Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/7SgT1T8GY35kSnEoENoGRVl8t2M.roa
File: 7SgT1T8GY35kSnEoENoGRVl8t2M.roa (raw, json)
Hash identifier: ZowBMdWF4vxOJGtzURbMH56eDerFCtOrpRC/BvBG7J0=
Subject key identifier: ED:28:13:D5:3F:06:63:7E:64:4A:71:28:10:DA:06:45:59:7C:B7:63
Certificate issuer: /CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Certificate serial: 01941F8C542D91D8365ACA3D539798D37B13
Authority key identifier: 97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/7SgT1T8GY35kSnEoENoGRVl8t2M.roa
Signing time: Wed 01 Jan 2025 01:47:57 +0000
ROA not before: Wed 01 Jan 2025 01:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198949
IP address blocks: 141.226.110.0/24 maxlen: 24
2a07:1980::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:54:2d:91:d8:36:5a:ca:3d:53:97:98:d3:7b:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Validity
Not Before: Jan 1 01:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed2813d53f06637e644a712810da0645597cb763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fa:e5:fb:78:12:97:ba:e1:6e:7d:d1:82:45:
c9:83:ab:0e:8e:84:fc:42:06:d0:c8:d6:61:2c:cc:
1d:3f:7e:86:2a:12:14:76:91:81:cd:44:40:c9:16:
3c:fa:6e:c7:53:de:46:72:5d:60:b7:ea:99:e9:4a:
8b:7d:31:c5:78:cb:10:4c:29:47:9f:66:44:b7:9f:
c5:aa:4f:7c:8f:40:bc:6a:c3:96:36:4b:d8:5f:c6:
52:02:38:07:a9:d5:f9:02:93:d4:6a:c9:e8:a1:43:
ac:ca:0d:ac:f6:9b:ce:44:21:59:42:35:e7:ef:ef:
0f:ab:83:04:be:61:e0:87:b6:09:1b:4d:c3:2f:b1:
ee:cb:58:8e:75:09:93:1a:24:1b:17:1e:b1:8b:29:
a2:dc:55:6b:a4:c0:fb:e5:b8:39:5f:78:5a:a2:46:
50:89:7c:a1:2a:05:c0:fa:6a:b0:23:a1:98:62:94:
50:56:5f:6d:6e:c8:6a:ce:d5:d2:06:17:f6:5d:9a:
4b:d5:32:be:43:ae:9d:36:be:e7:a0:2a:ef:4d:00:
2c:cd:db:70:dc:b7:9e:db:1c:5f:d2:c3:b2:ee:90:
67:7b:59:cc:60:1f:af:39:75:94:a7:28:73:65:e8:
be:fa:5f:2a:50:e0:95:e7:a4:e9:b0:da:71:e1:5b:
ca:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:28:13:D5:3F:06:63:7E:64:4A:71:28:10:DA:06:45:59:7C:B7:63
X509v3 Authority Key Identifier:
keyid:97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/7SgT1T8GY35kSnEoENoGRVl8t2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.110.0/24
IPv6:
2a07:1980::/29
Signature Algorithm: sha256WithRSAEncryption
3d:c5:51:5c:19:72:42:cf:cb:ca:67:03:dc:c5:93:70:c6:ba:
a1:f5:c4:c0:27:b6:97:1e:9c:39:2f:86:8e:57:5e:1f:70:c7:
e5:46:d3:29:ab:0e:e3:da:a2:5a:dc:84:27:42:3d:77:41:9e:
2f:9f:39:73:56:d2:e0:87:3c:90:d8:bb:3c:69:0f:f0:dc:00:
69:ad:69:de:0e:d8:73:a8:34:56:9c:28:12:cd:09:19:26:c7:
d7:ac:fb:c9:45:32:f4:7b:9e:3d:7a:c6:c8:2a:cb:50:9a:6e:
e3:c4:13:f6:51:b9:45:43:4e:e7:26:0f:dd:8a:39:a4:ba:30:
fa:ce:e2:67:f4:b4:f9:82:d5:85:67:d5:fd:e1:90:e3:15:d7:
0d:37:ec:00:2b:8a:3b:92:85:7a:89:c1:b9:db:e0:c5:4f:1b:
19:b7:89:0a:a7:49:bd:7b:ab:d6:8e:11:a7:bc:17:ba:ae:8a:
30:ed:9d:b0:79:84:c2:29:37:f3:54:b0:c3:32:5b:49:0c:3c:
1a:43:4e:a3:1b:72:af:14:f8:53:3d:58:04:b7:15:e7:11:b4:
bb:c7:d0:e4:38:33:84:40:d7:d1:f0:0b:7e:c4:8b:a2:ef:8f:
00:b3:23:0a:a5:ec:b8:8a:09:0f:6b:7a:5b:44:f2:d6:03:df:
db:10:27:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:35:32 2025 by rpki-client