Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/6GkgsRuR9pmSJV1EgdBv7BeK_dY.roa
File: 6GkgsRuR9pmSJV1EgdBv7BeK_dY.roa (raw, json)
Hash identifier: Bzwn3KT6DcZLy191oub8YEibyoNtFI3ghOnHhRSc2LE=
Subject key identifier: E8:69:20:B1:1B:91:F6:99:92:25:5D:44:81:D0:6F:EC:17:8A:FD:D6
Certificate issuer: /CN=95eccf8b46745bc256821529e58703b98e6b6567
Certificate serial: 0181F465F0A9E4AD5F78577E7245310F80F9
Authority key identifier: 95:EC:CF:8B:46:74:5B:C2:56:82:15:29:E5:87:03:B9:8E:6B:65:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lezPi0Z0W8JWghUp5YcDuY5rZWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/6GkgsRuR9pmSJV1EgdBv7BeK_dY.roa
Signing time: Tue 12 Jul 2022 21:52:10 +0000
ROA not before: Tue 12 Jul 2022 21:52:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 176.56.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f4:65:f0:a9:e4:ad:5f:78:57:7e:72:45:31:0f:80:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95eccf8b46745bc256821529e58703b98e6b6567
Validity
Not Before: Jul 12 21:52:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e86920b11b91f69992255d4481d06fec178afdd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d7:46:2a:68:26:6c:69:2f:20:35:81:8f:fb:
7b:b3:dc:ef:90:f5:4d:78:4b:45:12:44:ff:a8:d1:
72:e1:7b:71:05:c2:04:0e:e6:95:b7:29:51:30:28:
44:20:51:53:db:08:de:56:84:c1:7d:25:58:8f:92:
6b:93:7a:b1:c1:c8:98:fa:92:33:c8:8d:fc:34:6c:
5a:15:b4:d8:dd:3f:76:dc:56:b6:4a:4c:ea:d8:71:
5c:0c:35:81:7e:0a:4f:43:05:f1:7e:9e:08:f9:17:
f6:8f:79:6a:b4:ec:e3:33:30:63:6f:46:15:52:b0:
51:f0:bd:15:b7:a3:81:6f:ff:d2:12:32:fd:ea:fd:
01:87:23:16:05:ec:02:b9:0f:96:64:a2:28:98:a0:
5f:dc:e9:70:2d:72:a5:1f:41:c5:a2:11:39:97:72:
91:e5:98:1e:5b:8a:5b:e5:eb:13:eb:22:6d:f2:26:
77:3f:b8:b9:34:0e:09:d5:d1:16:5d:52:2d:e0:f0:
04:b2:90:a9:fe:3d:65:8e:4c:f9:ad:9d:85:a6:53:
cd:d1:a1:3c:ed:56:22:23:e2:12:95:20:dd:84:47:
3e:14:aa:f3:4a:28:c6:9b:a3:c9:c8:05:88:91:a4:
8a:99:41:f8:16:9c:79:14:ba:c2:a7:c9:fc:ed:5d:
2c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:69:20:B1:1B:91:F6:99:92:25:5D:44:81:D0:6F:EC:17:8A:FD:D6
X509v3 Authority Key Identifier:
keyid:95:EC:CF:8B:46:74:5B:C2:56:82:15:29:E5:87:03:B9:8E:6B:65:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lezPi0Z0W8JWghUp5YcDuY5rZWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/6GkgsRuR9pmSJV1EgdBv7BeK_dY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/lezPi0Z0W8JWghUp5YcDuY5rZWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.38.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:4f:71:20:3e:3e:be:d9:b6:01:77:e4:b8:8f:cb:3b:f5:04:
65:83:31:4e:b6:df:7d:a0:5c:ba:31:1b:75:2d:64:a0:4b:a0:
fc:53:ad:51:8a:6c:6d:15:a5:57:15:07:20:42:ca:f4:24:56:
7b:d1:b8:70:c4:5a:16:11:e5:54:95:e9:4a:de:0e:c0:75:b4:
a5:cf:c6:a2:a7:e2:d2:0b:12:b5:05:98:90:10:32:00:61:8b:
c5:dd:ff:23:64:8d:b9:28:ad:d2:25:f2:3d:bd:3f:11:c3:35:
a1:1f:50:a8:f3:36:3e:25:94:07:f6:ce:1a:05:54:51:c7:ea:
cf:13:bc:50:70:99:6d:e7:74:45:bd:31:b5:91:9a:f6:5a:26:
e4:f8:c7:a4:db:fd:07:3c:05:71:b6:07:25:bb:58:3f:d4:23:
be:b3:4e:03:cf:80:67:65:c9:b8:d1:5e:a3:09:62:09:99:0d:
fb:9e:96:ce:ee:a0:58:fc:71:e4:ba:c0:f4:36:47:fd:87:c6:
b9:b5:f4:e8:98:0f:2a:dd:03:b7:5f:83:a7:7c:a5:1f:7f:e1:
5f:5c:21:64:5e:af:0c:3a:aa:68:db:7c:ea:52:92:b2:a2:3b:
5a:70:93:52:58:c7:0a:d3:8f:b5:26:96:39:33:88:7d:51:90:
59:7d:f5:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:22:54 2025 by rpki-client