Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/lTwE90XrCNGA5eJTFjnSjOK1bSM.roa
File: lTwE90XrCNGA5eJTFjnSjOK1bSM.roa (raw, json)
Hash identifier: /sO0aTlcuRH7YD2SVxbEfIzYX6MelmZ8Ycirgk+wG1o=
Subject key identifier: 95:3C:04:F7:45:EB:08:D1:80:E5:E2:53:16:39:D2:8C:E2:B5:6D:23
Certificate issuer: /CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Certificate serial: 019423D7C7FCC154A62DAE03D39C02C744AF
Authority key identifier: 11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/lTwE90XrCNGA5eJTFjnSjOK1bSM.roa
Signing time: Wed 01 Jan 2025 21:48:51 +0000
ROA not before: Wed 01 Jan 2025 21:48:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208346
IP address blocks: 217.198.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:c7:fc:c1:54:a6:2d:ae:03:d3:9c:02:c7:44:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Validity
Not Before: Jan 1 21:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=953c04f745eb08d180e5e2531639d28ce2b56d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b4:4a:cf:69:9e:08:09:d8:6a:8f:87:34:a0:
8e:b6:69:db:47:90:e3:2a:b2:3a:b6:c6:10:1c:c5:
a4:0b:ce:95:35:74:e2:f0:1d:7d:48:c4:c2:a2:06:
60:fc:e8:50:00:99:3c:6e:05:c1:48:5a:10:1d:3c:
4a:95:7c:1d:30:79:4a:a0:dd:6c:e8:70:ff:d8:40:
e9:d6:b8:93:64:64:2f:d3:95:ff:35:2d:70:e8:c5:
60:66:79:4b:d9:b9:91:97:b7:ea:ea:39:5b:a4:bc:
db:00:0e:8b:72:8e:69:c7:ec:cf:77:bc:96:9c:47:
80:1b:a4:dd:2c:ea:00:67:62:2a:4b:47:25:76:2d:
e6:bb:a2:a5:99:ab:0c:c4:0a:a3:e6:99:7e:ba:09:
b2:98:9e:f7:63:a0:ff:c6:c3:07:e7:51:5d:20:82:
3b:02:36:67:73:27:fc:58:aa:c6:82:d2:e0:dd:c7:
8f:b9:64:d5:56:22:8d:a3:bd:bc:27:e2:54:a7:a0:
7a:cd:9c:03:31:05:1d:19:3e:52:b7:0e:4c:be:e9:
c8:fa:b4:2e:38:74:2b:99:e7:37:7a:88:36:f0:9c:
cc:ed:b0:df:1f:be:86:c8:16:14:e4:ea:1d:5b:6b:
58:01:4b:e1:a9:19:42:24:3f:86:54:a7:e7:91:41:
c0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3C:04:F7:45:EB:08:D1:80:E5:E2:53:16:39:D2:8C:E2:B5:6D:23
X509v3 Authority Key Identifier:
keyid:11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/lTwE90XrCNGA5eJTFjnSjOK1bSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.186.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:ac:5f:99:5f:bc:7a:91:23:f9:c6:28:e5:4b:44:08:bd:e9:
bc:4a:ef:5a:61:7e:e6:0e:ff:a8:66:0e:b1:1b:78:27:84:4f:
79:71:a1:2f:dc:7b:f3:79:14:1d:4a:d1:4a:d0:6e:94:8d:84:
1b:22:9e:67:4f:c0:3b:84:2d:11:ce:a3:3e:9c:7f:ce:8d:75:
1c:35:0d:45:4f:85:1e:c1:ee:17:80:1d:2e:3b:09:e8:80:07:
d3:3f:f8:c5:4d:6c:c2:2a:06:dd:a8:10:48:c3:df:4f:b8:2e:
b8:b4:0c:46:8d:c2:ce:64:0c:46:2b:aa:ec:d8:3b:b5:f1:a2:
1f:bb:08:78:c2:48:15:40:cf:0a:c1:1e:a0:04:e2:81:d5:82:
0f:3f:32:09:59:93:d0:1d:80:5d:44:44:7a:8c:84:56:23:6e:
8a:07:87:e7:30:a0:66:a5:b8:ae:ff:db:cc:7d:75:7f:aa:6e:
09:9a:db:f0:f4:6a:56:10:cc:53:1e:ff:cf:80:ea:24:65:1c:
3b:20:ab:1b:5d:4d:89:e8:d6:04:ea:6a:46:e1:ed:64:47:e7:
64:55:62:ce:17:24:41:26:b1:87:a8:1f:ad:a8:5c:61:c5:97:
17:bf:9b:d4:7f:d7:9e:87:64:e9:46:f6:11:03:97:e3:8a:8e:
2c:79:14:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net