Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/70f358-ba41-452f-8640-81dfdbd64c01/1/kPra9ywf4J8rMTQHQKmgaYekMR8.roa
File: kPra9ywf4J8rMTQHQKmgaYekMR8.roa (raw, json)
Hash identifier: pQm79eij9aSm0Vqm5Iw5nJFCBuQwRtYRXVxYr4KGutU=
Subject key identifier: 90:FA:DA:F7:2C:1F:E0:9F:2B:31:34:07:40:A9:A0:69:87:A4:31:1F
Certificate issuer: /CN=7ba513f38cceef4bc6332099a2d4fa08c25a8403
Certificate serial: 0189654A8D4A6FA2B4A3F7960D5E3063AA59
Authority key identifier: 7B:A5:13:F3:8C:CE:EF:4B:C6:33:20:99:A2:D4:FA:08:C2:5A:84:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6UT84zO70vGMyCZotT6CMJahAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/70f358-ba41-452f-8640-81dfdbd64c01/1/kPra9ywf4J8rMTQHQKmgaYekMR8.roa
Signing time: Mon 17 Jul 2023 19:18:51 +0000
ROA not before: Mon 17 Jul 2023 19:18:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 176.116.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:4a:8d:4a:6f:a2:b4:a3:f7:96:0d:5e:30:63:aa:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ba513f38cceef4bc6332099a2d4fa08c25a8403
Validity
Not Before: Jul 17 19:18:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90fadaf72c1fe09f2b31340740a9a06987a4311f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ed:70:ab:66:24:ae:bb:e2:d1:27:d2:1b:95:
81:94:9f:1e:c1:a8:21:58:2f:36:65:e7:ea:4d:1f:
04:44:e4:19:7e:b8:1a:5e:bc:e0:3f:da:a7:3f:4d:
6b:f8:15:7f:7d:80:03:02:02:cd:2e:fe:02:b2:5a:
a7:e0:62:2c:d4:d2:26:4f:24:b4:c7:c9:4e:e1:a3:
84:76:ea:10:1b:64:9d:4f:c2:df:43:01:81:ae:e8:
01:8d:96:05:e3:4b:f8:79:ac:b5:6c:61:f8:ab:ab:
80:25:da:15:f6:03:bf:f2:52:bc:85:b6:3a:ce:8c:
14:11:b0:3c:33:c8:40:0a:18:f2:ed:10:ef:cb:73:
8f:1d:3c:be:9d:a4:6b:45:c2:ee:76:68:34:27:18:
7d:2f:87:3c:f1:5f:b0:07:72:ef:3f:5d:a7:25:01:
b4:bb:6b:8a:43:04:8f:20:9b:7f:6f:36:77:c3:c5:
35:d5:80:4d:ed:5f:8e:e0:e8:ed:58:2c:6d:ff:3e:
2d:13:db:5b:2c:62:79:b5:d1:6a:9c:37:dd:8c:62:
20:bc:0e:f5:2c:74:dd:60:fd:88:f8:fb:aa:68:1f:
34:eb:1b:26:bd:ea:21:6d:63:c5:2c:90:de:0a:83:
94:dc:f8:be:ec:8f:ec:bc:fe:c4:4d:97:cd:ac:06:
58:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FA:DA:F7:2C:1F:E0:9F:2B:31:34:07:40:A9:A0:69:87:A4:31:1F
X509v3 Authority Key Identifier:
keyid:7B:A5:13:F3:8C:CE:EF:4B:C6:33:20:99:A2:D4:FA:08:C2:5A:84:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6UT84zO70vGMyCZotT6CMJahAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/70f358-ba41-452f-8640-81dfdbd64c01/1/kPra9ywf4J8rMTQHQKmgaYekMR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/70f358-ba41-452f-8640-81dfdbd64c01/1/e6UT84zO70vGMyCZotT6CMJahAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.24.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:1d:60:7c:45:02:7a:3f:cb:a4:17:64:45:ba:12:1b:e8:51:
d5:62:48:62:4a:17:31:73:f5:0d:e3:77:e0:e3:7e:d3:83:ea:
d6:fd:08:00:3a:a5:20:4c:fe:ff:d9:0a:42:3d:89:03:ed:62:
a6:ef:6d:e5:eb:30:f9:e4:2d:07:10:0e:e2:b2:7d:79:60:05:
8d:37:8d:1c:39:96:64:b8:af:a2:e6:76:b8:d2:f0:82:77:69:
a5:87:1c:80:e7:53:24:c7:e9:ee:61:b7:5c:7b:d3:db:b7:5f:
bc:61:bb:f2:9a:25:9b:4a:c2:ca:b0:42:c5:e9:3f:7e:8d:43:
8f:f9:d9:e9:bd:03:81:ad:9e:ee:62:c3:95:4c:ed:75:45:53:
f4:e2:c4:b3:05:94:75:c3:63:f5:28:1b:93:90:84:5a:67:a6:
2c:bc:a4:49:d3:92:64:f1:86:12:c2:74:c6:44:cf:e4:22:1b:
11:92:68:16:27:60:d5:4f:f0:6f:bf:4a:3f:84:61:9a:f9:2e:
72:b8:cc:89:84:4a:b2:fa:47:db:83:1f:b2:4a:b1:19:2d:12:
86:26:bc:18:68:bb:59:0d:ab:7c:cf:b2:58:de:a3:25:cb:83:
d7:04:fe:35:b5:88:18:62:28:e9:57:40:9e:db:ee:ef:ed:91:
5d:70:91:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 10:43:08 2025 by rpki-client