Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/7v7zPiSwf_za11lTC54_J6QS9tU.roa
File: 7v7zPiSwf_za11lTC54_J6QS9tU.roa (raw, json)
Hash identifier: o3PqyZiDxPsDP8hfldoctzjoxtcGEXizsSGCO88ZyRA=
Subject key identifier: EE:FE:F3:3E:24:B0:7F:FC:DA:D7:59:53:0B:9E:3F:27:A4:12:F6:D5
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0195E7C174FE0DDC691750F0538F47236433
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/7v7zPiSwf_za11lTC54_J6QS9tU.roa
Signing time: Sun 30 Mar 2025 15:52:49 +0000
ROA not before: Sun 30 Mar 2025 15:52:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212365
IP address blocks: 217.147.14.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e7:c1:74:fe:0d:dc:69:17:50:f0:53:8f:47:23:64:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Mar 30 15:52:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eefef33e24b07ffcdad759530b9e3f27a412f6d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:03:c4:58:ba:0b:6f:7b:bc:4a:4e:1c:a7:61:
14:7b:85:5b:00:6a:83:b7:c2:51:71:e1:0b:10:d8:
46:3c:7f:b3:26:08:99:5e:64:1a:e2:15:7b:e1:5d:
0d:cf:4c:3c:fd:49:d6:ca:01:21:20:a5:66:a7:a3:
a9:38:8d:13:26:bd:9e:d7:83:5d:55:9d:24:78:bb:
f0:61:2c:d4:d3:8a:a1:57:06:ac:31:dc:ac:f7:c0:
71:19:bf:fe:b4:79:cb:6f:6f:78:b5:db:b8:b7:92:
5b:b0:e8:3c:10:cd:b0:c9:2a:61:72:b6:a5:47:5c:
f9:f8:55:a2:82:ec:9e:54:bc:08:ae:b4:2a:05:1c:
dd:23:ea:d3:57:7a:24:f8:0d:63:56:94:e4:52:41:
6b:4d:b0:01:3d:f4:62:ad:94:bc:b9:33:2d:0c:6e:
9d:4a:5f:07:59:7f:95:79:e7:ee:ae:a6:18:05:f5:
24:19:07:c3:7a:57:94:eb:09:7f:2a:15:f3:1f:60:
5a:59:16:85:06:0f:b4:dd:2e:dd:31:9c:23:71:b6:
3a:5e:ab:21:58:ab:21:a9:c3:d4:01:60:0e:fc:64:
66:e6:f2:34:ae:d6:cd:f2:2e:2e:f8:37:0a:99:a1:
ea:64:db:64:8e:14:34:33:1f:b1:18:5b:86:b4:6a:
79:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FE:F3:3E:24:B0:7F:FC:DA:D7:59:53:0B:9E:3F:27:A4:12:F6:D5
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/7v7zPiSwf_za11lTC54_J6QS9tU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.14.0/23
Signature Algorithm: sha256WithRSAEncryption
00:5d:1a:0a:a7:1c:7a:93:2f:74:f8:4e:e5:4d:84:5c:6f:16:
20:e2:fc:20:78:8d:ff:72:ea:76:a2:97:40:60:af:67:18:2e:
5f:18:76:34:ad:f0:95:31:2e:c8:be:16:17:a7:81:9a:49:7e:
fe:d7:f6:36:99:a8:13:03:83:9d:c7:d1:e0:1d:5e:cd:ef:ed:
a8:7d:d2:88:0d:e6:78:af:ce:fa:94:c6:a3:d0:29:ee:69:bc:
d3:55:e8:d0:b8:ff:45:29:ba:d6:32:fa:e6:85:6c:d9:73:50:
ee:5b:a2:ab:f0:8e:0e:46:8b:52:68:c6:39:b1:0a:ce:51:fc:
6b:3f:28:cf:f9:6f:ee:94:1b:c5:87:dd:61:17:fe:8b:00:1e:
a2:b7:5e:c6:ba:5c:c9:82:06:4b:dd:92:ff:d8:7c:a9:21:44:
04:ca:fc:84:33:4b:e5:4c:c2:96:e4:48:ec:bf:19:57:c6:b4:
76:b0:d9:19:ee:77:59:f0:0b:3b:59:eb:80:fd:2e:32:83:4c:
be:00:62:46:eb:c2:9d:37:17:f4:9e:c7:1e:a3:2f:e6:40:0c:
59:ab:ca:af:61:36:5d:fa:bf:5e:f9:6b:5c:64:9c:c4:84:0e:
3c:71:13:de:08:f1:b0:18:6e:2b:34:ce:b2:19:24:88:71:e3:
4e:41:a5:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net