Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/5a7c57-2aef-4caa-94c5-f56865c56ba9/1/Y7Im2b-ztQ1wnnbQyXc5mbL8Acs.roa
File: Y7Im2b-ztQ1wnnbQyXc5mbL8Acs.roa (raw, json)
Hash identifier: sk1TJPNp33hRgz2RDyac+H6J2lHagksX0AXcdVf9q3I=
Subject key identifier: 63:B2:26:D9:BF:B3:B5:0D:70:9E:76:D0:C9:77:39:99:B2:FC:01:CB
Certificate issuer: /CN=bde74850b31f3ac2198bf85ffb5c50bc703cc8a6
Certificate serial: 018B01062D844E22F693E95720C6A5FF8ACC
Authority key identifier: BD:E7:48:50:B3:1F:3A:C2:19:8B:F8:5F:FB:5C:50:BC:70:3C:C8:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vedIULMfOsIZi_hf-1xQvHA8yKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/5a7c57-2aef-4caa-94c5-f56865c56ba9/1/Y7Im2b-ztQ1wnnbQyXc5mbL8Acs.roa
Signing time: Thu 05 Oct 2023 18:07:43 +0000
ROA not before: Thu 05 Oct 2023 18:07:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49223
IP address blocks: 176.126.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:01:06:2d:84:4e:22:f6:93:e9:57:20:c6:a5:ff:8a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde74850b31f3ac2198bf85ffb5c50bc703cc8a6
Validity
Not Before: Oct 5 18:07:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63b226d9bfb3b50d709e76d0c9773999b2fc01cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:36:3c:d6:07:c8:e5:67:d5:ca:a6:c0:5c:8d:
96:90:13:66:d9:b1:36:e4:f8:18:79:9d:4a:75:37:
8c:4c:26:89:7d:53:4e:a6:f5:56:2f:15:f6:b8:15:
89:ad:9a:1f:c9:96:74:f5:9b:20:37:1e:10:f3:34:
79:ac:b0:31:9f:29:e5:e6:50:4f:71:0e:9e:e9:be:
56:9e:ac:25:af:0b:be:24:99:a3:eb:95:03:bb:ac:
93:a7:52:6d:3d:11:43:e0:3c:1c:61:92:fd:9b:9f:
1d:af:56:4d:1d:ec:b4:7f:ea:47:15:64:08:9f:1e:
ad:a0:fb:af:8e:be:59:57:f6:9a:d0:9d:d4:74:50:
44:53:48:7b:03:e0:2e:29:77:12:77:99:15:5f:78:
1b:d8:3e:84:63:12:58:82:c2:d3:cd:04:81:84:33:
27:98:f5:98:ae:ad:01:c5:37:d7:ac:60:c1:2c:06:
65:8c:66:56:4c:b2:8f:df:ed:cc:4c:1a:8f:0b:85:
b2:b1:0f:d9:ef:eb:bb:0d:26:44:c6:b8:6a:b8:1c:
0c:3c:36:e4:88:0a:5e:12:a9:94:34:52:b2:8a:6d:
26:12:1d:bf:3d:16:f6:32:03:08:a1:dc:3b:fa:de:
39:ea:93:57:08:a5:d2:61:43:5d:cc:da:d4:96:79:
17:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B2:26:D9:BF:B3:B5:0D:70:9E:76:D0:C9:77:39:99:B2:FC:01:CB
X509v3 Authority Key Identifier:
keyid:BD:E7:48:50:B3:1F:3A:C2:19:8B:F8:5F:FB:5C:50:BC:70:3C:C8:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vedIULMfOsIZi_hf-1xQvHA8yKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/5a7c57-2aef-4caa-94c5-f56865c56ba9/1/Y7Im2b-ztQ1wnnbQyXc5mbL8Acs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/5a7c57-2aef-4caa-94c5-f56865c56ba9/1/vedIULMfOsIZi_hf-1xQvHA8yKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.108.0/24
Signature Algorithm: sha256WithRSAEncryption
47:16:be:34:d1:47:13:89:0a:8e:bd:52:3b:c5:b8:7a:1a:4d:
a9:c4:50:fb:56:7b:c9:2a:b6:b7:53:81:04:04:79:23:17:99:
59:21:d7:e3:a0:36:31:ea:ab:89:6f:64:6b:19:60:17:cc:a8:
1f:56:04:cd:68:64:4e:36:85:ee:f8:79:6e:2c:ea:2b:ed:2d:
32:42:af:21:35:fd:68:f7:ba:e1:a0:6b:81:12:7d:01:b1:f7:
d3:0a:b5:20:07:81:62:c0:66:68:2f:a1:8c:6d:3b:53:25:46:
4a:56:00:3e:e4:ba:e5:11:38:cb:72:a0:74:13:79:ab:e9:57:
a0:dc:27:57:32:0d:e1:2c:1c:69:df:0c:eb:ea:bc:31:a7:60:
7d:e3:22:9e:03:cd:5a:a4:75:26:8f:c7:44:9b:c3:e5:44:a9:
92:3e:41:d2:c8:72:68:b9:c9:bd:47:68:3c:b2:8a:68:b6:cc:
70:ef:70:b1:7c:42:14:cb:d2:00:2a:f2:46:98:71:c2:a0:a9:
d7:75:21:52:2d:65:7b:d3:94:96:5f:3a:a5:f0:09:84:81:28:
e2:0a:08:a6:18:20:b1:f6:1f:c9:38:cf:69:8a:7c:38:dc:10:
16:a4:7b:e5:ed:36:ad:bf:a6:b1:f6:ad:1c:f1:17:24:08:a1:
ce:e6:61:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:51:01 2025 by rpki-client