Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/c2R3wivgEgz5ZmEYZ2ElqjgEMIo.roa
File: c2R3wivgEgz5ZmEYZ2ElqjgEMIo.roa (raw, json)
Hash identifier: VRmMriZRs/bUuRdWQCm7Bzo/AbUgXcYWPwY3b1Kwb4U=
Subject key identifier: 73:64:77:C2:2B:E0:12:0C:F9:66:61:18:67:61:25:AA:38:04:30:8A
Certificate issuer: /CN=166dcaf076c3ec103117deaa67990c968bcd644d
Certificate serial: CFC0F6
Authority key identifier: 16:6D:CA:F0:76:C3:EC:10:31:17:DE:AA:67:99:0C:96:8B:CD:64:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fm3K8HbD7BAxF96qZ5kMlovNZE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/c2R3wivgEgz5ZmEYZ2ElqjgEMIo.roa
Signing time: Sat 01 Jan 2022 00:52:32 +0000
ROA not before: Sat 01 Jan 2022 00:52:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 213.109.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13615350 (0xcfc0f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166dcaf076c3ec103117deaa67990c968bcd644d
Validity
Not Before: Jan 1 00:52:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=736477c22be0120cf9666118676125aa3804308a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:43:83:f2:c6:3f:fa:43:69:c4:83:41:25:f3:
c0:92:51:d6:d6:ab:db:ab:9c:40:76:7e:60:2b:e9:
3a:79:61:10:12:cd:bb:58:10:ae:3a:62:a1:70:85:
1e:f1:22:81:08:98:b0:86:de:ee:eb:9f:23:a0:39:
76:22:0a:37:b9:de:97:5a:3d:96:36:58:57:45:f1:
04:f5:18:4a:9e:07:c9:e5:50:20:3b:71:39:84:6b:
8f:89:4b:66:0f:8c:19:c8:18:12:3f:a6:3b:32:40:
aa:97:c3:e4:a9:77:95:cc:e8:cb:38:cd:a4:5a:bc:
1c:30:32:4a:46:c9:d7:46:8b:e4:98:c3:c0:99:18:
0d:64:f0:e7:46:93:91:07:1d:c8:dd:b3:32:bd:d0:
93:9d:86:96:43:41:d5:71:b8:80:c4:ca:43:30:9c:
22:84:48:3d:56:45:30:ad:f8:6e:85:26:4e:7f:e5:
fa:c1:17:23:53:16:bb:3c:59:32:30:3b:82:be:78:
68:db:7c:2a:fa:09:77:24:90:ae:1d:e5:1e:a3:70:
58:d1:11:70:ff:ff:03:78:97:0e:04:2f:ac:9e:30:
6b:57:d6:1d:ff:cc:9d:e0:02:df:d4:26:a5:d7:8f:
71:71:43:4b:10:2f:2f:e4:7e:02:23:17:07:bb:8b:
93:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:64:77:C2:2B:E0:12:0C:F9:66:61:18:67:61:25:AA:38:04:30:8A
X509v3 Authority Key Identifier:
keyid:16:6D:CA:F0:76:C3:EC:10:31:17:DE:AA:67:99:0C:96:8B:CD:64:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fm3K8HbD7BAxF96qZ5kMlovNZE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/c2R3wivgEgz5ZmEYZ2ElqjgEMIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/Fm3K8HbD7BAxF96qZ5kMlovNZE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.154.0/24
Signature Algorithm: sha256WithRSAEncryption
60:ca:20:8f:be:0a:78:c6:f7:d8:49:9b:ca:dc:fa:99:8a:28:
28:68:a2:bb:55:93:4a:94:0e:98:18:ea:1d:d6:6d:8e:e6:6a:
ea:a3:27:24:11:66:6c:4c:01:41:16:d2:75:ed:7e:c7:c9:61:
e5:7e:bf:09:8c:30:cd:d9:4a:5b:4b:90:b2:e7:d5:89:03:8b:
20:2b:15:8f:18:48:e9:57:06:53:09:9c:a9:12:c2:b7:88:14:
ad:e3:cb:5a:f5:49:71:e0:0a:96:24:32:5d:b5:85:cd:51:ff:
d4:d2:53:31:de:b1:57:15:05:17:7a:85:6c:5a:e3:0e:bb:43:
b3:28:7a:8b:ff:b8:4f:d7:c7:0f:1c:06:db:28:d9:2e:d1:ca:
0d:9f:07:4a:4d:6d:59:f1:f6:d5:e4:75:f3:f4:d3:73:1e:4a:
d1:5b:ec:b7:61:36:24:94:f7:af:5a:be:e1:a1:f8:31:2d:7a:
c6:9b:cf:a8:99:a3:05:ef:d5:e4:3d:46:84:c8:8f:1a:62:4c:
ba:93:84:d4:32:d7:fd:93:a5:71:90:98:63:64:72:52:4f:c5:
78:7b:a1:bb:8b:ba:b5:3b:38:64:e6:47:2c:af:9e:63:52:5d:
ff:c9:52:7e:e9:53:68:18:1c:33:bc:89:a5:75:f3:68:92:8e:
64:92:7e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:43:50 2025 by rpki-client