Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/Sm2Ff7899DcgvgzWqY7VAqLT_qs.roa
File: Sm2Ff7899DcgvgzWqY7VAqLT_qs.roa (raw, json)
Hash identifier: avJsSX6aU6K6wgpkLT5nI1nDlmsZcZzoOKV0RKKYprc=
Subject key identifier: 4A:6D:85:7F:BF:3D:F4:37:20:BE:0C:D6:A9:8E:D5:02:A2:D3:FE:AB
Certificate issuer: /CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Certificate serial: 0191A2C8512665AF8DD0477D5F562EFE77DD
Authority key identifier: B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/Sm2Ff7899DcgvgzWqY7VAqLT_qs.roa
Signing time: Fri 30 Aug 2024 10:15:22 +0000
ROA not before: Fri 30 Aug 2024 10:15:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 178.248.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:c8:51:26:65:af:8d:d0:47:7d:5f:56:2e:fe:77:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Validity
Not Before: Aug 30 10:15:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a6d857fbf3df43720be0cd6a98ed502a2d3feab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ea:2e:be:a6:a2:ea:98:27:95:f3:61:bd:ab:
84:20:7f:66:ab:e7:23:21:f4:b7:ad:98:3e:6f:78:
20:63:14:ca:75:70:4f:52:9a:c6:7d:89:a1:ba:90:
70:4f:ce:ad:5f:41:38:9e:3a:b0:03:7b:7f:f8:36:
ee:b2:be:38:04:f4:1e:5b:d0:9f:53:fe:1c:fd:c6:
ce:3a:76:c4:ac:b1:b2:05:ed:0c:34:85:bb:73:43:
14:23:0b:4c:0a:fa:04:61:dc:d6:db:a2:15:29:8b:
2b:45:c0:62:5c:a4:64:46:5b:25:f3:0f:ac:2c:59:
89:71:d0:74:8a:16:9a:ec:7c:75:4b:8f:f8:5a:bb:
92:59:bd:30:26:f1:f8:84:bc:a5:1d:d4:fd:96:33:
98:d4:32:07:26:c3:47:e0:60:c6:9c:f1:6f:48:c0:
46:3f:2a:17:88:a5:1b:c7:7e:e2:52:1e:60:19:2e:
7a:dd:73:cf:ae:2e:8b:cf:42:8a:eb:80:46:60:70:
4f:7e:5f:d1:b3:fa:9d:ec:40:d5:96:aa:b4:27:b9:
23:33:e1:03:29:b8:66:c0:7d:06:fd:97:08:ed:6e:
9b:f6:6c:73:82:07:0a:00:a6:9e:92:eb:10:1d:46:
0b:67:ad:d9:85:32:a6:2a:a9:65:38:77:6f:e5:06:
71:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:6D:85:7F:BF:3D:F4:37:20:BE:0C:D6:A9:8E:D5:02:A2:D3:FE:AB
X509v3 Authority Key Identifier:
keyid:B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/Sm2Ff7899DcgvgzWqY7VAqLT_qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.79.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:20:6c:e6:48:a9:4b:00:c2:58:13:49:df:23:be:00:17:97:
4a:58:e1:7d:71:54:0f:c6:f3:e8:a5:95:e3:f7:7a:78:62:e5:
52:98:5b:f3:ea:6f:72:60:a4:50:91:94:0a:71:bb:66:ed:fc:
e1:f0:a0:65:f0:ea:49:62:3a:4d:52:26:f7:ca:6f:76:4c:85:
e9:a1:3b:4a:87:5c:83:92:92:a6:0f:32:e7:20:2e:45:98:34:
0d:74:57:62:84:ff:5c:84:c6:5d:9c:37:43:18:0e:45:40:6b:
d4:5a:a1:78:1d:35:4a:4d:c5:30:ca:3c:33:e3:f9:0d:06:c4:
49:35:c4:d4:34:56:81:2f:2c:48:b4:41:e7:d9:aa:f9:82:fc:
29:7d:0b:92:bd:61:ef:19:66:94:30:8a:69:e2:55:73:d6:70:
89:15:1a:61:c9:2a:e0:92:e9:60:ae:31:ba:e0:97:6a:cb:ad:
a8:63:8f:34:8e:c9:d7:6d:20:5c:07:57:2a:14:f3:03:1e:7d:
5c:1e:f4:43:d8:61:7d:69:47:a1:af:0f:96:de:bc:dc:90:ea:
c5:07:e3:7a:49:5e:77:ba:01:48:07:b1:e4:c2:b2:e9:9e:81:
25:1b:c3:47:98:9e:63:af:11:2d:01:88:1a:60:48:8f:e1:13:
00:b4:37:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:05 2025 by rpki-client