Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/8USMVuIQw_1g0Yy-4ogehKJrY5c.roa
File: 8USMVuIQw_1g0Yy-4ogehKJrY5c.roa (raw, json)
Hash identifier: CGPA9TfI4+GRPXpRtAOohNmg7fIHc4SasfrALloopxo=
Subject key identifier: F1:44:8C:56:E2:10:C3:FD:60:D1:8C:BE:E2:88:1E:84:A2:6B:63:97
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 018FE01D4D6A34C26DD71404932475A2E6FE
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/8USMVuIQw_1g0Yy-4ogehKJrY5c.roa
Signing time: Mon 03 Jun 2024 21:59:27 +0000
ROA not before: Mon 03 Jun 2024 21:59:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 178.216.184.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e0:1d:4d:6a:34:c2:6d:d7:14:04:93:24:75:a2:e6:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Jun 3 21:59:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1448c56e210c3fd60d18cbee2881e84a26b6397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:86:44:df:0d:5f:44:58:36:4b:13:a1:2c:92:
58:f8:b7:8e:90:23:90:73:6a:3b:c0:0a:59:b5:10:
4d:1c:18:b8:d2:7a:7e:18:5c:25:9a:9b:c7:5f:ec:
7f:75:02:75:e7:eb:0a:91:09:2f:cd:50:4b:7c:1e:
fc:04:ae:8a:11:c6:42:d6:04:2c:26:85:9d:34:d9:
e7:bc:21:68:94:16:06:ab:e8:5f:2c:20:29:37:51:
83:c7:ce:b8:23:f5:7e:1c:6f:ad:25:1b:92:3e:dc:
86:33:53:cd:57:60:14:a6:0c:e1:01:88:15:78:8a:
39:dc:66:89:5d:d4:e9:0a:92:9d:88:cb:df:35:4c:
21:88:58:2f:f0:99:aa:21:44:dc:c1:9d:00:c5:98:
3f:2e:4f:21:cb:34:82:e2:e7:46:fa:4b:21:83:04:
f3:35:79:c4:ae:89:87:e7:55:3c:c6:22:f1:c5:39:
9a:59:3b:e6:e5:e9:a2:56:8a:f1:74:b2:1d:4c:40:
c9:cd:9e:ad:c1:57:6d:09:fa:7c:de:e3:2e:9b:b9:
29:c8:a0:aa:cd:a0:d9:c1:7f:9d:ee:98:95:18:8d:
a1:33:5b:55:c9:40:87:93:9b:ba:9f:cd:4c:c5:81:
42:43:9a:10:49:da:e5:43:62:f3:f8:48:c1:9a:8c:
99:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:44:8C:56:E2:10:C3:FD:60:D1:8C:BE:E2:88:1E:84:A2:6B:63:97
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/8USMVuIQw_1g0Yy-4ogehKJrY5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.216.184.0/21
Signature Algorithm: sha256WithRSAEncryption
24:7b:e1:c2:d5:1a:c4:aa:7d:e7:5f:26:7c:30:1b:ee:ef:43:
90:33:b9:2d:32:1f:c9:b6:28:bd:3d:e2:cd:ab:11:25:bf:d4:
2d:36:20:e7:5b:71:d6:9d:17:6f:27:71:de:ff:d4:b8:e1:66:
e6:1a:d4:e6:09:fe:83:f4:33:a9:71:af:95:83:20:dd:56:bc:
3f:9f:f9:46:0f:07:13:04:07:b2:8e:3a:58:99:86:9e:a3:fa:
be:82:a8:63:66:41:e4:6f:d9:b9:7a:71:e0:f7:1b:c1:26:df:
62:cf:42:dd:a8:30:a5:7a:e3:f3:85:a2:8d:8f:b8:44:20:e5:
d8:3d:93:74:3e:c6:36:78:e0:67:bf:3c:f1:d5:de:df:53:1d:
d2:26:f1:81:f1:db:60:e1:0c:f0:2c:ce:83:14:5d:3c:4c:4a:
1e:ef:87:45:65:ed:6d:99:29:54:8e:de:4e:da:05:65:3e:5c:
74:1d:7d:fa:e5:9b:fd:3a:c4:f2:cf:f4:3a:8c:a0:cf:99:0a:
f9:85:40:a6:92:2f:72:e8:ab:04:5c:44:57:c3:0f:7b:b7:56:
86:a2:38:e4:91:fa:9a:c2:00:b4:c2:8c:03:14:7b:70:be:16:
77:f6:db:79:83:3d:24:aa:e9:00:d7:91:7b:2c:b6:a6:9f:33:
ad:9b:0d:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:24 2025 by rpki-client