Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/TXoJbYdgwtSRoMICf6BpMrQmJMs.roa
File: TXoJbYdgwtSRoMICf6BpMrQmJMs.roa (raw, json)
Hash identifier: Ede1kltXJewHDWyl80pDm1qv2UWiny8U21Nq2Z6l0i4=
Subject key identifier: 4D:7A:09:6D:87:60:C2:D4:91:A0:C2:02:7F:A0:69:32:B4:26:24:CB
Certificate issuer: /CN=393cc8b7d2dc70a27d40fa459e4e56c005ccc63a
Certificate serial: 01942747EC2172F05AD1350933E31C28305A
Authority key identifier: 39:3C:C8:B7:D2:DC:70:A2:7D:40:FA:45:9E:4E:56:C0:05:CC:C6:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTzIt9LccKJ9QPpFnk5WwAXMxjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/TXoJbYdgwtSRoMICf6BpMrQmJMs.roa
Signing time: Thu 02 Jan 2025 13:50:12 +0000
ROA not before: Thu 02 Jan 2025 13:50:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207544
IP address blocks: 78.110.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:ec:21:72:f0:5a:d1:35:09:33:e3:1c:28:30:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=393cc8b7d2dc70a27d40fa459e4e56c005ccc63a
Validity
Not Before: Jan 2 13:50:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d7a096d8760c2d491a0c2027fa06932b42624cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:b9:65:72:1a:72:5a:96:81:0d:2a:93:6e:
9a:14:14:36:f2:0b:0d:c8:48:f3:66:90:3a:91:78:
c9:6e:38:bc:9b:5d:eb:86:5e:f3:06:5c:5a:ee:5d:
68:a2:63:47:16:82:54:33:c6:d5:87:f2:9a:61:44:
88:6c:60:05:e1:4c:c6:80:f3:b3:d2:21:54:dc:b6:
22:e7:af:71:c5:12:02:b4:02:07:07:fe:16:07:e1:
c7:aa:98:22:91:d2:9d:93:a6:6a:57:fa:09:0f:22:
8e:21:83:41:11:a6:e0:5e:1d:ea:47:31:44:fd:5d:
a0:cb:05:23:fe:24:34:e6:7e:9c:d9:f2:55:18:68:
7b:f5:84:cd:72:2c:0f:f7:98:8b:ca:37:51:c9:f2:
48:1e:38:9b:a0:10:74:29:f8:31:bb:e6:d4:84:ea:
e6:fc:a0:74:ef:3f:7f:4f:b3:33:02:5c:e4:6e:f4:
f2:c5:14:c0:68:88:c0:b6:db:49:23:f8:e1:6d:b1:
44:c6:09:e2:41:fb:90:3f:97:12:1c:86:41:94:6e:
ea:79:15:b5:62:bd:1c:49:eb:75:44:6c:13:5e:48:
cc:9a:80:e9:75:59:1d:64:4a:bf:4c:af:26:15:9b:
50:8c:cf:30:85:f4:6b:52:63:05:ce:65:1f:c0:08:
49:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7A:09:6D:87:60:C2:D4:91:A0:C2:02:7F:A0:69:32:B4:26:24:CB
X509v3 Authority Key Identifier:
keyid:39:3C:C8:B7:D2:DC:70:A2:7D:40:FA:45:9E:4E:56:C0:05:CC:C6:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTzIt9LccKJ9QPpFnk5WwAXMxjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/TXoJbYdgwtSRoMICf6BpMrQmJMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/OTzIt9LccKJ9QPpFnk5WwAXMxjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.110.0.0/24
Signature Algorithm: sha256WithRSAEncryption
92:6a:63:4c:f7:a9:01:82:ed:96:2e:1b:89:61:d7:8e:7a:e5:
52:0d:4b:c9:4d:57:1b:c5:7a:a5:7e:9b:6b:5e:43:09:09:93:
d4:84:c7:e0:96:15:58:01:e7:cf:0d:5e:58:81:8f:1b:6f:cd:
63:db:07:57:ae:62:42:ec:91:55:b5:bf:24:9a:e7:56:5d:51:
fb:c0:9e:64:d3:77:f3:45:0a:5b:17:1d:aa:9e:53:f2:2d:3e:
53:c1:9b:8f:7c:96:70:b4:bb:ae:a8:7e:1d:45:58:16:d3:8f:
37:06:26:fa:a5:46:7f:49:d6:f5:78:fa:20:db:ae:aa:fa:27:
f3:be:f8:23:1d:14:da:4a:f0:85:a0:d9:34:f3:5b:01:c6:f5:
90:3c:49:f1:6f:17:0b:87:a7:2f:46:94:7c:75:fc:88:92:48:
dc:ce:a2:f8:88:19:0a:27:b1:28:6b:d8:fc:d0:5b:c1:63:45:
d1:3c:12:0c:8b:51:02:e3:9d:8e:d4:28:92:2d:cb:20:43:eb:
61:a9:a8:50:31:82:83:c3:8e:da:ee:51:54:6b:0a:69:1b:a0:
93:df:37:23:29:d8:26:4d:49:d6:61:43:e0:19:be:03:7e:25:
cd:ff:58:44:25:d8:66:e6:21:ae:cc:b1:ac:16:63:a5:39:79:
ad:17:c3:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:54:06 2025 by rpki-client