Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/VYdiSMUQLdDbmv2P361VJTQ4iNw.roa
File: VYdiSMUQLdDbmv2P361VJTQ4iNw.roa (raw, json)
Hash identifier: aDG5V9Cf1wVZyIYvSKFbOdVZC2nfBzKtFvetSMNMeeM=
Subject key identifier: 55:87:62:48:C5:10:2D:D0:DB:9A:FD:8F:DF:AD:55:25:34:38:88:DC
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 019420D5983A78887D8149035EFEACF3B6E3
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/VYdiSMUQLdDbmv2P361VJTQ4iNw.roa
Signing time: Wed 01 Jan 2025 07:47:36 +0000
ROA not before: Wed 01 Jan 2025 07:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41726
IP address blocks: 212.70.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:98:3a:78:88:7d:81:49:03:5e:fe:ac:f3:b6:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Jan 1 07:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55876248c5102dd0db9afd8fdfad5525343888dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bc:55:59:da:53:ae:18:ca:91:1f:e5:fb:83:
a1:1d:ef:b0:08:57:54:5f:00:6b:2d:54:3e:62:67:
af:a3:81:ad:f8:dc:c2:f7:04:ad:fb:4e:15:65:60:
b4:c2:d0:b9:66:3d:a4:a0:a4:44:10:6d:47:d4:72:
ff:8d:0f:dd:c4:0c:8c:56:b5:e2:f0:19:4c:0f:ea:
4a:02:af:74:83:d0:5a:60:10:df:fb:c4:6e:01:fd:
8d:ea:fe:fe:e8:6b:f4:6d:89:ff:c4:4e:27:58:41:
aa:f8:7c:e5:3d:45:7b:8b:b1:47:d1:a7:35:e3:83:
d2:8e:6f:81:db:f4:a4:21:75:59:01:2e:cc:dc:f7:
25:99:d2:1a:09:24:20:c6:4f:9f:40:a3:9f:bd:32:
ff:75:4f:dd:4e:34:83:ad:32:2a:57:ed:48:02:f9:
48:46:12:02:d8:96:11:40:c2:fc:77:1f:43:42:dd:
28:5c:97:5c:4c:94:b1:12:7d:94:4b:0f:a2:15:28:
91:e5:ea:84:4b:17:1c:55:3a:00:40:60:d0:d5:a0:
f4:af:d2:80:8a:d4:a5:6a:2c:ef:09:1e:1d:fe:4a:
db:0e:dd:50:36:8d:20:26:7f:2b:3b:ff:d1:74:77:
10:7e:dd:f8:8a:52:87:c3:e1:7f:8c:b2:94:7e:01:
3b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:87:62:48:C5:10:2D:D0:DB:9A:FD:8F:DF:AD:55:25:34:38:88:DC
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/VYdiSMUQLdDbmv2P361VJTQ4iNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.70.184.0/24
Signature Algorithm: sha256WithRSAEncryption
76:65:e9:6b:d8:cc:6c:91:6a:4a:70:1d:1c:82:d3:22:44:b5:
45:30:dd:b6:db:d6:a4:78:ef:eb:f1:2d:51:9c:22:c8:1a:b5:
8a:cc:54:5c:04:3f:0d:5e:df:a6:3f:3b:fd:af:94:5c:e5:b8:
2e:64:21:a8:38:af:84:f9:9e:d1:3c:25:c9:28:d7:0b:13:20:
9b:f8:77:e1:ca:08:fc:60:fb:1c:3c:18:4f:73:7e:2b:83:5d:
a2:e2:36:71:ad:07:a0:38:e2:47:e0:69:d0:09:59:42:e0:39:
f6:af:bc:2f:17:06:35:28:eb:0c:d7:45:b6:91:12:24:50:cd:
10:c9:10:da:3b:af:23:27:1b:bc:22:ac:2b:a9:da:58:dc:8b:
ef:d6:cb:c9:8c:08:9c:81:d5:fd:0b:e5:f6:9e:2b:80:f2:ce:
1f:41:00:f4:80:e5:0b:58:ee:d1:0f:52:4c:6a:30:a2:1f:56:
21:a4:d3:66:5d:ab:ad:4d:17:31:75:f0:06:38:d0:bd:4d:a8:
09:20:36:36:8d:91:dd:9b:8d:88:db:77:02:c1:fe:c9:ad:63:
f4:cf:74:ea:cd:28:62:ea:53:78:e1:37:cd:a6:f5:9f:cb:4d:
4f:d8:d9:11:a2:ae:52:4c:d5:09:02:b9:74:de:41:d7:4c:29:
ee:0a:67:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:05:59 2025 by rpki-client