Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/49af8e-881c-4212-9336-a6e53026852d/1/71A6KCNSMevlNkRCnXvLUFVEeOs.roa
File: 71A6KCNSMevlNkRCnXvLUFVEeOs.roa (raw, json)
Hash identifier: Y78DeiuvqXct1LqcmAwBfZbTzNZLN0cVqTtE7tTrKUU=
Subject key identifier: EF:50:3A:28:23:52:31:EB:E5:36:44:42:9D:7B:CB:50:55:44:78:EB
Certificate issuer: /CN=a580fe47b417c8730f857b6536f0df1a635ea852
Certificate serial: 01856C9CCF2990CCFA0E0CA5DCB54804024A
Authority key identifier: A5:80:FE:47:B4:17:C8:73:0F:85:7B:65:36:F0:DF:1A:63:5E:A8:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYD-R7QXyHMPhXtlNvDfGmNeqFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/49af8e-881c-4212-9336-a6e53026852d/1/71A6KCNSMevlNkRCnXvLUFVEeOs.roa
Signing time: Sun 01 Jan 2023 09:14:54 +0000
ROA not before: Sun 01 Jan 2023 09:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50131
IP address blocks: 178.22.30.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:cf:29:90:cc:fa:0e:0c:a5:dc:b5:48:04:02:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a580fe47b417c8730f857b6536f0df1a635ea852
Validity
Not Before: Jan 1 09:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef503a28235231ebe53644429d7bcb50554478eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:97:d0:91:82:16:8c:e1:11:11:dc:85:85:57:
2b:ce:92:0d:59:24:5f:25:a2:d0:d7:8a:2b:84:45:
a1:f2:13:0d:10:02:17:60:46:f4:1d:f8:15:26:9b:
3d:d9:68:01:4d:83:28:c2:6e:62:7c:69:9f:f9:83:
49:c8:0a:a8:dc:61:50:16:c2:f4:8f:50:71:ac:3f:
f0:07:ca:7c:18:9f:7d:39:93:bd:c4:78:cf:62:72:
ae:be:84:fb:a2:8a:c5:1a:51:6e:da:dd:c9:7f:0b:
a2:9b:d7:ff:f4:fd:03:9d:bb:cd:86:2f:14:50:e6:
ee:1f:34:84:20:58:ff:9c:99:48:1c:6b:5f:c7:a3:
9c:72:cd:95:b6:a1:d6:a4:11:1c:44:05:dd:ab:4a:
e6:bb:f9:d9:98:d9:b9:45:21:4d:e0:fd:84:4e:57:
f8:21:c0:76:91:4d:2b:31:57:73:95:bb:ef:be:09:
0f:95:22:5a:35:16:99:1b:bb:c0:38:78:5e:21:d5:
27:58:17:fd:e4:12:74:17:ab:e2:ce:9f:4b:76:3c:
51:62:eb:a0:1f:63:b3:bc:93:89:b6:d1:43:9a:aa:
28:f8:50:36:9e:0b:7b:2c:31:d1:c1:64:4f:01:a5:
cd:7e:c4:01:e8:60:6f:39:78:c8:23:0a:a5:cb:65:
d9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:50:3A:28:23:52:31:EB:E5:36:44:42:9D:7B:CB:50:55:44:78:EB
X509v3 Authority Key Identifier:
keyid:A5:80:FE:47:B4:17:C8:73:0F:85:7B:65:36:F0:DF:1A:63:5E:A8:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYD-R7QXyHMPhXtlNvDfGmNeqFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/49af8e-881c-4212-9336-a6e53026852d/1/71A6KCNSMevlNkRCnXvLUFVEeOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/49af8e-881c-4212-9336-a6e53026852d/1/pYD-R7QXyHMPhXtlNvDfGmNeqFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.30.0/24
Signature Algorithm: sha256WithRSAEncryption
40:33:d7:4c:86:c6:61:9a:9c:47:dc:a9:f1:f8:ab:e1:7c:30:
53:79:45:41:09:a7:fb:44:0c:60:1f:e7:6d:41:09:60:ea:44:
0a:d0:d7:15:04:7a:21:12:fb:eb:92:4b:03:12:7e:15:38:f5:
97:29:9f:41:aa:da:1b:80:43:c1:fd:da:a1:45:43:a9:32:be:
fa:d0:ff:52:b8:63:5e:6c:bd:ff:5d:c6:5d:7a:32:22:53:95:
dc:e1:ea:62:bd:3b:72:42:3f:fc:b1:77:15:84:65:41:00:1c:
e8:7c:90:a8:e2:ac:f1:a1:46:64:03:61:eb:da:bb:8a:e8:a2:
5d:c7:f7:0b:65:a7:47:52:06:be:ee:cf:e6:d5:27:de:0a:c5:
97:67:fd:4d:68:91:6b:1f:97:7a:26:74:fe:67:61:4c:7f:15:
98:6c:ad:31:5c:08:2a:f4:4e:4c:f0:dc:c5:90:7a:5e:75:82:
a1:78:2c:cf:3f:25:1c:8a:2a:19:40:76:f8:ae:8b:1d:a8:ff:
d6:a9:cd:fd:97:65:91:2a:2b:9c:61:5b:93:e3:1d:bc:2b:ae:
1f:c4:22:2e:c8:23:ee:0f:ad:58:d5:59:67:28:ac:dd:d4:2b:
51:56:b4:07:25:3f:26:dc:f0:39:3a:3c:08:d5:59:ca:31:3b:
2d:d2:2c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:51:28 2025 by rpki-client