Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/RaQ6lQVHx0wKiLZ-w4wl9bI21_A.roa
File: RaQ6lQVHx0wKiLZ-w4wl9bI21_A.roa (raw, json)
Hash identifier: 9I5C2NdiCi50N/V3aOpSEK3kuVqUFyS0ZMD3UcIa1uU=
Subject key identifier: 45:A4:3A:95:05:47:C7:4C:0A:88:B6:7E:C3:8C:25:F5:B2:36:D7:F0
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018CE9ADF55E5976D407CA2A5C28879D86E7
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/RaQ6lQVHx0wKiLZ-w4wl9bI21_A.roa
Signing time: Mon 08 Jan 2024 15:25:40 +0000
ROA not before: Mon 08 Jan 2024 15:25:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47169
IP address blocks: 213.181.198.0/24 maxlen: 24
213.181.196.0/24 maxlen: 24
213.181.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e9:ad:f5:5e:59:76:d4:07:ca:2a:5c:28:87:9d:86:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jan 8 15:25:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45a43a950547c74c0a88b67ec38c25f5b236d7f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a0:4b:66:6f:62:73:be:e7:cd:42:b9:78:30:
dc:92:5c:41:41:d0:16:fe:7f:94:26:d3:7a:e4:dd:
82:85:3b:f6:1d:2a:e9:ef:23:cd:bf:1b:7a:5e:de:
dc:34:d4:70:41:91:45:5a:b5:6e:76:3d:a1:ca:29:
17:58:4e:4a:8e:3f:05:90:7e:0e:89:d2:53:70:d7:
07:65:fd:4a:9a:06:34:fe:8f:4b:18:04:59:6c:99:
1b:11:a5:aa:b3:a8:8d:e8:4d:da:b2:55:8f:e3:a9:
d2:72:cd:92:25:90:47:2c:51:60:0b:d0:e8:90:37:
8f:20:25:22:30:d0:fd:0f:4f:76:09:4a:78:73:c0:
f1:22:d8:6e:45:42:9e:d9:41:50:2b:ee:10:3d:8c:
60:69:0d:87:43:63:d8:d8:cf:b2:ca:c0:6e:be:c4:
7e:69:c0:fd:82:06:f3:08:90:33:c0:77:88:66:1e:
f5:7a:60:fd:48:8f:c3:93:61:e7:c6:13:3d:f8:c9:
1d:d5:f4:6f:ee:8e:ec:f5:b8:88:7c:b0:55:5d:88:
4c:6a:a0:16:e4:b7:c2:64:d9:84:a5:29:6a:fb:8f:
c6:89:fc:2e:d8:45:f0:d2:64:a9:3d:ec:f4:c1:61:
f1:19:9d:fb:9b:af:08:9f:1b:d5:e3:bf:58:25:02:
31:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A4:3A:95:05:47:C7:4C:0A:88:B6:7E:C3:8C:25:F5:B2:36:D7:F0
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/RaQ6lQVHx0wKiLZ-w4wl9bI21_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.181.196.0-213.181.198.255
Signature Algorithm: sha256WithRSAEncryption
80:48:d6:db:17:92:f3:50:83:9c:ca:71:3c:2a:d9:d6:6d:21:
58:9b:1b:98:ce:a5:b3:c2:0d:67:ce:1a:29:23:df:f9:ff:ec:
82:7b:48:a6:10:01:38:1c:13:55:3e:c5:ba:b7:4a:f2:77:7d:
fa:68:31:2f:28:c4:8c:bd:16:ba:5a:a5:6e:2d:74:6c:50:ba:
ea:f2:5c:b0:f7:0a:53:00:fe:40:ad:b0:22:8c:9d:52:c4:5d:
4d:46:be:f0:d1:f0:ec:9d:40:15:87:3e:63:5b:7f:0a:20:a1:
49:e8:f6:5b:92:dd:dd:58:50:42:08:d1:7e:a6:2b:d9:70:89:
1b:98:4f:c3:5d:98:dc:1f:c3:7c:3b:94:ba:6d:6e:09:34:9e:
2b:3a:59:67:99:16:71:4c:9c:5f:a4:33:c7:bc:88:de:ae:ff:
f0:e5:62:43:f2:4e:21:cd:ad:dd:60:7f:92:e2:d3:f7:11:fa:
21:15:20:17:7f:94:2d:e1:63:3b:3f:3a:91:fa:29:4c:79:ff:
d0:3f:73:88:68:e1:14:a0:32:4f:5e:ae:9f:b4:52:40:b6:cc:
7b:d6:bc:cd:43:ac:3c:ac:ca:9e:ad:54:76:e9:35:d3:3b:bb:
62:d0:d9:25:59:3e:92:d3:96:0f:85:f4:29:72:c6:b3:4a:d3:
fd:ba:82:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:17:42 2025 by rpki-client