Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/77tBDqXCAWS665sDWqBCb1X7oDc.roa
File: 77tBDqXCAWS665sDWqBCb1X7oDc.roa (raw, json)
Hash identifier: 9Bac3YSk4X2YuMAeMXYeEHMjuHh7qrQ//fHMgLZpY8E=
Subject key identifier: EF:BB:41:0E:A5:C2:01:64:BA:EB:9B:03:5A:A0:42:6F:55:FB:A0:37
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 019479EBD7ADC18F7E3E3105705843D6A618
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/77tBDqXCAWS665sDWqBCb1X7oDc.roa
Signing time: Sat 18 Jan 2025 14:58:06 +0000
ROA not before: Sat 18 Jan 2025 14:58:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59538
IP address blocks: 64.190.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:79:eb:d7:ad:c1:8f:7e:3e:31:05:70:58:43:d6:a6:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 18 14:58:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=efbb410ea5c20164baeb9b035aa0426f55fba037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d8:90:f6:b1:a2:a3:81:23:42:9e:8f:4d:aa:
18:97:e5:e2:ce:c9:05:17:3f:b6:d4:66:5a:b0:9b:
e1:17:c9:89:4e:a8:df:c6:82:20:45:47:d8:2f:00:
0f:1a:e0:93:cb:9b:12:59:d8:a3:47:fe:de:63:eb:
4a:15:b8:68:0d:bb:48:5e:ff:98:f1:5a:0a:96:13:
d7:8c:6a:66:a4:1e:0a:65:bd:83:0a:15:69:64:67:
a8:a3:b7:c9:f5:9e:1c:cb:1b:c9:85:f6:67:cd:58:
3a:f9:3a:7e:38:34:80:86:a4:f4:bd:e6:73:70:07:
84:10:c7:35:2d:b5:3d:75:fc:21:69:eb:bd:25:8a:
16:12:fb:15:34:c8:97:2d:b6:a4:00:6d:a5:db:fa:
48:6a:c9:9b:54:8c:3f:26:51:66:a8:f7:44:01:10:
c4:be:4c:49:69:39:fa:38:dc:f6:03:25:af:66:a4:
f9:40:20:e3:0e:9c:c4:bf:cd:66:8d:79:57:54:7c:
eb:52:c7:17:84:fb:c4:05:35:79:bc:cb:ca:10:8c:
da:bd:f8:e3:38:58:c8:5a:e7:bf:60:33:9c:a8:e5:
1c:ae:cd:39:5f:b5:91:3a:cf:98:0c:b2:fa:79:d2:
7c:ec:37:2e:02:ad:4e:b7:34:a2:20:26:2f:19:32:
dc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:BB:41:0E:A5:C2:01:64:BA:EB:9B:03:5A:A0:42:6F:55:FB:A0:37
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/77tBDqXCAWS665sDWqBCb1X7oDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.190.139.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:f8:06:08:2d:cf:2f:68:ee:9e:ce:ea:e1:d2:7b:4c:10:f3:
cf:23:e0:1c:b3:61:27:d5:c7:d7:fb:6a:db:62:4d:73:bc:e3:
ca:05:1e:1f:53:a2:18:0c:d8:32:a2:ba:64:9f:bc:c1:4f:29:
b5:da:29:09:c4:48:b1:1f:ae:fe:f7:a6:fe:58:b7:7a:e3:58:
17:cc:b4:93:8d:82:22:c8:4f:11:64:21:30:10:54:c1:c5:0b:
1e:29:9c:bd:93:da:bb:5f:93:70:4a:15:cb:ba:64:c4:5f:48:
51:60:4b:6b:5f:c4:fa:28:00:8c:e9:c2:28:59:8b:06:df:69:
73:b0:e6:15:f6:6c:75:9f:d6:a0:fc:6c:4d:69:8c:32:cd:f5:
1c:a1:3e:19:a8:b2:90:68:68:2e:84:e7:27:8f:cd:a7:38:05:
7d:dc:66:01:1f:fe:b7:4e:9d:3b:0d:55:b5:22:79:6d:bf:a3:
10:93:5d:dd:21:b0:52:28:e6:46:26:83:74:d9:77:e5:06:1b:
08:6f:b7:30:4d:c0:92:91:8d:f3:20:49:4c:08:78:a1:9f:f4:
98:6e:af:59:bb:26:4c:f1:70:f5:62:4a:b5:77:93:08:6b:cb:
08:dd:38:0b:1d:60:8e:54:f7:06:4e:d4:3b:d5:79:c9:6d:0b:
95:91:f5:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:11 2025 by rpki-client on console.sobornost.net