Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/baBxVxKYocLMp3OrjCBJnfA7nkw.roa
File: baBxVxKYocLMp3OrjCBJnfA7nkw.roa (raw, json)
Hash identifier: aJ1ck3Zmvmz1tHfRZp4Iok52+Ye4C+na83RusZJqnq4=
Subject key identifier: 6D:A0:71:57:12:98:A1:C2:CC:A7:73:AB:8C:20:49:9D:F0:3B:9E:4C
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01942369C52D580C7128D77AAACAC90E2F7A
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/baBxVxKYocLMp3OrjCBJnfA7nkw.roa
Signing time: Wed 01 Jan 2025 19:48:41 +0000
ROA not before: Wed 01 Jan 2025 19:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42831
IP address blocks: 84.51.233.0/24 maxlen: 24
103.210.197.0/24 maxlen: 24
167.160.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:c5:2d:58:0c:71:28:d7:7a:aa:ca:c9:0e:2f:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Jan 1 19:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6da071571298a1c2cca773ab8c20499df03b9e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e8:d0:5d:d1:76:41:e2:95:1e:48:77:a9:58:
7b:c0:66:60:2b:11:d3:e0:9e:4d:97:be:f5:c9:80:
d9:67:89:dd:4b:66:95:45:09:56:9a:2d:c1:70:2e:
26:99:75:00:eb:01:6b:f5:de:e8:5b:c4:b5:3b:0d:
18:b4:59:62:d3:04:1f:d4:33:0a:64:08:ba:b8:c1:
83:76:f1:64:66:f6:00:1a:ae:42:f5:e3:5b:c7:96:
02:11:7f:4e:87:6d:9d:58:f5:7a:cb:b1:f5:9b:74:
29:5c:09:9f:dd:a2:67:ce:a3:bf:a3:b1:39:bd:26:
dd:45:a0:ff:64:9b:39:9c:a4:d5:d8:f9:8b:6e:e7:
b1:cb:c2:10:4c:c4:36:3d:88:86:07:fb:bd:04:fc:
76:cd:9a:1a:36:e0:72:c3:18:12:8a:33:22:2d:ed:
d6:6a:c2:36:70:6b:fb:61:99:30:3f:01:41:27:7a:
1d:0f:52:a7:69:34:83:fa:a6:b9:a4:ad:f6:38:a6:
e4:8f:5b:e7:34:28:18:1a:db:e8:14:24:b7:55:f5:
cf:16:23:e0:d1:d1:d7:66:6f:a4:09:5e:3d:b4:61:
72:ce:51:f1:69:bf:1c:03:02:9e:d2:65:58:7d:a9:
ba:13:37:27:57:eb:3c:31:a4:49:c7:16:c9:01:a8:
f0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A0:71:57:12:98:A1:C2:CC:A7:73:AB:8C:20:49:9D:F0:3B:9E:4C
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/baBxVxKYocLMp3OrjCBJnfA7nkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.51.233.0/24
103.210.197.0/24
167.160.12.0/24
Signature Algorithm: sha256WithRSAEncryption
50:bd:9b:73:d7:4b:a2:ed:e8:6b:c2:15:04:81:0c:65:d0:b6:
a2:ce:72:f3:fa:61:90:c8:9e:90:83:5c:d6:b3:2c:1d:c0:52:
e6:18:98:4d:d7:59:31:a2:fc:a2:69:d9:33:77:9d:e6:38:37:
1d:4d:94:36:e2:ce:7c:45:32:3c:a5:da:b3:52:36:d2:67:fd:
6b:b3:17:c2:3b:a9:57:4b:a4:03:d6:fe:e8:55:6a:4b:06:c0:
ad:1f:bd:a2:07:7d:b1:5c:0a:31:82:cc:4e:15:00:92:a3:7e:
ce:f8:e9:6d:bd:17:59:38:d5:40:7c:df:96:54:c6:b2:f1:2c:
97:00:df:63:e3:49:53:e2:20:f1:f4:a1:72:4b:39:a8:dc:9c:
74:93:18:0a:cb:ba:f0:85:63:fa:64:71:f9:dd:ce:34:5a:9d:
61:c8:25:c2:28:22:73:3f:d8:e7:84:5f:e6:15:ef:bd:fb:83:
0d:a0:02:a6:66:db:2d:a8:9a:c8:ca:e8:ce:4d:50:84:a2:7f:
0e:2e:d6:55:c6:91:4b:8a:cb:ea:a7:b6:18:98:9d:ba:a6:d5:
cf:f5:3d:72:8c:87:e4:45:af:06:ad:82:80:98:c7:b0:b3:0d:
4d:c5:86:37:94:5e:34:f3:28:5f:00:f7:33:ed:fd:31:ed:3e:
a8:64:ef:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:32:37 2025 by rpki-client