Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/VhwEbxUgJOza67qJ4K_i1Uqq3ms.roa
File: VhwEbxUgJOza67qJ4K_i1Uqq3ms.roa (raw, json)
Hash identifier: aCXGgi5AYKAi5vfsurTRm09inwo+Mr6Oxc+TCBbgaZE=
Subject key identifier: 56:1C:04:6F:15:20:24:EC:DA:EB:BA:89:E0:AF:E2:D5:4A:AA:DE:6B
Certificate issuer: /CN=178235df535526d9e6d6aff6fa7ac52293a92c71
Certificate serial: 01942747EABE391F44A60B3E0D234DFF5CD8
Authority key identifier: 17:82:35:DF:53:55:26:D9:E6:D6:AF:F6:FA:7A:C5:22:93:A9:2C:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4I131NVJtnm1q_2-nrFIpOpLHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/VhwEbxUgJOza67qJ4K_i1Uqq3ms.roa
Signing time: Thu 02 Jan 2025 13:50:11 +0000
ROA not before: Thu 02 Jan 2025 13:50:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213904
IP address blocks: 82.214.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:ea:be:39:1f:44:a6:0b:3e:0d:23:4d:ff:5c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=178235df535526d9e6d6aff6fa7ac52293a92c71
Validity
Not Before: Jan 2 13:50:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=561c046f152024ecdaebba89e0afe2d54aaade6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5d:63:86:ae:83:c1:b4:8d:db:39:dc:63:56:
e8:b5:87:0d:78:86:91:38:1a:66:0c:24:77:47:19:
b0:93:be:c8:60:d7:9a:12:b4:b0:1d:53:25:e6:84:
9a:92:04:13:88:17:3b:b8:cc:80:3a:e3:75:eb:93:
6e:3e:00:ba:a7:15:38:fc:93:b2:bf:78:54:97:49:
ac:98:49:d8:39:f9:29:aa:8e:f9:20:87:5f:bd:ec:
65:67:42:bc:27:98:21:f1:33:a2:e0:dd:98:07:f2:
cc:6e:d2:86:db:7e:13:73:39:87:7c:e5:8b:4b:5b:
31:7e:89:de:dc:01:f3:97:da:11:fe:ce:60:d6:5a:
40:d6:e1:4e:4f:b8:fe:62:34:9f:d1:83:35:dd:74:
3f:9a:e4:60:bd:dc:a1:04:71:05:58:7b:94:b0:93:
01:48:ba:72:60:fa:f0:63:f5:62:ff:99:b6:c7:b9:
c3:80:f7:6c:dd:35:f6:73:1b:ea:dc:3a:e8:6c:6b:
56:22:37:50:d8:d8:33:72:54:84:f9:36:7d:90:1d:
81:92:4e:13:6d:65:56:fa:e1:40:69:9b:93:ba:bc:
3a:5b:17:5b:0b:02:79:c2:3e:f2:fb:fb:f2:90:29:
e5:f9:05:84:72:e4:98:ab:5d:91:8a:9d:13:c4:96:
79:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1C:04:6F:15:20:24:EC:DA:EB:BA:89:E0:AF:E2:D5:4A:AA:DE:6B
X509v3 Authority Key Identifier:
keyid:17:82:35:DF:53:55:26:D9:E6:D6:AF:F6:FA:7A:C5:22:93:A9:2C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4I131NVJtnm1q_2-nrFIpOpLHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/VhwEbxUgJOza67qJ4K_i1Uqq3ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/F4I131NVJtnm1q_2-nrFIpOpLHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.214.78.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:a0:df:7c:3d:af:82:a8:d9:50:f1:06:17:4e:01:d6:0d:62:
99:86:3b:36:f0:54:28:e0:7e:fb:32:b2:24:b1:c6:b4:d8:eb:
a1:1b:73:32:b9:b2:59:7b:c2:5d:31:46:9b:6c:32:54:92:b0:
b5:44:9d:cd:59:64:cb:94:74:0d:dd:ba:b8:7a:f9:7f:50:3d:
88:62:1c:80:0c:53:0f:b0:0d:85:9b:5a:c6:fe:cf:cf:cf:c7:
b1:fc:2d:53:dd:8a:8e:9b:4e:73:b2:90:a7:10:c0:9e:1e:f1:
66:39:61:1f:25:50:0e:a9:a2:4a:52:98:b8:98:62:c6:d8:53:
53:39:c8:51:ce:b7:43:47:1b:51:35:85:e4:c9:98:7d:f3:f9:
e1:ed:d2:de:f7:92:5c:dd:09:2a:a8:cd:af:2f:01:57:48:c7:
b4:a0:8d:a7:e8:6c:39:72:9c:37:0b:ec:9c:6b:b4:60:b7:56:
de:8b:b8:d5:c0:72:7e:d9:87:84:0c:44:10:21:ab:ed:55:80:
a4:1b:10:68:d9:8a:74:a8:a2:8a:35:56:e1:8c:99:db:47:11:
64:4f:cb:28:5e:46:98:ad:42:6b:a3:e7:96:30:88:d1:8e:6d:
e2:6b:c5:2d:6b:93:17:af:18:1c:30:4a:9d:d9:e9:87:0e:c4:
1b:20:b6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:09:31 2025 by rpki-client