Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/h81MQCGUH4YWhsU7_noNE9t-6Ag.roa
File: h81MQCGUH4YWhsU7_noNE9t-6Ag.roa (raw, json)
Hash identifier: B55fQoBAEqhRk0fmuOYVFDE0A21yTHmBQBoOyLnBQrM=
Subject key identifier: 87:CD:4C:40:21:94:1F:86:16:86:C5:3B:FE:7A:0D:13:DB:7E:E8:08
Certificate issuer: /CN=de7c82b2276cbdf130ccad046b65feab2c27ed49
Certificate serial: 019423D756B78170E5635880EA9F87D763EE
Authority key identifier: DE:7C:82:B2:27:6C:BD:F1:30:CC:AD:04:6B:65:FE:AB:2C:27:ED:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3nyCsidsvfEwzK0Ea2X-qywn7Uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/h81MQCGUH4YWhsU7_noNE9t-6Ag.roa
Signing time: Wed 01 Jan 2025 21:48:22 +0000
ROA not before: Wed 01 Jan 2025 21:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52204
IP address blocks: 176.118.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:56:b7:81:70:e5:63:58:80:ea:9f:87:d7:63:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de7c82b2276cbdf130ccad046b65feab2c27ed49
Validity
Not Before: Jan 1 21:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=87cd4c4021941f861686c53bfe7a0d13db7ee808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c4:e3:29:0a:51:5b:9a:bd:c9:3b:40:35:07:
71:43:b0:07:2b:71:90:0b:78:d6:43:22:05:6d:58:
22:d6:4f:ee:23:71:ab:bf:42:b2:14:9b:b0:94:94:
3f:35:43:75:7e:f1:ae:bc:0c:8a:9a:43:95:cf:c0:
9a:4c:1e:27:12:d2:fb:1c:70:8c:2a:4a:4a:9c:56:
57:d3:b9:f6:1a:cf:a6:24:95:a4:e7:84:c1:95:57:
7b:f9:6f:c3:c7:c9:37:7e:b3:c4:1b:b0:16:6b:40:
dc:68:48:61:b0:7b:c9:9e:e8:75:c3:c5:0e:34:fb:
5a:f3:c3:6b:f4:7e:f7:1b:ff:68:20:bd:56:6a:62:
16:3a:d2:7c:76:24:91:2a:31:31:4e:8c:0c:9b:33:
23:f0:d8:d6:39:dc:f8:41:4a:9f:83:d6:11:a9:ca:
ec:c8:70:52:50:69:fa:4d:ab:a8:a3:66:01:e5:fd:
96:0b:23:aa:69:bb:36:ea:a7:5e:94:ea:53:d6:fd:
9a:21:d9:39:5d:2d:93:d1:86:6b:a1:28:a4:6c:fc:
c5:e0:1c:38:ab:e6:6f:25:40:31:b8:5d:7b:95:fc:
e4:16:df:0c:70:19:0e:71:3a:60:9e:08:77:cb:59:
19:95:d1:62:07:3e:d8:c5:60:0c:c3:36:09:a5:46:
8b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CD:4C:40:21:94:1F:86:16:86:C5:3B:FE:7A:0D:13:DB:7E:E8:08
X509v3 Authority Key Identifier:
keyid:DE:7C:82:B2:27:6C:BD:F1:30:CC:AD:04:6B:65:FE:AB:2C:27:ED:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3nyCsidsvfEwzK0Ea2X-qywn7Uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/h81MQCGUH4YWhsU7_noNE9t-6Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/3nyCsidsvfEwzK0Ea2X-qywn7Uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.184.0/24
Signature Algorithm: sha256WithRSAEncryption
38:11:e1:75:d3:98:be:fb:45:c5:dd:89:f7:b2:a0:fa:80:c3:
23:fa:af:7f:10:fa:de:1d:3c:6f:b0:6e:48:ac:85:7f:86:e6:
94:bd:50:b4:c1:aa:20:62:0a:35:76:9f:f6:66:18:42:5d:cb:
a4:e5:b3:56:48:34:c8:11:35:0d:60:db:41:70:49:a8:d0:e3:
31:df:89:4b:78:56:59:38:3f:2b:6d:89:43:c0:6a:f2:a0:61:
27:db:4d:31:61:d0:eb:87:e5:d5:6e:5a:5e:de:0c:08:7f:7e:
7e:b2:a9:f2:45:25:89:13:5f:5f:e9:4a:71:c8:67:2e:4b:51:
cb:4a:26:05:66:88:07:63:0a:42:8c:65:a3:b5:12:17:57:fd:
10:e0:d8:c7:b3:bf:97:14:a7:87:05:58:9a:e3:01:99:9c:52:
0b:80:69:67:b9:d4:f4:8c:95:9f:ae:a1:e0:b9:d9:48:47:fb:
31:a1:b6:84:d3:fd:c0:e4:c0:dd:54:f3:1f:de:19:b3:4d:64:
16:52:fe:da:95:dd:57:4b:38:bc:6e:3a:bf:be:6b:d1:3c:d5:
0a:98:43:64:d3:d0:15:d5:93:8a:56:22:ed:24:6e:84:f6:cc:
93:6e:78:dc:c4:c9:cb:d7:c4:97:1f:85:9c:0c:ea:c5:3e:e3:
4b:47:38:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:05:34 2025 by rpki-client