Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/s0Lr7YuNvhvXYPcKrrFVoUy-LO8.roa
File: s0Lr7YuNvhvXYPcKrrFVoUy-LO8.roa (raw, json)
Hash identifier: a5e7ib7Q/DgMeBDM9u9FOonj1h8M13aRP36qAw7iBFY=
Subject key identifier: B3:42:EB:ED:8B:8D:BE:1B:D7:60:F7:0A:AE:B1:55:A1:4C:BE:2C:EF
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0194266C32B457A02A14E3D5757A721458A9
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/s0Lr7YuNvhvXYPcKrrFVoUy-LO8.roa
Signing time: Thu 02 Jan 2025 09:50:12 +0000
ROA not before: Thu 02 Jan 2025 09:50:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216159
IP address blocks: 5.178.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:32:b4:57:a0:2a:14:e3:d5:75:7a:72:14:58:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 2 09:50:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b342ebed8b8dbe1bd760f70aaeb155a14cbe2cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c8:c9:d0:a4:eb:00:00:f4:5f:74:5f:56:07:
10:44:b0:08:72:05:27:1e:29:43:c2:63:01:8b:16:
0c:4b:d3:3b:71:e0:ac:58:d0:90:ad:25:5e:1d:af:
f4:f2:50:a5:ea:cc:45:08:30:f1:72:a7:d6:d5:92:
c4:ea:06:a6:5f:a2:1d:95:bd:9a:30:6a:4a:77:1c:
db:92:99:c5:54:2a:39:28:e6:31:6e:e8:7a:eb:9d:
69:c8:a8:ee:27:23:e9:32:e7:d8:e7:44:57:b2:ba:
31:98:51:d1:bf:68:bf:5c:9e:6b:4c:4b:61:a6:d8:
1e:ef:91:8b:66:92:28:e3:44:52:e2:cc:16:34:5e:
e4:39:01:c9:52:7a:58:55:db:e8:c8:c4:86:b6:78:
b8:81:4f:b1:82:02:2b:c5:4c:63:ad:9c:d7:80:06:
3d:05:31:6d:a3:38:3a:ab:b0:59:0f:4b:0e:ae:49:
6d:eb:b2:97:12:55:80:5c:ce:92:79:84:88:96:ce:
26:b8:94:3a:e5:0a:dd:46:b1:d4:58:2b:50:bc:0d:
96:c9:b9:89:3f:ad:3b:c1:30:be:89:97:4f:30:ab:
96:fa:73:a9:7d:1b:1b:d6:aa:70:04:37:5e:e7:74:
dc:11:ef:ee:88:ca:d8:d1:a4:11:04:91:fd:03:b1:
c9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:42:EB:ED:8B:8D:BE:1B:D7:60:F7:0A:AE:B1:55:A1:4C:BE:2C:EF
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/s0Lr7YuNvhvXYPcKrrFVoUy-LO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.101.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:09:d5:a4:88:2d:d0:c7:24:35:9f:fa:da:3d:e0:88:b9:42:
d7:0a:89:63:69:ba:8c:e5:81:59:a7:a1:12:be:0e:98:89:8f:
d9:3d:39:8f:2a:3d:19:8d:9a:09:0a:37:14:27:7d:19:71:a0:
17:97:72:8f:b4:37:fb:a9:4e:ce:3e:46:a5:5a:3c:90:c8:fb:
cf:be:fb:25:1d:2a:e2:f3:48:17:c3:37:61:f3:c0:90:26:4c:
4a:c8:9a:0d:ea:ac:36:31:04:03:e0:0f:16:a8:a7:fc:7a:e0:
aa:57:0a:9e:a6:b4:ca:62:00:0b:91:49:3e:58:f5:ba:3f:ed:
76:66:06:a6:87:a0:af:80:6e:22:15:11:6e:1f:31:00:75:88:
9b:05:77:f5:f7:34:99:43:fa:49:6a:8e:92:80:14:a8:96:4e:
a8:bd:83:14:11:d4:83:99:fe:10:f6:32:1b:94:92:b9:f6:aa:
ea:0f:0c:f3:20:2f:bf:ee:25:b4:c0:bf:54:52:42:83:e6:b1:
89:b7:cc:fe:3e:38:48:48:d7:67:6b:d7:29:1f:3c:98:95:c4:
65:f4:d3:46:f1:bb:c1:b7:3d:c7:bc:53:f0:a9:7c:bc:d1:01:
bc:8e:bf:85:f6:1a:94:cf:f9:7a:e5:4b:fd:d8:38:5c:22:17:
dc:e3:99:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:12:23 2025 by rpki-client