Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/bLACyeWnCQUwWZqE5WZ_BrmQU6Y.roa
File: bLACyeWnCQUwWZqE5WZ_BrmQU6Y.roa (raw, json)
Hash identifier: uwoE5/d36cX/Ks6beQm+PxMT5NEUJYwmYJZfciGwpzU=
Subject key identifier: 6C:B0:02:C9:E5:A7:09:05:30:59:9A:84:E5:66:7F:06:B9:90:53:A6
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 019427474882372F45EBC2E9EC50285CA4DB
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/bLACyeWnCQUwWZqE5WZ_BrmQU6Y.roa
Signing time: Thu 02 Jan 2025 13:49:30 +0000
ROA not before: Thu 02 Jan 2025 13:49:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 399641
IP address blocks: 213.170.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:48:82:37:2f:45:eb:c2:e9:ec:50:28:5c:a4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Jan 2 13:49:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6cb002c9e5a7090530599a84e5667f06b99053a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:e6:bc:78:9b:a5:65:6b:74:54:4b:93:25:
27:5e:05:fa:ed:ca:03:b7:34:60:97:a4:6d:ea:e3:
7b:c3:0f:3b:77:92:c3:1b:ea:4c:18:cd:bd:80:48:
54:3e:42:59:f3:c5:da:cd:d4:4f:29:b0:1f:a4:b8:
8d:96:ec:a2:67:ff:2d:2c:6c:7e:e6:9c:45:6a:af:
a5:04:59:15:15:9c:a7:38:13:75:74:9c:9d:a7:15:
c6:14:f3:13:18:47:3b:33:35:ef:6b:8a:7e:13:d1:
c8:aa:a9:c8:05:e6:75:d9:ba:59:a2:6a:48:79:a2:
4c:b4:0c:55:68:e3:43:e2:48:b2:9c:46:93:05:c7:
3d:f6:3a:20:69:7b:48:33:26:1d:44:21:34:e4:38:
5a:61:d7:5e:1d:0b:29:2b:c5:0d:4a:eb:01:7a:89:
69:50:a3:2f:3e:a1:ff:83:b6:e7:b0:5d:46:a1:e9:
db:82:58:ef:33:5b:f9:eb:46:4b:72:19:39:08:af:
12:56:37:05:27:f3:ec:db:fe:b7:09:11:c5:30:86:
33:04:b2:13:bf:94:d0:b6:b2:24:2d:6f:0e:80:89:
35:15:fd:c9:83:40:69:3f:8e:08:61:7b:1c:88:17:
8f:37:45:c5:33:39:c5:35:10:57:4b:e4:f6:e2:77:
58:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B0:02:C9:E5:A7:09:05:30:59:9A:84:E5:66:7F:06:B9:90:53:A6
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/bLACyeWnCQUwWZqE5WZ_BrmQU6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.170.145.0/24
Signature Algorithm: sha256WithRSAEncryption
29:c1:ca:71:ad:ad:79:16:cb:fd:75:c4:28:49:79:6e:36:65:
0b:c5:5f:61:68:84:e6:27:6c:1b:11:4b:c7:98:9b:d5:89:6a:
ef:67:60:06:6b:3e:dd:8a:f3:58:2c:6b:ee:9b:82:33:a4:5d:
f9:08:d7:14:fa:eb:9c:fb:38:29:7e:6e:43:2e:a5:5d:a6:37:
6f:b9:de:11:1b:cc:fe:7a:d5:19:ae:02:9c:a1:d3:e0:41:48:
bd:f0:9b:0c:f8:5c:bf:63:4d:23:53:4f:e4:f2:a8:ca:f2:80:
bc:14:5f:e6:5e:7f:51:65:6a:eb:5a:e0:c8:4d:11:5f:90:80:
76:2d:fc:0e:57:55:c8:3a:cd:ed:c7:ca:fe:97:73:44:3f:63:
06:ba:f9:35:0a:05:b1:f1:54:19:9d:67:7e:c7:e0:53:54:3e:
81:6d:6c:1b:35:a5:4a:ea:ed:f5:a6:61:b4:ba:02:44:29:29:
b8:49:f9:60:f8:21:52:ac:f1:72:a2:08:e0:bc:1c:63:e7:b4:
5d:c6:3b:8b:97:36:70:05:9a:b6:bd:27:f4:12:30:7d:e3:36:
03:3a:1d:ec:fc:19:28:05:3b:da:b2:9c:3d:cf:f2:8f:15:35:
47:91:91:42:44:5d:e5:b9:9d:ca:bd:a6:94:f9:22:2a:70:dc:
78:3e:fc:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:42:21 2025 by rpki-client