Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/i86Qnss2Hx--RBAsZcussull0WM.roa
File: i86Qnss2Hx--RBAsZcussull0WM.roa (raw, json)
Hash identifier: ZSa0NJzxbSdhBzuGRMo0rW/M52VwcaybfD76Q9/vKd4=
Subject key identifier: 8B:CE:90:9E:CB:36:1F:1F:BE:44:10:2C:65:CB:AC:B2:E9:65:D1:63
Certificate issuer: /CN=69b01927a1a177d4261221d94628514a525a96e0
Certificate serial: 019421B18D86884127FC3EC8E42C80C5033E
Authority key identifier: 69:B0:19:27:A1:A1:77:D4:26:12:21:D9:46:28:51:4A:52:5A:96:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/abAZJ6Ghd9QmEiHZRihRSlJaluA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/i86Qnss2Hx--RBAsZcussull0WM.roa
Signing time: Wed 01 Jan 2025 11:47:51 +0000
ROA not before: Wed 01 Jan 2025 11:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6730
IP address blocks: 213.146.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:8d:86:88:41:27:fc:3e:c8:e4:2c:80:c5:03:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69b01927a1a177d4261221d94628514a525a96e0
Validity
Not Before: Jan 1 11:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8bce909ecb361f1fbe44102c65cbacb2e965d163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ed:20:a1:81:56:5d:6b:44:67:ba:04:bc:5f:
9f:66:f6:3a:2d:a0:aa:62:9a:bc:bb:de:20:3a:7d:
63:75:b2:a7:cc:57:9d:70:07:d5:ed:ec:2c:4d:01:
e5:ff:33:4d:45:8a:a4:a7:89:f0:27:8a:87:2d:66:
71:1f:9c:38:9a:96:0f:69:3b:9b:0c:b4:b6:0c:77:
c6:35:a7:6f:19:25:30:72:d8:cb:dc:07:2c:8a:2b:
29:7c:e7:e0:9e:b2:d3:8f:da:40:0f:d9:9b:1a:57:
e7:15:ad:c8:5f:b6:9c:da:47:c2:1d:5c:ea:ac:74:
ff:4a:86:a9:98:98:5b:fa:5c:15:42:99:75:26:15:
70:59:23:e8:96:63:8c:8e:5e:19:38:ca:4a:e8:49:
47:22:22:ea:f0:f0:26:ad:92:e6:16:77:3d:75:3c:
92:df:b6:73:2d:f4:12:aa:d8:83:09:23:8c:3e:30:
0e:4b:02:82:0a:52:40:17:45:9f:19:a8:f2:f2:d2:
e9:cc:36:d0:b7:54:ec:c1:5e:75:af:3a:cf:71:20:
99:3f:ac:62:58:1d:8e:d3:2a:48:3f:63:ad:88:0d:
10:57:4d:e7:92:d6:cd:cc:b3:b1:6e:2a:01:7f:58:
40:70:42:12:14:b3:d9:86:e4:10:83:3c:52:fc:22:
cb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:CE:90:9E:CB:36:1F:1F:BE:44:10:2C:65:CB:AC:B2:E9:65:D1:63
X509v3 Authority Key Identifier:
keyid:69:B0:19:27:A1:A1:77:D4:26:12:21:D9:46:28:51:4A:52:5A:96:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/abAZJ6Ghd9QmEiHZRihRSlJaluA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/i86Qnss2Hx--RBAsZcussull0WM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/abAZJ6Ghd9QmEiHZRihRSlJaluA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.146.8.0/24
Signature Algorithm: sha256WithRSAEncryption
54:50:0d:fa:7e:09:78:04:52:44:15:6e:c0:6e:2c:3c:3f:fc:
50:bc:75:74:de:72:d8:c7:53:74:66:ac:3c:f4:c2:e0:45:82:
72:da:fc:bd:f0:b0:6c:72:0f:c0:4c:c0:90:9a:8e:b0:1e:f8:
2b:e3:b7:9b:94:d2:4e:e3:84:67:14:ef:08:58:c9:a9:62:83:
aa:61:fd:55:2e:1d:fe:3e:83:76:27:d2:2d:f6:3e:33:52:a9:
a3:d8:14:ed:41:a2:4e:42:c9:7c:60:a2:b5:6d:0c:74:9e:12:
c7:c6:32:91:48:da:29:4e:da:5a:a3:77:f3:7f:59:ed:a1:c7:
4e:87:10:cf:cf:3d:a6:e4:e4:e1:04:5e:3c:2d:c9:90:b0:c6:
a1:29:c8:dd:97:20:7a:a4:13:c2:5d:00:9d:b8:f5:3f:f5:86:
b3:f3:e8:91:c4:c9:06:23:98:3f:62:a2:5a:20:43:f9:48:fe:
8b:aa:36:54:29:88:05:36:ed:d6:a9:81:04:09:53:c8:10:c6:
28:08:27:7c:9d:11:97:72:e0:ad:d3:93:dc:b8:a7:c7:c0:1f:
80:5e:20:5e:e1:5e:e5:da:fe:f1:80:7c:2c:9f:e1:ba:35:3a:
25:26:57:ac:5c:eb:a6:dd:9f:fc:a5:70:0b:25:ca:2c:68:7f:
0a:98:f0:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:38 2025 by rpki-client