Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7e6369-5adb-45cd-bd2f-3b8b0d1a59a9/1/vn8OwjKW13Vvv7-w646PZQwlT1g.roa
File: vn8OwjKW13Vvv7-w646PZQwlT1g.roa (raw, json)
Hash identifier: SQoW5zSKhm7XP9vCmJ5BfcEIft5q/8KQA6dRhI8YlXQ=
Subject key identifier: BE:7F:0E:C2:32:96:D7:75:6F:BF:BF:B0:EB:8E:8F:65:0C:25:4F:58
Certificate issuer: /CN=af938503d72931626dcb8d1e946b2ae06a73d02e
Certificate serial: 0194266B43EAFB284BE5FD9FE279DF975EE8
Authority key identifier: AF:93:85:03:D7:29:31:62:6D:CB:8D:1E:94:6B:2A:E0:6A:73:D0:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5OFA9cpMWJty40elGsq4Gpz0C4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7e6369-5adb-45cd-bd2f-3b8b0d1a59a9/1/vn8OwjKW13Vvv7-w646PZQwlT1g.roa
Signing time: Thu 02 Jan 2025 09:49:11 +0000
ROA not before: Thu 02 Jan 2025 09:49:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19539
IP address blocks: 178.248.28.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:43:ea:fb:28:4b:e5:fd:9f:e2:79:df:97:5e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af938503d72931626dcb8d1e946b2ae06a73d02e
Validity
Not Before: Jan 2 09:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be7f0ec23296d7756fbfbfb0eb8e8f650c254f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1c:25:22:4a:28:47:e4:db:7e:e5:0e:dc:13:
ea:39:ca:f8:6c:7b:f6:ec:21:39:9a:d3:d3:7e:61:
ed:e7:b9:e6:14:6a:15:73:ef:e2:db:8f:f4:d0:38:
20:63:65:51:9d:20:78:e5:fe:57:c0:1f:44:36:18:
eb:88:37:48:fd:eb:5f:75:f1:18:10:3c:a1:6f:61:
e3:f7:c5:21:d8:37:7c:f1:2a:b6:71:8b:fb:12:a6:
ff:54:15:35:be:52:e3:66:6c:c9:05:cc:6e:f1:17:
15:8d:d1:e9:e5:57:cc:21:36:0e:20:cb:64:a1:3e:
c8:85:5b:24:6b:d2:d8:00:50:04:59:56:1b:db:b8:
dc:a9:fd:63:a5:c4:9a:da:5b:22:9d:d5:1f:e8:55:
2b:6a:4f:e4:46:bd:d5:98:49:59:84:29:10:c0:a6:
40:72:20:b8:fb:bc:ab:63:27:c2:bb:80:fc:7f:27:
c2:41:bd:17:e1:1d:3d:97:52:00:98:f9:fb:b3:1c:
d0:0a:e5:6e:d0:7e:00:3f:b4:d4:d9:28:31:a8:57:
94:f9:98:6f:83:1d:0c:9b:60:bd:48:db:69:1e:60:
74:39:81:d5:0e:dc:53:46:64:80:d7:13:7c:91:dd:
9b:b7:86:36:82:0f:01:57:13:f8:fe:e4:e6:7d:81:
1d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7F:0E:C2:32:96:D7:75:6F:BF:BF:B0:EB:8E:8F:65:0C:25:4F:58
X509v3 Authority Key Identifier:
keyid:AF:93:85:03:D7:29:31:62:6D:CB:8D:1E:94:6B:2A:E0:6A:73:D0:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5OFA9cpMWJty40elGsq4Gpz0C4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7e6369-5adb-45cd-bd2f-3b8b0d1a59a9/1/vn8OwjKW13Vvv7-w646PZQwlT1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7e6369-5adb-45cd-bd2f-3b8b0d1a59a9/1/r5OFA9cpMWJty40elGsq4Gpz0C4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.28.0/22
Signature Algorithm: sha256WithRSAEncryption
95:d9:58:4f:f8:d9:0c:83:5c:b4:f3:07:88:71:ba:78:c0:d5:
58:9e:40:fe:ac:88:b8:41:42:bb:c9:c4:da:6e:0b:0c:01:9a:
94:2b:3d:97:38:87:0f:47:8c:a6:4d:c0:c1:cd:3c:91:ac:b7:
84:2b:de:9d:58:53:9b:40:aa:9d:05:62:05:9a:1c:a5:4f:de:
be:9a:b9:bc:89:ee:98:91:8a:74:75:e7:4f:71:9c:6b:33:07:
36:e8:5c:59:0b:8d:07:85:a9:5f:6c:60:ea:60:5b:12:08:ef:
15:3d:5e:0c:10:eb:09:1e:fd:d4:42:aa:47:15:16:f7:0a:41:
55:a4:e1:2f:9a:e7:dc:50:de:38:8c:9c:98:2d:ed:c8:ec:13:
39:21:47:78:63:31:9b:19:3a:1b:22:05:5a:ec:8c:55:2e:30:
05:8d:e2:35:ef:a8:21:f1:62:0b:f8:e9:7e:4f:12:b8:75:23:
f0:c9:f9:a0:9e:5d:f7:35:bb:78:2c:82:16:7f:d7:02:24:52:
1a:6a:80:ba:b6:ad:07:aa:0d:d0:2c:e1:12:b5:62:48:e2:0c:
6d:08:d9:20:0b:5d:17:34:99:82:5f:1a:43:26:6e:6a:c1:5c:
58:3c:aa:d5:d7:30:38:58:fe:ab:86:47:0f:87:8d:15:4c:56:
57:c4:95:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net