Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/hoeiky0Yvquu-vh4T1lTnZlhbwc.roa
File: hoeiky0Yvquu-vh4T1lTnZlhbwc.roa (raw, json)
Hash identifier: TG3DycSrjgCYww4lJAKepUSf5xECf8vQNK+sCZjEIS8=
Subject key identifier: 86:87:A2:93:2D:18:BE:AB:AE:FA:F8:78:4F:59:53:9D:99:61:6F:07
Certificate issuer: /CN=e79ef19c273deded19cef6b36839b3ceb01edefd
Certificate serial: 019421B25963A8E456D718D9875A66446883
Authority key identifier: E7:9E:F1:9C:27:3D:ED:ED:19:CE:F6:B3:68:39:B3:CE:B0:1E:DE:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/557xnCc97e0ZzvazaDmzzrAe3v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/hoeiky0Yvquu-vh4T1lTnZlhbwc.roa
Signing time: Wed 01 Jan 2025 11:48:43 +0000
ROA not before: Wed 01 Jan 2025 11:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209232
IP address blocks: 2.56.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:59:63:a8:e4:56:d7:18:d9:87:5a:66:44:68:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e79ef19c273deded19cef6b36839b3ceb01edefd
Validity
Not Before: Jan 1 11:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8687a2932d18beabaefaf8784f59539d99616f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e9:f0:57:e1:82:6b:de:01:02:85:cc:3a:b4:
74:2f:f4:a3:c2:af:d9:24:98:b6:5b:6b:47:91:a6:
93:35:89:e1:ca:68:f6:a3:a4:bc:bd:b6:cd:b0:9e:
f5:1a:79:ce:f9:a5:12:36:8b:93:0b:de:0d:92:64:
2e:f3:53:a4:31:c8:68:b9:2f:b3:90:97:7a:42:5b:
15:33:3a:63:4c:35:ce:3d:31:31:b4:87:e8:99:f0:
f6:6e:67:91:90:91:f8:1d:75:23:9f:a9:54:76:88:
c5:34:df:ea:23:a8:cc:61:c3:d6:92:94:fa:a9:2d:
90:87:cc:2c:1c:b7:14:3a:19:2f:c8:c3:2b:77:14:
cf:5f:76:66:80:86:76:f9:14:c5:2f:9b:91:18:6e:
2e:d3:6e:ac:ec:7b:f8:0f:7b:35:56:14:41:31:30:
9a:83:25:bd:fc:41:e0:15:7a:a6:55:3c:1a:8a:70:
39:2c:be:16:f2:1f:cf:ab:52:a8:7d:8d:32:6d:02:
f4:02:38:3b:3b:0b:53:91:57:3d:31:e5:6a:16:2a:
a3:4a:1e:bc:ce:6e:07:8f:f5:d0:d3:65:5e:07:79:
01:f4:b0:a3:1c:fa:85:65:73:91:77:87:1c:71:a4:
0d:65:d8:4e:31:79:73:d9:c9:68:d9:6f:b0:2a:c9:
3c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:87:A2:93:2D:18:BE:AB:AE:FA:F8:78:4F:59:53:9D:99:61:6F:07
X509v3 Authority Key Identifier:
keyid:E7:9E:F1:9C:27:3D:ED:ED:19:CE:F6:B3:68:39:B3:CE:B0:1E:DE:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/557xnCc97e0ZzvazaDmzzrAe3v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/hoeiky0Yvquu-vh4T1lTnZlhbwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/557xnCc97e0ZzvazaDmzzrAe3v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.132.0/24
Signature Algorithm: sha256WithRSAEncryption
34:64:68:cd:2f:40:92:f8:dc:2b:fd:75:87:6d:27:71:04:16:
eb:9d:f2:28:ed:09:16:16:70:ff:7b:0a:6d:ec:5b:07:6c:27:
95:73:31:a0:12:e0:10:a7:6e:84:0f:4e:de:fe:1b:77:98:1f:
fd:b8:3f:aa:97:de:36:ad:46:ee:cf:8b:79:ff:3f:26:52:f7:
8b:88:2b:6f:82:2c:90:9a:fd:06:b5:d2:ab:ae:46:85:c5:48:
1f:4f:1d:a0:1b:57:9d:95:5f:97:99:2a:f4:67:2a:4e:a4:1c:
ce:a3:f2:78:e7:4d:d2:33:57:e3:da:f8:52:4e:ac:ab:56:c2:
ed:1a:22:ac:22:75:f2:c9:29:a7:91:72:52:7b:5d:ad:45:f4:
de:a2:08:a8:26:4a:76:9f:7f:ce:9f:5b:9d:e3:33:f5:53:80:
2a:fa:7e:78:b2:71:4d:85:34:b7:30:c7:07:75:49:3b:23:2c:
ac:87:bd:fd:59:84:fd:ce:a9:08:97:f0:40:46:7a:70:45:19:
3a:6e:d8:8a:9f:82:d3:0c:65:48:74:ef:d4:98:de:4c:83:87:
aa:99:74:ec:98:77:94:a7:f9:28:8d:38:dd:e8:83:a2:c9:a9:
9a:53:6d:9b:d0:65:78:13:7f:d6:ed:5a:a9:10:c1:35:59:e2:
3a:9a:52:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:45:04 2025 by rpki-client