Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/78xxgqrUmWNYqyTBai4EBjEu91c.roa
File: 78xxgqrUmWNYqyTBai4EBjEu91c.roa (raw, json)
Hash identifier: uaxnNjtNBpTRzoh32nK5xrY4z5VdPqEqJ8DG/HTyvMk=
Subject key identifier: EF:CC:71:82:AA:D4:99:63:58:AB:24:C1:6A:2E:04:06:31:2E:F7:57
Certificate issuer: /CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Certificate serial: 019424B3ACDC1632DF6F9CC1B4B7BE47FE8D
Authority key identifier: 5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/78xxgqrUmWNYqyTBai4EBjEu91c.roa
Signing time: Thu 02 Jan 2025 01:49:02 +0000
ROA not before: Thu 02 Jan 2025 01:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57840
IP address blocks: 37.209.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ac:dc:16:32:df:6f:9c:c1:b4:b7:be:47:fe:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Validity
Not Before: Jan 2 01:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=efcc7182aad4996358ab24c16a2e0406312ef757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:03:66:b4:5d:61:61:22:f4:65:0a:ea:24:75:
25:25:f1:86:f8:4f:e7:8d:83:4f:99:d4:8d:36:84:
1f:d8:6b:1d:78:4b:6f:52:24:4b:f8:e4:3f:1a:83:
80:48:0b:f2:72:08:45:63:b0:a6:b3:99:94:2a:58:
73:3c:b4:7c:b3:6b:96:8f:43:0c:51:f1:31:77:03:
4c:fb:4e:e1:f0:6c:a1:6a:79:58:df:01:01:84:89:
22:59:00:aa:9f:7c:d5:a6:f5:e9:74:cc:17:d8:dc:
1e:a3:f0:52:81:cc:3b:a3:da:e4:58:13:d5:c0:66:
7c:ec:86:46:eb:65:48:34:2c:43:3a:2f:fd:7f:ce:
68:32:53:bf:40:46:24:3e:64:8a:ec:c1:aa:07:47:
3f:ab:00:79:0b:a9:a7:e9:3e:5d:6e:c2:11:69:22:
7e:3d:af:9f:71:a5:d1:ef:dc:8e:21:26:3d:56:88:
6c:f3:38:e7:57:b8:dc:6c:19:44:00:b8:b2:36:01:
61:68:44:14:e6:60:13:2b:07:ec:4c:f7:ce:13:c3:
70:d9:80:09:93:27:a0:5f:30:61:06:90:51:c8:4b:
a3:2b:fe:5f:10:37:f6:c4:b5:7e:be:fc:d3:5a:75:
88:cb:e4:ff:59:a6:34:90:ad:0b:d7:6e:92:c2:8f:
00:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CC:71:82:AA:D4:99:63:58:AB:24:C1:6A:2E:04:06:31:2E:F7:57
X509v3 Authority Key Identifier:
keyid:5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/78xxgqrUmWNYqyTBai4EBjEu91c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.209.175.0/24
Signature Algorithm: sha256WithRSAEncryption
31:af:82:9a:d7:c4:9b:85:43:77:9f:56:51:1f:2f:01:85:90:
69:c0:8f:df:6f:a8:f4:9c:f3:12:bb:48:f5:f1:3e:d6:26:01:
82:3c:8c:7b:c1:9a:b7:fa:42:07:23:a8:85:37:4b:80:ce:06:
57:8b:38:c9:20:b5:0b:d6:d0:3f:4d:67:74:c5:54:46:ec:37:
13:ee:d0:25:64:5b:44:b0:85:54:d5:3c:5d:df:92:cc:04:53:
71:4f:08:14:9b:f3:39:e8:31:0e:ba:5b:42:5a:29:8f:e1:ee:
aa:69:ea:92:70:9d:3b:f3:8a:bd:6f:03:5c:9f:69:a6:8d:a4:
2c:13:2c:24:ed:55:c3:39:30:7b:d7:0a:dc:54:bc:58:bf:e8:
df:d4:eb:da:68:72:21:e8:71:4d:26:f6:21:91:70:95:72:04:
06:34:ed:4d:3c:51:f0:b7:47:cf:cc:a9:f9:62:07:87:0d:f8:
2c:35:cd:49:4b:76:d8:16:71:4a:77:91:2f:64:ea:35:4c:64:
38:ee:d0:2e:e6:0c:aa:3c:d6:ad:2b:c2:24:6d:e9:61:7c:71:
03:cc:3f:45:67:aa:77:04:11:ea:48:4f:61:40:06:82:67:d9:
26:7c:99:34:db:9b:a3:74:e8:d7:0e:ba:fa:44:fd:fc:8d:8f:
d2:44:8d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:49:27 2025 by rpki-client