Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/FbB8JbmGvEmSNWJOSErs3VcAhqY.roa
File: FbB8JbmGvEmSNWJOSErs3VcAhqY.roa (raw, json)
Hash identifier: Hx+suTCacjWpp9AcSCDou0HrlS+JuICGXSjo0vdDaQo=
Subject key identifier: 15:B0:7C:25:B9:86:BC:49:92:35:62:4E:48:4A:EC:DD:57:00:86:A6
Certificate issuer: /CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Certificate serial: 018CC6B925402E0C8B227F35BE8B7F59415F
Authority key identifier: B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/FbB8JbmGvEmSNWJOSErs3VcAhqY.roa
Signing time: Mon 01 Jan 2024 20:31:11 +0000
ROA not before: Mon 01 Jan 2024 20:31:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 27884
IP address blocks: 178.248.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:25:40:2e:0c:8b:22:7f:35:be:8b:7f:59:41:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Validity
Not Before: Jan 1 20:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15b07c25b986bc499235624e484aecdd570086a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0d:d1:a5:9a:67:34:46:23:07:c5:62:c6:7d:
7b:78:8a:d1:2e:b1:3e:95:7a:29:d3:65:b6:a2:2c:
96:d1:7e:1d:72:79:bf:17:e2:e5:87:d5:91:96:df:
3b:6f:52:2e:e1:1b:71:24:fe:64:0a:d7:ee:50:06:
e3:64:2f:11:7d:41:38:dd:d3:12:0b:4b:6c:26:4e:
8a:38:cf:93:81:63:78:fc:a5:11:2d:af:a5:f4:11:
96:43:e4:b2:a5:4f:23:67:fa:b5:39:46:76:9f:df:
e4:db:b9:d1:a9:bd:68:9f:be:a6:8b:13:6b:5f:51:
31:cf:48:76:e6:a3:f7:7d:f4:1e:f7:80:2e:c4:13:
e0:6c:f8:a4:9e:98:0e:9d:51:e6:75:e1:c1:3b:d8:
52:5f:0e:a6:49:91:99:35:77:5c:09:84:12:26:00:
32:4f:5f:e6:17:dc:18:0f:5d:72:e5:d2:ff:f4:cd:
68:2a:a3:91:38:01:3f:d6:2a:17:36:4c:fd:41:51:
6b:4a:46:eb:b0:ed:e9:bf:3e:5d:8f:d7:17:b5:f1:
d7:95:c2:c3:d5:30:08:ec:80:aa:8a:9f:4f:96:6c:
a5:b7:49:fa:4a:88:93:b6:e9:5e:07:a5:62:56:56:
e4:82:56:92:ce:5c:a2:46:b3:d6:e2:4f:53:6d:7f:
b7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B0:7C:25:B9:86:BC:49:92:35:62:4E:48:4A:EC:DD:57:00:86:A6
X509v3 Authority Key Identifier:
keyid:B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/FbB8JbmGvEmSNWJOSErs3VcAhqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.76.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:9e:a2:03:8c:d3:e4:ce:80:e0:0e:67:ef:74:f6:1c:c1:28:
d6:4c:c2:c4:bd:cc:4a:3f:01:38:31:cd:04:cb:56:57:b9:85:
e5:58:83:3f:67:3e:64:e0:49:9c:77:cb:72:6b:89:02:63:35:
c2:2e:cd:2e:9e:ca:ea:a9:2f:39:3f:85:92:cb:f5:b4:cd:34:
cb:c8:b3:ca:ed:d6:9a:bd:fa:b7:06:a5:2b:c8:51:f9:8f:32:
b8:2f:b5:c6:0f:89:d6:9e:94:02:ba:11:75:f4:64:95:5d:e9:
d5:b3:c6:a1:61:6e:ed:22:38:08:c6:b9:5c:5a:7d:d7:d3:d4:
36:94:95:da:32:8f:59:ef:08:b7:74:bf:e2:1e:48:b6:59:26:
c5:e2:37:f8:34:d5:6f:1f:d9:5a:ae:00:5b:ae:1c:59:1f:11:
17:c7:47:6a:c8:d4:09:ed:7d:da:c8:b3:7c:d8:7f:9b:84:ca:
de:9e:38:c5:24:40:7f:56:f9:8f:c4:db:d1:41:23:8f:77:89:
95:55:e0:84:ea:41:f4:93:3f:1b:c5:f7:6e:9a:48:b1:4c:c9:
ac:e8:ab:b3:a1:ad:09:6d:be:8d:dc:cf:fa:9d:5c:e7:60:e8:
91:3d:16:9f:fe:b5:e7:66:28:29:08:8e:d2:e3:6e:1c:a8:47:
68:90:a2:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:17 2025 by rpki-client