Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/oicr-SH4uj1bEvnrrwUj7ri66GU.roa
File: oicr-SH4uj1bEvnrrwUj7ri66GU.roa (raw, json)
Hash identifier: 1OP0Bnk8WtUk8p0pkwFceXgNGqSThNnA6BUw75ZT3Jk=
Subject key identifier: A2:27:2B:F9:21:F8:BA:3D:5B:12:F9:EB:AF:05:23:EE:B8:BA:E8:65
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 01941FFA555B00C20A02722F94CA811B170D
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/oicr-SH4uj1bEvnrrwUj7ri66GU.roa
Signing time: Wed 01 Jan 2025 03:48:07 +0000
ROA not before: Wed 01 Jan 2025 03:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202960
IP address blocks: 178.175.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:55:5b:00:c2:0a:02:72:2f:94:ca:81:1b:17:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 1 03:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a2272bf921f8ba3d5b12f9ebaf0523eeb8bae865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a5:f1:41:d3:64:71:46:54:1a:f2:af:cc:b2:
e2:ca:57:8f:89:63:d2:b7:12:25:21:39:a4:29:09:
d1:b9:28:c4:15:86:03:54:10:2f:b3:23:5c:04:23:
ed:83:c9:c8:9c:ff:5c:f7:40:28:7f:46:97:8d:70:
f6:d1:10:9c:2e:a9:4e:68:82:ed:20:fa:64:95:3f:
03:3a:63:ba:b1:ff:8f:a6:79:47:42:b0:3e:59:90:
16:1a:96:1d:1a:cb:00:99:0b:7c:a9:d4:c5:89:94:
db:a9:33:82:53:57:db:15:47:12:24:b6:4a:19:04:
7a:f1:bf:22:ec:b7:91:d1:25:3a:0f:e8:a1:1d:66:
10:7e:9d:07:d6:8c:b9:55:49:a6:52:c5:00:a3:c5:
34:4f:87:72:99:b2:f9:a1:bc:e6:8e:fd:d2:e0:7d:
79:87:e2:f4:b1:41:95:a7:28:da:b2:b8:84:da:c9:
37:0e:80:22:0c:93:a3:76:81:bc:0f:23:92:66:df:
62:90:11:b9:e9:e6:72:c6:b5:b6:9e:ba:26:32:c4:
65:9a:ab:93:4b:3a:61:d3:4c:ae:14:f6:5f:7e:ec:
a5:05:5c:f5:6b:ec:10:90:7e:08:9d:74:ff:c0:06:
6b:9d:a1:53:e0:d2:f8:2d:1c:08:41:26:97:30:cd:
e4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:27:2B:F9:21:F8:BA:3D:5B:12:F9:EB:AF:05:23:EE:B8:BA:E8:65
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/oicr-SH4uj1bEvnrrwUj7ri66GU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.152.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c2:7b:2d:77:c4:01:d8:27:55:9a:3e:23:e2:76:8a:f4:e2:
18:73:b3:52:91:97:9d:29:e7:f2:54:cb:8c:fb:05:1e:6c:ca:
0e:0a:25:fe:c7:5d:17:e0:8f:67:4a:5a:ed:57:9c:f0:12:f2:
40:a7:f9:39:27:67:9e:d8:9e:5e:c5:00:d8:5a:07:72:ff:00:
88:bf:90:1b:37:33:17:90:4f:ba:87:fc:fb:a4:95:66:5e:0a:
64:29:45:ff:1b:da:89:47:d6:83:1b:f8:8a:44:c0:a3:10:01:
5d:9f:b5:d8:e2:b3:61:b6:98:03:f4:77:8d:0f:8b:6b:25:fe:
fa:f4:14:a3:da:e5:3d:b5:d6:d0:b5:8c:b5:a6:69:d8:4f:43:
45:61:f1:7a:e5:0a:e7:18:ca:61:5a:de:10:0b:94:97:e6:4a:
5d:92:50:6f:ae:a8:3f:98:18:c3:b0:08:da:d4:93:4d:9e:4c:
97:89:84:39:63:a4:80:f0:bd:92:d7:c6:71:48:0c:74:12:37:
34:c4:aa:5f:08:11:50:08:6d:8c:56:d3:a4:81:e8:8a:2e:81:
99:96:1b:00:3e:34:5d:6f:34:fe:ef:76:4b:6d:79:ba:8c:0f:
a1:52:f7:15:ae:05:e7:a3:cf:7d:c5:70:df:4c:0c:77:48:54:
75:44:10:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:02 2025 by rpki-client