Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/vhjrtMMdROIFj167BFR3pGrdrb8.roa
File: vhjrtMMdROIFj167BFR3pGrdrb8.roa (raw, json)
Hash identifier: mHe16RuP6X+5Fin2ZffJO/Ym51XZo7pnKG1BIGBPcUQ=
Subject key identifier: BE:18:EB:B4:C3:1D:44:E2:05:8F:5E:BB:04:54:77:A4:6A:DD:AD:BF
Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Certificate serial: 0194258F60AD9747B85855068D2B6B5AF256
Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/vhjrtMMdROIFj167BFR3pGrdrb8.roa
Signing time: Thu 02 Jan 2025 05:49:00 +0000
ROA not before: Thu 02 Jan 2025 05:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48847
IP address blocks: 147.78.44.0/24 maxlen: 24
147.78.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:60:ad:97:47:b8:58:55:06:8d:2b:6b:5a:f2:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Validity
Not Before: Jan 2 05:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be18ebb4c31d44e2058f5ebb045477a46addadbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:76:e4:4f:d6:dd:43:f8:63:72:7e:c8:bd:bb:
d8:74:f2:54:28:51:6e:45:c0:b5:b9:14:25:33:67:
71:03:6e:5a:8e:f0:c2:c8:3a:07:b3:62:73:b0:6c:
bb:38:2c:6f:97:9c:55:5c:8c:b0:6d:bd:f4:80:5a:
c5:d0:a1:81:ce:68:f7:64:4f:47:23:54:7b:40:01:
a5:2c:98:60:a3:67:ec:97:fe:34:1a:e6:d4:fc:11:
62:12:c2:df:d5:9b:e7:d6:33:88:49:04:9f:0f:49:
f9:f1:fe:b1:06:e8:df:58:1e:c3:8c:6f:d1:22:33:
51:81:d7:9b:ea:d6:a9:4e:96:14:22:a7:de:71:de:
27:3d:91:1f:36:4b:e5:70:74:fb:c4:83:81:80:58:
62:35:fa:21:cf:88:9a:b7:60:92:7b:fb:7d:e8:12:
0f:a2:e4:93:7c:54:1d:b4:66:c7:a5:fd:30:4b:2b:
8b:10:a7:5f:92:0d:6a:41:7a:2d:c0:0f:fd:2d:98:
59:46:2c:b0:21:43:04:ef:cc:9c:ca:a3:57:8f:c7:
2e:84:0e:5c:89:3a:93:bd:79:35:bd:cf:3a:b8:9c:
d2:18:cf:6b:47:f3:20:0a:e3:06:68:e5:d7:2e:4f:
5a:b3:a2:a3:8c:69:9f:7d:d6:74:34:03:c8:3b:a3:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:18:EB:B4:C3:1D:44:E2:05:8F:5E:BB:04:54:77:A4:6A:DD:AD:BF
X509v3 Authority Key Identifier:
keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/vhjrtMMdROIFj167BFR3pGrdrb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.44.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:37:12:97:95:1a:d5:f2:c6:37:2a:6b:d5:fb:92:83:b8:d5:
35:1c:74:d1:86:4b:54:b1:24:66:44:93:dc:8b:7a:91:4e:47:
a4:42:c2:b7:71:d7:c5:4d:57:06:8d:a1:6c:08:d1:71:36:66:
fb:d8:73:fc:0b:84:e2:dd:10:98:88:18:cc:62:2d:aa:2c:ee:
85:99:93:86:23:53:06:45:71:a5:ab:39:e6:79:a3:13:04:f2:
f8:31:5a:e3:a1:a8:09:ad:64:4e:65:32:b8:b5:81:a0:31:9d:
e8:9f:af:a8:c6:99:ce:67:9f:55:2f:f8:6e:c4:9c:3b:18:92:
6a:a5:52:1b:b4:63:b6:42:3d:e7:e8:db:fa:42:d1:5f:c3:3f:
5c:68:cf:37:c4:91:75:e3:4f:3a:6b:36:fb:9e:be:d4:1d:ab:
62:43:dd:e9:99:40:de:ab:fa:ee:38:e9:c8:5c:b7:6f:ce:6b:
f9:d0:ce:d9:c3:4e:76:da:e0:59:2b:21:3f:86:02:42:97:ef:
89:ac:a4:c0:22:03:45:18:65:aa:f0:d2:15:78:38:41:84:ae:
3b:fc:c1:a2:62:fa:fe:dc:a9:3d:43:60:f7:ea:d2:48:bb:62:
29:38:7c:d2:bc:34:6e:8b:ba:55:51:71:7b:d7:59:af:52:4a:
09:6f:a2:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:49 2025 by rpki-client on console.sobornost.net