Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/967af2-6b14-4e9b-9c1c-65e51fc339c1/1/lXE8H4iE50cVJPQNReYvfrhCtrQ.roa
File: lXE8H4iE50cVJPQNReYvfrhCtrQ.roa (raw, json)
Hash identifier: ZOMG1NpJ3/CMkP3xcROg1uc3yb8zwhVjN7ZX26DRPu4=
Subject key identifier: 95:71:3C:1F:88:84:E7:47:15:24:F4:0D:45:E6:2F:7E:B8:42:B6:B4
Certificate issuer: /CN=5d43adf35b026fcf530d4eedeaf03af5e80b2e50
Certificate serial: 650F
Authority key identifier: 5D:43:AD:F3:5B:02:6F:CF:53:0D:4E:ED:EA:F0:3A:F5:E8:0B:2E:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XUOt81sCb89TDU7t6vA69egLLlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/967af2-6b14-4e9b-9c1c-65e51fc339c1/1/lXE8H4iE50cVJPQNReYvfrhCtrQ.roa
Signing time: Wed 19 Jan 2022 17:42:40 +0000
ROA not before: Wed 19 Jan 2022 17:42:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51724
IP address blocks: 176.53.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25871 (0x650f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d43adf35b026fcf530d4eedeaf03af5e80b2e50
Validity
Not Before: Jan 19 17:42:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95713c1f8884e7471524f40d45e62f7eb842b6b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b1:96:82:fd:8a:8f:64:68:28:94:d8:94:5d:
0f:92:84:f1:87:b6:8f:96:60:94:52:55:35:f5:f4:
7a:8d:03:98:55:ad:eb:4b:78:1d:41:be:d2:1c:59:
b7:64:01:ee:50:1c:58:cd:9e:49:e0:c3:e8:cc:9f:
51:4c:a2:a4:07:d3:c0:8e:2d:02:db:3f:98:e0:31:
ed:28:5b:23:39:49:e6:dc:5b:22:8c:76:94:9b:d5:
78:f0:9b:3d:bd:28:46:18:d2:12:72:ea:e0:b8:3d:
07:84:a6:95:1e:b5:44:3f:1a:b7:12:cc:41:1d:fa:
f0:be:c9:f2:38:64:e4:cc:b3:ae:93:c6:be:27:f1:
2c:37:cb:64:d9:51:06:20:d3:7d:2d:e5:a5:43:c7:
ee:3b:40:65:37:0d:c0:4f:08:72:8a:30:12:38:6e:
3a:da:ba:d5:1f:79:6a:73:dd:5a:b9:ee:52:f1:f4:
9b:c2:7c:1d:90:f1:a9:76:28:6a:a3:a0:65:b7:53:
ac:dc:ce:b3:3d:a0:51:57:df:87:0f:ea:8b:58:a1:
d1:01:67:84:a5:c9:42:c0:0c:07:f9:e7:23:a5:2f:
0b:2c:ab:08:51:1a:7c:ec:47:e1:d3:0d:dc:f1:cb:
63:93:7b:45:12:98:9d:68:78:d4:d5:98:7f:c7:19:
26:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:71:3C:1F:88:84:E7:47:15:24:F4:0D:45:E6:2F:7E:B8:42:B6:B4
X509v3 Authority Key Identifier:
keyid:5D:43:AD:F3:5B:02:6F:CF:53:0D:4E:ED:EA:F0:3A:F5:E8:0B:2E:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XUOt81sCb89TDU7t6vA69egLLlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/967af2-6b14-4e9b-9c1c-65e51fc339c1/1/lXE8H4iE50cVJPQNReYvfrhCtrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/967af2-6b14-4e9b-9c1c-65e51fc339c1/1/XUOt81sCb89TDU7t6vA69egLLlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.144.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:f1:58:c8:cc:62:55:5c:80:0a:5d:9c:4b:34:8c:a7:5e:ce:
db:75:c6:5a:eb:1b:0e:da:63:cb:ba:38:68:ee:e8:0d:c6:76:
01:68:7f:b8:a7:8b:43:28:19:d6:b7:be:f0:74:be:57:9e:42:
8f:2b:88:89:1e:5c:9f:ab:52:31:19:82:ff:98:45:19:77:0c:
23:c0:b3:23:be:1e:67:1a:99:3e:22:67:35:cb:17:20:75:5c:
39:92:95:72:2b:43:65:cd:ad:ed:9a:b6:36:c1:5a:62:62:05:
6b:06:1d:24:21:de:b0:c3:f4:72:5a:07:2e:ce:b9:de:c3:7d:
7c:81:cd:d4:71:3f:32:c7:31:85:be:6c:03:ae:9e:94:21:51:
a7:a4:75:fb:b9:25:ad:6c:d7:88:5e:e9:fc:6f:4a:22:1b:41:
47:2b:f2:4b:7a:c9:e5:57:b7:83:59:bb:05:22:3d:56:d8:b4:
30:7d:2e:78:97:f0:40:d5:5f:80:eb:8f:af:12:48:ed:cb:2d:
15:57:67:1d:b9:93:58:32:07:86:0a:25:d7:6a:86:b7:ac:63:
75:42:27:fe:c2:4c:8a:86:e9:32:e0:ae:d1:b1:56:1e:bd:ea:
99:f3:ee:46:50:6c:79:99:c9:95:ef:44:a1:d6:bd:f7:90:26:
e3:57:0e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:18 2025 by rpki-client