Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a962a9-abff-4495-86cc-b56c8ccb2935/1/7T8vel-RvUDAb6LdSmoGnY1MBEg.roa
File: 7T8vel-RvUDAb6LdSmoGnY1MBEg.roa (raw, json)
Hash identifier: Bv42HU9ZNI49CjZAPUApOp/bLDu91m+dP9rH1Q/6aaU=
Subject key identifier: ED:3F:2F:7A:5F:91:BD:40:C0:6F:A2:DD:4A:6A:06:9D:8D:4C:04:48
Certificate issuer: /CN=cb662ceeb726774b1b44c51ff1fc0df908bdebbc
Certificate serial: 01942143A3F276DBAFD2BF2C70A64290DBCD
Authority key identifier: CB:66:2C:EE:B7:26:77:4B:1B:44:C5:1F:F1:FC:0D:F9:08:BD:EB:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2Ys7rcmd0sbRMUf8fwN-Qi967w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a962a9-abff-4495-86cc-b56c8ccb2935/1/7T8vel-RvUDAb6LdSmoGnY1MBEg.roa
Signing time: Wed 01 Jan 2025 09:47:48 +0000
ROA not before: Wed 01 Jan 2025 09:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31441
IP address blocks: 83.173.0.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:a3:f2:76:db:af:d2:bf:2c:70:a6:42:90:db:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb662ceeb726774b1b44c51ff1fc0df908bdebbc
Validity
Not Before: Jan 1 09:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed3f2f7a5f91bd40c06fa2dd4a6a069d8d4c0448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3f:e1:3b:50:16:a5:09:22:ed:30:df:48:68:
dd:a5:98:86:7b:5b:5b:44:e8:92:b5:78:80:71:7c:
4c:4b:07:e5:47:33:e2:16:96:0a:e5:a4:25:80:84:
8d:a2:4c:9f:50:05:9e:90:c3:98:e3:5c:09:19:cd:
84:03:46:6d:c5:01:08:56:ae:52:e3:3e:6d:22:c4:
19:f2:08:06:f3:75:ef:7f:3d:79:07:1a:7c:51:16:
1f:5e:73:b9:9b:ee:1f:f7:7c:75:7a:0b:fa:81:35:
9e:5b:dc:c4:d1:a1:4d:1c:20:22:04:c4:dc:93:1a:
0e:93:6c:02:2e:47:35:e4:d3:3f:fb:c6:3f:2a:1c:
db:1e:29:38:e8:72:96:1e:d3:7a:11:1f:06:cf:a2:
e6:d6:9f:02:af:59:e5:b0:e4:1d:3b:97:44:c6:ae:
b3:f1:3d:13:ca:8b:a4:d2:8e:f0:7b:17:f4:cb:81:
03:14:44:ea:cb:76:a3:02:69:2f:b8:aa:d9:0e:c8:
bb:85:02:1c:74:bf:ed:97:cb:37:c7:3b:c8:1f:b3:
6a:73:1e:48:04:3d:35:e3:15:80:73:bc:d1:88:88:
23:fb:38:70:dd:36:73:f3:a0:82:f7:fd:e6:3f:c9:
72:34:9c:3c:3a:39:cb:61:95:31:ce:6a:52:50:df:
f3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3F:2F:7A:5F:91:BD:40:C0:6F:A2:DD:4A:6A:06:9D:8D:4C:04:48
X509v3 Authority Key Identifier:
keyid:CB:66:2C:EE:B7:26:77:4B:1B:44:C5:1F:F1:FC:0D:F9:08:BD:EB:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2Ys7rcmd0sbRMUf8fwN-Qi967w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a962a9-abff-4495-86cc-b56c8ccb2935/1/7T8vel-RvUDAb6LdSmoGnY1MBEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a962a9-abff-4495-86cc-b56c8ccb2935/1/y2Ys7rcmd0sbRMUf8fwN-Qi967w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.173.0.0/18
Signature Algorithm: sha256WithRSAEncryption
89:2a:45:8d:14:9f:01:a6:f7:da:73:b9:01:0f:f9:c0:7c:4e:
44:52:75:1e:ee:cf:4a:55:26:62:82:1b:87:2f:7a:66:10:98:
10:9d:d0:63:a1:eb:21:fc:5b:6c:b1:e9:53:34:69:b2:79:7d:
5e:99:50:46:14:94:78:7c:8b:5f:fe:b6:9e:22:8e:9e:84:6f:
aa:73:43:49:ee:65:e8:c4:ff:fb:9e:4c:8d:42:e5:91:47:e8:
22:2c:0d:7f:57:0f:a9:ff:6e:16:5b:2a:09:d5:3c:66:22:4c:
b4:cb:71:53:d5:bd:a6:d5:f6:03:73:8a:8f:45:c9:a1:89:f4:
47:3b:1f:e7:bd:65:34:e0:a4:87:89:8c:07:77:7b:d8:cf:12:
aa:f7:b0:1f:eb:08:e2:33:d1:7a:22:c9:52:d6:ea:ac:88:78:
96:b6:dd:11:76:02:ab:a9:17:28:12:65:69:ef:fb:a7:96:2b:
51:b8:ca:45:5c:5c:e0:a9:91:a8:98:cb:08:9a:c5:e8:6e:23:
36:5c:b9:d2:9b:33:05:99:db:03:ea:0f:d3:51:6b:65:9f:a1:
a1:f9:3f:8f:7a:6b:81:ea:9a:d2:81:10:92:bd:2c:12:a5:7f:
ac:67:2a:14:a9:7a:67:7d:3c:09:a6:0f:11:6b:fb:36:97:68:
cd:22:33:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:55 2025 by rpki-client on console.sobornost.net