Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/W35IPyQN37xuu1vcxQ2jrtqk3qs.roa
File: W35IPyQN37xuu1vcxQ2jrtqk3qs.roa (raw, json)
Hash identifier: Iqyhx5LKMOoNFvsrZIJ9jGrw/Zhr34qrSeO/u1QjtLs=
Subject key identifier: 5B:7E:48:3F:24:0D:DF:BC:6E:BB:5B:DC:C5:0D:A3:AE:DA:A4:DE:AB
Certificate issuer: /CN=17be827a580de61538ddefa28239468c4e901b40
Certificate serial: 018CC3492532D2A060186299136059FD8E54
Authority key identifier: 17:BE:82:7A:58:0D:E6:15:38:DD:EF:A2:82:39:46:8C:4E:90:1B:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F76CelgN5hU43e-igjlGjE6QG0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/W35IPyQN37xuu1vcxQ2jrtqk3qs.roa
Signing time: Mon 01 Jan 2024 04:29:59 +0000
ROA not before: Mon 01 Jan 2024 04:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60700
IP address blocks: 176.120.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:25:32:d2:a0:60:18:62:99:13:60:59:fd:8e:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17be827a580de61538ddefa28239468c4e901b40
Validity
Not Before: Jan 1 04:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b7e483f240ddfbc6ebb5bdcc50da3aedaa4deab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:24:e0:aa:c1:27:32:96:da:7f:5f:82:55:a6:
cc:97:8d:0c:de:d6:4e:c4:01:b6:58:ab:b2:8d:01:
4d:cf:c0:38:05:75:d0:61:bb:73:08:19:32:7f:8c:
a9:7d:87:30:7e:17:36:ff:25:15:b3:46:24:d3:d9:
11:f6:ed:a9:ed:b3:16:17:48:23:c8:bc:69:10:a9:
86:c3:83:8b:0f:c9:62:29:a7:fa:e5:8a:f2:a7:80:
0b:98:7f:5d:62:ef:e0:65:d0:5d:ff:43:d9:10:da:
7e:8c:cf:55:c2:43:d7:0d:12:d2:6a:62:12:80:10:
6a:91:68:b9:36:3e:79:57:fb:fd:aa:54:a7:7c:38:
e1:31:89:b8:b9:81:54:cf:00:e7:23:d2:1f:57:f8:
6a:7b:ea:9f:06:65:da:d1:0c:4f:ba:00:c8:22:df:
48:8e:8c:0c:d0:dc:c3:82:ad:6a:2b:07:97:40:ae:
ea:b9:51:cd:62:c8:bf:3b:76:b4:df:91:e4:b7:3d:
29:a7:e2:ac:f1:90:6b:77:d1:22:44:63:b6:22:7e:
02:55:3d:84:48:21:6d:2e:a3:1e:2a:9c:e9:7b:cb:
25:32:3c:39:45:57:7c:55:7e:98:16:d7:db:15:fc:
ba:f7:d0:df:18:d5:12:0d:b7:3a:18:7f:3e:af:97:
91:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7E:48:3F:24:0D:DF:BC:6E:BB:5B:DC:C5:0D:A3:AE:DA:A4:DE:AB
X509v3 Authority Key Identifier:
keyid:17:BE:82:7A:58:0D:E6:15:38:DD:EF:A2:82:39:46:8C:4E:90:1B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F76CelgN5hU43e-igjlGjE6QG0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/W35IPyQN37xuu1vcxQ2jrtqk3qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/F76CelgN5hU43e-igjlGjE6QG0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.120.107.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:6a:5b:66:10:ad:77:9c:73:24:b3:d5:a5:af:06:e2:bd:66:
1c:68:d5:41:80:a2:04:60:a1:2a:37:0c:7a:e2:85:68:83:01:
a1:7e:83:51:73:c7:04:ee:6a:57:a6:c2:c7:6f:d0:24:e6:49:
0b:ca:7e:7c:a0:d7:28:a3:a9:c0:83:cf:5b:c3:c1:74:f6:95:
2b:53:8d:30:12:5a:b8:29:fa:8e:49:d6:7c:94:a0:33:15:8b:
7c:1d:65:ba:d1:7d:4f:8d:3e:cc:dd:89:c5:69:34:30:ee:bf:
e6:ff:d4:7e:fa:22:8e:c2:34:81:f1:b4:89:44:ef:6f:51:88:
44:81:d9:f9:32:dc:96:61:b7:b2:a6:18:f4:97:cd:1a:50:e1:
98:08:72:9e:ec:8b:54:76:51:8b:c2:3f:99:a4:6e:7f:2e:27:
23:e8:c0:9e:42:c0:95:c6:62:50:ea:34:63:92:44:ad:8e:e9:
89:9b:fc:42:ad:5a:4f:fa:86:28:a0:c8:5c:2a:23:10:6b:24:
fc:82:0b:fc:eb:dd:e8:28:40:19:ed:bd:b9:15:2e:cd:c1:cc:
85:cf:e3:bf:9e:d1:b5:93:a2:7d:a1:2b:6f:da:23:a1:0f:4c:
46:5c:d9:9c:5e:fe:90:3a:41:b1:a9:42:75:c0:dc:95:11:88:
2a:53:a5:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:57:27 2025 by rpki-client