Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/7XoxbsiH0tvuamwOaZJkHsbncU8.roa
File: 7XoxbsiH0tvuamwOaZJkHsbncU8.roa (raw, json)
Hash identifier: eOLDYEBs+ePiFOo04IA8xxSpoLseLj4knNzwy/AuO7c=
Subject key identifier: ED:7A:31:6E:C8:87:D2:DB:EE:6A:6C:0E:69:92:64:1E:C6:E7:71:4F
Certificate issuer: /CN=f1b15e77af4edde11192c6fecd50b21cd379d421
Certificate serial: 01942144576A470E3341217AF9B166813025
Authority key identifier: F1:B1:5E:77:AF:4E:DD:E1:11:92:C6:FE:CD:50:B2:1C:D3:79:D4:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bFed69O3eERksb-zVCyHNN51CE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/7XoxbsiH0tvuamwOaZJkHsbncU8.roa
Signing time: Wed 01 Jan 2025 09:48:34 +0000
ROA not before: Wed 01 Jan 2025 09:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59576
IP address blocks: 176.241.252.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:57:6a:47:0e:33:41:21:7a:f9:b1:66:81:30:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1b15e77af4edde11192c6fecd50b21cd379d421
Validity
Not Before: Jan 1 09:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed7a316ec887d2dbee6a6c0e6992641ec6e7714f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d6:af:50:76:63:f9:a8:04:d1:41:20:d2:01:
2c:35:1b:a7:1e:57:3f:f3:a3:15:c1:39:37:36:8f:
95:21:48:50:88:f9:ca:90:22:c6:d4:64:b5:18:ce:
fa:3f:32:91:ed:26:25:99:be:d7:b6:69:92:38:27:
a1:da:aa:76:36:f6:6b:b4:1b:4e:15:7f:60:ec:91:
24:db:8a:8d:6d:10:8e:4f:4f:fe:3f:8a:2d:91:ce:
67:84:33:f4:a9:ae:8a:f2:a7:fb:23:75:05:d5:9a:
84:be:04:e6:21:99:84:c0:ee:1b:ef:72:55:43:da:
6b:f2:7e:00:f5:25:a9:ab:cd:4d:b3:b7:4f:ef:76:
73:65:1f:0d:df:07:08:6b:b8:5c:24:68:64:39:bc:
73:f5:1d:9c:f8:46:0e:ac:3e:3e:0f:a2:92:99:d1:
9e:b8:47:d8:0d:3b:f2:8e:4e:44:1a:8d:38:d2:60:
50:35:30:29:45:97:ec:80:af:8d:b3:55:27:6d:73:
bf:b2:f7:37:c9:11:4a:c0:73:22:34:24:4c:0f:2e:
c5:97:60:7d:3c:55:58:a6:bc:0f:2c:2f:96:30:8c:
3f:58:21:c9:4e:b5:97:e9:9b:0f:e1:57:71:b4:9d:
1f:a9:50:30:b3:31:3c:de:f1:ff:17:dd:19:92:63:
7c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:7A:31:6E:C8:87:D2:DB:EE:6A:6C:0E:69:92:64:1E:C6:E7:71:4F
X509v3 Authority Key Identifier:
keyid:F1:B1:5E:77:AF:4E:DD:E1:11:92:C6:FE:CD:50:B2:1C:D3:79:D4:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bFed69O3eERksb-zVCyHNN51CE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/7XoxbsiH0tvuamwOaZJkHsbncU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/8bFed69O3eERksb-zVCyHNN51CE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.241.252.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:c1:31:62:8a:b2:5c:f5:48:db:80:e3:4f:67:13:d2:32:c3:
a8:36:68:84:17:af:02:49:30:ca:b0:94:f0:bc:d5:dc:12:53:
7f:26:a5:a5:c4:1b:57:9d:b8:88:0c:ca:33:69:b4:1f:e0:74:
42:30:ff:f8:79:d7:24:8e:26:b3:13:9c:24:73:d8:7e:06:e0:
53:85:3a:83:f2:a5:56:1d:23:4a:e5:e7:ed:5e:4b:1c:d1:dd:
d9:5f:b8:36:50:c8:69:4c:fe:a0:c6:42:fe:5a:88:b4:fc:07:
95:f2:1d:2e:1b:17:c4:9f:c4:dc:2c:b4:b4:17:06:26:f5:8e:
e4:b6:d4:40:b9:c3:85:cb:55:cb:be:de:8a:15:51:77:05:6a:
48:8e:ea:e1:98:12:f6:21:bf:0c:da:9d:02:9a:1f:c8:0a:e0:
d7:c4:f9:84:cd:6d:7a:1c:0c:46:10:e3:ef:b8:b4:21:54:91:
a2:6e:f0:06:a0:cc:b8:00:48:d9:2f:00:99:bd:16:d7:aa:0e:
4d:b2:aa:e0:65:1c:b5:b4:a5:e3:ba:7e:88:ff:7d:8c:ca:bc:
0d:7b:5a:88:7e:7c:36:52:ab:96:1f:ad:76:04:96:1c:e0:92:
5c:81:f9:c4:60:bc:19:b6:35:42:55:0f:7f:cf:fe:41:25:e9:
ee:30:90:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:17:18 2025 by rpki-client