Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/chyT5AnWB2uv18hv3IpeT3tqrlQ.roa
File: chyT5AnWB2uv18hv3IpeT3tqrlQ.roa (raw, json)
Hash identifier: DgiszqzxUtAbgrH5ad6YTisgu2SSr9q4ErkXv5GU0KY=
Subject key identifier: 72:1C:93:E4:09:D6:07:6B:AF:D7:C8:6F:DC:8A:5E:4F:7B:6A:AE:54
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 157B236A
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/chyT5AnWB2uv18hv3IpeT3tqrlQ.roa
Signing time: Sat 01 Jan 2022 14:03:42 +0000
ROA not before: Sat 01 Jan 2022 14:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204353
IP address blocks: 104.160.4.0/24 maxlen: 24
5.157.19.0/24 maxlen: 24
104.160.10.0/24 maxlen: 24
5.157.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360391530 (0x157b236a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Jan 1 14:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=721c93e409d6076bafd7c86fdc8a5e4f7b6aae54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:98:ba:78:45:56:b1:f3:0e:3c:91:b5:f1:2b:
4c:a7:12:6a:1b:06:bd:45:bf:27:3e:87:c7:51:d7:
59:12:33:11:a0:59:fe:e0:0f:d0:a6:28:7e:55:45:
f5:67:7c:65:54:c3:92:51:32:80:c4:69:c8:39:87:
e0:d7:53:68:13:5b:ff:b8:3b:db:91:37:96:3b:64:
07:8e:97:ec:43:b2:55:4e:96:86:52:5c:66:30:f9:
d2:ee:86:c0:50:6f:59:8e:32:17:48:2d:76:88:f7:
aa:4c:d8:40:3c:7a:f8:34:48:29:b8:0b:02:67:7a:
1f:51:6d:0f:4a:ab:c8:5f:0e:70:82:0f:11:46:1f:
01:f6:fe:9d:36:ef:d1:e1:28:ae:5c:37:3d:35:e9:
07:8f:58:3b:b4:97:5b:35:71:3e:62:7f:cd:47:d6:
cd:38:2b:de:db:ee:e9:76:55:51:ab:50:99:ac:b5:
36:33:b5:a4:58:5c:a5:50:ac:5c:d4:1a:60:c1:5d:
0b:27:f7:a3:53:d7:08:5d:93:16:c4:28:08:d8:b7:
b9:02:e0:e8:90:98:9b:d8:0a:db:6d:ae:e5:0e:5c:
84:c5:22:f9:a5:78:30:c4:33:7b:32:b5:4f:f0:b5:
13:f6:69:6f:74:07:11:ac:d8:28:d9:89:a3:7b:30:
7a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:1C:93:E4:09:D6:07:6B:AF:D7:C8:6F:DC:8A:5E:4F:7B:6A:AE:54
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/chyT5AnWB2uv18hv3IpeT3tqrlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.19.0/24
5.157.26.0/24
104.160.4.0/24
104.160.10.0/24
Signature Algorithm: sha256WithRSAEncryption
57:db:71:5b:a1:fd:89:d4:66:8e:fb:0e:08:17:00:97:b8:31:
5c:bc:32:6b:15:46:0e:00:58:98:77:8c:6c:00:97:97:d5:fe:
a1:0c:48:0c:21:6c:c7:a4:f7:09:44:bd:cf:3c:8c:5e:b2:2e:
2b:5f:7a:e5:88:da:bb:8d:e9:1f:73:45:e8:d5:51:a8:8f:2b:
2b:9a:1a:cd:d1:bc:26:bd:c1:4b:8f:a9:d0:9e:3a:e5:04:52:
c0:5a:6d:ac:c1:cb:13:16:8e:cd:7a:5c:ed:00:6d:cd:2b:a2:
eb:f3:60:eb:4d:f8:54:3d:65:77:b7:49:eb:b3:21:28:02:36:
39:d7:63:14:bc:32:78:7a:40:91:13:75:42:6c:f7:24:09:cc:
ee:6d:b0:79:72:44:8e:5f:f9:57:80:7d:64:7d:08:27:e3:42:
6a:b5:3d:e6:11:89:2d:0e:3d:67:bc:6b:1e:f7:58:4d:1f:63:
2d:7c:05:d6:53:7b:92:5e:f3:cd:fa:46:41:aa:bc:b1:b6:ad:
ab:f5:6e:a8:1e:a5:a5:24:9f:4e:37:b2:5b:49:e4:f8:49:d8:
d2:57:b1:9f:68:c1:eb:7a:73:de:9d:ca:bb:ff:1c:78:57:72:
b8:4b:9b:3c:ca:8e:53:6d:9f:64:6e:6a:dd:5a:2e:0e:0a:39:
41:6e:8e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:53:13 2025 by rpki-client