Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/Q4BLVnTtEyoC8eHyhkcteKoeJ6A.roa
File: Q4BLVnTtEyoC8eHyhkcteKoeJ6A.roa (raw, json)
Hash identifier: edQEuSj12spKEsnnwc1oyC8FT8MhVl13a4ooOoJq0ys=
Subject key identifier: 43:80:4B:56:74:ED:13:2A:02:F1:E1:F2:86:47:2D:78:AA:1E:27:A0
Certificate issuer: /CN=7d149f62447853689c12fb288afeb6b681cfebc1
Certificate serial: 0194CB4815B3D611E7597F51694F4CC60D17
Authority key identifier: 7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/Q4BLVnTtEyoC8eHyhkcteKoeJ6A.roa
Signing time: Mon 03 Feb 2025 10:08:06 +0000
ROA not before: Mon 03 Feb 2025 10:08:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60591
IP address blocks: 178.172.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:cb:48:15:b3:d6:11:e7:59:7f:51:69:4f:4c:c6:0d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d149f62447853689c12fb288afeb6b681cfebc1
Validity
Not Before: Feb 3 10:08:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43804b5674ed132a02f1e1f286472d78aa1e27a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:46:04:6a:82:bb:80:ae:25:02:96:a2:da:1f:
09:43:ec:a9:0e:6c:a7:92:4c:aa:f0:4e:a1:ad:ee:
34:dc:cb:01:cf:14:68:36:5b:ad:3d:f1:43:50:fa:
8f:9b:91:77:48:6b:89:f6:68:1e:2b:33:a5:0e:08:
0c:28:30:2b:46:0d:75:f7:69:a0:6c:66:a0:97:4d:
7f:d7:75:41:ea:17:c6:7b:40:2d:d7:79:be:6a:82:
3d:83:a6:71:07:c2:e9:76:ef:cb:24:29:cf:fb:4e:
1e:4d:86:3a:3f:06:14:4e:70:c6:d4:62:ec:0c:e7:
16:95:d4:28:e7:b0:e9:32:98:a5:89:c9:2d:18:eb:
34:d6:13:ca:90:ee:73:55:c7:32:49:2c:95:b0:a9:
58:d5:d4:c6:2e:fb:8c:e3:c6:20:80:8b:8c:b3:33:
9d:f5:b7:29:bb:af:bf:a1:a3:61:39:72:f8:7f:b1:
6b:c7:d1:aa:a5:85:d2:0b:9e:23:de:10:d8:cb:d5:
1c:22:8d:2a:15:99:d9:46:2a:1a:94:03:34:51:4f:
dc:14:72:0e:13:e3:1d:ed:98:32:e6:bb:77:b2:91:
8e:7d:de:ef:7a:50:95:99:38:2d:9d:f1:55:1d:b2:
92:c9:ed:0b:91:50:cb:9f:f0:e3:70:a3:bd:d8:70:
8a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:80:4B:56:74:ED:13:2A:02:F1:E1:F2:86:47:2D:78:AA:1E:27:A0
X509v3 Authority Key Identifier:
keyid:7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/Q4BLVnTtEyoC8eHyhkcteKoeJ6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/fRSfYkR4U2icEvsoiv62toHP68E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.172.217.0/24
Signature Algorithm: sha256WithRSAEncryption
23:94:b1:48:c5:14:66:1c:ed:96:ab:96:5e:d9:cb:c1:9b:4e:
90:0f:0b:16:1e:85:93:89:2d:cc:64:92:83:83:e5:dc:cb:ba:
59:f5:8e:ac:f9:a1:5c:35:c6:c5:55:22:f8:f3:13:ab:28:9b:
83:5f:8d:cd:aa:d3:70:a8:1b:0f:af:7e:f3:7c:26:da:8b:3e:
3b:0c:55:fa:67:42:17:dd:73:ea:4b:49:56:a2:f2:e5:28:10:
71:10:c6:a4:f2:d4:8f:1d:fc:ce:7c:3b:a2:68:7f:e6:15:51:
cd:98:56:35:03:38:be:5b:46:ca:e1:54:c3:1d:0b:b5:b0:97:
38:db:92:e5:ce:d0:c8:76:02:c2:31:90:f1:d5:fc:53:8d:27:
48:6f:82:70:79:d0:f7:6d:07:52:60:79:8a:8d:97:81:4f:a4:
93:77:cc:0f:f9:35:b4:d3:f4:ed:47:4e:8e:dc:2f:a8:1d:98:
77:f8:d1:7e:24:dc:1d:5a:38:e7:80:ed:65:fb:c1:c4:ea:b5:
17:8d:08:41:52:c1:c5:1f:41:81:e2:af:4d:52:a2:bb:08:5d:
5c:80:e2:67:5a:5d:58:3e:6a:fb:07:71:5c:0b:ed:ab:fe:b6:
f9:1b:80:b8:45:bb:83:14:e6:ba:21:17:d5:eb:66:10:ca:23:
db:2d:84:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net