Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/715585-c8db-46fd-b8f2-b405585e73b7/1/Dn1efSWHUbkoL0MRPcJRNJcyAk4.roa
File: Dn1efSWHUbkoL0MRPcJRNJcyAk4.roa (raw, json)
Hash identifier: dpN2y7lllOlASG+H1lgGAg8+YglzA99Ydj5NZJ0r9kc=
Subject key identifier: 0E:7D:5E:7D:25:87:51:B9:28:2F:43:11:3D:C2:51:34:97:32:02:4E
Certificate issuer: /CN=5f6f0f8a59605d57a411218fac8a029bb06abb65
Certificate serial: 93947C
Authority key identifier: 5F:6F:0F:8A:59:60:5D:57:A4:11:21:8F:AC:8A:02:9B:B0:6A:BB:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X28PillgXVekESGPrIoCm7Bqu2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/715585-c8db-46fd-b8f2-b405585e73b7/1/Dn1efSWHUbkoL0MRPcJRNJcyAk4.roa
Signing time: Sat 01 Jan 2022 03:00:03 +0000
ROA not before: Sat 01 Jan 2022 03:00:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 176.97.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9671804 (0x93947c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f6f0f8a59605d57a411218fac8a029bb06abb65
Validity
Not Before: Jan 1 03:00:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e7d5e7d258751b9282f43113dc251349732024e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d6:34:25:70:97:8e:07:0c:b4:1e:9d:6d:8b:
e8:9d:1c:7e:63:78:29:69:ba:a6:e0:aa:e0:a3:91:
cb:1c:25:a7:c5:80:7d:2c:68:0f:be:49:2a:c6:b4:
f8:fa:05:cb:3c:43:db:cb:d6:31:2f:f8:b1:c1:89:
c5:92:38:9d:87:a5:e6:8f:3d:6c:29:ef:35:cd:a4:
ab:16:ed:dc:5d:b1:7c:2d:81:0a:a4:d3:14:20:4a:
0c:a9:ff:fc:b0:24:8e:2a:77:ce:8b:2b:9d:dd:2b:
21:a3:e7:96:ec:cb:65:ba:34:25:f1:2a:74:f7:cd:
1e:4b:c9:80:e1:f1:33:2e:53:69:d8:d8:55:90:11:
a4:75:75:e4:b2:8f:a2:f5:03:07:91:fe:49:be:7a:
d8:eb:f8:ac:61:4b:12:c9:b1:35:5b:b4:21:e3:cb:
14:71:6c:36:ed:36:dd:57:98:a9:d7:4b:a3:47:23:
ad:81:73:27:14:73:30:bc:c5:21:5d:ef:84:5c:54:
af:4d:46:91:d6:1b:9a:a6:9f:4a:dd:4e:66:72:61:
91:0b:ca:bf:fb:ea:a9:13:e2:7a:32:05:af:ce:7a:
f3:70:d6:5c:14:82:19:55:8d:94:58:06:b5:db:c2:
2c:0b:39:d8:77:d1:82:9a:6f:5f:fd:4a:3b:54:14:
6b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7D:5E:7D:25:87:51:B9:28:2F:43:11:3D:C2:51:34:97:32:02:4E
X509v3 Authority Key Identifier:
keyid:5F:6F:0F:8A:59:60:5D:57:A4:11:21:8F:AC:8A:02:9B:B0:6A:BB:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X28PillgXVekESGPrIoCm7Bqu2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/715585-c8db-46fd-b8f2-b405585e73b7/1/Dn1efSWHUbkoL0MRPcJRNJcyAk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/715585-c8db-46fd-b8f2-b405585e73b7/1/X28PillgXVekESGPrIoCm7Bqu2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.218.0/24
Signature Algorithm: sha256WithRSAEncryption
08:2a:d6:09:30:05:42:f2:28:19:f6:7c:98:58:74:27:bb:7a:
6c:e6:32:cf:36:4c:f4:19:8d:d1:f9:f5:6e:bf:f5:e1:80:3d:
39:a6:e7:03:54:04:49:6f:fa:62:e3:56:24:41:4a:95:e9:19:
99:4f:6c:be:db:35:b2:7f:b2:82:2b:49:7e:d5:4c:c8:47:85:
5c:7e:bd:13:a0:fa:da:dd:56:f6:a8:58:e8:e4:63:78:04:c3:
c7:df:59:22:49:eb:26:db:52:6d:f6:a7:f3:55:d3:5b:66:76:
92:f2:67:0b:c7:63:13:10:07:17:14:41:7e:37:6e:7f:9e:ef:
95:6c:46:7d:a7:2f:b2:22:f8:3f:bd:1c:2a:8b:fe:d2:be:b2:
e4:47:13:f4:59:c8:e5:b2:9e:a7:11:1c:4c:95:eb:73:80:29:
39:72:3e:45:91:b6:6d:d1:83:c5:d8:70:87:17:d2:e0:d1:c2:
e2:e0:e9:ce:5e:b4:20:68:86:48:b5:cb:66:03:46:d5:78:d3:
50:ec:ee:b1:69:cd:c1:1e:a9:23:e0:d1:08:69:58:18:5f:5a:
60:e0:a6:d4:d7:18:4f:e9:8c:89:5c:c7:31:90:1b:29:d1:24:
24:4d:19:d9:f0:4f:61:ce:6f:fe:8c:da:70:30:0b:80:77:08:
30:77:2b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:39:10 2025 by rpki-client