Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/BrbJs2W1L8CgQ667hbYwPSiYqf4.roa
File: BrbJs2W1L8CgQ667hbYwPSiYqf4.roa (raw, json)
Hash identifier: kg2Pu8GEyGU9iMycEfUvnxZaIjWGeC0xWqoUTEpBjGI=
Subject key identifier: 06:B6:C9:B3:65:B5:2F:C0:A0:43:AE:BB:85:B6:30:3D:28:98:A9:FE
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 0185713099AC4D5CF3C86C5283A3D7EF4B18
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/BrbJs2W1L8CgQ667hbYwPSiYqf4.roa
Signing time: Mon 02 Jan 2023 06:34:47 +0000
ROA not before: Mon 02 Jan 2023 06:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8289
IP address blocks: 5.157.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:30:99:ac:4d:5c:f3:c8:6c:52:83:a3:d7:ef:4b:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Jan 2 06:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06b6c9b365b52fc0a043aebb85b6303d2898a9fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:03:bc:17:fb:04:89:40:e3:a9:b0:a6:90:8f:
10:be:db:74:50:55:ae:60:41:d4:ad:d5:b0:21:a3:
cc:5c:03:6a:f6:56:6a:99:7d:a6:30:d2:97:a7:74:
c0:df:ed:3a:47:66:34:09:06:ce:3a:50:c0:1c:4d:
b9:42:70:07:42:de:a5:25:86:bb:8c:7c:ec:0b:e1:
5b:99:9a:30:0a:61:ed:03:ae:7f:aa:59:6d:99:aa:
80:37:75:f7:49:c7:65:c3:a7:4f:94:da:11:31:c7:
98:f7:a2:34:52:49:7b:4c:d6:2c:57:a7:8f:bd:b3:
95:9e:84:11:9d:4c:7b:9e:40:c1:7a:c8:ef:5c:c0:
cf:fc:07:e8:b2:93:75:26:61:70:8e:00:96:06:e6:
ba:39:37:0f:dc:20:0f:d1:94:0d:8d:16:63:1c:6c:
94:65:78:14:85:46:ca:b1:ca:ec:60:da:51:cd:33:
95:76:1d:00:64:b3:8c:c4:f3:fe:1d:c0:e6:b2:a1:
50:2a:5e:51:58:e6:6d:1a:d9:44:9b:5a:ac:00:9e:
a8:51:5f:ce:7d:3c:73:b7:64:42:c8:4a:ac:88:70:
b7:51:e0:9c:49:3f:9e:06:42:c5:55:c9:f5:df:7d:
f9:53:10:f7:22:ce:f4:cd:ad:d0:92:03:0e:65:e0:
d2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B6:C9:B3:65:B5:2F:C0:A0:43:AE:BB:85:B6:30:3D:28:98:A9:FE
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/BrbJs2W1L8CgQ667hbYwPSiYqf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.4.0/24
Signature Algorithm: sha256WithRSAEncryption
48:2b:78:c9:d4:f0:77:92:d2:d8:14:72:e9:36:3a:ba:78:e4:
7d:b9:85:ff:62:f3:84:12:a8:52:94:53:17:c2:30:60:21:14:
8f:e3:c1:7d:7a:d3:1d:d8:4b:6b:e8:29:fd:aa:44:da:0e:13:
f1:3e:29:32:bc:6c:d3:d0:32:91:7c:f6:99:94:8a:49:d8:83:
43:92:0f:4f:0f:8c:f8:1f:80:24:d1:33:03:01:87:0a:69:13:
18:40:f0:cf:92:83:f9:f5:c3:bf:a0:64:46:76:29:06:30:44:
b7:3e:45:73:68:cf:a1:30:d6:a9:38:97:1e:97:e2:e7:76:fb:
02:84:08:36:62:df:67:57:0e:bd:b5:51:95:72:3a:44:36:e5:
69:69:6f:90:4a:ee:e7:0a:0b:52:be:96:65:fc:9b:19:d7:8e:
5b:69:ea:9e:28:f2:08:33:d0:ac:64:2b:0d:42:37:5c:5d:af:
2a:69:15:cb:55:8d:d0:11:e7:d9:81:86:2f:78:38:7b:86:64:
80:81:77:87:84:18:c1:32:5b:85:ef:29:17:35:e2:2a:bb:5b:
56:3c:8a:e8:23:6b:39:ee:f9:f1:2a:5b:02:f6:90:35:9b:74:
47:f1:a0:1e:05:60:55:19:61:a3:e7:e7:96:15:89:35:71:6d:
00:23:15:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 09:41:40 2025 by rpki-client