Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/95b186-f2ba-4c83-b630-8f95b8524c35/1/dzWaTBaulL5kl6N51Aq9Q2INFwQ.roa
File: dzWaTBaulL5kl6N51Aq9Q2INFwQ.roa (raw, json)
Hash identifier: qCU96anqXB1vi9FIqkKYJeT2OcA8oxOe7J0O6GEIhmI=
Subject key identifier: 77:35:9A:4C:16:AE:94:BE:64:97:A3:79:D4:0A:BD:43:62:0D:17:04
Certificate issuer: /CN=ff4b7ba5a76c137152d0d0f3524fd6201b815bef
Certificate serial: 01961667517F2F956399F406941A4AE106EB
Authority key identifier: FF:4B:7B:A5:A7:6C:13:71:52:D0:D0:F3:52:4F:D6:20:1B:81:5B:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0t7padsE3FS0NDzUk_WIBuBW-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/95b186-f2ba-4c83-b630-8f95b8524c35/1/dzWaTBaulL5kl6N51Aq9Q2INFwQ.roa
Signing time: Tue 08 Apr 2025 17:16:31 +0000
ROA not before: Tue 08 Apr 2025 17:16:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39686
IP address blocks: 2.58.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:16:67:51:7f:2f:95:63:99:f4:06:94:1a:4a:e1:06:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff4b7ba5a76c137152d0d0f3524fd6201b815bef
Validity
Not Before: Apr 8 17:16:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77359a4c16ae94be6497a379d40abd43620d1704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0e:81:c5:80:c5:b9:56:a8:84:63:18:97:97:
81:a1:1e:70:d2:8d:80:a4:0d:bf:b4:7d:d3:63:cc:
99:a3:ee:10:9b:c0:10:f3:5c:5a:94:1a:95:fa:95:
3b:1f:72:cc:f9:c9:2a:e5:2d:44:92:9d:b7:77:32:
48:af:87:6e:82:2f:81:79:77:85:ff:8c:80:0c:75:
b7:74:fe:6f:bb:94:17:20:07:70:f9:3f:f7:2f:08:
32:09:97:fa:d6:b5:df:77:60:29:92:6e:17:7d:44:
bd:64:3e:25:24:48:a3:96:e0:a5:62:f1:b3:b0:7a:
e6:5d:1b:32:2e:d8:78:44:cd:87:13:aa:36:15:af:
a8:b4:d8:c5:70:8d:93:b2:87:e5:5b:f5:40:8a:e8:
44:eb:71:ae:e3:4e:16:fd:63:cb:d1:7e:db:11:a8:
83:5f:a1:32:bd:7d:a8:cb:79:b6:93:35:55:2c:08:
ad:39:69:ff:df:4b:e7:75:48:d6:e9:a7:2c:16:c1:
7a:ab:81:77:9f:be:6d:02:24:9c:68:8c:3b:97:6e:
50:ce:2c:0a:a5:49:9e:75:9c:cf:7b:bc:b1:9d:87:
e4:55:12:f2:f5:cd:65:63:f1:c8:1a:fc:2a:27:60:
35:f2:e8:6f:58:c5:14:28:4d:ad:fb:1d:29:96:c8:
e4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:35:9A:4C:16:AE:94:BE:64:97:A3:79:D4:0A:BD:43:62:0D:17:04
X509v3 Authority Key Identifier:
keyid:FF:4B:7B:A5:A7:6C:13:71:52:D0:D0:F3:52:4F:D6:20:1B:81:5B:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0t7padsE3FS0NDzUk_WIBuBW-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/95b186-f2ba-4c83-b630-8f95b8524c35/1/dzWaTBaulL5kl6N51Aq9Q2INFwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/95b186-f2ba-4c83-b630-8f95b8524c35/1/_0t7padsE3FS0NDzUk_WIBuBW-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.108.0/22
Signature Algorithm: sha256WithRSAEncryption
68:f6:14:33:81:19:70:4a:38:ed:d3:40:db:c9:33:2c:95:43:
f0:d4:2c:85:c0:2d:fd:01:24:5f:13:4f:51:78:c3:10:1a:33:
e4:f1:ec:ef:f7:c0:55:42:2c:2d:3e:b6:d4:1e:0c:a7:37:e5:
5a:b0:e3:d6:f9:0a:20:c0:3e:33:4c:99:52:a9:c0:05:4e:f7:
dd:c0:3b:1d:14:52:0a:b0:79:d8:ec:49:3e:8c:b6:f3:6a:08:
88:f2:55:b2:ca:9d:17:49:8a:d3:05:a9:fe:33:fe:f1:4d:97:
15:1f:a0:46:8e:c8:a1:69:d5:33:c5:26:41:2e:1b:63:7e:4a:
66:f5:a3:77:9a:18:4d:c4:b7:15:b8:a0:34:4d:a9:1a:27:8b:
5b:2d:e4:55:af:35:ea:ca:41:3d:7f:13:54:04:f6:e0:e9:b1:
a2:a5:21:8d:23:de:b3:cc:38:a0:00:f8:75:22:91:c6:87:dd:
be:77:c9:48:b8:6c:61:36:de:f0:ad:7f:18:43:2a:8e:05:5d:
83:93:e5:07:a4:5a:fb:e2:c4:da:cb:18:db:4e:e2:36:52:9d:
23:48:44:9f:e4:dc:25:0b:74:a5:72:30:79:ec:7c:1a:43:70:
7e:45:bf:1b:5a:57:eb:d1:18:9d:dd:13:43:dc:20:e7:38:3f:
3b:c8:77:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:56 2025 by rpki-client on console.sobornost.net