Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/7GFUUPQe5X4o8br9pIJdHkkRXtg.roa
File: 7GFUUPQe5X4o8br9pIJdHkkRXtg.roa (raw, json)
Hash identifier: 4KUOaFluZqET8tORnDH6HMaQ2V49mBLgUsZvrKGZ4Yk=
Subject key identifier: EC:61:54:50:F4:1E:E5:7E:28:F1:BA:FD:A4:82:5D:1E:49:11:5E:D8
Certificate issuer: /CN=7c673daad6d9317f0101d41a042a61e57689453a
Certificate serial: 0194282320F0FC6E608DFB7991146849FCD4
Authority key identifier: 7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/7GFUUPQe5X4o8br9pIJdHkkRXtg.roa
Signing time: Thu 02 Jan 2025 17:49:38 +0000
ROA not before: Thu 02 Jan 2025 17:49:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 203.12.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:20:f0:fc:6e:60:8d:fb:79:91:14:68:49:fc:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c673daad6d9317f0101d41a042a61e57689453a
Validity
Not Before: Jan 2 17:49:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ec615450f41ee57e28f1bafda4825d1e49115ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ea:22:05:0a:fd:51:49:8d:53:0d:41:9a:11:
b9:0f:be:99:b1:f8:37:4e:6d:70:02:8d:19:4d:1c:
0a:cb:1d:6c:4a:63:bf:6a:fd:f5:d0:e3:1d:84:d4:
96:b2:92:5a:12:23:8f:ee:ca:c5:24:6a:68:a7:b1:
43:7a:ba:48:04:84:77:23:9b:f0:b9:cb:6f:54:b3:
50:31:02:6f:84:c4:47:b5:73:17:9c:7d:01:71:df:
e0:6f:35:d5:e6:e7:ce:3d:c4:3e:e8:55:cb:4e:af:
d0:fd:da:38:34:79:1e:a2:1c:d5:07:0a:4f:65:1b:
1a:78:0c:9f:5a:a1:67:ad:1d:82:8b:96:f2:72:cf:
bb:d6:90:4e:50:89:89:7f:70:95:9c:f7:76:10:0f:
ea:c0:3d:16:c0:15:46:5e:d9:95:42:b3:20:b8:c8:
ef:aa:e5:af:e4:91:b5:62:cc:81:af:d5:a9:40:2d:
61:87:55:1a:78:cb:1f:3c:b8:31:41:e0:39:2e:dd:
09:d4:92:b9:d2:be:c9:74:73:58:4f:aa:72:03:33:
91:98:e5:55:22:ef:f1:ac:fb:e5:f3:08:5e:73:3f:
5b:d2:5c:e7:57:60:6c:4b:35:c8:fb:f8:52:34:d5:
41:e4:2c:7a:ec:8c:64:c5:ec:65:fe:56:11:21:14:
07:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:61:54:50:F4:1E:E5:7E:28:F1:BA:FD:A4:82:5D:1E:49:11:5E:D8
X509v3 Authority Key Identifier:
keyid:7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/7GFUUPQe5X4o8br9pIJdHkkRXtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/fGc9qtbZMX8BAdQaBCph5XaJRTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.12.218.0/24
Signature Algorithm: sha256WithRSAEncryption
75:29:cb:5b:7d:0b:84:db:10:8d:63:41:93:90:16:b7:7f:46:
67:7f:b2:62:eb:b1:1d:09:0f:c0:26:56:96:27:00:59:44:02:
6a:63:58:fa:1d:06:e0:fd:1a:3f:72:df:4c:f8:2e:01:78:05:
c2:93:c6:19:d7:90:5a:44:37:61:fb:3d:db:eb:bf:d7:d4:b4:
93:7c:43:d5:a6:b9:82:b5:01:b6:65:27:d9:18:3a:b8:7d:13:
b7:50:c7:c1:89:9b:84:74:33:fe:95:38:37:dc:a7:40:28:dc:
34:7e:5c:b1:61:1e:13:0e:9a:cc:0f:26:f7:1a:99:e0:e6:06:
b3:47:5c:4a:7e:5f:5e:17:51:be:fc:3c:a9:b4:ed:e1:58:cf:
9d:db:a5:4d:1f:d4:39:e0:cf:dd:5c:ce:f8:68:eb:6e:07:93:
c2:05:15:26:15:cd:e9:f6:63:1f:ca:ab:2f:9a:48:1b:36:32:
d0:b2:f1:1a:b9:b0:4f:b0:4d:b0:07:20:1b:89:78:67:78:58:
b2:ef:83:10:2e:f9:29:4a:66:29:36:5c:40:4e:56:e2:4d:09:
a5:68:41:93:1b:d9:67:f4:a1:f5:c6:fb:f8:f0:bc:fe:20:38:
fc:66:f4:65:a5:57:1f:54:ba:1f:84:0c:34:fa:fe:77:21:9e:
49:c1:fc:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:18:10 2025 by rpki-client