Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/koxHsCOglgaz0t3iqVnSlyxk1ow.roa
File: koxHsCOglgaz0t3iqVnSlyxk1ow.roa (raw, json)
Hash identifier: ezCqjwYzx/s/HM4jbyHE+jja9xXjGxsuVYdaEiacu30=
Subject key identifier: 92:8C:47:B0:23:A0:96:06:B3:D2:DD:E2:A9:59:D2:97:2C:64:D6:8C
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 0194221F6C49B734F7F7A8F169CC449874F4
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/koxHsCOglgaz0t3iqVnSlyxk1ow.roa
Signing time: Wed 01 Jan 2025 13:47:52 +0000
ROA not before: Wed 01 Jan 2025 13:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 17558
IP address blocks: 57.197.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:6c:49:b7:34:f7:f7:a8:f1:69:cc:44:98:74:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 13:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=928c47b023a09606b3d2dde2a959d2972c64d68c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:21:e6:8b:f7:da:0a:87:0a:6f:92:ec:8c:79:
48:c4:66:fe:fd:26:d2:ec:2e:52:82:0e:da:be:5b:
ac:ed:49:df:4f:63:6a:78:26:c7:44:cd:20:d5:eb:
11:18:f3:0d:fd:42:5f:26:99:b8:14:61:aa:89:ab:
b8:31:2f:13:f4:9a:46:d8:fa:be:a1:a9:15:a9:fc:
e4:df:8d:8e:50:0e:e8:c7:08:b1:01:6a:ec:ee:92:
d0:2c:df:5d:db:c8:92:c4:92:53:cc:91:d8:b9:58:
ee:2f:39:19:ce:cd:79:e5:22:e7:e0:84:3c:4a:e1:
49:a3:46:0c:95:22:19:01:b8:28:a3:90:89:8f:84:
98:c7:91:4b:27:40:46:ce:07:b0:38:76:f2:71:eb:
f7:d2:49:02:94:d7:3b:4b:73:5a:eb:55:ac:5f:50:
eb:f9:9c:54:01:9c:6e:df:a7:97:cc:42:58:11:5c:
ec:d4:49:80:a6:72:3e:7c:2f:f4:01:ee:77:c4:35:
86:e7:15:f7:19:37:41:03:67:a0:09:a5:07:ff:4d:
ad:f2:ec:3f:ac:7a:ff:dd:df:82:fe:7e:d3:28:1c:
e1:9b:8d:0c:ef:80:f3:42:01:90:7f:bb:b7:8b:a3:
d8:cf:11:6d:38:d5:86:f2:0b:13:69:95:61:11:ae:
20:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:8C:47:B0:23:A0:96:06:B3:D2:DD:E2:A9:59:D2:97:2C:64:D6:8C
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/koxHsCOglgaz0t3iqVnSlyxk1ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.197.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:a4:41:be:70:9e:64:2b:fc:3b:fb:71:13:f1:c4:2c:91:89:
ac:c2:50:9b:60:fe:2b:35:5f:80:e6:3c:dd:d7:08:2c:98:8b:
b0:b1:95:fe:ed:98:70:9e:bd:98:00:98:f0:aa:ad:d2:f9:6f:
1b:c3:2d:03:2a:59:ea:d2:1d:46:c9:98:e1:2d:0e:50:58:f5:
ba:89:65:37:37:49:60:cf:9e:64:c8:7a:48:1f:41:5b:c7:03:
e3:02:f3:ce:64:11:97:c8:a7:fa:a6:7d:89:60:eb:e4:7a:c3:
fd:de:15:f8:fe:a6:70:ac:e7:62:b8:ba:ec:ad:b2:a6:0c:4c:
44:fa:5d:66:c9:d3:6c:8a:d5:77:1f:de:77:5f:d6:cc:23:72:
61:fa:69:6a:23:6c:a7:4a:28:f1:41:33:c9:1b:21:92:77:66:
6e:76:98:9b:da:ff:1e:3f:a6:64:60:8d:15:ff:0c:de:69:b0:
cd:bf:e6:32:e1:f4:78:75:1e:8b:d7:94:96:b8:a8:ab:e3:79:
98:8d:3f:05:5b:85:18:63:d2:58:44:a8:1d:4b:f4:ae:de:28:
51:a4:7a:52:ab:8b:9c:44:71:d0:55:75:b3:dc:45:52:cc:aa:
cd:a2:92:48:30:3a:30:78:3e:f4:88:d0:26:14:4b:74:48:c0:
6f:ad:41:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:54 2025 by rpki-client on console.sobornost.net