Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/111579-ae19-4251-9785-73e38cce1383/1/LXZlJTG3YsWQvmeHm3moz8YZuWw.roa
File: LXZlJTG3YsWQvmeHm3moz8YZuWw.roa (raw, json)
Hash identifier: mxP6NSnPOQlaHwnP8UnNjh2RIRc/bI9gDbXBJw+o1lw=
Subject key identifier: 2D:76:65:25:31:B7:62:C5:90:BE:67:87:9B:79:A8:CF:C6:19:B9:6C
Certificate issuer: /CN=5797245d78078985c147dccbe0ec6d168dd9982d
Certificate serial: 01942827432154D2ADCF58ECA3155A6DF548
Authority key identifier: 57:97:24:5D:78:07:89:85:C1:47:DC:CB:E0:EC:6D:16:8D:D9:98:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5ckXXgHiYXBR9zL4OxtFo3ZmC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/111579-ae19-4251-9785-73e38cce1383/1/LXZlJTG3YsWQvmeHm3moz8YZuWw.roa
Signing time: Thu 02 Jan 2025 17:54:09 +0000
ROA not before: Thu 02 Jan 2025 17:54:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51379
IP address blocks: 178.212.112.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:43:21:54:d2:ad:cf:58:ec:a3:15:5a:6d:f5:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5797245d78078985c147dccbe0ec6d168dd9982d
Validity
Not Before: Jan 2 17:54:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d76652531b762c590be67879b79a8cfc619b96c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:63:3f:f7:2c:5f:9e:0e:68:3b:bd:28:0d:d3:
73:97:ae:48:f1:e5:62:11:48:32:15:16:e0:3c:1f:
05:8f:54:71:a8:ec:fc:d4:d9:5c:9b:2c:15:30:eb:
d1:de:21:f6:fd:a0:8a:7d:19:13:73:d9:2c:b4:02:
51:41:8c:8b:0f:ef:c0:9b:1b:56:f7:da:22:bb:d0:
af:b7:44:3f:10:b3:c9:2a:f9:24:ac:2a:3e:09:23:
7c:73:93:8f:af:24:ff:d7:03:3d:72:a7:69:c7:a7:
f3:d1:b9:06:35:35:e4:4e:d4:cb:a6:20:b6:ab:b2:
a9:d7:d9:13:30:46:be:d9:ba:ea:77:d8:e3:69:c3:
09:50:f5:2f:9c:66:41:11:be:26:ab:15:b0:e3:0e:
01:fe:3d:80:ce:d3:f4:2d:d8:13:56:cb:12:4f:06:
e6:a5:f5:eb:83:9a:c9:bc:1b:79:dc:f6:47:72:87:
db:88:c3:e9:60:b3:3b:b5:07:e7:0c:0c:bf:2d:69:
76:19:33:5e:06:b7:af:17:41:f6:30:2c:5a:52:1d:
3e:e3:e5:6a:2a:70:57:5b:11:9d:af:5a:33:b9:fd:
dc:1d:ed:5d:6d:ac:56:8a:b8:b5:75:17:d4:63:b0:
3e:15:f0:12:a0:aa:16:0f:ce:e9:21:0b:fe:db:96:
1c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:76:65:25:31:B7:62:C5:90:BE:67:87:9B:79:A8:CF:C6:19:B9:6C
X509v3 Authority Key Identifier:
keyid:57:97:24:5D:78:07:89:85:C1:47:DC:CB:E0:EC:6D:16:8D:D9:98:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5ckXXgHiYXBR9zL4OxtFo3ZmC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/111579-ae19-4251-9785-73e38cce1383/1/LXZlJTG3YsWQvmeHm3moz8YZuWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/111579-ae19-4251-9785-73e38cce1383/1/V5ckXXgHiYXBR9zL4OxtFo3ZmC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.112.0/21
Signature Algorithm: sha256WithRSAEncryption
42:b2:6e:ff:8d:2d:29:21:87:2a:42:1c:7d:30:41:4b:cd:08:
16:57:64:23:59:28:1c:48:71:08:41:f0:b1:91:07:4f:e4:96:
96:86:af:1f:54:4a:59:1c:fe:3a:ff:90:7e:4b:f0:ee:73:1c:
8f:93:23:fd:64:62:6c:b5:d8:da:94:13:55:ce:b5:25:ad:54:
03:98:be:2a:2b:0f:47:f2:5c:f7:1e:28:ce:ec:68:e2:44:c0:
d7:8c:55:00:f9:13:3b:3b:6b:52:5a:0b:58:b1:4b:cc:15:48:
f7:0d:f8:60:8b:5a:27:4f:88:73:10:d3:56:da:4f:ae:bf:c1:
f3:29:42:c9:8e:34:d3:10:bb:95:2e:6c:70:77:52:67:ff:c8:
a2:52:c1:42:ef:d6:c8:56:a5:e3:4e:98:1b:c4:00:c6:f4:c4:
c1:ba:41:b3:38:d3:07:d7:9e:47:83:32:fa:68:9a:9e:4b:23:
f3:f0:0c:52:51:d7:0c:61:7f:c5:f2:d3:9d:2e:1e:6c:bd:fe:
28:af:99:e0:3a:91:8b:7e:dd:da:80:44:3d:93:a1:9d:ed:6d:
7a:d6:08:a3:c6:9e:38:ea:0e:6b:ad:fd:97:21:2f:f1:52:04:
7c:3b:d3:24:52:69:eb:77:0a:c7:d4:1c:2c:dd:24:ef:ed:ac:
6b:67:01:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:41 2025 by rpki-client on console.sobornost.net