Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/Rl9152Qvb_u7j8K6moXvloqlxuw.roa
File: Rl9152Qvb_u7j8K6moXvloqlxuw.roa (raw, json)
Hash identifier: 7VxgCsm28hyqe3FM8bfzznGaU0K/XnvaJIfEnQlGvZI=
Subject key identifier: 46:5F:75:E7:64:2F:6F:FB:BB:8F:C2:BA:9A:85:EF:96:8A:A5:C6:EC
Certificate issuer: /CN=49c403d43b5f38fca2119cd1409a92763edefe71
Certificate serial: 01942220013D0D2BF4D7CC02D69777D251C9
Authority key identifier: 49:C4:03:D4:3B:5F:38:FC:A2:11:9C:D1:40:9A:92:76:3E:DE:FE:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/Rl9152Qvb_u7j8K6moXvloqlxuw.roa
Signing time: Wed 01 Jan 2025 13:48:30 +0000
ROA not before: Wed 01 Jan 2025 13:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 267708
IP address blocks: 176.57.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:01:3d:0d:2b:f4:d7:cc:02:d6:97:77:d2:51:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49c403d43b5f38fca2119cd1409a92763edefe71
Validity
Not Before: Jan 1 13:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=465f75e7642f6ffbbb8fc2ba9a85ef968aa5c6ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:48:91:29:5e:b4:74:a6:ce:02:78:14:53:b2:
51:93:41:81:22:7a:4c:cb:ac:dd:f3:92:2f:3d:18:
08:4b:ff:ff:f1:5e:f7:a8:f1:71:9d:b5:ee:aa:71:
e2:6b:03:78:1a:30:f7:5d:e2:94:c5:aa:1c:bb:09:
37:db:87:12:a1:52:92:0f:f1:bf:8d:c4:e0:82:6b:
a9:97:26:44:87:b9:3d:21:8e:f8:bb:fe:b4:a1:dd:
ea:bf:de:6a:55:e4:85:e2:cb:a7:a5:c7:34:01:31:
27:c3:c6:3d:02:73:36:4c:2b:11:2d:ad:ef:1f:97:
26:15:22:aa:51:1e:47:f5:65:4c:e4:35:52:51:01:
c5:e5:3a:76:cb:f5:bc:70:a4:69:9a:0a:06:ae:87:
66:26:92:d9:81:97:d7:7e:3b:d4:4d:ad:4b:4e:76:
58:1b:66:6f:93:77:88:b1:88:3a:8c:41:60:ad:92:
d4:97:7e:c4:43:60:dc:1f:e5:9d:3e:ed:cc:8e:2b:
09:9b:e6:78:25:a4:bb:71:19:96:24:13:d5:6a:6f:
f9:35:88:fd:1a:49:61:5e:d9:32:d6:8e:0f:e9:ae:
b8:f4:b4:f3:d1:c6:b3:1b:86:59:4f:ce:84:fc:0e:
c6:c4:68:c1:3b:46:81:db:19:1c:1b:d8:bd:af:24:
5f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:5F:75:E7:64:2F:6F:FB:BB:8F:C2:BA:9A:85:EF:96:8A:A5:C6:EC
X509v3 Authority Key Identifier:
keyid:49:C4:03:D4:3B:5F:38:FC:A2:11:9C:D1:40:9A:92:76:3E:DE:FE:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/Rl9152Qvb_u7j8K6moXvloqlxuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.207.0/24
Signature Algorithm: sha256WithRSAEncryption
90:a8:0e:39:ce:df:0b:47:ba:45:e1:52:51:32:3a:ae:eb:43:
30:01:37:22:46:31:a9:80:77:26:2d:03:32:0d:e2:57:1c:f5:
4a:87:60:3c:be:6f:b1:d5:8f:a4:db:dc:b3:68:3a:c7:88:94:
ff:86:06:5b:11:c8:ca:39:81:62:c8:95:4c:71:68:55:96:01:
f3:d4:36:5e:41:e0:06:8b:14:0b:69:c8:40:e8:d4:c9:74:32:
40:ce:a1:2d:03:f8:f5:95:f3:0e:10:60:e2:53:3a:31:64:47:
3c:ca:85:81:b0:33:d7:77:81:ec:a2:43:43:46:b7:c3:81:ad:
87:9a:d6:00:4f:31:13:aa:7b:d4:bf:3d:b1:24:98:c8:6f:41:
29:2a:43:54:3c:6d:a9:65:80:71:2d:99:2d:39:94:e6:b1:3a:
03:e3:7d:8d:e0:5e:c5:b3:bc:ff:f3:38:67:ed:fd:17:91:8b:
d2:a8:78:4a:20:65:00:53:26:0e:57:1d:da:f2:3a:d2:2e:a3:
3f:fd:5e:6d:0a:a7:f4:5c:c0:8b:64:6a:6a:70:18:81:2a:cb:
26:37:50:66:ce:64:d0:77:8a:5b:e7:ee:ce:d1:86:16:60:d1:
f9:35:45:3b:91:4b:69:ec:09:e4:08:84:39:8c:97:51:c2:c8:
50:43:9b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:05:04 2025 by rpki-client