Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/e283bb-d4d3-4b3a-b2b3-8ac8965708bc/1/jXyVzXU7-Oio9ulAptfw8swowyU.roa
File: jXyVzXU7-Oio9ulAptfw8swowyU.roa (raw, json)
Hash identifier: AvjnXmv2cjY8yuFcSYqvGQ/yeH6E1h4Re+Q85B75QSE=
Subject key identifier: 8D:7C:95:CD:75:3B:F8:E8:A8:F6:E9:40:A6:D7:F0:F2:CC:28:C3:25
Certificate issuer: /CN=df7dd65966737ce8f65e40ef2fea1cffafb162b0
Certificate serial: 0194308967ABD9B3410DBD32B8131B665CCD
Authority key identifier: DF:7D:D6:59:66:73:7C:E8:F6:5E:40:EF:2F:EA:1C:FF:AF:B1:62:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/333WWWZzfOj2XkDvL-oc_6-xYrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/e283bb-d4d3-4b3a-b2b3-8ac8965708bc/1/jXyVzXU7-Oio9ulAptfw8swowyU.roa
Signing time: Sat 04 Jan 2025 08:58:18 +0000
ROA not before: Sat 04 Jan 2025 08:58:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204167
IP address blocks: 178.170.128.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:30:89:67:ab:d9:b3:41:0d:bd:32:b8:13:1b:66:5c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df7dd65966737ce8f65e40ef2fea1cffafb162b0
Validity
Not Before: Jan 4 08:58:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8d7c95cd753bf8e8a8f6e940a6d7f0f2cc28c325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bc:22:7d:2c:c7:ca:e1:b4:7e:f5:38:5c:55:
71:3d:91:c9:b5:0c:9e:6f:0e:15:1b:bb:c8:3f:e6:
b8:d3:9b:90:7a:cf:70:3c:af:ac:d0:15:58:63:d5:
c4:5f:3c:b7:3c:c1:3c:b7:12:66:fb:cc:7b:01:02:
81:1a:9c:18:46:9f:80:66:ba:c6:d7:dc:0a:cd:87:
e3:7b:36:00:27:4e:43:ea:fa:29:9a:78:94:04:f0:
57:a6:13:81:3e:80:13:14:06:e7:7a:a4:f3:9f:8e:
c4:2a:3d:52:b4:f1:e2:50:07:9e:00:ce:16:e4:41:
49:1c:63:19:aa:74:4f:0b:45:cf:95:b9:79:fd:29:
02:6f:ac:61:80:96:28:86:23:a1:71:3b:b1:0f:fd:
c3:b2:9d:dc:4a:7e:c5:47:50:32:7a:d8:1f:5e:e5:
fa:b0:ec:19:2f:d8:da:3f:24:f4:c1:ae:39:81:69:
be:01:5f:ea:07:f4:a7:d7:7d:21:96:35:f0:35:3f:
09:4b:4d:e3:6a:81:f0:15:2b:aa:bc:8f:f0:f1:a5:
8d:a8:64:f8:fa:e9:45:08:dd:8b:e0:8b:67:b8:74:
70:39:16:89:d0:16:de:14:31:5d:cb:4c:cc:77:47:
b9:5a:0b:94:16:5d:2f:dc:87:ed:0c:3f:9b:59:61:
1f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7C:95:CD:75:3B:F8:E8:A8:F6:E9:40:A6:D7:F0:F2:CC:28:C3:25
X509v3 Authority Key Identifier:
keyid:DF:7D:D6:59:66:73:7C:E8:F6:5E:40:EF:2F:EA:1C:FF:AF:B1:62:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/333WWWZzfOj2XkDvL-oc_6-xYrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/e283bb-d4d3-4b3a-b2b3-8ac8965708bc/1/jXyVzXU7-Oio9ulAptfw8swowyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/e283bb-d4d3-4b3a-b2b3-8ac8965708bc/1/333WWWZzfOj2XkDvL-oc_6-xYrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.170.128.0/23
Signature Algorithm: sha256WithRSAEncryption
45:a9:c5:d1:c6:82:1d:df:b7:77:99:d6:d4:d0:32:8e:8b:e7:
80:82:2a:04:43:39:55:1d:76:e3:7a:4d:8f:19:0b:76:98:73:
60:a8:55:fe:12:51:63:ef:6e:a8:57:af:21:04:c3:fc:1c:75:
8e:3d:90:c8:47:cd:4d:d5:21:01:22:23:0f:6f:fa:47:e8:71:
b7:55:78:5e:f0:31:63:bc:97:11:33:3f:66:31:39:21:74:58:
5d:de:2c:fd:a8:7b:9b:18:1f:40:4f:f3:bb:0b:d6:20:a0:01:
1b:e0:2d:91:de:48:eb:8b:de:fb:04:dd:64:64:a7:b9:87:e7:
77:79:a5:ea:24:1b:f2:0e:e9:84:60:1a:7d:15:f6:02:7c:b4:
dd:4a:4e:68:ed:ca:94:e6:c3:61:f2:a0:3f:bd:97:b7:d6:01:
85:58:4a:33:69:1b:f6:3f:88:82:e7:7d:1e:4e:e6:f9:ed:bb:
ff:56:d8:92:49:b9:6f:aa:eb:0b:c2:60:06:c9:d4:8d:10:0e:
e8:82:8e:e1:3d:1f:ce:5f:0f:b8:09:2d:7a:65:16:33:7a:65:
da:9e:ad:29:e3:24:89:69:bd:e1:46:97:4f:b9:31:01:7e:ee:
0f:d8:9a:9a:1e:c8:d2:c0:24:4d:83:af:82:2f:b2:55:39:79:
b7:69:a4:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net