Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/imE36QLRTMX_BQ-hGxHCq-HzUSs.roa
File: imE36QLRTMX_BQ-hGxHCq-HzUSs.roa (raw, json)
Hash identifier: 9oBmGg8MmifOi5UePbS9lDJePGL5vAfP7BimBla3w98=
Subject key identifier: 8A:61:37:E9:02:D1:4C:C5:FF:05:0F:A1:1B:11:C2:AB:E1:F3:51:2B
Certificate issuer: /CN=aebf394e2f1b251c88d988a87161084580786ef5
Certificate serial: 019423D6AA107DDE8E08DDF376AC5BDE0F9A
Authority key identifier: AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/imE36QLRTMX_BQ-hGxHCq-HzUSs.roa
Signing time: Wed 01 Jan 2025 21:47:38 +0000
ROA not before: Wed 01 Jan 2025 21:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31132
IP address blocks: 178.249.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:aa:10:7d:de:8e:08:dd:f3:76:ac:5b:de:0f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aebf394e2f1b251c88d988a87161084580786ef5
Validity
Not Before: Jan 1 21:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a6137e902d14cc5ff050fa11b11c2abe1f3512b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8a:4b:25:6f:2a:16:26:be:f7:99:69:be:89:
f1:a7:6c:a8:a8:a1:c6:09:2f:a7:29:f4:3b:55:60:
4e:1f:86:49:e0:d4:ed:04:6e:eb:80:73:78:2d:64:
8d:90:bd:e5:dd:d6:8c:97:77:29:02:f5:ea:48:f2:
97:8e:9c:4b:cc:c7:7d:55:0c:d1:d3:07:93:c3:0e:
8f:31:66:70:33:63:7e:b2:68:0c:9d:a9:7a:44:90:
f1:25:14:80:58:61:63:86:9c:a3:9b:2c:8f:1e:91:
d7:86:3b:9e:07:28:5b:44:36:f1:f8:5a:a9:38:35:
46:89:e8:14:b7:ee:ff:1d:8b:8a:d1:67:3e:c8:ab:
04:8d:0f:f1:a9:e2:3c:67:0c:80:bd:0b:c8:9c:b5:
9e:fe:41:5c:11:19:44:ea:9a:4b:45:9c:13:a7:d3:
46:8a:25:2d:d9:2b:f7:dc:e2:78:14:21:88:6a:bf:
06:df:c4:c8:cc:fc:c3:cc:af:e9:3a:a1:c4:b7:cf:
6c:e7:7c:f9:ca:41:bc:e1:f0:1f:71:9c:2c:f9:34:
a1:15:72:bc:27:20:83:02:fe:fa:fb:e9:58:20:57:
e5:8e:1f:a6:17:6c:58:60:41:92:4e:53:79:b4:bf:
4f:07:57:f1:05:06:78:6f:c1:9f:01:f1:58:1b:57:
65:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:61:37:E9:02:D1:4C:C5:FF:05:0F:A1:1B:11:C2:AB:E1:F3:51:2B
X509v3 Authority Key Identifier:
keyid:AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/imE36QLRTMX_BQ-hGxHCq-HzUSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/rr85Ti8bJRyI2YiocWEIRYB4bvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.249.164.0/24
Signature Algorithm: sha256WithRSAEncryption
92:b5:18:de:8f:55:bb:60:2c:17:77:56:aa:84:f7:5c:2d:23:
0b:49:c9:b1:62:8a:e9:8e:19:c8:08:8b:b4:48:2a:38:3a:0f:
ad:f9:73:74:ec:2f:db:9f:18:5b:34:ac:ce:66:8f:9f:0a:f9:
de:55:d9:c3:ce:d3:69:41:20:62:66:93:23:f3:f2:46:0d:80:
74:ab:9a:fb:34:2b:67:74:31:34:95:8a:18:60:c7:8c:ad:79:
97:d9:be:82:65:fb:65:66:7d:28:85:23:74:82:46:6e:bd:2a:
97:05:bc:29:c4:39:42:6b:25:87:71:c9:92:13:ab:21:8e:ac:
b9:d4:b2:0b:eb:8b:d7:fb:c5:45:4c:8a:b4:7d:f9:c1:ca:7e:
46:8c:6d:b6:0d:fc:42:a7:95:2c:fb:e3:70:49:e1:a1:f2:a3:
0d:68:2f:b9:f9:b2:83:29:c4:66:84:f0:5e:73:ec:5b:ca:a1:
ec:3a:e0:f9:69:94:67:06:47:9c:8e:1c:4c:b3:1d:db:1f:da:
a1:cd:36:82:9c:87:18:44:b8:c6:f5:ac:e3:57:86:38:53:07:
0c:ec:d9:92:4d:52:ef:14:58:cb:c0:bc:61:a1:c3:4c:22:d6:
09:22:e3:66:b6:0b:3a:46:dc:8c:ad:85:45:d6:2b:63:21:21:
f5:35:f3:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net