Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/2f48bd-a8e3-487b-a274-078510ceac0d/1/uNPxSzoBaXvBOJFQn-2SS8eLdrE.roa
File: uNPxSzoBaXvBOJFQn-2SS8eLdrE.roa (raw, json)
Hash identifier: aQ7mvpV3ivI5FkoVAB6sSeBflcpGk3YWeApRgwYyH1g=
Subject key identifier: B8:D3:F1:4B:3A:01:69:7B:C1:38:91:50:9F:ED:92:4B:C7:8B:76:B1
Certificate issuer: /CN=4bd45e58206a1b9d59eddfa8f988b32717bf9c6b
Certificate serial: 019425FDCB6DAD6FE2570D7BB387EE4F0DB7
Authority key identifier: 4B:D4:5E:58:20:6A:1B:9D:59:ED:DF:A8:F9:88:B3:27:17:BF:9C:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S9ReWCBqG51Z7d-o-YizJxe_nGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/2f48bd-a8e3-487b-a274-078510ceac0d/1/uNPxSzoBaXvBOJFQn-2SS8eLdrE.roa
Signing time: Thu 02 Jan 2025 07:49:37 +0000
ROA not before: Thu 02 Jan 2025 07:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57469
IP address blocks: 178.22.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:cb:6d:ad:6f:e2:57:0d:7b:b3:87:ee:4f:0d:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bd45e58206a1b9d59eddfa8f988b32717bf9c6b
Validity
Not Before: Jan 2 07:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b8d3f14b3a01697bc13891509fed924bc78b76b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:13:87:a5:27:a4:71:92:4f:76:81:01:b4:e4:
80:14:ea:24:9a:bb:17:e1:11:a9:6a:ec:2d:b3:71:
88:78:51:7e:42:bf:a2:a3:3e:0a:c5:89:6d:6f:71:
7b:be:e1:f9:6a:d0:c0:98:89:d3:5c:e2:df:0a:eb:
8f:79:30:f7:af:a6:67:a6:bd:81:17:7e:53:b3:4d:
0e:e7:03:c3:21:84:f7:45:7c:b7:3f:99:eb:9e:40:
23:01:06:d0:6b:af:d2:eb:41:b1:8b:1a:0a:58:63:
05:a1:6f:d8:b0:a1:0d:9c:f3:67:c8:ba:a0:2c:ff:
70:37:bc:87:33:25:d0:bf:7e:b5:e3:b0:06:03:5a:
97:12:da:c1:b3:a4:cb:4d:23:db:86:24:5e:58:39:
90:ba:9b:32:6a:3d:e7:21:69:05:11:c9:35:b0:e0:
00:c2:18:76:dc:b6:30:3a:1a:16:94:26:7a:22:76:
97:89:94:d5:43:01:c9:79:27:c7:4f:cf:22:22:e4:
83:5d:98:bd:1e:98:62:26:ed:ab:78:3e:50:67:b8:
fe:d9:07:2c:9c:a1:3b:93:2b:60:3e:e0:8b:7d:b7:
64:78:dc:2c:a2:e2:be:76:04:38:55:df:1d:01:1d:
c8:06:30:00:5e:6e:38:c9:eb:bc:d3:c5:4b:15:dc:
0c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D3:F1:4B:3A:01:69:7B:C1:38:91:50:9F:ED:92:4B:C7:8B:76:B1
X509v3 Authority Key Identifier:
keyid:4B:D4:5E:58:20:6A:1B:9D:59:ED:DF:A8:F9:88:B3:27:17:BF:9C:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S9ReWCBqG51Z7d-o-YizJxe_nGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/2f48bd-a8e3-487b-a274-078510ceac0d/1/uNPxSzoBaXvBOJFQn-2SS8eLdrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/2f48bd-a8e3-487b-a274-078510ceac0d/1/S9ReWCBqG51Z7d-o-YizJxe_nGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.28.0/24
Signature Algorithm: sha256WithRSAEncryption
02:33:06:11:c0:4d:d9:21:85:fa:eb:c8:1c:7d:6e:49:1c:9e:
a0:5c:f4:e9:0c:1a:61:35:52:3f:ff:5a:33:fe:15:23:82:84:
52:10:d7:4b:b5:17:13:70:53:be:db:06:a4:94:43:bf:b1:67:
48:e3:b3:f8:97:bc:5c:bd:33:35:c4:6a:b9:45:9c:52:e2:ab:
12:17:f9:80:78:12:6c:6f:8f:51:ff:7c:0e:c0:e9:d7:c1:63:
d8:5d:39:13:2f:9c:31:16:87:1f:c3:e8:52:3c:b0:c1:9e:40:
0d:6f:a0:d0:93:e9:b6:87:84:f0:9d:76:0a:72:46:98:6f:69:
8d:b8:34:9c:50:b6:a8:e7:fa:38:92:d6:e8:91:8c:52:b1:62:
95:1c:75:d5:7f:79:a8:13:41:a2:47:9b:88:f4:74:1e:c9:10:
39:98:a6:5d:91:49:81:c1:c0:3e:8e:82:a9:a4:c7:64:33:f7:
10:e8:42:d1:76:83:c8:60:18:29:f2:eb:51:5a:a4:a4:da:c1:
2a:11:9b:42:8f:27:22:4b:ea:d8:d7:3b:e5:f6:57:e0:c9:35:
73:86:ca:1c:5e:c2:0a:43:29:60:aa:7e:dc:be:41:4c:a5:a3:
68:f2:6b:4b:66:cf:cf:0a:bd:04:d2:aa:d8:97:2e:de:c6:2a:
e1:aa:1e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:20:03 2025 by rpki-client