Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/5khp1AKCAjRge0WtBPp1eXPz-PM.roa
File: 5khp1AKCAjRge0WtBPp1eXPz-PM.roa (raw, json)
Hash identifier: 8mMtsiWUup206iV0D1XBXwODXS78spT1t2xX1Dl5/RY=
Subject key identifier: E6:48:69:D4:02:82:02:34:60:7B:45:AD:04:FA:75:79:73:F3:F8:F3
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0194228D32EC70A6791CCA590C9B94BE45A3
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/5khp1AKCAjRge0WtBPp1eXPz-PM.roa
Signing time: Wed 01 Jan 2025 15:47:46 +0000
ROA not before: Wed 01 Jan 2025 15:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59722
IP address blocks: 217.195.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:32:ec:70:a6:79:1c:ca:59:0c:9b:94:be:45:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 15:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e64869d402820234607b45ad04fa757973f3f8f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b6:97:d4:7e:96:ac:f2:88:44:30:d2:57:72:
f6:08:d0:be:0b:82:47:a0:5d:7c:e9:fa:af:6d:f3:
5c:69:7f:8c:81:e2:d9:58:cf:93:ca:aa:ec:a2:6d:
f7:66:ea:64:f5:8f:59:88:fb:01:4e:81:81:2b:49:
1c:7c:a0:15:f6:fd:4c:61:e4:1e:b1:dc:1b:da:21:
99:72:48:19:15:71:ec:cc:65:b0:42:ee:55:10:6f:
99:00:01:23:a9:e2:73:ae:ce:00:a2:d4:3a:e1:e9:
b0:43:70:d7:56:68:0d:25:3a:67:5e:4d:07:e2:85:
4b:ab:ae:97:39:de:51:8f:57:f9:28:92:4b:7c:82:
b1:22:01:69:88:87:d6:79:35:0a:f0:c5:13:a5:41:
84:40:af:5c:5e:51:fb:a5:8c:fc:9c:c3:ab:bb:cc:
0a:a2:40:e9:37:9a:35:43:88:c0:12:f3:5b:56:9a:
dd:6a:78:96:f6:64:51:98:0e:d8:09:69:32:68:ad:
5b:2f:85:61:89:f0:24:1f:e3:9b:ff:ed:e6:fe:46:
ee:10:59:40:f6:53:48:aa:9f:59:f4:03:c4:c1:61:
0b:0f:5d:52:a8:a9:d4:0b:65:5f:65:03:9c:9d:38:
62:eb:1e:b4:1c:38:73:93:ec:05:36:76:3b:32:30:
bf:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:48:69:D4:02:82:02:34:60:7B:45:AD:04:FA:75:79:73:F3:F8:F3
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/5khp1AKCAjRge0WtBPp1eXPz-PM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.195.76.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:8e:90:2b:e5:fd:30:a6:59:37:74:dd:09:99:80:2d:19:36:
5d:bd:1f:62:d1:e4:97:9e:1a:b1:11:30:c2:50:03:44:2a:29:
be:2c:cc:13:5b:78:a1:0f:b2:93:78:db:fd:72:61:5d:05:62:
7b:d0:65:85:f6:0e:3a:61:ff:eb:bf:81:19:fe:9d:8c:c5:68:
fb:08:10:7a:56:af:9a:71:57:3f:a3:c8:e4:0f:0c:21:3c:db:
31:a6:df:f6:1e:18:55:82:b3:54:0a:05:45:f2:63:ec:6a:22:
69:33:16:67:32:0f:a2:d1:f0:c6:ee:31:91:8b:25:1f:63:aa:
4d:9a:06:ed:f3:78:c2:ed:4a:f3:46:4b:40:c6:de:17:e3:23:
58:6e:9b:8a:34:18:96:11:95:1b:6b:c9:b2:6d:c7:74:7f:40:
eb:6c:53:dc:29:42:94:46:67:3c:e0:bd:8b:b8:2e:ac:f9:3d:
df:68:82:93:03:2a:53:82:96:0f:01:45:f9:e0:40:08:e7:a7:
7a:e5:ab:77:99:a9:64:56:13:4d:f1:0d:9f:b2:12:61:ce:20:
62:81:4a:14:01:f2:83:4f:2e:84:7b:d6:4a:7d:3f:01:77:b6:
da:05:e8:fb:f5:32:14:e4:c3:ff:14:38:6f:c0:55:90:64:a8:
0c:b1:8c:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:51:11 2025 by rpki-client