Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/6R635Ptd67sQbUozDAHL15KwAZ8.roa
File: 6R635Ptd67sQbUozDAHL15KwAZ8.roa (raw, json)
Hash identifier: FeJLdgD5f1a4PRbLvL4XZUcT1XCVqYv8DaI7m1HKYu4=
Subject key identifier: E9:1E:B7:E4:FB:5D:EB:BB:10:6D:4A:33:0C:01:CB:D7:92:B0:01:9F
Certificate issuer: /CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Certificate serial: 019426D976AFE416E64F46A7CE408BF4FDF8
Authority key identifier: A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/6R635Ptd67sQbUozDAHL15KwAZ8.roa
Signing time: Thu 02 Jan 2025 11:49:33 +0000
ROA not before: Thu 02 Jan 2025 11:49:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20733
IP address blocks: 147.78.116.0/23 maxlen: 23
147.78.116.0/24 maxlen: 24
147.78.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:76:af:e4:16:e6:4f:46:a7:ce:40:8b:f4:fd:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Validity
Not Before: Jan 2 11:49:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e91eb7e4fb5debbb106d4a330c01cbd792b0019f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b4:2a:0f:3a:90:6d:47:bb:67:3c:c2:c4:0d:
10:12:7b:0b:e1:2d:e1:c4:62:de:77:d2:92:4f:57:
6d:c7:e5:84:9c:c9:45:ff:a3:ec:a3:6a:50:fb:31:
a7:1a:d7:13:26:58:0c:e5:68:52:07:fb:15:05:94:
a1:8e:79:fb:d2:a1:fa:e7:66:7c:9a:91:ca:a5:55:
1a:d2:5b:78:9a:bf:7d:60:2a:4b:fa:7a:aa:9c:e3:
db:4e:29:1d:6b:ec:0c:a2:4a:c8:08:3c:f5:c7:43:
b1:c4:21:ba:12:27:f3:7a:4e:0b:1d:44:ec:e1:a9:
32:5e:76:87:9d:68:a9:96:1b:dd:fb:17:4a:e6:76:
67:d9:fe:80:1f:aa:7b:a6:ed:8d:7c:55:54:ee:84:
8b:d9:64:da:f7:9b:07:b0:9b:53:b0:23:dc:7b:6e:
fb:89:c6:d3:1d:f9:e6:c9:68:e7:98:11:12:38:d4:
86:08:75:8b:38:be:8b:b3:d7:b3:5b:52:e6:5e:e6:
98:5f:70:a7:f0:07:60:e7:2a:73:37:18:48:74:6d:
d1:3e:f6:de:0c:d4:53:a7:6a:85:21:1d:3c:38:09:
16:8f:e0:e8:0d:37:0c:cf:83:1f:14:99:36:97:00:
92:6b:ba:cf:01:4c:d5:f0:94:cf:73:4c:40:e2:18:
d0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:1E:B7:E4:FB:5D:EB:BB:10:6D:4A:33:0C:01:CB:D7:92:B0:01:9F
X509v3 Authority Key Identifier:
keyid:A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/6R635Ptd67sQbUozDAHL15KwAZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/preJsy4W6d0vcFExGdx36mH_Hgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.116.0/23
Signature Algorithm: sha256WithRSAEncryption
71:10:43:f5:24:ff:35:a9:83:fa:2f:48:32:ed:33:4d:10:fb:
d3:aa:49:eb:a1:84:cb:d7:7f:11:69:b1:ca:51:5c:fb:61:40:
62:df:e4:21:6f:f0:23:a4:46:ef:fe:c5:3e:48:48:75:54:34:
b0:49:dd:4d:a4:75:9e:22:cb:db:be:13:2e:b3:35:63:a2:df:
07:a1:d5:4c:e3:85:cf:03:37:47:18:23:c2:2f:23:ff:6c:60:
62:49:25:9f:7e:bd:fd:ba:03:c4:a4:60:b2:0d:3a:ac:83:2b:
64:fe:45:ba:2b:d7:6f:8d:d4:99:30:5e:2e:c7:27:10:5d:10:
b0:a2:41:bf:ec:55:94:32:e0:c0:d1:08:0b:63:4d:99:37:15:
f9:7b:ac:c0:87:44:81:6e:d6:73:ce:4a:79:a8:5a:a9:80:e9:
ad:2a:91:21:91:5c:d8:e5:45:be:ff:c9:4c:6d:07:43:57:a6:
82:e0:6a:89:c2:d2:3e:fd:62:f7:7c:3b:fd:39:6f:ef:c0:8c:
20:25:9e:bb:9c:68:bf:30:34:a2:15:f8:a8:46:c3:af:26:7a:
2e:50:1c:2a:70:06:b1:d6:84:e4:a6:98:55:c4:83:31:8e:9e:
bf:cf:a6:56:0d:b8:17:e6:72:10:93:a3:81:f4:0a:99:18:bd:
bc:db:59:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:07 2025 by rpki-client on console.sobornost.net