Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/e8LHoDaExvY2EhEH-cKcB4N5kb8.roa
File: e8LHoDaExvY2EhEH-cKcB4N5kb8.roa (raw, json)
Hash identifier: Z1BxMCtJVqZUKTKzwFVpm6e5v92Yzrq4D8wtx/muuk0=
Subject key identifier: 7B:C2:C7:A0:36:84:C6:F6:36:12:11:07:F9:C2:9C:07:83:79:91:BF
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 0194221FD28E6A4511FE150571C1FE62C6B5
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/e8LHoDaExvY2EhEH-cKcB4N5kb8.roa
Signing time: Wed 01 Jan 2025 13:48:18 +0000
ROA not before: Wed 01 Jan 2025 13:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211746
IP address blocks: 78.133.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:d2:8e:6a:45:11:fe:15:05:71:c1:fe:62:c6:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 13:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7bc2c7a03684c6f636121107f9c29c07837991bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d7:78:ad:94:15:23:c4:8b:05:83:3b:b1:af:
7f:3a:03:f3:b6:e6:6b:40:5a:bf:7a:8a:eb:b8:4d:
e2:92:b5:e6:5a:39:b1:19:4b:64:ba:18:8d:db:cc:
e4:67:85:bc:47:83:56:bc:e1:68:41:e5:fa:36:0d:
64:75:bd:39:87:dd:f6:b9:95:92:16:7d:43:76:e6:
41:1e:4c:1b:34:53:9d:02:70:45:4b:20:53:56:25:
73:fa:f8:16:83:a2:c3:5b:78:0c:80:50:b8:ba:e7:
a0:3b:b0:38:2a:38:6c:86:1f:06:a7:71:c2:a5:67:
43:80:a9:a5:b9:5e:20:76:e9:da:51:91:14:3f:90:
57:d3:b2:52:61:1e:05:e3:15:92:96:3f:bd:2a:35:
61:0b:30:c5:7f:d1:14:9e:3a:55:50:bf:9d:fe:c0:
a7:d2:26:9d:2c:21:d4:e7:cf:e4:a9:87:3b:e2:69:
e7:7a:47:09:c7:1a:22:22:ee:97:59:f5:5f:59:d8:
c5:83:10:63:3f:56:58:f6:f2:c6:df:77:49:a5:31:
ff:82:b5:80:ec:e1:ed:6b:7d:78:8f:b7:a7:6e:94:
30:a0:fa:14:73:5a:1e:62:d6:1d:ca:15:01:94:85:
24:37:ad:c2:35:48:fd:83:76:a0:46:12:39:b4:c1:
93:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C2:C7:A0:36:84:C6:F6:36:12:11:07:F9:C2:9C:07:83:79:91:BF
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/e8LHoDaExvY2EhEH-cKcB4N5kb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.133.166.0/24
Signature Algorithm: sha256WithRSAEncryption
95:28:98:1e:b8:d1:67:6c:62:b4:87:d2:be:c2:1b:a1:1f:cc:
c5:04:cb:9a:e6:3d:ab:61:50:71:ec:f9:72:b8:a0:8c:72:2d:
28:96:29:96:d9:04:22:2b:a8:ae:f3:02:57:4f:f0:16:db:0e:
19:fb:01:a1:23:09:0b:b4:ab:b4:80:34:35:74:45:23:05:15:
dc:aa:dc:9c:05:ec:e3:a1:0d:58:ad:04:3c:24:91:b6:1b:24:
93:c5:50:4e:9e:b8:cc:89:39:af:48:36:ea:a1:01:a4:cc:69:
6a:f5:19:06:8e:72:c0:46:db:7f:ac:b3:37:ab:24:3f:93:5f:
f7:56:9f:6d:81:6b:64:09:aa:93:0d:39:e9:76:c4:4f:5d:e7:
73:e7:64:b6:49:ee:df:a6:7e:7a:03:27:ec:2c:e8:6a:2e:6b:
af:94:46:e1:aa:10:10:27:06:eb:b7:39:12:2b:ea:05:33:a5:
74:19:1b:a7:cf:e1:69:14:5a:cd:12:05:c0:a9:e4:d7:31:7b:
2c:63:49:21:de:d8:2e:42:dc:43:31:8c:c0:ed:ec:97:8f:e0:
35:ec:81:65:6d:f6:c6:a1:52:a3:5f:6d:eb:a2:0f:7d:14:f9:
b9:5b:13:74:f1:93:c8:2b:d2:17:55:3f:34:5b:b5:d5:a6:c7:
68:54:a4:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:49 2025 by rpki-client on console.sobornost.net