Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa
File: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (raw, json)
Hash identifier: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=
Subject key identifier: E2:23:79:9C:34:D1:0D:55:75:09:31:AE:1A:51:96:63:46:1B:9B:D6
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 019424B36FF89278BD995F03B8EEC1CBC9F2
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa
Signing time: Thu 02 Jan 2025 01:48:46 +0000
ROA not before: Thu 02 Jan 2025 01:48:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29633
IP address blocks: 217.75.176.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:6f:f8:92:78:bd:99:5f:03:b8:ee:c1:cb:c9:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Jan 2 01:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e223799c34d10d55750931ae1a519663461b9bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d2:21:70:53:de:63:24:8a:2b:84:cd:d4:53:
17:bb:c2:ac:05:d8:5d:be:57:b6:5a:f6:3c:f7:5a:
da:3e:cb:73:ad:32:e5:24:c1:55:10:52:91:be:54:
19:04:59:dc:77:2c:22:32:93:b9:c1:0c:00:9b:c6:
c7:9f:58:f5:fa:76:96:56:86:8e:ad:ce:b6:b5:52:
8e:2c:53:3e:95:43:b2:d0:d9:92:94:95:93:f7:57:
a4:c4:53:20:40:1a:fd:ec:2e:49:f5:e5:2a:bc:b5:
86:6f:3e:6f:51:27:eb:94:66:1b:5c:0e:1b:7a:36:
49:4a:f6:bf:fd:76:55:95:66:ae:2f:60:18:5a:6e:
99:84:d7:37:ad:94:43:ec:5a:d9:99:79:16:33:0e:
85:24:04:48:79:05:33:9c:41:5a:4e:96:f7:99:d6:
2b:83:45:ad:cb:45:7e:a3:7b:1c:9a:06:03:70:d6:
fd:59:5e:ff:38:bb:fe:e1:dd:c8:ce:70:60:79:29:
14:44:df:cb:14:7c:0a:ac:5b:58:82:a9:bf:3f:1e:
67:7d:ac:5b:bb:18:f5:3d:d3:1f:8b:c9:43:c1:58:
e7:d0:5a:3e:3a:e4:e0:51:a8:bc:56:82:ae:88:9c:
31:73:6d:e0:f2:00:5b:e9:94:8a:1f:43:ae:d4:7b:
56:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:23:79:9C:34:D1:0D:55:75:09:31:AE:1A:51:96:63:46:1B:9B:D6
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.75.176.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:f3:63:cc:55:78:04:d5:a2:11:11:47:1d:50:eb:29:f1:d2:
cd:28:3f:8f:ff:1a:24:f6:18:99:d6:f4:2b:46:ee:01:ca:59:
91:56:73:7d:40:4d:58:25:61:fc:39:cb:0f:d2:8b:71:f7:99:
96:5e:f1:8f:45:b5:8c:5f:1d:d6:d9:58:b9:a3:74:58:3f:90:
fc:82:b9:6c:bb:f2:a3:f9:27:3d:f4:71:b1:e8:6e:08:b1:60:
e2:04:91:d5:9c:9a:86:fa:63:15:24:82:7c:a5:0c:2f:0a:59:
0d:b3:e4:14:4a:47:35:59:33:45:8d:85:3e:1b:bd:a8:25:71:
00:5e:f7:5d:28:21:82:b4:30:6d:f2:5c:cc:7a:d1:fc:dd:e9:
f9:d5:17:16:8e:a6:d8:88:1f:26:65:bb:17:9b:5d:30:d2:aa:
3f:d4:a6:e5:cd:20:6c:b3:6a:bc:90:11:61:1c:a4:a9:c4:8f:
54:28:06:2d:75:15:bc:ce:9c:cc:43:13:45:cc:ef:d8:ef:45:
7b:cf:8e:98:17:f0:ad:ce:19:b0:62:7f:0a:7c:6d:4a:ee:4b:
06:e6:29:39:e5:0a:73:24:8c:3e:59:59:96:98:43:2b:f7:aa:
2e:cd:7e:96:57:da:75:e0:d3:71:c1:dd:8f:9a:ed:00:76:24:
64:bf:82:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:12:03 2025 by rpki-client