Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/bdd43f-4528-4c92-88ba-56e7f93dcdbf/1/sT8i_lrT1dmgF96pIWG66J0xLDw.roa
File: sT8i_lrT1dmgF96pIWG66J0xLDw.roa (raw, json)
Hash identifier: aG6mOGyX8yA6EwWHgoUdHhg4b1jzs6sii5gM4RFtUiw=
Subject key identifier: B1:3F:22:FE:5A:D3:D5:D9:A0:17:DE:A9:21:61:BA:E8:9D:31:2C:3C
Certificate issuer: /CN=094245ee8b5ba4c66fe2ceca64be466fc96f71ed
Certificate serial: 0194258E3AEDA6A47B2D6BEFC85C4725E58B
Authority key identifier: 09:42:45:EE:8B:5B:A4:C6:6F:E2:CE:CA:64:BE:46:6F:C9:6F:71:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUJF7otbpMZv4s7KZL5Gb8lvce0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/bdd43f-4528-4c92-88ba-56e7f93dcdbf/1/sT8i_lrT1dmgF96pIWG66J0xLDw.roa
Signing time: Thu 02 Jan 2025 05:47:45 +0000
ROA not before: Thu 02 Jan 2025 05:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48642
IP address blocks: 178.217.224.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:3a:ed:a6:a4:7b:2d:6b:ef:c8:5c:47:25:e5:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=094245ee8b5ba4c66fe2ceca64be466fc96f71ed
Validity
Not Before: Jan 2 05:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b13f22fe5ad3d5d9a017dea92161bae89d312c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:a0:42:5b:5f:41:7f:69:70:e3:ea:17:07:
cd:eb:c9:8b:a3:a9:47:5d:73:8d:18:a5:20:50:03:
39:a6:db:a4:9c:e2:22:0e:9b:78:80:a6:f6:d5:b3:
14:5c:db:e0:bc:ef:ea:34:b4:19:b7:53:ba:4b:23:
e3:87:d5:2f:50:f6:19:56:b8:e0:fa:9d:89:7f:5f:
7f:26:67:12:80:31:96:c6:9c:2c:90:74:3a:aa:d6:
2d:2d:18:3a:31:4a:44:b7:e8:16:1b:5a:69:9d:d1:
e6:df:90:7b:39:d4:f8:f3:29:84:f4:b9:d5:08:e8:
26:e8:07:a6:ca:15:df:ef:56:e7:c9:5c:92:78:68:
c4:b3:bc:6b:e4:f6:46:6a:de:62:88:0d:83:47:a4:
11:77:97:ef:07:ad:d8:1e:c1:42:e8:73:d7:de:80:
85:dd:bb:c0:40:c3:3a:1d:61:96:d6:9d:83:15:4e:
2c:5a:6a:a9:04:ab:97:76:c4:2f:99:79:61:00:46:
3d:30:de:4a:4a:c2:fe:dc:88:3f:7b:30:9c:23:75:
72:bc:17:fb:44:58:89:a2:48:8d:e0:bf:7a:a9:18:
4d:c9:b7:ef:b9:72:2e:2d:ad:57:09:96:89:7d:97:
8d:07:07:28:85:69:f7:a9:1b:38:78:da:6e:c4:01:
2e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:3F:22:FE:5A:D3:D5:D9:A0:17:DE:A9:21:61:BA:E8:9D:31:2C:3C
X509v3 Authority Key Identifier:
keyid:09:42:45:EE:8B:5B:A4:C6:6F:E2:CE:CA:64:BE:46:6F:C9:6F:71:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUJF7otbpMZv4s7KZL5Gb8lvce0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/bdd43f-4528-4c92-88ba-56e7f93dcdbf/1/sT8i_lrT1dmgF96pIWG66J0xLDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/bdd43f-4528-4c92-88ba-56e7f93dcdbf/1/CUJF7otbpMZv4s7KZL5Gb8lvce0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.224.0/21
Signature Algorithm: sha256WithRSAEncryption
cf:e6:fb:c3:95:cf:3b:e2:bf:87:2e:03:f4:09:3e:27:cf:bc:
d8:b4:db:65:04:45:1a:5e:ac:22:68:d8:12:36:5e:78:dc:e7:
12:c3:bb:0f:0e:c1:ce:2e:a7:6d:41:74:f7:fe:be:de:15:ea:
dd:d1:e5:5e:c8:bd:18:67:9f:ba:8d:d6:64:9f:3d:7a:c2:7e:
71:57:af:f4:29:94:63:27:71:09:6f:dc:4c:96:2e:ef:e9:6f:
11:fb:5f:e2:36:e7:5f:c6:12:be:77:0e:a3:b8:32:fb:1e:fe:
db:c0:06:a4:04:c7:72:cf:ac:1b:4d:40:19:0b:23:a5:5d:6c:
09:01:99:4a:61:f7:0b:20:d4:d1:9d:ff:b7:85:f5:e1:53:08:
3e:25:41:25:20:ce:01:c6:44:6a:25:3d:65:d4:cd:94:b7:74:
98:94:99:db:ba:f5:cb:51:e1:c9:50:dd:ff:16:17:04:89:0a:
44:16:bf:e3:7d:3e:91:ed:76:dd:0e:34:64:09:57:4a:d5:e3:
71:21:3d:bb:70:20:bf:d9:c3:8f:5e:0f:02:52:2d:f6:2a:ea:
c1:90:ad:06:96:2a:33:59:4a:c5:a3:04:71:2a:e4:ee:7c:ca:
57:8d:f7:44:9f:2e:f8:a2:38:a2:82:42:93:96:d2:ca:94:cf:
14:77:e2:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:33 2025 by rpki-client on console.sobornost.net