Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/eGxFkjfrJ65zG3xDqIKKvXBVwPw.roa
File: eGxFkjfrJ65zG3xDqIKKvXBVwPw.roa (raw, json)
Hash identifier: swTzIme5DQMF8iX2uNfuoSDLFBj4kJk6JyJbB8KfZqg=
Subject key identifier: 78:6C:45:92:37:EB:27:AE:73:1B:7C:43:A8:82:8A:BD:70:55:C0:FC
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018BACA3325DC6E84E1C06C32240B99AC466
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/eGxFkjfrJ65zG3xDqIKKvXBVwPw.roa
Signing time: Wed 08 Nov 2023 01:54:18 +0000
ROA not before: Wed 08 Nov 2023 01:54:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 176.46.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ac:a3:32:5d:c6:e8:4e:1c:06:c3:22:40:b9:9a:c4:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Nov 8 01:54:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=786c459237eb27ae731b7c43a8828abd7055c0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:76:90:01:a0:a6:71:53:e4:ec:47:b4:72:f0:
8f:b4:c4:bb:cd:2a:47:4b:9a:b1:8f:93:47:06:d4:
b8:8a:c3:97:32:52:36:d9:82:a7:d8:13:d1:76:ca:
7e:4b:11:a0:bc:25:db:cf:b0:bf:90:e2:fa:85:e0:
81:45:77:6c:ff:3d:69:48:6d:ea:31:80:7b:63:2f:
ea:6d:7c:c6:13:d5:09:f8:a5:de:34:25:6c:38:73:
f1:5e:4a:b0:3e:c5:e2:87:39:be:cb:09:f5:4c:a9:
29:c8:7c:31:18:91:6e:d1:b6:5c:7b:e5:41:9c:7b:
1c:85:11:14:d2:19:52:98:fb:e3:40:16:3c:2b:08:
5f:a4:04:5b:4c:cb:16:d2:77:f6:67:8e:14:ad:8e:
d1:37:62:41:45:54:2c:84:63:6e:51:2a:c3:ec:bb:
d7:29:03:4f:5e:64:7c:7e:00:f4:71:55:9f:71:4d:
b5:da:88:d0:c5:45:0c:e4:e9:da:1a:5f:92:db:50:
18:5f:e9:b8:c6:09:ba:d5:53:b1:2d:b1:bb:c2:1b:
45:c0:43:44:d9:e3:74:e3:68:cb:3b:f7:ca:79:66:
b6:ef:6d:c9:8a:5d:90:da:b8:83:8d:64:6c:e3:cf:
5c:b3:46:de:11:18:29:4d:d5:06:0e:19:e0:2e:76:
e3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:6C:45:92:37:EB:27:AE:73:1B:7C:43:A8:82:8A:BD:70:55:C0:FC
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/eGxFkjfrJ65zG3xDqIKKvXBVwPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.46.137.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:be:51:51:65:51:e3:ad:23:ca:95:4b:01:ce:07:11:09:2f:
24:98:50:5c:63:3f:48:ba:04:24:05:f4:ef:19:b3:e7:08:05:
ae:07:82:c6:5a:e0:0f:f3:d4:f3:e2:aa:47:fd:8e:3c:6e:06:
c5:26:01:ed:c2:18:d5:49:d6:58:40:17:e4:0a:01:99:58:83:
2f:18:9f:c7:14:54:9a:62:9e:ab:8b:a2:f5:58:36:6c:72:b7:
97:b4:7b:7a:7a:6b:68:10:78:ed:53:8c:5f:41:a8:26:fb:fc:
50:c2:56:9a:8c:ef:5f:7c:ec:5f:7f:f1:14:d2:d7:6d:ad:5f:
ce:bf:f1:f4:7b:18:53:04:da:e7:e0:05:50:f3:f2:d8:d7:5d:
f5:02:4e:ab:ab:53:80:3a:e2:72:72:20:0a:a4:4d:34:2b:ba:
85:6c:4d:36:da:11:2f:0e:e7:cd:20:12:44:40:74:5c:73:56:
8f:a6:c8:d7:6d:da:c7:68:59:2f:af:56:44:bd:d4:b6:8e:0c:
a4:5f:bd:cb:de:e4:b7:e5:3f:ba:f5:2d:5c:eb:40:4d:5b:e9:
7f:6c:b0:a2:30:5c:79:e8:3b:12:f1:ab:4a:b1:79:17:34:cf:
1a:11:0e:8a:6c:55:93:aa:10:bb:d2:de:0d:5a:0f:37:b6:14:
d2:62:d2:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:20 2025 by rpki-client