Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/LCgkZwmbKkdjXPlAXVdt7CYkbQ0.roa
File: LCgkZwmbKkdjXPlAXVdt7CYkbQ0.roa (raw, json)
Hash identifier: erTzc9OKk7rHqCvgZhdmqWwLIgx/iZXuiMkBNi83xQ0=
Subject key identifier: 2C:28:24:67:09:9B:2A:47:63:5C:F9:40:5D:57:6D:EC:26:24:6D:0D
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 019423D708E537330FA46CB0645E5BC63B76
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/LCgkZwmbKkdjXPlAXVdt7CYkbQ0.roa
Signing time: Wed 01 Jan 2025 21:48:02 +0000
ROA not before: Wed 01 Jan 2025 21:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60446
IP address blocks: 213.238.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:08:e5:37:33:0f:a4:6c:b0:64:5e:5b:c6:3b:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 21:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2c282467099b2a47635cf9405d576dec26246d0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:81:b8:06:c1:56:c2:01:62:a0:27:cb:51:97:
89:50:e3:45:90:b9:9f:45:03:ee:57:34:cd:dd:85:
02:d3:5b:8d:4b:de:c0:f0:0b:76:06:61:56:4f:81:
d2:65:e7:ac:d4:26:23:a3:07:62:8b:93:ff:95:88:
4a:66:3d:b0:08:1c:97:76:4c:57:1f:5e:eb:b8:a7:
35:30:eb:20:08:62:2d:74:c7:a1:b4:bd:68:87:ad:
4e:3a:c0:1f:17:36:16:32:7a:89:f4:b6:41:c1:30:
b7:a7:cd:10:20:0f:8a:df:db:21:4b:31:35:ba:41:
cd:da:62:d9:03:4c:dd:4d:a1:78:19:c1:32:90:98:
c1:f0:09:ac:2b:62:42:b5:e8:d3:fd:dc:2b:a8:5f:
64:3b:6b:eb:82:f6:b6:09:58:3f:ab:02:10:06:1c:
b3:05:39:4e:42:d9:fc:95:c8:70:2b:4e:c9:14:f8:
5f:80:17:93:4d:fe:68:a6:6b:b0:3c:f1:b6:7a:3e:
3d:af:ca:7d:0e:93:d0:b2:55:9e:dd:d7:46:ad:fd:
c8:b8:9b:2e:54:ba:fd:b4:e3:74:ca:78:7c:e9:2c:
70:2c:2e:1c:12:c7:e3:0f:ff:ae:c1:2d:41:84:f4:
43:08:18:e6:bc:69:cf:66:be:05:15:f7:a3:8d:9a:
c3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:28:24:67:09:9B:2A:47:63:5C:F9:40:5D:57:6D:EC:26:24:6D:0D
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/LCgkZwmbKkdjXPlAXVdt7CYkbQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.171.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ce:5c:3d:6b:73:6b:77:1b:83:c2:26:56:af:80:27:ad:27:
db:15:55:1b:f2:89:5c:18:38:75:df:da:3b:b1:27:d0:50:8b:
ab:f7:08:05:c3:47:62:84:f3:28:51:ad:30:55:ae:3b:f0:64:
3f:84:4c:3c:6d:e3:0b:3a:93:0c:0d:9f:60:f7:06:7b:03:58:
c3:bc:cf:35:2b:00:ae:45:82:4f:26:cd:da:14:73:a5:de:05:
b3:dd:2e:23:11:2a:81:25:fc:fd:d3:4f:36:64:e5:a7:c8:d9:
50:33:d7:1a:9a:ae:03:ad:b6:37:7f:a0:d5:63:06:89:07:71:
81:d6:b8:5d:4e:05:a9:f0:ff:1d:ea:be:fe:3a:44:0c:c7:df:
45:ae:be:1f:be:92:0a:5a:df:ba:9a:8f:0b:47:c1:38:a8:73:
b5:97:e0:b1:ce:9b:a5:a3:c5:e9:c7:30:74:ca:da:00:95:5c:
24:92:39:a5:cf:83:89:64:6f:e3:90:ae:c4:a8:26:00:0b:13:
a9:2c:36:9d:5a:96:a4:79:5f:7b:f3:ce:27:3e:e6:44:89:55:
a8:3d:b2:15:b4:63:c8:cc:53:c7:71:c8:cd:94:e9:2f:ca:c2:
9a:e1:da:38:53:c3:bb:69:5d:04:3c:8c:01:88:a6:1b:63:3b:
a1:bd:5e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:42:31 2025 by rpki-client