Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0c4392-2754-4e33-a02f-7bfb4381ab54/1/bfuZYtxjTAOdpCpRWdDszbBOycM.roa
File: bfuZYtxjTAOdpCpRWdDszbBOycM.roa (raw, json)
Hash identifier: oKsbpIb+4VCZp3VPNUM0uIEJezlOZcr7unos7yGZizs=
Subject key identifier: 6D:FB:99:62:DC:63:4C:03:9D:A4:2A:51:59:D0:EC:CD:B0:4E:C9:C3
Certificate issuer: /CN=bde636ff523e5f3734227f33c44c2e50ff8d1ee2
Certificate serial: 0194258F1B47365ACA3F83DF56131886DE05
Authority key identifier: BD:E6:36:FF:52:3E:5F:37:34:22:7F:33:C4:4C:2E:50:FF:8D:1E:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veY2_1I-Xzc0In8zxEwuUP-NHuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0c4392-2754-4e33-a02f-7bfb4381ab54/1/bfuZYtxjTAOdpCpRWdDszbBOycM.roa
Signing time: Thu 02 Jan 2025 05:48:42 +0000
ROA not before: Thu 02 Jan 2025 05:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61108
IP address blocks: 178.238.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:1b:47:36:5a:ca:3f:83:df:56:13:18:86:de:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde636ff523e5f3734227f33c44c2e50ff8d1ee2
Validity
Not Before: Jan 2 05:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6dfb9962dc634c039da42a5159d0eccdb04ec9c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:df:64:15:69:95:5e:a0:0c:27:cc:9b:60:25:
94:66:dd:d9:3c:db:cb:e3:27:02:ce:f3:5d:79:c2:
46:5a:41:1c:bd:e7:01:bf:88:c5:fb:99:36:36:ed:
cf:e1:ad:6b:a0:57:cc:e3:47:15:15:10:4c:a7:4f:
34:9d:15:2f:9f:89:97:e5:0d:b5:54:24:64:6e:e9:
1c:65:1a:c4:97:59:c7:7e:94:d6:76:b4:24:6e:2e:
31:39:22:ac:9e:f9:30:44:a9:2d:15:ac:4c:30:d0:
8e:8c:1c:78:e2:41:89:2e:fc:c7:2e:1f:92:fa:4b:
a2:97:07:71:f8:0c:69:42:5d:dc:4e:1d:ed:49:87:
bd:f7:3b:f2:3d:0c:b7:e5:1e:51:56:da:f4:00:55:
2e:81:43:82:a8:07:41:4f:69:82:43:cd:0d:71:d7:
48:db:59:1a:bd:6c:40:a0:66:2d:48:82:58:c3:26:
71:4a:48:fe:38:ff:97:88:7d:7d:b7:35:b7:6c:f2:
b0:a4:00:71:d5:77:90:a5:b1:96:b8:1a:ad:03:34:
e8:21:d5:b9:1b:78:03:89:eb:47:46:bb:0f:24:63:
fc:a7:bd:5c:9c:a6:d5:76:c3:59:83:cd:57:ff:00:
14:1d:fb:6f:8c:de:cd:e7:2c:79:d6:1d:60:23:52:
d8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:FB:99:62:DC:63:4C:03:9D:A4:2A:51:59:D0:EC:CD:B0:4E:C9:C3
X509v3 Authority Key Identifier:
keyid:BD:E6:36:FF:52:3E:5F:37:34:22:7F:33:C4:4C:2E:50:FF:8D:1E:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veY2_1I-Xzc0In8zxEwuUP-NHuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0c4392-2754-4e33-a02f-7bfb4381ab54/1/bfuZYtxjTAOdpCpRWdDszbBOycM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0c4392-2754-4e33-a02f-7bfb4381ab54/1/veY2_1I-Xzc0In8zxEwuUP-NHuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.238.0.0/22
Signature Algorithm: sha256WithRSAEncryption
84:1b:b3:31:59:5b:71:43:89:f8:a7:b4:6c:9d:54:3f:74:85:
49:e9:8b:7a:b4:69:4a:23:5a:c5:b8:d3:ad:f3:ad:be:28:5f:
10:90:bf:c4:e4:64:49:35:fa:c1:ef:13:2f:fd:91:12:3b:3f:
f6:c8:77:94:c2:0a:a6:de:50:ff:97:26:03:e1:82:01:a3:94:
e6:58:48:4d:14:c3:a7:24:bb:2a:70:87:3c:e6:77:c6:0f:28:
b2:92:a8:3c:4f:c6:9b:76:84:45:fb:7f:78:51:f0:cf:35:2b:
c0:9a:0f:e8:98:7f:a8:e9:c4:99:bb:57:0f:91:3e:8d:c8:c1:
f4:de:88:3d:bd:56:5a:b8:87:18:8e:f5:dc:94:09:34:27:e9:
14:e9:61:49:ea:98:ff:8a:f7:5a:9f:af:f0:82:27:87:92:fd:
7a:6e:12:03:3a:b3:03:84:7b:59:2a:72:92:b3:bc:9a:07:9b:
c2:13:e4:72:e1:82:82:88:02:65:f7:fc:a0:8c:95:d9:a7:90:
f9:40:5b:71:10:b3:a7:c2:ca:e3:de:0b:3f:02:c3:35:17:1b:
d9:5b:c2:f4:71:60:41:3f:c9:86:2f:da:6b:5f:f1:c5:92:88:
3c:ee:5d:16:6c:c1:63:ca:11:4e:77:5e:22:96:6f:38:4b:cd:
66:16:5a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:08:31 2025 by rpki-client