Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/d1837a-606e-4180-a7f0-728e0dfb840d/1/RC2JkOQZBHdrMWWJ6dmI74cPa_s.roa
File: RC2JkOQZBHdrMWWJ6dmI74cPa_s.roa (raw, json)
Hash identifier: qL9vMEtT48m8aWpCwA/eKJ1AT6hZ+DcyDfjgFWcllKo=
Subject key identifier: 44:2D:89:90:E4:19:04:77:6B:31:65:89:E9:D9:88:EF:87:0F:6B:FB
Certificate issuer: /CN=a4ad23f6dce4d9683c2a4943bd37c17335c7618a
Certificate serial: 019422FC0ECF2EBCEB6B9EEB68ACF9A8BF93
Authority key identifier: A4:AD:23:F6:DC:E4:D9:68:3C:2A:49:43:BD:37:C1:73:35:C7:61:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pK0j9tzk2Wg8KklDvTfBczXHYYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/d1837a-606e-4180-a7f0-728e0dfb840d/1/RC2JkOQZBHdrMWWJ6dmI74cPa_s.roa
Signing time: Wed 01 Jan 2025 17:48:51 +0000
ROA not before: Wed 01 Jan 2025 17:48:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8278
IP address blocks: 147.27.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:0e:cf:2e:bc:eb:6b:9e:eb:68:ac:f9:a8:bf:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ad23f6dce4d9683c2a4943bd37c17335c7618a
Validity
Not Before: Jan 1 17:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=442d8990e41904776b316589e9d988ef870f6bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:07:22:d7:cc:aa:8c:a0:ce:21:c3:50:c0:84:
84:f8:d7:f5:03:d2:87:26:9e:41:aa:93:0e:d5:d1:
4c:5b:d9:a6:16:fe:fa:5d:90:7b:09:b7:91:48:ac:
62:20:c9:35:28:fe:e3:9b:64:6c:40:c4:fa:32:34:
e4:7b:74:57:aa:fc:9a:a8:55:19:f6:16:fd:4b:df:
2d:3c:bb:e2:64:eb:0c:fe:c2:ca:47:19:3b:d0:96:
26:31:96:0b:4d:21:61:88:36:96:22:7e:a2:0e:37:
0c:2f:86:11:6e:21:a5:10:06:b2:9a:11:c8:e3:84:
c2:51:45:f2:d2:74:58:50:c9:ff:82:eb:79:3e:8e:
7d:8e:6d:cc:de:26:b9:6d:08:43:34:93:60:26:00:
ff:76:18:49:f2:19:e8:cc:ff:df:28:43:e5:5f:95:
1f:cf:f9:7d:77:7f:5a:54:5a:09:a9:0d:13:32:c0:
0f:e2:58:cb:b2:38:f3:37:fc:3c:cf:3c:40:35:18:
39:63:d4:9d:61:13:fe:63:38:03:4a:8d:48:2b:fd:
bb:b6:fa:87:4b:07:65:02:26:92:b5:c7:34:70:25:
b6:1a:0c:5f:63:99:6d:1a:6c:77:88:91:b2:60:c4:
1f:4a:34:9b:8a:c8:52:92:5e:86:2a:92:f6:28:97:
92:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:2D:89:90:E4:19:04:77:6B:31:65:89:E9:D9:88:EF:87:0F:6B:FB
X509v3 Authority Key Identifier:
keyid:A4:AD:23:F6:DC:E4:D9:68:3C:2A:49:43:BD:37:C1:73:35:C7:61:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pK0j9tzk2Wg8KklDvTfBczXHYYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/d1837a-606e-4180-a7f0-728e0dfb840d/1/RC2JkOQZBHdrMWWJ6dmI74cPa_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/d1837a-606e-4180-a7f0-728e0dfb840d/1/pK0j9tzk2Wg8KklDvTfBczXHYYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.27.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1b:d4:be:2e:27:79:4f:58:af:53:93:74:c6:67:9c:fb:b6:b5:
94:e1:15:1b:81:a2:60:6a:69:9b:10:cd:f6:7c:54:c5:12:39:
f3:49:12:fd:a7:dd:79:b5:7f:af:d9:23:d3:a6:f7:91:91:c0:
71:09:13:81:2b:b8:54:8b:f8:ba:0c:f8:8f:95:80:79:6d:0e:
64:a3:4e:b4:82:14:b9:04:ed:26:82:00:a8:2d:e6:70:50:90:
bb:c6:e9:d7:e1:26:2d:5a:4d:e9:a1:c0:7a:07:15:5c:ff:57:
3f:28:ea:5b:9d:21:be:e9:a1:2f:6c:6d:fa:6a:ae:ab:85:4f:
33:93:81:90:1a:08:1b:df:87:fd:1e:c6:8b:03:0d:99:0c:1c:
ab:b3:91:d4:56:04:71:d1:8e:17:5a:e9:f7:1d:cf:4d:84:02:
d3:74:8d:ce:f6:17:11:77:ff:a5:76:7d:df:ee:75:21:13:81:
6b:01:e4:0e:66:de:63:0b:ab:b4:98:96:c0:07:ff:b0:60:8f:
96:79:1b:2d:39:7f:e3:c8:41:09:1d:25:05:1a:58:1b:b7:f3:
73:46:93:39:39:fc:3c:4b:9e:3d:22:9c:18:89:22:86:0e:be:
bb:8c:3a:6d:d2:db:55:be:fc:85:17:40:c2:98:ba:21:e9:4e:
83:6e:70:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net