Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/H8Jh3PByPsoaxftF1Y0qeL6qk8M.roa
File: H8Jh3PByPsoaxftF1Y0qeL6qk8M.roa (raw, json)
Hash identifier: OGYujsfjZeJUcMVXbqDzP8dUuHxSfUAIJn1ll6T06LE=
Subject key identifier: 1F:C2:61:DC:F0:72:3E:CA:1A:C5:FB:45:D5:8D:2A:78:BE:AA:93:C3
Certificate issuer: /CN=a41870fc1854a3b093938c09cf60651ba993ffc6
Certificate serial: 01942368E8659C18F2F45404768C597FD8F6
Authority key identifier: A4:18:70:FC:18:54:A3:B0:93:93:8C:09:CF:60:65:1B:A9:93:FF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pBhw_BhUo7CTk4wJz2BlG6mT_8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/H8Jh3PByPsoaxftF1Y0qeL6qk8M.roa
Signing time: Wed 01 Jan 2025 19:47:45 +0000
ROA not before: Wed 01 Jan 2025 19:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57460
IP address blocks: 176.100.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:e8:65:9c:18:f2:f4:54:04:76:8c:59:7f:d8:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a41870fc1854a3b093938c09cf60651ba993ffc6
Validity
Not Before: Jan 1 19:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1fc261dcf0723eca1ac5fb45d58d2a78beaa93c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:33:18:c9:46:c5:56:c2:2e:13:0d:54:d6:d3:
9d:b9:01:19:31:95:95:58:55:c1:c4:84:65:49:f3:
36:74:17:e2:33:f4:0b:4e:31:46:88:88:0e:a4:ec:
62:41:10:fa:7d:8a:14:5f:d7:14:d4:04:5d:ee:8c:
0f:81:23:62:7d:3a:58:3a:dd:0c:64:77:eb:9f:aa:
86:09:50:f2:5f:8d:8c:6c:4e:67:51:63:98:e9:5d:
a8:c8:0b:c1:75:75:87:16:5f:de:b2:3e:5c:c5:98:
ac:aa:47:1c:e4:2a:60:08:c6:f1:82:fc:88:7d:ca:
77:01:da:1e:92:d5:3b:12:f6:33:94:13:84:9d:6a:
c9:60:7f:04:b0:5e:a0:5c:5d:2d:0c:29:e4:7f:49:
0c:0c:78:41:33:c5:00:67:d4:00:99:72:8d:fb:e3:
ef:c7:7e:b3:8a:7a:b2:1b:53:5c:7b:8d:0e:d1:9d:
e1:cb:f3:17:84:9c:f8:0e:d7:a4:49:db:8b:3e:36:
3f:d6:59:9e:25:d9:d7:9e:0c:7a:fb:5b:45:7a:48:
81:74:74:13:39:14:6c:0a:28:8e:46:48:9b:d0:48:
e9:f0:da:ec:d1:e5:de:87:99:dd:18:2b:ca:ab:38:
21:68:c5:7b:d8:d0:8d:85:87:0d:23:74:fe:c3:87:
87:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C2:61:DC:F0:72:3E:CA:1A:C5:FB:45:D5:8D:2A:78:BE:AA:93:C3
X509v3 Authority Key Identifier:
keyid:A4:18:70:FC:18:54:A3:B0:93:93:8C:09:CF:60:65:1B:A9:93:FF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pBhw_BhUo7CTk4wJz2BlG6mT_8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/H8Jh3PByPsoaxftF1Y0qeL6qk8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/pBhw_BhUo7CTk4wJz2BlG6mT_8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.56.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:9d:77:9b:ca:8a:54:1f:0b:f9:c6:7e:3b:89:c8:5b:98:e2:
52:eb:6e:a2:96:78:3d:c7:e8:e1:3e:35:39:67:41:a7:bb:c4:
dc:cc:93:9c:a3:cc:d6:4e:34:5f:3b:20:29:68:96:a7:5c:bf:
de:82:68:9e:bc:ed:0f:f1:ff:26:aa:b7:d1:1c:b9:7c:0e:6c:
3e:e6:6c:cc:ac:7d:e3:02:60:c4:ef:9e:09:37:e9:6c:ec:1a:
2a:35:08:25:2a:e6:13:c8:de:51:41:b3:d8:07:e3:6b:df:2d:
b9:39:68:2e:ec:dd:c2:dd:19:e7:aa:40:2a:ef:2d:53:9d:d3:
cd:4c:de:7b:36:83:5e:58:df:9f:ed:52:cb:36:7b:3c:4f:c5:
9a:2e:1d:d0:8f:36:25:57:e6:88:98:30:5b:e9:2c:58:49:45:
c8:01:59:8e:2b:7f:e4:aa:1a:31:ce:47:85:2e:af:0b:b1:89:
86:33:0c:07:31:87:ba:a1:e5:c7:84:32:2b:5c:47:06:35:b2:
d6:71:bc:4d:10:49:44:6c:96:5d:56:cc:ee:8a:dd:a5:5b:07:
4b:f7:9c:59:89:d2:c0:e2:4f:fd:67:4e:30:2c:97:cf:6d:c1:
96:16:46:63:61:a9:10:c3:e0:bf:8d:6b:fd:41:5e:1b:00:7a:
50:75:ad:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:48 2025 by rpki-client on console.sobornost.net