Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/4T7ohvim9PbetIc4Qlo9d9QA59Y.roa
File: 4T7ohvim9PbetIc4Qlo9d9QA59Y.roa (raw, json)
Hash identifier: mTKqtI5PGB6Qq88qvBp2p7P3TnbGVtFteHmcAmCxgPg=
Subject key identifier: E1:3E:E8:86:F8:A6:F4:F6:DE:B4:87:38:42:5A:3D:77:D4:00:E7:D6
Certificate issuer: /CN=e79ef19c273deded19cef6b36839b3ceb01edefd
Certificate serial: 019421B25900846928E8778C423FD8926318
Authority key identifier: E7:9E:F1:9C:27:3D:ED:ED:19:CE:F6:B3:68:39:B3:CE:B0:1E:DE:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/557xnCc97e0ZzvazaDmzzrAe3v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/4T7ohvim9PbetIc4Qlo9d9QA59Y.roa
Signing time: Wed 01 Jan 2025 11:48:43 +0000
ROA not before: Wed 01 Jan 2025 11:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8767
IP address blocks: 2.56.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:59:00:84:69:28:e8:77:8c:42:3f:d8:92:63:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e79ef19c273deded19cef6b36839b3ceb01edefd
Validity
Not Before: Jan 1 11:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e13ee886f8a6f4f6deb48738425a3d77d400e7d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:01:54:a3:09:63:a5:57:07:29:43:8f:b8:e5:
7b:87:88:6e:a2:bc:18:72:37:0f:e0:3b:bf:6b:c0:
9d:45:18:81:db:dd:d1:45:6e:b0:9b:df:10:d8:37:
92:c4:cc:8a:a7:5f:d5:0d:c6:bc:68:29:26:c2:3d:
9b:af:a5:e5:e6:57:09:a8:c3:d6:b1:69:89:c7:12:
8e:76:4c:c6:96:c3:7b:c4:fd:d3:11:4d:80:f1:12:
f4:cb:12:a5:bc:e6:ac:3c:15:e5:72:d3:81:52:9e:
bc:1a:b2:24:18:61:dc:d7:bf:16:8d:4f:b7:46:5c:
bb:ae:96:10:d7:a9:f6:19:db:97:79:47:b7:36:f2:
22:6d:24:4f:eb:e6:a5:17:c4:42:4e:ee:8c:e9:3b:
13:a8:c0:47:55:58:b9:a4:76:a0:94:94:13:da:67:
ee:99:75:81:49:57:1a:e5:3a:72:e7:cc:e4:ce:fb:
9d:af:0b:3e:4e:ab:e9:57:a0:11:ac:fa:eb:68:14:
6a:03:81:fe:d4:18:c1:d4:e1:93:cf:c3:5e:2d:25:
bc:e8:cb:8e:4d:91:4f:1c:9a:48:cc:52:28:72:9a:
3b:95:16:41:eb:50:59:ba:ce:d2:ce:41:37:f4:90:
fc:70:ef:ea:a0:13:3b:e1:51:05:de:9b:f3:5c:71:
99:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3E:E8:86:F8:A6:F4:F6:DE:B4:87:38:42:5A:3D:77:D4:00:E7:D6
X509v3 Authority Key Identifier:
keyid:E7:9E:F1:9C:27:3D:ED:ED:19:CE:F6:B3:68:39:B3:CE:B0:1E:DE:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/557xnCc97e0ZzvazaDmzzrAe3v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/4T7ohvim9PbetIc4Qlo9d9QA59Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/557xnCc97e0ZzvazaDmzzrAe3v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.135.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:a8:45:9a:88:7b:fa:e2:21:9d:6d:44:47:d2:47:4e:da:c0:
15:9c:aa:96:46:fe:1b:72:55:49:38:4a:af:35:c7:88:66:ec:
5c:2c:e2:85:96:32:38:5d:79:a0:54:f8:49:26:06:c5:c9:c8:
6b:1f:83:40:15:54:4b:46:11:ed:a5:1d:0c:5e:5b:7c:b1:9d:
3b:ad:9e:fc:b8:2f:9a:c7:74:d5:ad:11:b5:07:c2:88:04:80:
66:56:a7:52:70:7d:03:b4:35:ab:40:fd:cb:61:15:97:08:5a:
20:e2:18:69:b6:53:32:e9:27:5a:58:c1:c0:5d:8c:85:93:f8:
c0:e7:50:25:ec:27:60:60:17:bd:7f:1a:7e:ee:02:b5:b3:a8:
f2:86:54:66:e0:92:3e:51:4d:f4:7e:fb:f4:e3:ae:bf:bd:f0:
d6:7e:bd:50:43:5c:1e:34:d2:cc:2e:a2:6e:e7:ef:45:40:26:
82:dc:4f:3c:ec:23:a1:d1:6d:ef:53:db:8f:13:9a:2d:14:3a:
5e:d3:73:d1:4c:f3:51:66:cb:dd:e5:a2:73:ef:1d:b2:b4:4d:
4e:68:89:2a:f1:a9:86:99:b0:98:8e:66:84:27:3a:dc:54:e6:
77:4e:28:8b:f3:6e:08:f2:18:30:39:46:59:76:f9:c9:15:85:
fb:4a:79:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:38 2025 by rpki-client on console.sobornost.net