Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/l7z9gRq1cnQs_wN6y_k94oBYE1w.roa
File: l7z9gRq1cnQs_wN6y_k94oBYE1w.roa (raw, json)
Hash identifier: cA4fD7YFoUALJX+r2CwONaKqktMmrC06jt+qqYXcbRM=
Subject key identifier: 97:BC:FD:81:1A:B5:72:74:2C:FF:03:7A:CB:F9:3D:E2:80:58:13:5C
Certificate issuer: /CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Certificate serial: 0194B9AC0B555F873CAFC5A6ADB8B3A305CA
Authority key identifier: 55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/l7z9gRq1cnQs_wN6y_k94oBYE1w.roa
Signing time: Fri 31 Jan 2025 00:04:07 +0000
ROA not before: Fri 31 Jan 2025 00:04:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61112
IP address blocks: 178.253.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b9:ac:0b:55:5f:87:3c:af:c5:a6:ad:b8:b3:a3:05:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Validity
Not Before: Jan 31 00:04:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=97bcfd811ab572742cff037acbf93de28058135c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ab:e4:7e:c0:b9:68:39:4c:6e:10:af:b8:16:
fe:69:2b:c2:1b:b4:ca:b9:01:ca:d8:aa:17:3d:e4:
7c:04:44:c8:bd:fa:1b:b8:7e:61:f8:a3:47:aa:a0:
95:f3:db:62:e4:6b:33:68:35:bf:04:18:63:17:47:
ce:05:0a:23:ef:85:87:23:1e:4a:8c:b9:2e:ad:af:
90:61:ee:f6:b5:59:39:ad:c9:f3:d4:f0:49:a9:5d:
3c:b0:aa:63:81:46:76:dd:bb:d0:0b:6c:7c:44:48:
6a:50:4d:db:13:ba:e2:58:8d:3e:f0:14:4b:4b:bf:
72:b9:e0:87:cf:d1:9a:fd:97:72:81:bd:5e:50:55:
ca:4c:02:ad:1e:1c:e4:10:a7:f4:aa:26:91:8a:20:
2e:2a:b8:78:37:d9:ee:39:d2:7e:24:67:2f:24:52:
95:49:55:2a:4c:e1:bd:50:06:5b:ff:46:ed:c4:3f:
79:e1:ff:d3:12:78:9f:02:a6:12:d1:ee:77:b5:f4:
b4:86:7e:eb:91:60:14:b5:64:50:f4:a8:6a:55:9a:
d5:cc:fd:5a:1d:52:74:80:eb:4f:7b:ac:68:3c:f1:
64:60:23:13:41:f8:ef:7e:a5:dd:e9:57:50:01:02:
1c:29:31:59:02:ed:51:dc:b0:27:96:04:d7:05:5e:
2f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:BC:FD:81:1A:B5:72:74:2C:FF:03:7A:CB:F9:3D:E2:80:58:13:5C
X509v3 Authority Key Identifier:
keyid:55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/l7z9gRq1cnQs_wN6y_k94oBYE1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VbryaWdRCzxS5G0dxZOWfN8p-ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.32.0/24
Signature Algorithm: sha256WithRSAEncryption
89:9c:25:ec:b9:15:b0:df:d4:61:35:df:b3:f7:12:22:9f:53:
1e:66:d8:94:03:90:81:e3:db:c3:95:a6:26:2c:9a:7d:a5:3b:
56:0c:35:ae:2a:d2:22:c4:de:3c:59:b7:a4:7d:5c:4f:03:5b:
d0:c6:6e:5e:98:a8:f0:42:79:86:0a:4c:85:6a:fc:ee:06:24:
19:92:c2:43:ff:6f:0b:23:53:af:46:32:33:6f:67:c7:20:df:
7f:35:f4:48:b3:f5:dd:17:3d:28:3e:01:4a:1f:1d:e3:24:a0:
b3:ea:87:71:d8:51:34:17:8e:b8:16:f8:d1:4f:d0:d7:34:e5:
50:14:c1:7c:9a:4d:57:33:65:43:12:63:08:13:8e:6a:58:8e:
6e:97:05:38:6a:91:72:dd:96:30:cc:d6:5b:b3:58:b4:c0:98:
a2:ab:1d:d7:e2:76:a8:2b:80:26:d9:70:50:d7:66:04:f8:d7:
db:a1:9c:6f:f1:09:76:bc:9d:49:e4:1c:72:51:d5:22:03:e3:
d5:74:48:8a:36:b1:ca:b0:8b:4c:6c:19:cf:0b:98:19:dc:6c:
04:7a:f8:8c:4f:19:4c:8c:c0:ad:47:e5:8c:e5:57:3f:94:68:
cb:79:ec:3f:d1:48:a1:51:a5:00:49:5f:f0:a5:74:72:98:f4:
92:f4:d8:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:56 2025 by rpki-client on console.sobornost.net