Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/kBaE1jHCbO0NZSYgeZ58_AVU_2s.roa
File: kBaE1jHCbO0NZSYgeZ58_AVU_2s.roa (raw, json)
Hash identifier: UgP1XEYyoWbvprLUeqNkyvq961rurgqnzeP3q+NzEPY=
Subject key identifier: 90:16:84:D6:31:C2:6C:ED:0D:65:26:20:79:9E:7C:FC:05:54:FF:6B
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 019420D5DCFABFF7F58F3362043C76BB8FDB
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/kBaE1jHCbO0NZSYgeZ58_AVU_2s.roa
Signing time: Wed 01 Jan 2025 07:47:54 +0000
ROA not before: Wed 01 Jan 2025 07:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49981
IP address blocks: 164.215.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:dc:fa:bf:f7:f5:8f:33:62:04:3c:76:bb:8f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 07:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=901684d631c26ced0d652620799e7cfc0554ff6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:77:9a:dd:59:40:ae:7a:3f:83:e1:91:50:3b:
64:b3:5a:b1:bb:34:c7:06:31:82:50:ec:ea:9c:e7:
1e:02:97:23:45:49:79:92:fc:d7:23:c0:5e:f5:bf:
79:3e:1d:0d:e3:91:37:aa:48:b1:55:93:07:b2:fe:
93:02:06:af:9b:33:63:ee:d2:d8:ec:1f:08:57:0f:
a4:4a:cd:19:1f:7a:e1:ab:64:34:5f:48:6a:a3:e2:
82:2c:89:46:db:d0:d5:05:16:86:e8:5c:62:e4:6a:
e5:cd:f0:3a:12:b0:4d:f8:e3:84:53:0f:b9:d0:62:
35:81:61:42:b8:f0:dd:b8:eb:25:6f:10:7b:82:60:
b5:ed:58:f3:1d:c6:f1:47:fb:29:06:eb:f6:9f:52:
5c:92:0d:8c:e3:5e:28:36:fd:ee:28:d3:f8:e6:bc:
8f:36:c9:90:43:45:b7:12:0e:ee:3b:d7:f1:40:6c:
08:11:66:e2:b0:d8:bb:30:cc:17:6e:2a:55:e8:5a:
04:6a:4c:61:c4:39:8d:dd:12:10:ed:50:3f:f6:fe:
67:1e:2d:e3:b8:ef:03:c2:b6:8f:a5:74:3e:95:6c:
d0:f6:83:64:38:b7:f4:e2:20:a0:d8:6f:27:73:70:
02:e3:3d:8e:21:19:c6:4a:28:43:53:14:1d:47:6b:
31:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:16:84:D6:31:C2:6C:ED:0D:65:26:20:79:9E:7C:FC:05:54:FF:6B
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/kBaE1jHCbO0NZSYgeZ58_AVU_2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.97.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:0a:f3:5f:b9:ec:a4:01:14:a9:0d:93:2a:ca:74:2a:df:51:
7e:ad:20:59:b6:dc:62:01:05:31:63:08:76:ff:c8:a0:a0:96:
5c:b3:1c:36:30:cb:ac:c0:dd:0b:a8:70:94:94:15:45:0d:33:
aa:00:28:83:c0:5b:1a:fa:ac:4c:cd:3f:e8:a8:99:ad:22:97:
67:c0:d1:e2:5e:e5:2f:79:38:f5:ab:13:63:5f:4c:6a:9c:ff:
15:28:11:e1:a0:f8:70:f3:f8:7b:ff:c4:11:1a:59:31:37:cc:
23:df:39:07:98:9f:18:1a:cc:c5:92:b1:e0:c2:e2:92:91:c5:
e4:36:df:35:14:95:af:a6:c8:39:54:8c:b3:f1:15:d3:c7:d8:
94:d4:e8:fa:97:c8:d1:03:44:1f:40:a9:e0:e9:51:9e:bc:cc:
2f:21:60:10:0d:88:ef:3c:86:0a:30:0f:1f:90:e4:83:f4:4f:
4b:a1:e4:88:d2:dd:0b:46:87:38:6b:3e:04:7d:60:e6:cf:45:
fb:88:c7:8b:05:f0:cd:4d:9b:48:8c:6e:02:00:3e:84:ce:09:
ad:c3:73:f6:47:dc:02:e9:37:e3:64:ee:d9:c2:29:10:4b:cc:
d0:7c:aa:e8:71:b2:31:50:fe:b7:69:6c:74:6e:70:ef:a2:de:
45:8b:71:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:37 2025 by rpki-client