Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/663c6c-13bf-4400-8482-21e0a66d5444/1/Rn5W7oiVYRufZC2Cc9HQB686zNI.roa
File: Rn5W7oiVYRufZC2Cc9HQB686zNI.roa (raw, json)
Hash identifier: r6LX/rQ2IMQ0lnqajopwaJaJ6RgScSLx/FlgSbqRLTc=
Subject key identifier: 46:7E:56:EE:88:95:61:1B:9F:64:2D:82:73:D1:D0:07:AF:3A:CC:D2
Certificate issuer: /CN=67edadc765fa8f2fa19eb20963cf5bd235d01b43
Certificate serial: 019422FAED9A82AF4EEACB3444084BE0DC37
Authority key identifier: 67:ED:AD:C7:65:FA:8F:2F:A1:9E:B2:09:63:CF:5B:D2:35:D0:1B:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-2tx2X6jy-hnrIJY89b0jXQG0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/663c6c-13bf-4400-8482-21e0a66d5444/1/Rn5W7oiVYRufZC2Cc9HQB686zNI.roa
Signing time: Wed 01 Jan 2025 17:47:37 +0000
ROA not before: Wed 01 Jan 2025 17:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20974
IP address blocks: 178.251.52.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fa:ed:9a:82:af:4e:ea:cb:34:44:08:4b:e0:dc:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67edadc765fa8f2fa19eb20963cf5bd235d01b43
Validity
Not Before: Jan 1 17:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=467e56ee8895611b9f642d8273d1d007af3accd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f1:23:b8:22:72:66:02:82:c5:8a:f3:2c:bb:
af:d6:a6:a9:78:16:7b:4e:b5:88:c5:bb:e0:11:47:
68:dd:83:9a:20:9d:11:9f:87:72:5a:4d:63:9b:4c:
52:8b:52:b3:ba:87:5a:85:27:47:e4:00:2f:5c:1d:
dd:5d:3f:8c:44:2a:d9:00:95:55:0f:8a:0c:7a:25:
01:b2:b9:e3:08:b1:1c:a7:bb:05:1f:30:22:2b:49:
76:45:35:55:0b:53:25:06:e9:63:1e:03:47:e2:73:
61:4a:75:e9:00:5d:47:49:4d:e9:af:f0:af:c1:c0:
1b:30:ec:c3:cd:31:9c:8f:21:e8:f7:3e:0e:7b:67:
5d:67:49:01:7c:e7:1c:a4:7f:40:ca:92:3d:76:e0:
61:81:fe:c9:b2:df:93:8f:09:23:44:3f:68:0d:2f:
83:9c:a3:3e:a7:3e:d7:bb:00:6c:a2:62:6e:e4:b1:
a3:e0:5a:72:6f:c2:e3:69:36:2c:33:7f:64:5b:64:
08:0d:00:b2:3a:c5:0a:2d:51:c9:d8:44:71:05:78:
f0:c7:d0:1f:4d:43:2c:66:0e:5a:51:f3:a9:fb:3c:
22:29:3c:d0:51:47:55:08:24:fa:ec:d0:43:09:34:
f5:87:e7:3c:de:84:36:b6:71:fa:50:8b:4a:a9:aa:
48:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:7E:56:EE:88:95:61:1B:9F:64:2D:82:73:D1:D0:07:AF:3A:CC:D2
X509v3 Authority Key Identifier:
keyid:67:ED:AD:C7:65:FA:8F:2F:A1:9E:B2:09:63:CF:5B:D2:35:D0:1B:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-2tx2X6jy-hnrIJY89b0jXQG0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/663c6c-13bf-4400-8482-21e0a66d5444/1/Rn5W7oiVYRufZC2Cc9HQB686zNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/663c6c-13bf-4400-8482-21e0a66d5444/1/Z-2tx2X6jy-hnrIJY89b0jXQG0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.52.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:bd:c2:b6:24:03:fc:e3:17:df:df:26:34:a2:d2:9f:2f:2e:
cf:c9:dc:8e:5f:ea:6b:c1:0c:4d:c2:fc:ef:45:96:16:3e:c9:
51:56:06:e7:55:14:bd:a6:bd:37:75:76:62:b1:01:cb:9d:63:
0e:ce:e2:f5:ab:5d:82:7c:97:68:0e:fd:98:29:8c:e1:33:6b:
bb:e2:ad:91:d8:d9:43:cc:15:d8:39:49:9f:3d:0d:32:5d:5f:
39:78:61:7d:88:6e:18:4d:1e:c4:15:4e:90:e0:08:05:d6:34:
df:b0:e8:80:40:6e:88:30:1c:95:4c:2a:de:9a:6a:0e:6f:56:
ae:cb:37:7d:9a:f1:14:41:e3:cb:57:ec:0b:71:f6:be:ca:0a:
d1:1f:10:c7:53:3e:71:d6:ed:5f:97:a2:70:e3:43:c2:72:45:
58:93:28:45:ee:ab:e2:32:58:77:02:27:46:77:10:b9:3f:e3:
68:33:85:16:5a:e8:7c:0f:54:dc:e6:b8:6a:fe:90:ac:7f:8e:
4f:84:14:4f:13:49:f5:73:7c:75:b6:5b:0a:23:ef:2c:d5:64:
fd:48:7a:e0:81:1e:e1:7a:c4:41:a6:8b:d4:ed:98:7e:28:74:
aa:5e:e6:bf:d7:74:bf:0c:07:b0:80:a0:84:49:9b:69:52:a0:
bf:20:78:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net