Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/LE7N1a1uboQzN97q5uXEpXRCthI.roa
File: LE7N1a1uboQzN97q5uXEpXRCthI.roa (raw, json)
Hash identifier: acxO9/yWByiaEkWpHMZY/pa7lJUQ5fZxyIs+7NiR+UQ=
Subject key identifier: 2C:4E:CD:D5:AD:6E:6E:84:33:37:DE:EA:E6:E5:C4:A5:74:42:B6:12
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 019427B3F72CC3F2AEC6C8A7E7CB10A8E1C7
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/LE7N1a1uboQzN97q5uXEpXRCthI.roa
Signing time: Thu 02 Jan 2025 15:48:13 +0000
ROA not before: Thu 02 Jan 2025 15:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25780
IP address blocks: 185.206.168.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:f7:2c:c3:f2:ae:c6:c8:a7:e7:cb:10:a8:e1:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 2 15:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2c4ecdd5ad6e6e843337deeae6e5c4a57442b612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:24:c0:f7:d5:b7:bd:b6:9c:15:ed:b4:68:63:
9e:cc:17:a4:ca:d8:8e:1d:5f:ae:a1:f6:a2:da:d0:
48:f9:d8:9d:42:f0:d2:d0:3f:22:ba:f2:04:db:5b:
d6:a4:12:fc:e5:f1:3b:25:18:f0:3d:af:fe:9d:3c:
0c:dd:f3:e8:c1:67:11:1d:22:e3:0c:73:06:42:73:
cd:ad:58:77:a7:b2:f3:36:03:30:fb:f6:f1:da:99:
95:7c:5c:e2:86:e9:7e:29:9c:3b:f0:31:99:53:68:
10:31:65:c0:25:c9:21:8d:72:ba:5d:19:f1:9b:fb:
92:38:44:e3:28:22:8b:b5:ca:5a:b4:a5:d0:65:67:
c9:1d:f3:6e:43:ee:40:13:cf:c6:5b:11:de:26:35:
b6:c8:61:58:69:04:5b:a7:e6:a5:e3:d4:16:b5:21:
27:86:2a:ef:aa:1f:f4:bc:73:41:65:bb:db:e9:22:
59:ca:7b:14:6a:68:fa:db:a0:65:36:31:f9:d2:40:
fd:7c:57:a0:0e:4a:d0:7c:82:d3:a4:c5:83:b3:a3:
17:a7:56:36:ce:3d:99:52:5b:1e:19:7b:cd:02:f9:
6d:77:84:be:f0:ce:cc:b4:ca:83:31:33:1f:e6:59:
f4:56:5d:40:70:e0:eb:14:08:14:4a:13:f9:4f:2b:
f9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:4E:CD:D5:AD:6E:6E:84:33:37:DE:EA:E6:E5:C4:A5:74:42:B6:12
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/LE7N1a1uboQzN97q5uXEpXRCthI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.168.0/22
Signature Algorithm: sha256WithRSAEncryption
29:5a:79:fc:2f:59:70:ea:f5:e7:12:2c:ef:8c:05:a8:6a:9f:
d6:27:a8:26:5a:31:74:92:9b:e2:a5:bf:af:7a:df:4c:5c:02:
57:48:4c:ca:8a:44:27:53:43:d5:a0:84:91:75:49:fb:ae:25:
b9:92:c0:1d:4d:ff:d3:a1:94:cd:e8:e8:5a:ce:14:d0:b6:4a:
52:14:31:7a:c6:f3:d8:96:91:ed:a9:43:92:ac:74:f4:05:e6:
75:c8:03:16:f9:e1:f2:0d:63:02:2c:bb:4d:1f:1c:c0:91:f0:
8c:03:6c:78:58:ef:00:68:56:d5:7d:ef:66:4c:18:4a:c4:d4:
11:df:e7:80:b2:9e:f0:7d:55:d4:e6:bd:69:1c:8f:e4:1d:9f:
ab:57:d7:8a:39:0b:8c:f6:db:37:5e:ee:41:a0:c2:78:1b:f8:
34:45:2d:b8:e3:a4:2c:49:80:b6:32:8d:3f:6d:fb:7e:05:05:
cf:82:a6:7d:3c:b6:7c:76:d9:47:ec:b6:3e:08:95:39:65:2e:
fc:77:eb:24:72:f5:fc:28:76:54:56:1f:eb:b5:41:c0:25:96:
32:9f:8a:17:b3:01:cf:ce:6a:60:64:38:ca:7d:93:d8:fa:1c:
c1:c9:f4:04:40:16:16:a6:f3:28:4d:ee:5c:6b:29:22:ef:1c:
77:70:51:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:15:29 2025 by rpki-client