Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/NxsBpjDsWy9v0RWMdQHyTsw07lc.roa
File: NxsBpjDsWy9v0RWMdQHyTsw07lc.roa (raw, json)
Hash identifier: leheEhbDI4XfsGyTiSLU6x5xDwKD07q9ll4YmYgHG4Q=
Subject key identifier: 37:1B:01:A6:30:EC:5B:2F:6F:D1:15:8C:75:01:F2:4E:CC:34:EE:57
Certificate issuer: /CN=eea02b197dbaf7deb74e0a27d9d4ecd3fae1e8ed
Certificate serial: 019427B695923BB060697564CEFD0AF46528
Authority key identifier: EE:A0:2B:19:7D:BA:F7:DE:B7:4E:0A:27:D9:D4:EC:D3:FA:E1:E8:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7qArGX269963Tgon2dTs0_rh6O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/NxsBpjDsWy9v0RWMdQHyTsw07lc.roa
Signing time: Thu 02 Jan 2025 15:51:04 +0000
ROA not before: Thu 02 Jan 2025 15:51:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42846
IP address blocks: 104.247.160.0/24 maxlen: 24
104.247.161.0/24 maxlen: 24
104.247.162.0/24 maxlen: 24
104.247.163.0/24 maxlen: 24
104.247.164.0/24 maxlen: 24
104.247.165.0/24 maxlen: 24
104.247.166.0/24 maxlen: 24
104.247.167.0/24 maxlen: 24
104.247.168.0/24 maxlen: 24
104.247.169.0/24 maxlen: 24
104.247.173.0/24 maxlen: 24
104.247.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:95:92:3b:b0:60:69:75:64:ce:fd:0a:f4:65:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eea02b197dbaf7deb74e0a27d9d4ecd3fae1e8ed
Validity
Not Before: Jan 2 15:51:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=371b01a630ec5b2f6fd1158c7501f24ecc34ee57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6f:9d:0a:a8:ca:d3:69:8f:fe:c1:3b:3b:12:
4b:17:3c:cf:a4:f7:ab:7c:ae:e9:28:f9:86:f7:67:
67:d8:bc:96:de:46:d1:77:0c:cf:49:d4:6c:f5:5f:
4d:64:e8:55:48:2f:7d:f8:03:2c:4c:c0:d1:09:9b:
e2:ad:48:20:b5:8e:59:77:48:5a:9f:de:bf:66:ae:
a4:13:78:c9:ee:d1:8e:d0:63:5c:c1:10:45:65:e6:
1d:6e:c1:1a:aa:e3:b6:7d:c6:0c:ed:27:df:33:8a:
73:00:27:c9:12:38:01:5c:67:01:2e:46:38:6a:2f:
4b:7f:12:b2:a7:db:3b:dd:ef:ed:91:0b:9f:27:b4:
77:cf:00:b3:6a:34:09:d3:18:00:c2:6b:43:ed:eb:
94:c7:a8:f1:d6:32:a0:7b:2a:f1:05:03:b2:f2:1f:
49:cc:90:d0:85:94:01:f1:25:26:aa:e5:08:33:61:
8d:75:b9:a3:fb:3a:b3:a7:c2:47:de:c9:d7:76:ed:
0b:6f:39:46:fc:13:c1:f4:dd:ab:fa:b9:ac:51:69:
96:72:a0:16:ad:08:f8:bc:14:da:93:7d:99:16:b1:
1f:c2:44:95:b2:1d:7f:45:c3:34:e9:70:3a:f7:ab:
2a:25:e7:42:ac:ea:af:c9:95:9e:d8:5d:4f:c1:d8:
65:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:1B:01:A6:30:EC:5B:2F:6F:D1:15:8C:75:01:F2:4E:CC:34:EE:57
X509v3 Authority Key Identifier:
keyid:EE:A0:2B:19:7D:BA:F7:DE:B7:4E:0A:27:D9:D4:EC:D3:FA:E1:E8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7qArGX269963Tgon2dTs0_rh6O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/NxsBpjDsWy9v0RWMdQHyTsw07lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/7qArGX269963Tgon2dTs0_rh6O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.247.160.0-104.247.169.255
104.247.173.0/24
104.247.179.0/24
Signature Algorithm: sha256WithRSAEncryption
21:46:44:95:c7:fb:82:c0:52:86:29:c0:9a:db:3b:57:76:5b:
b2:9f:b7:16:0f:19:ea:17:f7:e1:38:cc:05:fe:74:50:f3:6a:
66:e1:92:1a:66:21:f7:6f:e1:16:4f:af:0b:b5:30:29:20:09:
b9:c7:ef:59:ad:38:9d:90:fb:47:17:1a:f9:59:ea:b8:ad:70:
ef:2a:96:81:da:c0:60:7d:ce:1a:cd:dc:68:70:d2:55:c6:91:
53:0e:e6:bf:d9:d2:15:ba:10:28:00:1e:47:df:93:ae:81:45:
0f:60:c0:6e:8c:32:b2:66:ea:5a:6f:27:66:27:f9:2e:d3:06:
80:64:66:fc:9e:7d:4a:c2:37:96:a7:c8:4c:5f:d1:dc:3b:75:
12:57:8e:29:db:69:70:6f:63:35:79:2d:99:06:61:38:a7:2e:
8a:6c:00:5d:34:e1:4d:a1:d8:c8:7d:5c:c5:91:6a:51:5c:dc:
c4:a5:fa:4a:02:07:f5:54:7d:c1:88:92:04:36:08:fc:e8:84:
ae:47:75:9c:15:5d:8e:d2:7d:8e:27:f5:2b:0f:cb:4e:c7:67:
8f:cd:21:08:c2:ea:c2:89:cf:0a:76:b6:e8:16:6c:d7:05:72:
24:e2:3a:b7:62:48:21:f5:90:c1:2e:07:9e:6d:f4:6e:18:27:
46:79:88:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:37:58 2025 by rpki-client