Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a31b82-d7ea-4f0b-863d-61605b26f82d/1/bjCXA7rp-GRMTkdMkg_zXfKYrW0.roa
File: bjCXA7rp-GRMTkdMkg_zXfKYrW0.roa (raw, json)
Hash identifier: FxnvNnw+IOeKtHJC0KTXpxkTr4pA05J6vavAi4HV2BA=
Subject key identifier: 6E:30:97:03:BA:E9:F8:64:4C:4E:47:4C:92:0F:F3:5D:F2:98:AD:6D
Certificate issuer: /CN=23ac486807398ac1ceec0921d04d409a4f7f479b
Certificate serial: 019425223CB8491BDC76F97E8782465D913C
Authority key identifier: 23:AC:48:68:07:39:8A:C1:CE:EC:09:21:D0:4D:40:9A:4F:7F:47:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6xIaAc5isHO7Akh0E1Amk9_R5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a31b82-d7ea-4f0b-863d-61605b26f82d/1/bjCXA7rp-GRMTkdMkg_zXfKYrW0.roa
Signing time: Thu 02 Jan 2025 03:49:48 +0000
ROA not before: Thu 02 Jan 2025 03:49:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199345
IP address blocks: 176.124.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:3c:b8:49:1b:dc:76:f9:7e:87:82:46:5d:91:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ac486807398ac1ceec0921d04d409a4f7f479b
Validity
Not Before: Jan 2 03:49:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e309703bae9f8644c4e474c920ff35df298ad6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2b:d9:de:1c:47:fd:45:3f:db:8d:1b:cf:fb:
97:4d:f3:71:2b:96:f0:a0:0a:b5:f2:43:fe:1a:5d:
4e:e4:07:d1:a1:26:c5:36:df:b4:15:f0:f6:2d:47:
c7:e8:6b:03:e7:ae:ba:50:7a:8d:ff:64:e8:1f:84:
5e:81:06:99:30:e0:70:7c:58:98:82:69:fe:38:d3:
57:cf:3a:9c:49:b0:42:5f:50:88:eb:32:e8:7a:58:
eb:9a:75:32:f7:05:21:93:a1:bd:4a:a8:28:fa:f4:
e0:10:86:13:ac:f0:e1:7a:a1:05:f1:3f:02:03:67:
0c:c1:da:6d:fc:d7:72:1b:3a:a5:8b:96:df:39:75:
7c:d2:56:9a:f4:99:28:11:25:42:d8:21:03:00:cf:
ad:b9:02:40:e5:ba:de:f9:0a:96:b9:05:26:60:e6:
35:6c:e0:68:85:2f:e7:1c:0a:08:8d:74:f1:be:f4:
23:d6:fe:3f:03:59:7a:35:e5:6e:ca:71:d0:5d:99:
f2:dc:5e:71:01:6c:ff:d2:ba:b4:99:68:2a:99:52:
07:fa:b5:ae:ba:4a:75:5e:61:85:20:c8:01:14:2f:
98:83:36:db:58:75:56:9e:8c:2b:c3:1b:d8:ce:21:
de:ca:62:a0:c1:5f:68:f7:14:c7:c0:de:24:be:73:
95:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:30:97:03:BA:E9:F8:64:4C:4E:47:4C:92:0F:F3:5D:F2:98:AD:6D
X509v3 Authority Key Identifier:
keyid:23:AC:48:68:07:39:8A:C1:CE:EC:09:21:D0:4D:40:9A:4F:7F:47:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6xIaAc5isHO7Akh0E1Amk9_R5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a31b82-d7ea-4f0b-863d-61605b26f82d/1/bjCXA7rp-GRMTkdMkg_zXfKYrW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a31b82-d7ea-4f0b-863d-61605b26f82d/1/I6xIaAc5isHO7Akh0E1Amk9_R5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.148.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:72:7c:6a:d8:69:4c:ea:9d:20:15:e0:cb:f7:04:c2:02:ef:
ba:37:d1:69:89:70:01:77:0e:8d:c6:3c:c5:58:91:9c:9a:f5:
59:fd:83:3a:34:21:f9:a5:7d:51:1f:6c:27:5b:0a:d6:7b:3f:
41:fc:4e:8e:86:cc:79:9a:9b:c0:2d:fd:49:6b:cc:90:27:42:
27:2e:48:7d:ee:cc:b6:a5:a3:20:3e:22:81:0f:10:36:6b:59:
7c:fd:28:01:53:25:8c:ff:85:b0:60:4e:43:97:dd:dd:d8:0a:
3c:22:94:ae:e1:cd:1f:21:35:c2:8a:6e:49:2f:98:7a:57:19:
1f:c5:99:d6:cc:5a:c9:2c:de:19:a6:6e:46:d0:42:a6:22:30:
19:9d:78:ce:14:17:6d:3f:a5:a4:50:58:65:7e:4e:f1:db:8e:
4d:e8:be:26:0f:97:c8:66:e7:16:67:d7:9d:84:e4:b7:1b:5c:
8d:57:32:be:ec:8a:8d:59:46:83:a2:e2:e2:0e:b3:89:6a:99:
9c:9a:07:21:19:3e:2a:0f:b9:a5:0f:b1:62:d7:09:19:20:98:
29:88:bd:b1:58:f8:27:40:64:fb:22:2b:28:3c:4a:2b:4b:11:
d0:b9:95:24:59:67:f3:f8:99:7e:bf:ad:64:f8:66:29:d8:39:
ae:62:ac:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:01 2025 by rpki-client on console.sobornost.net