Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/6Nbkt45yw5SQMwODTnrRpA0ngIY.roa
File: 6Nbkt45yw5SQMwODTnrRpA0ngIY.roa (raw, json)
Hash identifier: +e9+6uADQTKJb2tDECn1H0GSFkxlXUl1NXcmPVH5WPg=
Subject key identifier: E8:D6:E4:B7:8E:72:C3:94:90:33:03:83:4E:7A:D1:A4:0D:27:80:86
Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255
Certificate serial: 0186161B8D24ED950A1F28E48EB33609AC44
Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/6Nbkt45yw5SQMwODTnrRpA0ngIY.roa
Signing time: Fri 03 Feb 2023 07:09:09 +0000
ROA not before: Fri 03 Feb 2023 07:09:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34804
IP address blocks: 85.159.224.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:16:1b:8d:24:ed:95:0a:1f:28:e4:8e:b3:36:09:ac:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255
Validity
Not Before: Feb 3 07:09:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8d6e4b78e72c394903303834e7ad1a40d278086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:92:54:b4:38:1e:ce:85:8c:6e:2d:5a:f1:b8:
f0:75:c9:8e:85:d6:d6:9e:22:18:2c:4a:91:38:c6:
58:09:b1:02:8f:aa:10:91:0b:12:fe:f9:2b:4a:d0:
a2:e1:cd:43:de:66:13:13:75:0c:f3:99:b9:4e:46:
9c:ed:88:6a:38:03:a9:43:7e:14:0d:d7:78:b2:d9:
6b:e0:a5:42:c1:71:d7:00:cb:60:ab:d9:f3:9b:25:
3e:97:22:b2:69:48:c0:c2:35:f1:41:fa:68:a8:30:
dc:86:0a:bd:4e:a7:01:c9:ab:50:8d:7d:2c:be:fd:
4c:36:62:ef:87:71:11:4e:cd:af:c1:2b:5b:f6:75:
3c:c6:c7:15:06:9d:a6:b3:66:a7:65:a1:c3:bc:48:
26:df:25:2a:d8:a5:0a:22:bf:40:14:a6:78:66:54:
c4:c2:5f:c2:4c:4d:b1:26:ea:51:3a:30:f9:8a:a9:
fe:df:3f:61:9c:28:33:59:30:0a:bb:9d:55:10:c1:
30:4a:bb:a2:aa:b2:b6:e6:f6:41:3a:5b:ea:48:40:
85:16:5e:7f:db:be:62:43:13:d5:92:02:c3:ee:c3:
ad:63:12:46:b5:49:e8:0b:76:26:93:53:c7:14:19:
f3:4c:b6:fa:90:e0:c4:81:d0:6a:04:d8:75:4e:ac:
0d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D6:E4:B7:8E:72:C3:94:90:33:03:83:4E:7A:D1:A4:0D:27:80:86
X509v3 Authority Key Identifier:
keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/6Nbkt45yw5SQMwODTnrRpA0ngIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.224.0/21
Signature Algorithm: sha256WithRSAEncryption
91:06:43:a0:84:7b:26:97:25:d0:6e:f5:9e:e3:71:91:8f:7d:
0e:ec:25:0a:77:ae:15:1b:d6:df:36:ad:cb:fb:10:19:c4:1a:
da:85:7a:5c:4a:b9:09:c3:f5:13:31:4b:46:06:1b:68:4e:93:
6c:81:a9:84:fd:28:15:e1:d7:a3:7d:58:a4:6a:75:2a:14:68:
ac:a9:f1:73:78:3d:75:79:c0:6e:53:d2:60:05:70:df:0e:24:
a8:c4:3f:6a:f4:08:7b:bd:bc:ef:0b:e4:91:1c:04:05:24:56:
82:bf:08:4f:fb:1f:38:26:38:a5:d9:eb:90:c0:90:cc:fe:fb:
a0:5d:f3:42:c6:f2:17:26:16:16:ae:31:3b:9a:cf:cd:7e:a9:
73:61:f1:9f:34:84:62:03:72:60:2c:2f:87:77:23:6c:19:7a:
1e:30:c0:b7:46:10:47:fd:0a:88:19:63:ae:d4:17:61:b8:95:
85:b1:d8:f8:61:4d:9b:2d:98:2f:f2:b0:55:98:e8:ed:97:da:
b8:f0:09:ac:5c:b8:9a:c0:4d:6c:36:af:21:61:04:e9:64:73:
ee:0f:48:cc:91:e3:f2:41:91:32:ae:9b:14:ee:21:69:14:0d:
70:58:41:48:fd:c4:90:c0:b2:b7:ee:f6:3c:67:ed:44:0b:5d:
94:c4:1e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:13:13 2025 by rpki-client