Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/2n7kwmC2AFc0VVKzNtxDLDMgqS4.roa
File: 2n7kwmC2AFc0VVKzNtxDLDMgqS4.roa (raw, json)
Hash identifier: C3LiEcIaLGyjYDwQCwJjLQRdCMwb7IYyGJcBaxdU/zU=
Subject key identifier: DA:7E:E4:C2:60:B6:00:57:34:55:52:B3:36:DC:43:2C:33:20:A9:2E
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01941F8C3D95FB127325681093447709FF25
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/2n7kwmC2AFc0VVKzNtxDLDMgqS4.roa
Signing time: Wed 01 Jan 2025 01:47:52 +0000
ROA not before: Wed 01 Jan 2025 01:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 103.75.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:3d:95:fb:12:73:25:68:10:93:44:77:09:ff:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jan 1 01:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da7ee4c260b60057345552b336dc432c3320a92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e7:d7:b5:69:81:31:3f:65:a0:e9:9a:b9:08:
41:8f:b7:4e:f7:0e:ee:c0:f9:dc:5e:90:f2:9e:4c:
66:69:74:43:ae:80:3a:3d:ab:77:1f:d3:d7:54:3f:
a8:41:42:da:f2:e2:30:ac:99:48:42:9e:b2:4d:c4:
48:ae:eb:5f:4d:74:e2:7c:26:56:5c:26:15:41:3b:
38:c3:4a:78:6c:9b:a8:76:b4:db:50:d5:29:b0:85:
27:5d:40:13:25:ed:65:52:18:e4:95:31:1a:f9:b9:
e2:bd:39:d0:2e:ba:6e:47:05:a4:a9:14:38:cd:a9:
1e:d5:21:67:b9:c5:f2:f5:5d:53:13:a0:ba:c1:70:
58:fa:28:1c:a7:bd:a8:b3:68:51:85:ea:3a:ae:8c:
bb:10:67:c6:a0:93:7b:2f:52:2c:37:79:25:d3:7b:
65:31:7f:4d:cf:bd:a5:61:76:68:ae:a0:42:37:63:
4e:b1:6f:74:79:34:c0:63:a5:fa:f6:2e:a6:d3:7d:
79:c7:51:2c:f6:7e:44:48:73:bb:a0:4d:39:1f:b7:
06:4e:6d:38:93:62:d6:cc:d6:ff:b7:fe:e5:7a:60:
b4:87:83:86:2d:1f:ca:39:3c:e2:a1:5c:0b:60:2b:
2c:d8:bd:41:bb:db:8f:e3:bc:1c:90:9a:5b:8a:15:
c9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7E:E4:C2:60:B6:00:57:34:55:52:B3:36:DC:43:2C:33:20:A9:2E
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/2n7kwmC2AFc0VVKzNtxDLDMgqS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.75.68.0/24
Signature Algorithm: sha256WithRSAEncryption
39:5f:38:30:02:2e:3c:2a:ab:6a:1a:79:ca:28:31:a5:6a:27:
a3:80:e7:19:d5:fb:bc:ce:3a:c0:95:18:dc:43:cd:6c:7e:be:
97:dc:d4:1a:7c:4d:48:38:16:75:d8:5c:21:7f:ca:de:b2:bb:
d7:76:4d:6e:f4:ab:6f:37:3e:fb:e1:4c:a8:d6:80:32:54:4e:
f9:bd:86:86:f5:25:10:1e:2a:86:28:85:4d:f3:a1:ea:e8:6a:
8a:05:2a:56:f9:be:5c:94:5e:ed:c3:9b:a0:06:28:b2:5f:93:
86:13:39:fd:1a:be:69:7a:11:87:a6:f0:00:63:93:df:7b:92:
88:27:3f:57:85:0f:07:00:0c:28:3d:73:58:d0:a2:44:ca:2d:
58:54:a9:d4:e3:0e:de:1f:75:34:cc:14:8b:02:2a:15:08:dd:
28:cf:ed:aa:e3:af:cd:8b:8c:92:3a:bb:a8:04:9b:64:a2:39:
f0:52:c5:be:e7:bd:07:61:56:19:28:91:23:33:7f:33:74:26:
cd:47:ad:c0:2e:6b:8c:0d:93:28:8d:4d:e0:d2:56:31:98:d4:
3a:8f:a6:8f:d6:93:8b:05:4f:82:09:73:92:86:9d:02:42:08:
db:61:25:41:a8:f6:50:04:d8:f5:5e:6c:71:2f:de:94:4d:00:
32:55:91:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:38:21 2025 by rpki-client