Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/BUF7f1UtiJtn_Bvl19qd2EwX0QQ.roa
File: BUF7f1UtiJtn_Bvl19qd2EwX0QQ.roa (raw, json)
Hash identifier: aqc2Xj2T1ZitA4dQvOlzNWa0gg3kBqNbkLQxtT41W0I=
Subject key identifier: 05:41:7B:7F:55:2D:88:9B:67:FC:1B:E5:D7:DA:9D:D8:4C:17:D1:04
Certificate issuer: /CN=877d1810048f43720506e4c1820f6fe08ff7ca6e
Certificate serial: 01941F8C6DF7E6B4B284FD7CE5367FD61CEF
Authority key identifier: 87:7D:18:10:04:8F:43:72:05:06:E4:C1:82:0F:6F:E0:8F:F7:CA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/BUF7f1UtiJtn_Bvl19qd2EwX0QQ.roa
Signing time: Wed 01 Jan 2025 01:48:04 +0000
ROA not before: Wed 01 Jan 2025 01:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 196994
IP address blocks: 178.216.24.0/24 maxlen: 24
178.216.25.0/24 maxlen: 24
178.216.26.0/24 maxlen: 24
178.216.27.0/24 maxlen: 24
178.216.28.0/24 maxlen: 24
178.216.29.0/24 maxlen: 24
178.216.30.0/24 maxlen: 24
178.216.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:6d:f7:e6:b4:b2:84:fd:7c:e5:36:7f:d6:1c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877d1810048f43720506e4c1820f6fe08ff7ca6e
Validity
Not Before: Jan 1 01:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=05417b7f552d889b67fc1be5d7da9dd84c17d104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:17:8d:04:93:84:11:7e:c5:43:76:94:58:af:
07:36:a8:d8:a5:ba:8a:71:75:3b:ff:e3:e9:ac:0b:
99:03:34:41:7e:e1:47:50:20:69:79:8a:1e:c0:cc:
82:72:8b:20:56:61:61:fc:f7:19:9a:2c:3d:93:f3:
14:ab:90:99:21:6b:50:d2:de:8a:54:76:17:cb:39:
a3:84:21:b9:5e:9f:99:5e:c2:10:0c:fb:e4:19:84:
76:29:73:0f:15:09:0e:ab:88:fb:c9:a5:a4:26:d9:
8b:26:d1:35:b8:94:a4:53:b4:f0:0b:88:77:ab:af:
7c:c9:b1:ca:ed:87:d6:c7:6e:ed:36:ad:64:94:e1:
98:ce:7a:24:f1:e4:0d:8d:a2:54:ab:43:85:fc:fc:
46:56:71:04:c8:73:62:00:62:99:3f:53:b1:b2:48:
65:1b:f2:84:af:1b:e5:76:91:67:17:db:6f:29:e5:
c8:73:f9:32:5a:c3:a1:5a:34:b2:1b:0c:23:b8:d7:
f7:3f:02:bb:da:3a:79:48:8e:47:5e:6e:be:46:38:
b4:b5:3e:30:30:13:64:91:e8:d0:17:19:30:ca:44:
47:2e:85:45:a2:96:93:70:6e:97:3d:14:32:de:7a:
a1:2e:d7:a7:a5:23:fe:63:ae:3c:0d:99:7e:8f:cb:
35:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:41:7B:7F:55:2D:88:9B:67:FC:1B:E5:D7:DA:9D:D8:4C:17:D1:04
X509v3 Authority Key Identifier:
keyid:87:7D:18:10:04:8F:43:72:05:06:E4:C1:82:0F:6F:E0:8F:F7:CA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/BUF7f1UtiJtn_Bvl19qd2EwX0QQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.216.24.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:ff:c3:7a:ac:b9:47:5f:f7:c4:e8:15:c8:46:d3:ed:0d:8a:
a6:00:8b:23:50:50:ce:75:48:4f:d9:f4:39:5e:80:5c:ca:77:
b3:72:07:91:1b:99:7a:45:85:d0:58:88:6d:30:76:66:5e:d8:
26:01:bc:a4:88:c3:c3:01:68:23:19:19:2e:4c:2d:45:cd:1d:
ba:6e:e9:c0:38:f6:cf:e3:a1:11:60:cc:0d:25:e0:a4:8f:82:
62:31:f6:31:f7:80:02:16:8d:ce:9b:18:06:49:86:a8:2c:d6:
26:70:58:b7:0f:dd:d5:98:2b:77:7f:07:27:83:a0:0f:41:d5:
83:19:f2:ee:8c:66:18:a6:fc:6e:a6:29:23:75:14:66:21:6f:
92:7d:43:2f:fa:6a:57:b6:79:36:b0:a7:f1:b5:d3:5c:20:b9:
b1:4e:0f:9d:ee:09:19:75:e2:47:18:4b:de:98:c8:36:f9:2d:
fd:e0:ff:78:11:da:b5:df:53:50:a5:b7:ec:17:6b:ca:9a:18:
91:af:fa:d8:74:53:ee:89:05:29:b7:d3:a6:cb:2d:89:d9:35:
3d:1d:69:00:95:c5:c1:d6:9e:61:ae:5b:0c:eb:d0:a2:ed:9c:
46:a5:12:38:d0:f1:d2:6b:e4:30:49:2f:bf:cb:d7:72:7b:93:
ce:f7:81:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:28 2025 by rpki-client on console.sobornost.net