Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/5ea2ff-8d66-4a11-93f8-2e2908588865/1/m4ZSJvHCvVAdAoCa8Dy3Jfpj2Po.roa
File: m4ZSJvHCvVAdAoCa8Dy3Jfpj2Po.roa (raw, json)
Hash identifier: aprBkCfkVmxisnK2NR7zrUxKt0p0KhHf/uKOAfeW9gI=
Subject key identifier: 9B:86:52:26:F1:C2:BD:50:1D:02:80:9A:F0:3C:B7:25:FA:63:D8:FA
Certificate issuer: /CN=e47ee5bee3ed23f943761e58f0eea97c7c5bf87c
Certificate serial: 019424B3DCD911BA16CE0B96352FC75D2A9A
Authority key identifier: E4:7E:E5:BE:E3:ED:23:F9:43:76:1E:58:F0:EE:A9:7C:7C:5B:F8:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5H7lvuPtI_lDdh5Y8O6pfHxb-Hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/5ea2ff-8d66-4a11-93f8-2e2908588865/1/m4ZSJvHCvVAdAoCa8Dy3Jfpj2Po.roa
Signing time: Thu 02 Jan 2025 01:49:14 +0000
ROA not before: Thu 02 Jan 2025 01:49:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41114
IP address blocks: 176.111.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:dc:d9:11:ba:16:ce:0b:96:35:2f:c7:5d:2a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47ee5bee3ed23f943761e58f0eea97c7c5bf87c
Validity
Not Before: Jan 2 01:49:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9b865226f1c2bd501d02809af03cb725fa63d8fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a5:50:7a:f7:e0:c1:40:b5:3a:7e:c8:92:a9:
b8:02:72:ea:42:0d:fe:f7:10:2e:ea:45:d0:ef:3a:
f5:cf:47:97:23:c1:30:7e:f1:19:68:65:df:38:12:
e1:25:31:86:3f:5d:39:1c:3f:3e:f5:29:45:96:2a:
99:4f:3b:5d:88:10:23:aa:de:45:21:2e:c9:54:eb:
f3:65:3f:80:4d:89:76:a2:f4:a6:56:cd:da:c3:bc:
d9:cf:39:e9:11:21:47:ab:61:3a:e0:5e:0a:6a:66:
78:96:e2:8d:7d:d7:24:15:01:15:f4:d2:12:0b:a4:
80:19:00:31:c6:4f:56:af:a3:8a:ae:21:04:07:b3:
77:5f:73:53:66:6c:3e:ef:19:33:30:98:31:dc:52:
ee:e5:da:56:dd:a0:df:ec:f9:13:b9:d8:aa:90:3b:
dd:31:10:5c:55:77:9e:25:a1:3d:9f:5f:75:e0:de:
ca:09:36:f1:c9:85:34:a4:9e:7c:f5:1e:32:1a:ed:
c2:d1:cf:41:82:88:38:fa:33:b0:a7:7a:b6:a9:89:
90:1d:9b:b3:52:ea:6e:82:62:5f:de:5e:ba:a3:5e:
d7:75:bd:5c:e2:01:fc:1b:c8:a1:51:32:2e:1c:af:
75:88:e2:b1:25:d2:97:05:65:9e:d5:b3:b2:54:33:
b3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:86:52:26:F1:C2:BD:50:1D:02:80:9A:F0:3C:B7:25:FA:63:D8:FA
X509v3 Authority Key Identifier:
keyid:E4:7E:E5:BE:E3:ED:23:F9:43:76:1E:58:F0:EE:A9:7C:7C:5B:F8:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5H7lvuPtI_lDdh5Y8O6pfHxb-Hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/5ea2ff-8d66-4a11-93f8-2e2908588865/1/m4ZSJvHCvVAdAoCa8Dy3Jfpj2Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/5ea2ff-8d66-4a11-93f8-2e2908588865/1/5H7lvuPtI_lDdh5Y8O6pfHxb-Hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.240.0/22
Signature Algorithm: sha256WithRSAEncryption
74:52:a6:4a:1c:1b:0d:a1:c6:3e:00:40:04:4b:98:a0:89:44:
a6:d7:a5:c9:91:6a:0f:b6:e8:20:f5:7a:ed:25:34:fc:3c:28:
ef:fe:72:aa:f8:5a:e9:6c:8e:fb:cc:b3:66:a5:8f:60:12:78:
6d:8d:69:7f:fb:3a:16:a9:9a:13:33:b2:1b:60:7d:9e:4c:45:
50:68:d1:3c:3a:d3:ed:17:68:a3:99:6a:c9:19:ee:e8:dc:3a:
71:fe:ba:e4:54:74:44:50:54:e7:84:0b:cd:a8:10:c3:49:ea:
4b:b6:0f:06:5b:42:9a:b8:77:40:2c:54:2c:31:ce:bb:e2:4c:
27:3c:09:79:c3:e1:54:27:e1:71:d9:b5:ba:08:49:d4:9b:96:
f7:6d:62:88:96:9d:31:80:35:0d:fe:b9:aa:b6:62:0e:11:6c:
45:fc:53:0e:ee:c8:4f:e5:35:56:d5:c3:f6:47:37:c7:ff:ac:
39:87:c8:0a:08:e2:31:47:5b:ad:78:d7:10:84:aa:87:5c:4c:
dd:41:26:ef:01:52:28:96:6a:b5:be:ed:16:2d:96:b3:e5:92:
14:b0:6e:5d:01:b6:eb:d9:3f:a9:cd:66:a2:72:df:0f:0a:08:
45:4d:f3:63:0e:5b:54:7b:16:f6:75:96:46:78:ce:87:57:33:
8f:0d:fd:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:16 2025 by rpki-client on console.sobornost.net