Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/c1b9Rn8Hw-nFJg8bOt7A32iiOb8.roa
File: c1b9Rn8Hw-nFJg8bOt7A32iiOb8.roa (raw, json)
Hash identifier: 7qDRaKq/XLP7p+rPH4rFOY3ioCYWJM5t/BGPiAtCjNo=
Subject key identifier: 73:56:FD:46:7F:07:C3:E9:C5:26:0F:1B:3A:DE:C0:DF:68:A2:39:BF
Certificate issuer: /CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Certificate serial: 0193C7B0F20333642E3F6FBA90B0181E677F
Authority key identifier: B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/c1b9Rn8Hw-nFJg8bOt7A32iiOb8.roa
Signing time: Sun 15 Dec 2024 00:21:22 +0000
ROA not before: Sun 15 Dec 2024 00:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 178.248.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c7:b0:f2:03:33:64:2e:3f:6f:ba:90:b0:18:1e:67:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Validity
Not Before: Dec 15 00:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7356fd467f07c3e9c5260f1b3adec0df68a239bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bb:bd:94:4a:0b:8b:51:a5:b3:09:d4:48:44:
49:c3:c3:6a:d6:87:f4:c0:55:72:16:f7:50:28:e8:
6a:89:62:b2:4e:b3:d3:8d:20:f3:44:15:f3:11:f4:
59:eb:8b:ea:d1:45:13:0c:58:b7:ee:5d:89:aa:13:
4a:81:1d:a0:14:16:62:f6:b1:13:7a:4d:cb:7d:ed:
67:8f:1f:3b:f0:b2:9d:ca:f6:b9:96:1f:b1:c2:78:
19:24:c0:c7:6b:e7:b2:0b:77:36:f4:60:06:da:bf:
f1:3f:6c:7f:9b:ec:40:be:8b:e9:e2:17:4f:a7:30:
0d:2a:b1:f3:97:70:f4:b4:cc:01:eb:a2:9e:60:98:
56:ed:e0:d4:02:85:e5:95:93:8c:7f:9d:be:0e:02:
0d:3a:af:ba:37:0c:58:1f:f9:42:23:54:14:3d:49:
f5:f2:ab:3d:e5:b2:23:6b:59:7b:c6:da:1c:b2:89:
52:7b:87:cc:78:0f:9a:73:c3:9d:b7:87:aa:ee:fb:
e9:b9:8f:03:eb:f0:8e:98:d0:71:de:51:35:c5:61:
41:e9:bb:2e:20:a9:d5:64:d6:4a:d7:1b:82:85:42:
78:3c:8e:f9:59:11:ac:f8:f3:f6:76:a2:ae:d0:dd:
66:1e:79:78:2c:a9:1b:67:b8:c6:5d:1b:82:83:16:
35:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:56:FD:46:7F:07:C3:E9:C5:26:0F:1B:3A:DE:C0:DF:68:A2:39:BF
X509v3 Authority Key Identifier:
keyid:B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/c1b9Rn8Hw-nFJg8bOt7A32iiOb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.77.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:c9:50:2c:24:af:73:ef:8e:88:6a:76:ef:e7:27:8d:07:15:
5f:f9:45:7c:5e:56:e7:25:ad:a3:08:14:27:4b:7a:6c:3d:20:
b7:40:5b:83:8d:b4:e6:d4:a8:7d:b4:7b:2c:de:f1:71:09:20:
e2:b7:c5:4c:b2:ae:df:23:a6:7c:6c:40:b9:9f:4f:b9:b4:bd:
b9:c3:f1:c5:f0:85:f2:ba:51:d2:2a:be:ad:68:d8:37:aa:21:
2a:19:1d:d0:18:23:19:5a:56:54:07:51:99:5e:23:66:8a:9b:
6e:b9:8d:0e:14:35:5d:33:97:e2:c6:90:9f:95:86:d9:bc:5d:
63:b9:ee:2b:68:7d:58:dc:10:7c:5f:92:2f:50:36:f0:eb:4d:
af:4f:8b:1f:39:70:89:87:b0:37:5c:f0:5e:79:a4:c0:d5:3d:
e9:f4:81:fb:04:f3:fc:4e:c7:c8:69:01:33:11:57:a3:c6:11:
00:1c:af:c0:2b:d8:0e:c4:12:4f:d2:53:37:8b:cc:41:6e:70:
04:8c:16:a5:4b:97:53:1e:d6:59:99:f5:9b:44:5d:3b:bd:c1:
8e:42:75:15:9f:72:22:fe:c5:51:d3:08:a6:b7:a5:25:a2:23:
72:b5:74:b0:29:dd:7d:8d:80:75:03:7c:21:f5:3d:7d:f5:f0:
23:a9:c9:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:28:18 2025 by rpki-client