Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/bo414DK33mQjPnsi2XO_OhuOXVU.roa
File: bo414DK33mQjPnsi2XO_OhuOXVU.roa (raw, json)
Hash identifier: DFhqXQ1ALcgUKGfkab9Ecq2SNxSXtHhgzid0rw+LjqA=
Subject key identifier: 6E:8E:35:E0:32:B7:DE:64:23:3E:7B:22:D9:73:BF:3A:1B:8E:5D:55
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 019421B1D4BCD7622516675DF3AD6C02FB89
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/bo414DK33mQjPnsi2XO_OhuOXVU.roa
Signing time: Wed 01 Jan 2025 11:48:09 +0000
ROA not before: Wed 01 Jan 2025 11:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30942
IP address blocks: 84.2.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:d4:bc:d7:62:25:16:67:5d:f3:ad:6c:02:fb:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 11:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e8e35e032b7de64233e7b22d973bf3a1b8e5d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:14:dd:3c:00:c2:36:73:24:7e:51:41:2d:cf:
17:6d:a6:20:35:c6:f0:69:33:1c:07:dc:02:af:fa:
09:e1:87:71:62:c2:99:11:70:c5:12:b5:f8:44:34:
d6:8e:8d:7a:a1:f7:55:9b:80:b3:64:ba:9e:38:8f:
b1:c2:77:75:9b:11:3f:f7:18:f3:f0:5f:3f:bb:a9:
f7:0c:ed:3d:44:b3:7b:2b:15:b5:f2:20:a6:67:65:
a2:01:03:b7:16:9e:3a:4e:1a:86:bd:11:29:d9:78:
7d:9f:06:89:42:fd:2b:1f:aa:99:3e:d5:aa:ac:49:
bc:3b:68:65:41:eb:e5:a0:13:a4:2e:ff:f9:a7:7e:
54:22:26:71:95:80:ff:99:aa:e7:8b:50:e2:2b:12:
6c:a5:36:ab:65:78:0f:94:83:06:ed:31:f0:b2:01:
ee:e5:81:7c:d0:ca:e5:83:1b:a1:62:ff:ba:02:b2:
25:f5:27:1b:c7:db:f2:03:90:8c:22:5f:70:5b:3f:
97:8b:17:f2:e8:55:61:b9:c2:96:43:2e:34:0f:72:
c8:6f:5a:de:0d:07:72:c0:59:a1:e9:4b:25:34:22:
0f:93:2e:22:dc:bb:e2:a6:10:ed:ad:cb:6b:95:61:
6d:56:07:bb:e7:29:3a:0a:2a:c6:10:d1:ee:96:1c:
67:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8E:35:E0:32:B7:DE:64:23:3E:7B:22:D9:73:BF:3A:1B:8E:5D:55
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/bo414DK33mQjPnsi2XO_OhuOXVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.2.79.0/24
Signature Algorithm: sha256WithRSAEncryption
02:f6:1e:70:49:52:b1:a0:46:16:06:38:7e:ed:7a:94:6c:d8:
6d:1a:06:03:9a:1c:83:e9:5d:1f:49:9a:be:cc:72:8f:65:75:
f2:4c:c5:4c:ea:dc:e1:42:ab:e9:b1:b4:79:6c:cd:d8:22:d7:
0b:13:a2:c9:da:01:71:40:42:00:ef:e0:a4:92:b2:99:a3:2a:
9e:a7:1e:87:fc:12:66:78:4c:90:78:89:35:e4:8b:84:b4:54:
24:6c:f0:92:f6:d1:2d:c0:b4:a8:5f:13:b9:9b:f5:be:00:77:
20:38:84:c0:cf:2e:8c:05:e3:12:d6:9f:1b:3c:4e:7c:ee:58:
ce:5e:40:84:25:11:e9:06:4a:6a:b3:9f:17:56:c0:da:42:22:
8e:35:d8:32:f0:96:21:e0:dd:40:54:cc:0d:d8:52:86:eb:e3:
bb:00:d0:af:d2:a6:61:d3:16:9c:99:72:00:8b:d6:aa:85:ef:
eb:3c:a0:2e:24:fb:55:34:a5:73:8d:b1:46:43:1f:af:22:6b:
fa:04:de:5a:44:59:3c:6a:86:43:ae:07:fb:b8:21:6a:25:47:
c8:40:a2:dd:60:d6:a0:74:c2:0b:4e:92:06:d3:14:f5:70:77:
cb:15:60:53:bd:6a:d2:66:d8:a0:00:06:bc:be:c2:65:f6:ba:
13:43:48:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:15:30 2025 by rpki-client