Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/eec97c-8491-476c-9d24-877fc051ecbf/1/bO8dqH6XOzCJVb7wrK5__R9TMUM.roa
File: bO8dqH6XOzCJVb7wrK5__R9TMUM.roa (raw, json)
Hash identifier: y0RUYyg3f8bandrJpR6+yVJmBf/noH9gcAjqwkW9SWA=
Subject key identifier: 6C:EF:1D:A8:7E:97:3B:30:89:55:BE:F0:AC:AE:7F:FD:1F:53:31:43
Certificate issuer: /CN=ad9dabc08c05f1abcca822bb28a9b1b9da0418f7
Certificate serial: 018964C056D6AD5A64A36F01D7A72B48BF1E
Authority key identifier: AD:9D:AB:C0:8C:05:F1:AB:CC:A8:22:BB:28:A9:B1:B9:DA:04:18:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZ2rwIwF8avMqCK7KKmxudoEGPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/eec97c-8491-476c-9d24-877fc051ecbf/1/bO8dqH6XOzCJVb7wrK5__R9TMUM.roa
Signing time: Mon 17 Jul 2023 16:47:53 +0000
ROA not before: Mon 17 Jul 2023 16:47:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59729
IP address blocks: 5.42.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:56:d6:ad:5a:64:a3:6f:01:d7:a7:2b:48:bf:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9dabc08c05f1abcca822bb28a9b1b9da0418f7
Validity
Not Before: Jul 17 16:47:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cef1da87e973b308955bef0acae7ffd1f533143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6f:5d:6d:fa:0f:d6:6a:88:a7:19:ad:d3:61:
63:14:84:13:2c:19:b2:6a:22:f4:11:44:0c:a6:28:
c5:6c:54:2c:14:a0:44:d5:02:c0:1f:93:01:ee:02:
78:88:64:2c:4d:74:fc:a2:e8:52:8e:03:a3:34:c1:
29:c0:27:07:ae:85:cb:c4:ab:69:f4:f6:ae:c9:56:
58:1d:ba:ae:6b:6f:d1:f0:e7:f3:93:85:a8:9a:60:
45:06:aa:07:93:9b:dc:b1:31:81:aa:65:98:d0:95:
37:30:81:77:4c:ed:57:46:43:b4:00:ad:fa:51:ce:
0c:d8:18:37:1e:2b:a3:67:bb:3d:81:41:a2:f9:7f:
a0:14:94:16:7f:a1:81:50:3e:da:8a:4d:ef:db:02:
c6:aa:28:3b:57:3b:21:2c:3a:cf:0b:82:9f:55:f3:
c6:ff:a6:cb:7c:6f:f7:88:5d:27:81:43:86:6d:68:
8c:59:cb:89:a1:3d:ef:18:35:c8:e8:c5:e2:90:1f:
d6:9c:2e:19:96:cc:39:16:64:92:82:23:c3:24:1f:
b4:47:ff:28:46:ac:58:f5:d4:02:88:df:a6:ab:68:
af:ae:8e:eb:36:fa:75:6a:81:7e:cb:88:05:bf:fb:
e5:82:4d:8d:e8:ee:49:27:c3:0e:23:3e:d0:c4:16:
4e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:EF:1D:A8:7E:97:3B:30:89:55:BE:F0:AC:AE:7F:FD:1F:53:31:43
X509v3 Authority Key Identifier:
keyid:AD:9D:AB:C0:8C:05:F1:AB:CC:A8:22:BB:28:A9:B1:B9:DA:04:18:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZ2rwIwF8avMqCK7KKmxudoEGPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/eec97c-8491-476c-9d24-877fc051ecbf/1/bO8dqH6XOzCJVb7wrK5__R9TMUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/eec97c-8491-476c-9d24-877fc051ecbf/1/rZ2rwIwF8avMqCK7KKmxudoEGPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.195.0/24
Signature Algorithm: sha256WithRSAEncryption
78:63:49:20:40:e0:2a:86:d0:a5:60:36:f4:48:f8:82:31:35:
a4:75:04:39:6b:c8:b5:55:9d:90:42:aa:24:40:3b:a0:04:e0:
91:58:71:54:cf:cc:d3:c0:15:fe:3a:35:3b:70:4b:2a:3d:66:
c8:cb:b5:3b:b6:1c:df:7b:68:f6:02:ad:53:f0:f3:45:54:e4:
65:8b:1a:05:db:c0:b9:9a:e4:78:17:38:53:b5:1d:d7:26:c6:
47:e5:0f:38:28:3f:5b:15:12:72:c3:52:e7:ba:54:84:b0:a7:
b2:cc:6c:4a:c3:f4:fd:48:32:68:48:d4:38:eb:02:99:58:9e:
dc:5b:e6:dd:ee:29:8b:3a:85:fa:62:f5:48:53:33:80:93:10:
3a:61:17:d2:cd:b2:90:fe:79:49:31:5c:2c:60:a2:e6:b9:ac:
fc:16:ad:9c:02:0d:ef:55:8f:06:83:65:22:a9:86:ec:4a:54:
11:b5:9b:f0:d5:81:13:93:8d:88:8e:8d:ee:81:be:79:e3:45:
a0:ad:3f:a5:27:64:93:47:d5:c6:cf:ab:d7:49:10:72:57:26:
cb:f7:f3:89:3a:00:92:9e:37:22:0f:48:2e:36:13:d5:6c:ac:
0d:a6:e3:a8:d7:dd:72:95:de:1c:59:e5:67:7e:b9:2f:62:66:
30:9b:b8:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 02:23:55 2025 by rpki-client