Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/WiHqxaHAqEuV1oCc9ikiDR91Huc.roa
File: WiHqxaHAqEuV1oCc9ikiDR91Huc.roa (raw, json)
Hash identifier: b8i7BcGKJ4z3GESJzxDU1hFETI88F59WAS7zl3Wbt0w=
Subject key identifier: 5A:21:EA:C5:A1:C0:A8:4B:95:D6:80:9C:F6:29:22:0D:1F:75:1E:E7
Certificate issuer: /CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Certificate serial: 018E7F4D21805866B230812B3C0AD1F9770A
Authority key identifier: B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/WiHqxaHAqEuV1oCc9ikiDR91Huc.roa
Signing time: Wed 27 Mar 2024 09:45:45 +0000
ROA not before: Wed 27 Mar 2024 09:45:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 178.248.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7f:4d:21:80:58:66:b2:30:81:2b:3c:0a:d1:f9:77:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Validity
Not Before: Mar 27 09:45:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a21eac5a1c0a84b95d6809cf629220d1f751ee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b8:ba:5f:bf:a0:f6:31:22:bc:91:ce:f0:b6:
6c:3b:79:ac:b0:e5:21:88:84:2f:a7:34:65:98:e4:
9c:27:aa:fb:8f:1c:87:e7:6e:b0:32:b3:c0:1b:fc:
46:ff:aa:20:67:e3:05:dd:4d:76:4f:ed:a2:7b:6a:
35:f2:b9:9f:ad:06:4a:81:f1:59:6f:81:fd:36:a8:
48:a9:24:58:db:fb:2d:28:53:3a:38:57:e8:a9:b5:
73:95:7f:ac:70:1d:90:3c:51:bd:06:74:9c:a5:96:
9e:65:a5:1d:bd:06:8f:1e:a3:50:ea:b1:72:6f:a8:
d9:b8:ed:4e:11:ba:c0:32:98:f5:e7:8a:f2:fc:65:
27:e1:14:5c:6a:8e:62:42:6b:68:99:3a:25:2d:aa:
dd:75:dc:4d:ee:c6:97:bd:0b:ab:b6:b6:af:81:d9:
ac:d3:2a:3d:3c:35:17:09:0f:49:37:3b:ab:8a:0a:
be:98:71:83:54:88:45:8c:13:a9:0f:de:86:a0:13:
e2:5f:53:de:02:e4:fd:30:4a:11:9d:e3:2c:19:5a:
b1:06:e8:0e:4e:d7:69:c5:ab:59:f1:4e:1c:c3:20:
9c:db:6b:1a:7f:54:9d:5a:cd:b4:f0:09:84:f3:ba:
6e:ab:14:10:a2:aa:d2:1e:52:08:b9:35:11:b4:4b:
29:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:21:EA:C5:A1:C0:A8:4B:95:D6:80:9C:F6:29:22:0D:1F:75:1E:E7
X509v3 Authority Key Identifier:
keyid:B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/WiHqxaHAqEuV1oCc9ikiDR91Huc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.79.0/24
Signature Algorithm: sha256WithRSAEncryption
35:29:e5:1a:33:ed:94:eb:db:6d:96:67:83:e7:dd:31:49:f0:
c0:2e:02:8b:d7:64:d3:fd:40:58:f3:a3:4c:6b:72:ce:62:3f:
bd:53:7e:d5:0b:28:6c:b1:4e:94:18:2e:05:33:5c:6f:35:f7:
89:0c:e8:80:d1:a4:97:df:1f:c3:67:5a:b3:be:9e:31:25:52:
5e:bc:58:4a:b4:37:15:e0:eb:63:ce:4d:00:cb:5d:1c:5e:30:
97:fa:0e:3d:9b:96:3d:60:26:0c:6f:2d:46:89:44:ec:7b:1e:
a1:6d:74:a6:d5:3b:30:99:eb:14:2a:6b:ac:92:4c:2e:1f:f3:
14:03:cc:79:bf:08:db:f8:98:56:a0:ce:76:b2:05:96:a3:f6:
2a:bd:a2:76:9f:20:1d:e3:e1:c6:43:5b:3e:1e:17:d3:b2:b5:
88:62:2f:bc:31:d5:ff:fd:cc:cc:e2:df:0d:0d:d3:12:da:e6:
40:d9:2f:af:9a:03:45:e0:e5:c3:ec:fa:2d:d2:1f:f9:e6:fa:
e6:fb:21:6b:50:24:49:d3:d1:a5:fa:7d:32:a0:67:e7:47:cb:
9c:e0:27:d1:2a:ea:cf:35:20:e8:6a:5a:6e:ef:a1:ef:2e:c9:
c1:79:ae:c3:7f:e9:a6:20:4a:86:3c:14:e3:4a:78:39:cb:d8:
ff:f6:30:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:26:16 2025 by rpki-client