Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/KpjDHWgj4X_1rPc4m8d_wBagF2w.roa
File: KpjDHWgj4X_1rPc4m8d_wBagF2w.roa (raw, json)
Hash identifier: KrhTdntEiY/lxqHq/3LEyLpdPLGq0m/XMrZo6+AdUJM=
Subject key identifier: 2A:98:C3:1D:68:23:E1:7F:F5:AC:F7:38:9B:C7:7F:C0:16:A0:17:6C
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 019483005D1EF1A8CB3D4ADEF31880533F18
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/KpjDHWgj4X_1rPc4m8d_wBagF2w.roa
Signing time: Mon 20 Jan 2025 09:17:06 +0000
ROA not before: Mon 20 Jan 2025 09:17:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395793
IP address blocks: 124.155.240.0/24 maxlen: 24
124.155.241.0/24 maxlen: 24
124.155.242.0/24 maxlen: 24
124.155.243.0/24 maxlen: 24
124.155.244.0/24 maxlen: 24
124.155.245.0/24 maxlen: 24
124.155.246.0/24 maxlen: 24
124.155.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:83:00:5d:1e:f1:a8:cb:3d:4a:de:f3:18:80:53:3f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 20 09:17:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2a98c31d6823e17ff5acf7389bc77fc016a0176c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ec:8f:ca:03:b7:b0:38:f2:8b:b7:8c:c4:e6:
4e:a7:4f:25:bd:ec:5a:c8:a0:d1:cb:68:01:8f:0f:
cf:e6:e5:ff:fb:95:8d:1b:37:5e:8c:59:10:f3:f0:
8f:10:70:cb:66:9f:61:19:20:eb:d2:59:1c:94:a5:
ef:a6:b4:cd:e0:72:3a:a6:7a:94:3c:a0:5a:38:88:
d6:ce:5f:21:ae:08:7d:95:8e:a0:da:7d:16:4b:57:
17:1d:32:58:cd:9e:7b:39:4b:d8:c0:60:3a:85:7b:
07:67:58:07:03:26:4e:86:22:cb:a0:a5:a6:af:79:
88:a8:f6:50:ba:66:d1:6b:ed:55:f9:99:29:e1:3c:
0f:ef:8a:14:af:b3:17:42:ff:13:01:dc:8e:69:bf:
89:e6:d5:5d:eb:8d:4a:a8:68:2c:c8:8f:e2:ab:57:
29:8a:28:f3:22:d4:c6:34:4c:74:19:4d:29:d8:a8:
54:d2:72:85:b6:3f:68:d8:b0:e8:df:e1:91:84:88:
95:26:1b:c2:6e:b4:b9:2f:af:51:74:86:ba:22:b8:
3e:01:85:2a:e1:63:7d:bb:5c:f5:58:4f:7b:b3:d6:
5b:46:c8:da:2c:90:2e:ac:44:4c:65:b2:3b:6d:3c:
a4:19:0a:36:6a:fe:97:2b:74:c0:18:53:1f:1e:1e:
3a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:98:C3:1D:68:23:E1:7F:F5:AC:F7:38:9B:C7:7F:C0:16:A0:17:6C
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/KpjDHWgj4X_1rPc4m8d_wBagF2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
124.155.240.0/21
Signature Algorithm: sha256WithRSAEncryption
31:d9:d5:4e:1c:29:bc:83:e4:78:94:65:42:c0:4c:ea:68:87:
5e:a8:9e:67:40:9a:9a:85:b0:ac:3d:7a:4b:25:03:a6:f7:bd:
3d:69:55:9d:1c:2d:23:68:e5:37:8c:c1:bc:c2:8e:30:28:d0:
49:e9:37:6e:e7:1a:5d:5f:1b:9c:42:a0:44:bf:75:4e:c8:8f:
d8:f9:85:be:da:5d:b2:a8:b4:96:a3:24:68:3d:31:80:85:ac:
8b:c8:b7:30:08:49:96:aa:3a:4f:7b:69:7f:db:f3:63:c3:01:
2b:43:5d:b8:08:79:7f:a9:cf:27:82:b8:a0:59:5e:2f:78:98:
ff:c5:be:85:1d:9a:f7:91:6b:28:75:69:ca:60:0c:c3:a5:f9:
fc:fb:64:2c:76:b5:d5:cd:52:c2:e3:6c:04:29:43:bb:6d:9a:
f6:79:63:18:95:3e:f6:e7:ee:f8:45:10:c4:e6:44:4d:5e:66:
5b:89:97:9d:c1:7a:1a:9d:94:73:f0:90:07:9f:75:93:9d:85:
05:60:4b:7c:55:ea:27:c7:af:51:a1:88:23:f5:35:2a:31:47:
c6:c6:ba:ef:fe:84:e6:98:57:54:38:54:8f:1b:2e:bc:5e:a6:
39:d0:3f:9c:5c:92:c6:46:0a:a6:07:3b:8c:c4:21:dd:b4:fc:
26:4f:c2:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:01 2025 by rpki-client on console.sobornost.net