Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/ea9402-be4d-49f3-81fb-4df728c58d17/1/1o1EO_QQPmnZ8plF5uOUWfPej3I.roa
File: 1o1EO_QQPmnZ8plF5uOUWfPej3I.roa (raw, json)
Hash identifier: ih+zsElPgdS9pl3aJWT5y3rEqtTRMgUDV5NvhBE9Nxk=
Subject key identifier: D6:8D:44:3B:F4:10:3E:69:D9:F2:99:45:E6:E3:94:59:F3:DE:8F:72
Certificate issuer: /CN=e938f9182b7da44003591eeae2560f8451b3393a
Certificate serial: 0194236A53CFA997552753B4B08882583BFF
Authority key identifier: E9:38:F9:18:2B:7D:A4:40:03:59:1E:EA:E2:56:0F:84:51:B3:39:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Tj5GCt9pEADWR7q4lYPhFGzOTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/ea9402-be4d-49f3-81fb-4df728c58d17/1/1o1EO_QQPmnZ8plF5uOUWfPej3I.roa
Signing time: Wed 01 Jan 2025 19:49:18 +0000
ROA not before: Wed 01 Jan 2025 19:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48715
IP address blocks: 158.255.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:53:cf:a9:97:55:27:53:b4:b0:88:82:58:3b:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e938f9182b7da44003591eeae2560f8451b3393a
Validity
Not Before: Jan 1 19:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d68d443bf4103e69d9f29945e6e39459f3de8f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ec:06:44:76:e0:71:f2:66:ff:73:e4:a0:69:
b7:11:ac:71:4a:91:61:2d:c4:79:15:1e:c1:3b:08:
56:9a:0b:a7:4d:1f:47:21:ec:f0:49:e6:b1:1a:fd:
0e:d4:7f:92:48:ad:d5:ac:05:d8:03:88:d4:c2:63:
16:4a:ec:f6:29:c7:7e:c5:2c:2a:f3:c1:79:0e:ab:
e8:39:8c:34:57:d6:0a:09:5c:ab:67:13:a7:4d:c0:
8d:2d:37:93:a1:44:68:d5:38:66:27:2b:8d:38:7f:
5c:de:62:a8:56:5c:4b:0e:e9:f3:7f:13:c5:fe:06:
7a:8c:ff:8e:be:76:c1:e7:f6:77:0b:81:cb:57:f4:
3d:d5:e5:93:6d:4b:68:01:13:0f:40:33:15:7f:f4:
d1:35:a5:62:e5:28:9e:32:73:86:fd:5c:ec:2e:3e:
46:9c:85:a0:90:54:ef:77:62:3b:9c:e8:ce:cf:5b:
29:53:4b:d0:fb:ba:3e:ac:27:99:33:ec:c5:f0:41:
e3:74:9c:47:db:fb:13:fa:9e:48:80:38:3d:72:f3:
f5:23:e3:59:6d:dc:5f:68:ba:2b:51:59:0b:4a:bb:
85:90:22:e7:28:08:b9:40:61:1f:a9:58:40:c2:cf:
92:22:98:4b:d7:09:44:7c:72:50:c8:97:8b:e7:c7:
0d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:8D:44:3B:F4:10:3E:69:D9:F2:99:45:E6:E3:94:59:F3:DE:8F:72
X509v3 Authority Key Identifier:
keyid:E9:38:F9:18:2B:7D:A4:40:03:59:1E:EA:E2:56:0F:84:51:B3:39:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Tj5GCt9pEADWR7q4lYPhFGzOTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ea9402-be4d-49f3-81fb-4df728c58d17/1/1o1EO_QQPmnZ8plF5uOUWfPej3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ea9402-be4d-49f3-81fb-4df728c58d17/1/6Tj5GCt9pEADWR7q4lYPhFGzOTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.255.78.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:54:6d:83:a3:a6:f0:e3:ed:30:00:29:bc:1d:3f:3b:1a:a9:
3b:15:96:1e:52:95:2a:02:4f:ef:e7:ce:c3:ba:b9:83:c3:07:
e6:7d:6a:28:a6:57:22:bb:f4:7e:37:05:39:b1:bc:9e:07:cb:
1f:08:b8:2b:b3:33:af:a4:9a:4f:43:37:b3:04:e4:59:eb:17:
77:a2:0f:d3:f6:91:a5:87:39:58:e9:1f:e0:3f:c7:67:f1:19:
c2:92:c6:3b:c1:95:f8:33:fe:31:45:92:dd:77:20:b6:60:a0:
93:17:08:42:6f:5b:8d:ba:29:7c:6f:13:7a:b7:98:e5:af:a2:
55:26:22:43:ff:58:b5:1d:43:3e:ef:aa:fb:3a:49:24:6b:d8:
19:c0:66:a4:0f:39:50:67:a4:3b:83:0a:f1:8d:1e:4c:fd:e2:
04:2b:40:bd:86:0c:ed:88:1b:d2:f2:73:1a:2b:ee:a3:c4:45:
48:b2:ea:ad:10:f0:0d:24:3c:4a:52:b3:61:e2:be:70:00:f8:
8a:63:d7:6a:a3:81:70:b9:56:23:9d:01:62:f7:2c:fa:54:7a:
79:60:32:b4:ab:0c:c7:3b:a9:9f:41:ba:1c:89:16:8b:d8:f6:
cf:43:3e:d6:08:29:c5:dd:b7:35:a9:aa:e4:f3:d4:26:bc:84:
34:86:55:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:32 2025 by rpki-client on console.sobornost.net