Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7a4ffb-0289-466c-a2f5-30207773f760/1/G9xMgeqUDcNrpZYBr9G8NKyA0F8.roa
File: G9xMgeqUDcNrpZYBr9G8NKyA0F8.roa (raw, json)
Hash identifier: rM5DReNg2vqUa9hcN1K8SIlx8ORAsC3UZe/pDHrlBCc=
Subject key identifier: 1B:DC:4C:81:EA:94:0D:C3:6B:A5:96:01:AF:D1:BC:34:AC:80:D0:5F
Certificate issuer: /CN=ff017f878432b2fe31f58153b44a81659d50ba20
Certificate serial: 019426D9A01EA79557FED1A93BCBAB2991A4
Authority key identifier: FF:01:7F:87:84:32:B2:FE:31:F5:81:53:B4:4A:81:65:9D:50:BA:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_wF_h4Qysv4x9YFTtEqBZZ1QuiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7a4ffb-0289-466c-a2f5-30207773f760/1/G9xMgeqUDcNrpZYBr9G8NKyA0F8.roa
Signing time: Thu 02 Jan 2025 11:49:44 +0000
ROA not before: Thu 02 Jan 2025 11:49:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42546
IP address blocks: 178.214.192.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:a0:1e:a7:95:57:fe:d1:a9:3b:cb:ab:29:91:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff017f878432b2fe31f58153b44a81659d50ba20
Validity
Not Before: Jan 2 11:49:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1bdc4c81ea940dc36ba59601afd1bc34ac80d05f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0e:00:73:8d:c2:c5:4f:ef:0f:03:a5:ed:39:
37:8e:5a:76:e8:3a:9d:d7:8b:d2:0d:55:bb:f6:d8:
cd:e5:f5:56:82:0d:d0:59:34:7c:2c:8d:73:c6:a7:
12:35:b1:d4:06:d7:cb:b8:4b:95:cc:b7:3c:51:72:
b4:41:e6:ae:f1:c7:0c:a3:8c:ff:73:1b:18:1e:38:
7f:88:5a:b4:27:b1:90:69:aa:ea:43:04:02:1c:c7:
f6:3a:aa:85:bd:d3:1b:3e:67:d1:c3:9b:bb:36:dc:
59:68:25:35:68:ef:cb:01:b2:63:87:e5:dd:bc:6d:
8a:ee:aa:f9:79:d4:6f:b4:7c:8d:1b:50:98:2e:df:
45:d8:27:b5:b0:37:c7:aa:f3:1e:91:93:21:d4:43:
53:89:c8:e0:3a:08:48:4b:87:0c:aa:ea:e5:79:f7:
b2:8b:d9:b2:8c:e3:7f:83:fc:78:38:31:dc:ac:73:
3b:a8:44:e8:64:44:9e:ce:da:0a:3d:1b:29:8c:35:
dc:5d:cc:85:46:a5:4c:1f:43:99:86:da:ca:01:c5:
df:d0:ec:23:4b:75:aa:9d:2e:b0:78:4f:23:3c:19:
7e:ff:3c:12:c1:64:ac:11:0b:34:bc:2c:b4:b4:a4:
04:9d:e4:a7:8b:37:d5:be:91:d1:ee:a6:d6:64:63:
f2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:DC:4C:81:EA:94:0D:C3:6B:A5:96:01:AF:D1:BC:34:AC:80:D0:5F
X509v3 Authority Key Identifier:
keyid:FF:01:7F:87:84:32:B2:FE:31:F5:81:53:B4:4A:81:65:9D:50:BA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_wF_h4Qysv4x9YFTtEqBZZ1QuiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7a4ffb-0289-466c-a2f5-30207773f760/1/G9xMgeqUDcNrpZYBr9G8NKyA0F8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7a4ffb-0289-466c-a2f5-30207773f760/1/_wF_h4Qysv4x9YFTtEqBZZ1QuiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.214.192.0/21
Signature Algorithm: sha256WithRSAEncryption
91:3d:ee:4c:00:32:bd:ae:1f:4e:14:ab:98:6f:99:26:83:f3:
e5:6f:e9:5d:74:c3:fd:ad:69:af:d6:b0:07:1d:5b:22:77:be:
00:3f:28:f8:db:d1:01:0e:32:ea:e7:e0:62:0d:f6:63:9f:cd:
88:7b:95:c0:da:5f:80:45:57:49:cb:db:08:55:47:6d:e8:a3:
07:bb:ef:07:71:ac:ca:be:c2:b1:ee:45:7f:52:81:c2:88:07:
df:04:5f:2b:de:9c:5d:56:d1:10:e6:03:63:fd:2a:cc:0c:f6:
d6:1b:9e:ab:a9:2a:08:24:7a:57:74:58:f9:67:67:88:74:10:
7d:d9:e0:e7:fd:c3:00:38:67:40:fd:c3:b4:71:c7:5c:a3:37:
b1:08:25:bd:44:2d:87:06:17:8c:f4:c6:82:36:0f:b8:fc:ec:
d1:d7:a2:42:da:b4:ba:b4:2f:a6:83:17:2e:7c:e5:d8:bd:90:
a7:b3:1a:da:7e:b5:d3:5c:71:7e:2f:05:42:01:7c:60:ed:2e:
e9:6f:42:fa:cd:5a:aa:9e:e4:a7:bf:cb:cb:58:27:30:4a:0d:
14:b6:63:73:93:fb:11:a7:6e:61:b6:20:bb:c1:3c:e7:7c:73:
1a:0a:ef:21:9f:fa:d5:98:cb:79:d2:70:be:60:87:f1:8d:76:
75:02:89:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:22 2025 by rpki-client on console.sobornost.net