Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/JbUoXDLL57xF-6BVNBln0RftcZM.roa
File: JbUoXDLL57xF-6BVNBln0RftcZM.roa (raw, json)
Hash identifier: t8EC2530fZ+9x7+BNfg3gfNISOK9q19vZC97hYMQk9g=
Subject key identifier: 25:B5:28:5C:32:CB:E7:BC:45:FB:A0:55:34:19:67:D1:17:ED:71:93
Certificate issuer: /CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Certificate serial: 019428262AE5156EF3121B110BD0AD22A462
Authority key identifier: 9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/JbUoXDLL57xF-6BVNBln0RftcZM.roa
Signing time: Thu 02 Jan 2025 17:52:57 +0000
ROA not before: Thu 02 Jan 2025 17:52:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50894
IP address blocks: 178.22.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:2a:e5:15:6e:f3:12:1b:11:0b:d0:ad:22:a4:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Validity
Not Before: Jan 2 17:52:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=25b5285c32cbe7bc45fba055341967d117ed7193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b9:4d:97:2b:25:74:a8:c1:1a:62:39:1e:50:
8f:96:41:45:fc:60:33:c2:c8:0d:bc:c8:c4:ae:6e:
16:46:ce:6f:45:f0:75:c0:bf:d9:5d:f5:0c:b3:37:
da:d6:7d:6f:3b:f8:b0:63:4d:48:1a:dd:8a:4d:cd:
d1:e7:7d:1a:2e:49:5c:7c:73:e4:ad:28:dd:cc:aa:
92:2c:d4:92:8d:b4:94:0b:27:cc:0c:be:98:a8:5a:
f2:cc:57:37:74:dc:b6:30:c5:1b:77:1e:d6:5b:b1:
d4:8e:a7:cc:53:01:f4:a0:84:7c:0c:56:01:fa:24:
88:e3:d4:e7:58:ec:14:c4:4d:e1:58:16:25:96:b6:
80:d9:0f:50:87:ac:d6:28:0a:46:1f:7e:1a:4d:e6:
2f:61:21:53:25:f1:f6:f9:9a:49:ed:ff:52:d6:20:
92:2f:15:1a:7c:ec:2a:65:fc:be:dc:37:13:c9:ed:
12:12:cc:38:6c:34:65:c6:78:53:4b:ce:2f:f0:95:
5c:97:f4:db:02:b3:81:81:bf:84:53:fb:99:c7:41:
be:61:08:90:db:70:34:4a:b0:a9:93:89:63:bb:af:
cd:ce:46:b3:14:84:68:64:f6:f4:8a:7c:6f:de:27:
2c:0e:5d:23:52:c8:1a:37:7b:cb:a1:a0:31:b3:53:
a0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B5:28:5C:32:CB:E7:BC:45:FB:A0:55:34:19:67:D1:17:ED:71:93
X509v3 Authority Key Identifier:
keyid:9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/JbUoXDLL57xF-6BVNBln0RftcZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.240.0/21
Signature Algorithm: sha256WithRSAEncryption
16:b1:f8:df:94:a7:eb:67:41:12:72:2a:9a:54:e9:c5:6f:0f:
eb:9f:4b:c5:7a:07:af:77:5b:d8:73:02:1b:87:2f:a8:f3:e9:
7c:53:4a:a5:2d:ef:37:42:0a:70:33:0a:d0:c7:bd:4e:a6:9b:
95:ad:af:83:c1:be:1d:9a:98:bd:f0:91:35:60:4b:bc:c8:53:
83:0b:41:80:52:a7:b8:78:7e:42:f9:c7:43:49:29:11:77:84:
b8:32:2b:c2:8c:8d:76:ef:d4:2b:e1:a6:73:6a:f9:4d:ad:ca:
a3:39:69:70:27:d6:f9:57:99:88:7e:5d:f6:35:46:0f:a0:62:
b0:99:e6:9a:63:d5:8f:43:57:71:8d:65:79:5f:bd:f0:77:ba:
47:13:e3:48:84:f9:4c:34:e6:74:6c:70:54:a8:71:62:d7:14:
b7:99:2e:5e:71:c3:af:36:21:b7:1c:d5:12:2f:94:a8:20:b1:
df:af:0e:18:b0:fd:17:fa:e1:15:1e:da:cc:6a:25:37:dc:62:
c3:85:2f:b0:66:9d:ee:c5:1b:01:60:c9:bd:f4:dc:05:f7:7c:
e7:0c:e9:d9:47:3d:24:3a:fc:8c:0a:f7:64:68:3b:6f:e2:de:
53:42:7f:8e:58:fb:c5:3a:7b:ea:22:de:3a:95:5b:3a:e1:30:
bd:44:2b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:45 2025 by rpki-client on console.sobornost.net