Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/niMO5TS8qGvMJfu-ERMaqI01hhg.roa
File: niMO5TS8qGvMJfu-ERMaqI01hhg.roa (raw, json)
Hash identifier: YHqZXJAjA+vlzc3oxUknkrGtS4SkytVM4vDswc70uwQ=
Subject key identifier: 9E:23:0E:E5:34:BC:A8:6B:CC:25:FB:BE:11:13:1A:A8:8D:35:86:18
Certificate issuer: /CN=28af17c00757b9860ff6a56ffe2f47e69094e2f6
Certificate serial: 01880341463861C7329AC69F9F6AE916C565
Authority key identifier: 28:AF:17:C0:07:57:B9:86:0F:F6:A5:6F:FE:2F:47:E6:90:94:E2:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KK8XwAdXuYYP9qVv_i9H5pCU4vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/niMO5TS8qGvMJfu-ERMaqI01hhg.roa
Signing time: Wed 10 May 2023 01:23:09 +0000
ROA not before: Wed 10 May 2023 01:23:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48737
IP address blocks: 5.181.17.0/24 maxlen: 24
5.181.18.0/24 maxlen: 24
5.181.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:03:41:46:38:61:c7:32:9a:c6:9f:9f:6a:e9:16:c5:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28af17c00757b9860ff6a56ffe2f47e69094e2f6
Validity
Not Before: May 10 01:23:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e230ee534bca86bcc25fbbe11131aa88d358618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:76:fa:29:cf:44:44:69:c1:2b:41:d3:aa:5e:
5f:b2:fd:5a:7a:01:e8:8b:4b:24:f3:f8:04:90:17:
0a:f2:ed:49:c7:83:6b:85:55:aa:54:72:e9:46:3a:
73:c2:66:96:cc:b9:6e:5e:8b:f1:fa:e0:22:71:bb:
04:08:f1:d4:b0:27:de:31:c2:49:01:3b:e9:61:f1:
4f:fd:9f:8d:be:9e:c2:b3:68:ba:8e:28:4a:e3:95:
38:e6:03:61:6d:6e:a2:32:b5:b3:4b:d2:e4:a1:5b:
ac:e8:7a:ba:8d:1e:07:a6:f0:c8:12:34:3f:3b:3a:
bc:5f:73:e3:4a:f7:cc:70:bf:26:d9:1d:a3:4a:1e:
a2:b7:4d:27:54:58:81:62:8b:d2:8e:8e:56:26:59:
3e:47:dd:93:19:fe:03:c4:45:f0:71:0b:1b:5d:02:
ae:b1:7a:e2:61:cb:33:63:d8:60:e8:73:9c:7c:d4:
bb:82:37:b3:31:e0:38:92:2b:1d:d2:58:4e:fb:e1:
6a:df:ba:b0:2e:c2:46:51:d6:df:73:23:1f:e2:c4:
9a:ae:46:76:5e:3d:e6:13:e9:b2:a1:27:4c:16:28:
cb:e8:5a:df:03:9c:a5:3a:5b:62:ea:50:2f:02:ec:
94:3b:56:ec:87:0d:4c:cf:dd:bb:cb:86:41:d5:8b:
32:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:23:0E:E5:34:BC:A8:6B:CC:25:FB:BE:11:13:1A:A8:8D:35:86:18
X509v3 Authority Key Identifier:
keyid:28:AF:17:C0:07:57:B9:86:0F:F6:A5:6F:FE:2F:47:E6:90:94:E2:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KK8XwAdXuYYP9qVv_i9H5pCU4vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/niMO5TS8qGvMJfu-ERMaqI01hhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/KK8XwAdXuYYP9qVv_i9H5pCU4vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.17.0-5.181.19.255
Signature Algorithm: sha256WithRSAEncryption
7a:7b:2c:fe:4e:8b:dc:38:79:8f:4b:a7:e7:5c:35:91:c0:05:
58:52:1f:dd:3b:af:7f:2a:10:29:8f:aa:a5:7a:36:b3:b3:2d:
b2:91:ab:da:60:0f:12:4d:77:b1:28:bf:56:ad:5c:66:62:4d:
3d:c3:30:5b:d1:90:67:3f:07:9d:87:0d:90:19:2c:cb:ef:86:
b4:78:9c:03:3d:18:1b:83:ab:89:2a:00:12:95:3f:0c:29:d7:
ea:8c:05:d8:d7:14:d5:48:74:4a:b7:e1:35:92:d1:6b:a6:0f:
e5:58:b6:a1:06:68:14:8f:f4:fd:78:cf:9d:87:0b:48:cf:68:
e8:b9:73:b7:6d:45:c0:ba:06:c5:1a:74:8d:de:0b:be:0b:8e:
37:95:8a:fc:95:b7:05:f2:7c:da:95:b1:36:53:cf:79:bc:86:
59:c5:1b:74:60:18:6f:b3:b6:cc:d8:ef:3b:e8:2b:26:ac:1d:
07:aa:6e:c3:c3:35:a9:04:bf:a2:df:93:00:b1:25:c5:ce:0c:
06:68:64:b6:46:f6:4b:3e:20:76:82:1d:b9:a7:00:1e:af:7d:
0a:38:42:b9:94:0e:32:be:d9:73:f1:ac:cc:06:5e:29:9a:db:
f3:d8:51:82:f1:db:11:0e:4d:e8:c5:9c:0b:6a:f6:80:6d:2b:
b9:aa:23:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:26:03 2025 by rpki-client