
Y2Q2MTUyMjYxYzZmLzEvTFR5RUNlTkNxcWpMS29sUzFGUURIQjBzemkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm
LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4hGMA0G
CSqGSIb3DQEBCwUAA4IBAQCoXlWKQ4I5g5WxeEBnDfOEQxc7h0OJMDMPzLp2hSdG
580c09kNRBp79lXvFyqManHM5AtsOnpXbVeiPNsZpG5xaqp0YrubDsr1tmdNOn6w
/kBMxYy1pfBdBQk64mYomEqRImuyUvQcXMARMW9EZhvudBs1GhhrjgVfZaLrXOll
I5NGeofgxVaqjWoE1tMvwI4B0pv1yLbwCUdRuZFFVT0NjGAui1Cu/Q3UHeHXN9l8
bn3Gfx9gYiJpgQ752oTehDqIihAT3jBjtOx5vENXFLQ0WOfrBJotIJlS63SjSqY5
oGMla2zczRiq4jk1NEZrYcfb1AuXCT6QaP8Bjzud0aYq
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:29 2025 by rpki-client on console.sobornost.net