Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/72kD6ayiwmeGoKhRrPZ__Tt9XCE.roa
File: 72kD6ayiwmeGoKhRrPZ__Tt9XCE.roa (raw, json)
Hash identifier: NSNmGWvd47OdXbtIhhCClOKph/GtDH8ixZuXdVjE5+w=
Subject key identifier: EF:69:03:E9:AC:A2:C2:67:86:A0:A8:51:AC:F6:7F:FD:3B:7D:5C:21
Certificate issuer: /CN=93656fb5860c9d3cfcb35658540c7230a0ba1e8d
Certificate serial: 019424450A235DDBDD771F74E08D1D63BCE2
Authority key identifier: 93:65:6F:B5:86:0C:9D:3C:FC:B3:56:58:54:0C:72:30:A0:BA:1E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2VvtYYMnTz8s1ZYVAxyMKC6Ho0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/72kD6ayiwmeGoKhRrPZ__Tt9XCE.roa
Signing time: Wed 01 Jan 2025 23:48:11 +0000
ROA not before: Wed 01 Jan 2025 23:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51342
IP address blocks: 176.124.96.0/21 maxlen: 24
195.128.166.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:0a:23:5d:db:dd:77:1f:74:e0:8d:1d:63:bc:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93656fb5860c9d3cfcb35658540c7230a0ba1e8d
Validity
Not Before: Jan 1 23:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef6903e9aca2c26786a0a851acf67ffd3b7d5c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:36:63:91:82:8d:a7:d5:90:b3:84:e1:06:7d:
9d:af:7f:b1:80:b2:27:0f:cb:e3:5b:d2:2d:19:b7:
20:ed:db:3d:60:fd:e6:33:e2:ba:7f:37:87:8b:4e:
0e:2b:a5:cc:2b:20:84:1f:a8:09:7d:9a:1a:54:95:
31:9f:e5:1d:1e:da:93:4e:f7:9c:7c:c3:14:41:10:
54:1e:3e:31:3b:de:6a:a9:79:32:ec:e3:55:25:80:
30:11:41:c9:a5:30:89:94:6e:0a:2b:db:db:91:ac:
02:82:3d:79:cc:71:86:79:90:55:44:b8:87:70:b2:
37:81:06:84:a8:35:c0:6a:2f:83:df:cb:c7:29:60:
03:76:9f:1f:0a:c8:dd:86:13:fc:eb:89:6f:5e:2f:
24:9c:8e:6d:ac:b1:75:3b:a1:94:fd:c8:59:4a:67:
c1:72:32:9e:25:aa:cb:e5:6a:30:c2:bb:d8:38:80:
1e:69:f1:d4:ca:2c:af:cf:ae:42:2b:c8:33:3d:b2:
36:f7:4d:05:eb:1f:08:40:17:aa:f4:0c:d1:fd:4d:
a0:32:1f:8b:29:ea:94:f7:d0:dd:75:38:19:e2:3d:
21:4f:ce:53:99:07:06:e6:fc:20:0a:83:18:11:8a:
97:be:cb:76:11:60:92:38:0e:89:98:7c:6e:4e:01:
7b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:69:03:E9:AC:A2:C2:67:86:A0:A8:51:AC:F6:7F:FD:3B:7D:5C:21
X509v3 Authority Key Identifier:
keyid:93:65:6F:B5:86:0C:9D:3C:FC:B3:56:58:54:0C:72:30:A0:BA:1E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2VvtYYMnTz8s1ZYVAxyMKC6Ho0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/72kD6ayiwmeGoKhRrPZ__Tt9XCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/k2VvtYYMnTz8s1ZYVAxyMKC6Ho0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.96.0/21
195.128.166.0/23
Signature Algorithm: sha256WithRSAEncryption
12:51:86:0e:6c:c9:b1:a7:d5:51:c5:3b:58:d8:d4:61:29:88:
91:f3:12:d1:52:38:f3:04:71:a2:c4:41:f0:19:d0:5f:f0:33:
a7:64:e3:de:c1:66:c5:33:a9:c7:c0:bc:96:52:cc:53:0f:65:
a9:f0:33:45:05:92:cd:7b:d6:23:e6:51:cc:2a:15:91:5a:13:
40:3f:b5:bb:ef:2c:ac:ca:07:a3:8e:a3:66:1a:e1:d7:68:54:
c5:05:79:fd:79:f3:7c:de:98:42:8a:20:57:d1:af:1e:00:6b:
1a:53:61:8d:e3:68:b8:57:8a:4f:55:0c:ce:32:fb:cc:bc:92:
6d:c8:d2:d0:3c:72:be:33:cc:54:da:8a:f7:ca:1a:d8:64:aa:
d5:58:89:60:69:d1:17:9b:13:5a:64:14:79:e4:73:7e:6a:8c:
77:de:70:ee:90:fd:86:dc:dd:85:40:59:3a:c6:73:2f:5c:59:
08:5e:04:b1:12:a0:f0:b9:0c:4e:60:cf:b6:a8:2a:e2:ce:15:
29:33:f2:d2:a5:96:68:3f:ba:d9:f3:ae:72:71:dd:48:e0:9b:
8a:88:1e:87:e6:1e:54:cf:d9:5a:34:bd:a0:b1:76:70:f2:0e:
66:66:a0:43:e5:73:58:05:c5:5e:d7:ab:ef:0a:ae:c2:d7:0a:
68:e5:2c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:45:22 2025 by rpki-client