Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/bRbW8P3bIsKJRNWaiMr-Kb4NIoQ.roa
File: bRbW8P3bIsKJRNWaiMr-Kb4NIoQ.roa (raw, json)
Hash identifier: v77US+PxQpF7B60vIVmGcjZu9Cj7y5UanTIDHgPIp4M=
Subject key identifier: 6D:16:D6:F0:FD:DB:22:C2:89:44:D5:9A:88:CA:FE:29:BE:0D:22:84
Certificate issuer: /CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Certificate serial: 019610600420756D04C719CEF69F59AEDCE1
Authority key identifier: 11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/bRbW8P3bIsKJRNWaiMr-Kb4NIoQ.roa
Signing time: Mon 07 Apr 2025 13:10:50 +0000
ROA not before: Mon 07 Apr 2025 13:10:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215826
IP address blocks: 178.236.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:60:04:20:75:6d:04:c7:19:ce:f6:9f:59:ae:dc:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Validity
Not Before: Apr 7 13:10:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6d16d6f0fddb22c28944d59a88cafe29be0d2284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:48:71:b8:e4:34:66:0b:96:ce:bd:35:97:b6:
89:d0:08:89:ad:f6:17:44:ed:54:56:9c:de:b6:ff:
44:87:66:10:cf:c6:4e:a7:99:c0:65:f4:18:48:de:
2f:5e:66:25:df:2e:21:7b:c6:87:fd:54:96:b3:59:
9c:1e:ff:ba:4b:65:ad:c0:79:23:1d:32:12:38:e2:
e6:02:0b:e5:e8:89:36:5f:47:58:3e:52:d8:b1:06:
35:f0:8f:47:5d:5a:84:78:e5:e3:f2:aa:c4:f8:1b:
b1:dc:c2:d1:84:40:f9:a5:67:95:38:47:b2:08:11:
f1:96:d3:ad:73:b1:ab:ca:48:8b:a1:42:ec:96:5b:
92:a9:10:e8:8e:d4:fa:55:83:30:3f:4b:6e:d2:04:
e6:69:d5:9f:c2:b7:63:7a:b8:d3:fe:b9:59:2b:76:
0b:0b:bd:17:e9:24:95:59:fd:83:43:05:55:bd:d2:
d6:fe:12:93:77:91:4f:a2:90:4e:6f:93:b4:b3:34:
50:85:c2:31:ef:ac:75:1e:f1:8a:00:30:43:4e:13:
af:ba:6e:9a:b6:13:8d:38:f9:ba:67:f1:ae:3f:2d:
68:59:22:58:e8:cf:fa:ff:d4:57:ed:df:d3:fd:bf:
29:9c:fa:e9:15:ac:bd:7c:6b:99:83:31:cb:96:d0:
6d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:16:D6:F0:FD:DB:22:C2:89:44:D5:9A:88:CA:FE:29:BE:0D:22:84
X509v3 Authority Key Identifier:
keyid:11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/bRbW8P3bIsKJRNWaiMr-Kb4NIoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.252.0/24
Signature Algorithm: sha256WithRSAEncryption
64:13:48:b9:82:5a:8d:2f:84:52:91:09:04:fd:ee:a1:d8:40:
df:35:1a:9a:2f:e7:20:4b:e5:36:f8:ad:1b:4d:98:3e:d4:3e:
db:98:87:f5:0c:e0:28:32:56:54:d1:f5:12:ed:fa:4f:79:46:
c3:1d:e7:27:54:f2:23:be:2f:36:c6:0e:16:99:57:5b:0c:8d:
e7:17:2c:0f:2d:2d:2e:0b:9d:de:26:a8:97:24:94:4d:05:a1:
99:16:13:ba:8a:7b:14:83:07:ec:3e:d7:e8:35:d8:55:2f:43:
bf:2b:4d:da:97:0a:77:cc:11:33:de:6d:01:4f:07:80:3f:b0:
94:4c:d9:ae:ce:cd:c6:91:6a:0b:74:8c:ae:50:e7:2e:87:37:
47:d3:16:3f:e1:ac:12:a3:b8:0c:1c:27:5e:e8:3a:f8:dc:14:
0c:6e:a8:19:ca:54:17:de:f6:7c:ec:2e:b9:e0:7e:1a:51:71:
88:b0:e7:3c:5b:56:60:45:1e:11:3d:f7:5b:d9:9a:a0:21:d5:
19:f8:ac:ea:f5:3a:70:39:51:e1:b6:57:03:06:92:dd:db:60:
b3:be:25:57:a4:9b:a2:4f:1c:19:5e:6f:dc:fe:ab:ae:89:bf:
e1:68:73:6f:73:3a:2c:c2:5b:cc:29:06:66:83:9a:c2:30:8e:
a5:b7:6f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:04 2025 by rpki-client on console.sobornost.net