Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/eWcEnUOm0718hBzlbEt6voWmK30.roa
File: eWcEnUOm0718hBzlbEt6voWmK30.roa (raw, json)
Hash identifier: 3ZxroCS2+tZ/yD8MQzhHBhEGVuVAaeR24y8G+5xWxsE=
Subject key identifier: 79:67:04:9D:43:A6:D3:BD:7C:84:1C:E5:6C:4B:7A:BE:85:A6:2B:7D
Certificate issuer: /CN=eaeea20bbbdb9a5d1cdc7114e2af518e76b1426e
Certificate serial: 01942521CF5D64344C623DBD5B7EA0FDB838
Authority key identifier: EA:EE:A2:0B:BB:DB:9A:5D:1C:DC:71:14:E2:AF:51:8E:76:B1:42:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6u6iC7vbml0c3HEU4q9RjnaxQm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/eWcEnUOm0718hBzlbEt6voWmK30.roa
Signing time: Thu 02 Jan 2025 03:49:20 +0000
ROA not before: Thu 02 Jan 2025 03:49:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 2.57.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:cf:5d:64:34:4c:62:3d:bd:5b:7e:a0:fd:b8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaeea20bbbdb9a5d1cdc7114e2af518e76b1426e
Validity
Not Before: Jan 2 03:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7967049d43a6d3bd7c841ce56c4b7abe85a62b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:75:d9:c2:f5:9f:ec:ec:8b:68:96:0b:5f:64:
3e:f4:ab:c8:ca:24:cd:ba:73:08:bd:97:39:b2:ed:
70:ac:aa:50:ed:9a:7a:c8:1c:1d:f5:f4:b9:b7:70:
df:4f:f8:14:38:d1:e9:de:fc:e1:1c:d0:10:d3:2d:
8b:36:40:f5:d1:15:b9:0c:18:8c:59:60:63:dd:f1:
c9:63:88:48:25:a1:f5:3d:61:a4:0f:ab:0e:3a:34:
ba:1b:e2:2a:4b:cb:22:e2:51:d9:df:cb:ad:19:d4:
d8:ba:33:30:0e:3d:23:4b:64:00:8e:0c:1f:59:77:
dd:ef:af:06:8a:66:64:75:19:11:52:be:95:76:0e:
37:db:1b:55:ea:76:61:88:35:93:0b:e7:bf:3f:3b:
e7:fc:20:99:0b:3b:4a:75:36:a3:dd:5e:57:8f:3d:
e5:7e:86:3e:0f:3e:20:ef:52:29:90:9a:93:ba:ce:
31:5d:60:9c:22:19:14:e3:c1:a6:e8:92:c3:d3:a1:
b7:32:56:a5:fd:f1:a1:98:f5:cc:9c:b8:11:9e:8b:
fc:8d:f6:f3:7f:7a:f1:06:b7:83:85:9b:7b:0e:63:
59:89:8c:5f:ba:8c:d3:95:3a:47:1a:a7:70:0f:70:
b8:1e:bf:2a:0a:20:44:4f:8a:88:50:6c:aa:87:6f:
45:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:67:04:9D:43:A6:D3:BD:7C:84:1C:E5:6C:4B:7A:BE:85:A6:2B:7D
X509v3 Authority Key Identifier:
keyid:EA:EE:A2:0B:BB:DB:9A:5D:1C:DC:71:14:E2:AF:51:8E:76:B1:42:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6u6iC7vbml0c3HEU4q9RjnaxQm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/eWcEnUOm0718hBzlbEt6voWmK30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/6u6iC7vbml0c3HEU4q9RjnaxQm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.12.0/24
Signature Algorithm: sha256WithRSAEncryption
37:aa:1d:d9:76:61:87:0a:a5:d0:d4:de:6b:20:39:75:99:7d:
e2:dd:39:7b:64:2d:8d:6f:48:e3:d0:8b:93:c4:03:6d:23:50:
02:7c:7a:bc:87:b7:59:cd:27:23:4d:85:31:b8:d6:ac:ad:b2:
fc:2f:0b:01:88:b1:bf:ea:11:55:44:e2:0e:58:1b:83:48:4b:
54:c6:2f:54:fe:0c:ff:22:d0:8c:91:5f:a4:fb:b7:fe:28:41:
98:25:88:26:c7:1a:a3:23:62:23:93:80:1c:6b:7f:b3:ba:12:
bc:7e:e5:41:a3:15:b3:83:c5:a0:ae:6b:0d:a5:f4:04:15:73:
5e:11:d8:15:42:e7:5b:37:cd:2e:9f:4d:dd:d9:0e:ba:8c:4c:
e4:be:c6:6b:de:10:d2:ea:51:68:28:54:05:0f:82:f6:cb:63:
79:34:92:6c:93:cb:b8:0e:55:44:b2:5a:ba:f5:df:2f:12:e2:
df:6e:cb:6f:4d:98:54:f4:73:65:69:1c:75:b1:5b:06:3e:74:
4d:22:c5:a5:f7:bb:43:96:3b:4b:73:0f:cd:15:18:f8:25:a3:
c1:0c:2b:3a:b1:54:32:3f:1b:8e:3d:a7:56:2a:90:cd:80:e2:
f2:9a:72:7d:3c:5c:0b:62:b6:42:37:c2:e9:43:57:49:2f:92:
59:7f:d5:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:42:08 2025 by rpki-client