Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/ob2zBPNLtLFzxUuttNyvYQ_i-K0.roa
File: ob2zBPNLtLFzxUuttNyvYQ_i-K0.roa (raw, json)
Hash identifier: ahdcq6qcFuk7beprX/QZiv/lO1jQP9BjCIRZOB7i01o=
Subject key identifier: A1:BD:B3:04:F3:4B:B4:B1:73:C5:4B:AD:B4:DC:AF:61:0F:E2:F8:AD
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 01942068748F78F1824DC208DD30C41A6A40
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/ob2zBPNLtLFzxUuttNyvYQ_i-K0.roa
Signing time: Wed 01 Jan 2025 05:48:23 +0000
ROA not before: Wed 01 Jan 2025 05:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57207
IP address blocks: 95.140.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:74:8f:78:f1:82:4d:c2:08:dd:30:c4:1a:6a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jan 1 05:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a1bdb304f34bb4b173c54badb4dcaf610fe2f8ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:28:47:2c:1b:f1:13:6f:f1:ff:78:d0:82:ad:
13:f6:bf:30:3a:b0:2a:5c:7a:48:f8:37:c3:5e:2a:
ea:1a:dd:85:36:c8:be:46:94:44:a1:a9:e1:ad:d9:
f0:af:76:90:37:3c:df:63:d8:9c:45:c6:f5:39:0e:
cb:98:50:39:bd:22:c1:9c:18:bf:f4:30:9b:bb:e9:
94:66:0d:f1:88:a9:05:7a:a7:9c:17:04:f0:c3:76:
0f:57:c8:f2:20:53:d5:30:33:12:f4:61:00:4f:56:
3a:a7:32:69:fa:88:7b:2a:13:3b:b4:30:b4:db:4b:
30:8a:5e:cd:32:0a:5d:19:fd:58:0f:7d:46:47:31:
0c:b0:c7:1a:52:e3:63:06:b7:b0:34:a1:0c:81:a4:
e5:44:2c:e0:0e:b9:bb:56:72:74:0e:36:b6:ed:b1:
6b:eb:ee:6a:cc:26:1f:c9:e4:b0:f3:fc:10:54:1c:
dc:58:9e:eb:8a:91:39:a5:f9:ee:ee:8c:a1:d9:42:
4f:e8:f2:d9:d5:5b:86:d5:6f:5d:bc:7c:65:79:e9:
33:d8:63:68:de:fe:51:ff:ad:26:37:ce:f3:10:22:
bb:9f:d4:7e:10:96:13:b7:a0:70:28:2c:e9:3e:ae:
bc:36:4b:55:07:5e:73:99:87:3b:27:aa:7a:fc:8c:
b4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:BD:B3:04:F3:4B:B4:B1:73:C5:4B:AD:B4:DC:AF:61:0F:E2:F8:AD
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/ob2zBPNLtLFzxUuttNyvYQ_i-K0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.122.0/24
Signature Algorithm: sha256WithRSAEncryption
52:16:05:58:9c:c2:8b:97:ed:42:ed:af:5c:58:81:3d:89:10:
4a:db:15:1d:4e:f9:44:7b:9c:59:19:60:ab:1a:f4:34:9c:5e:
aa:45:2b:8c:bc:3a:34:9c:8a:93:50:58:50:63:ea:b2:72:34:
18:05:b5:f5:2c:07:d3:77:f5:9a:b0:38:6a:12:80:4b:48:83:
f8:90:2f:0c:14:25:2d:78:7d:0b:b9:ca:66:84:e7:5d:46:a9:
c3:db:6e:23:31:59:b7:d5:84:3d:c0:42:4b:0e:ad:f4:f5:04:
54:df:6f:57:5c:95:29:ed:b0:57:40:5d:09:04:4f:a5:be:7f:
84:47:fb:24:01:7e:b3:b0:7e:b1:e8:4f:bc:a7:20:c1:ac:12:
48:a6:1b:57:2a:a9:07:5c:5c:08:a5:15:80:b0:f0:84:11:9e:
e0:94:01:fb:24:0e:3e:84:b9:1b:93:b4:b5:a0:7e:e3:a9:f1:
03:09:12:4d:2e:e3:3c:c8:4d:b8:7d:d9:a8:62:db:99:04:54:
26:45:89:64:07:74:d3:c7:3c:e5:f2:1b:c7:0a:96:b4:77:4d:
ce:a6:33:fa:5d:f2:8a:eb:95:b2:4d:a0:24:c9:5f:b4:02:f5:
0c:f3:67:c9:ee:45:20:69:9c:5f:5e:43:d5:98:71:d6:c0:01:
d1:30:77:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:37:56 2025 by rpki-client