Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/cuCge9KM2TKAhVTi9ynWt17G8_w.roa
File: cuCge9KM2TKAhVTi9ynWt17G8_w.roa (raw, json)
Hash identifier: YgXfLEGrSNrmrEYZ3szZ1Igl/AFRNg2kWhzJFGOgm+o=
Subject key identifier: 72:E0:A0:7B:D2:8C:D9:32:80:85:54:E2:F7:29:D6:B7:5E:C6:F3:FC
Certificate issuer: /CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Certificate serial: 01943845B2CB4C32CE5C24518088C43F6A3A
Authority key identifier: B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/cuCge9KM2TKAhVTi9ynWt17G8_w.roa
Signing time: Sun 05 Jan 2025 21:01:19 +0000
ROA not before: Sun 05 Jan 2025 21:01:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 141968
IP address blocks: 178.248.73.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:38:45:b2:cb:4c:32:ce:5c:24:51:80:88:c4:3f:6a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Validity
Not Before: Jan 5 21:01:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=72e0a07bd28cd932808554e2f729d6b75ec6f3fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:96:10:08:d6:0c:e0:44:73:b8:91:8b:ae:51:
e0:23:73:8d:dd:f0:20:30:02:c4:68:fe:33:ba:27:
57:74:7d:0c:65:ef:46:43:18:e8:e4:1d:a3:6c:9c:
1b:07:3d:41:fc:c4:97:3a:db:82:0c:0b:57:16:9d:
bc:21:1e:c5:95:e8:db:70:d1:46:b7:8a:80:65:f4:
43:a4:f0:2b:bf:c8:7a:40:8e:2f:a1:30:c1:0a:7e:
86:4c:88:f0:50:ae:b9:7a:53:9c:cf:85:f5:5d:90:
38:cd:3d:d0:f3:8f:1d:c0:3e:2a:24:62:2d:2f:07:
b3:8b:ce:86:f2:78:e7:c8:0a:a8:56:9a:60:4c:49:
4d:be:8c:df:8a:d7:de:1f:11:74:c5:a5:9c:40:59:
6d:f4:4d:2d:0f:95:b8:11:d5:86:82:c5:95:5e:61:
4b:83:0e:c2:e1:f6:1c:52:02:4c:0a:89:c7:f4:ec:
13:83:57:64:5b:19:76:70:15:08:e1:e3:c3:d1:5d:
b7:38:2b:e8:51:4b:6a:72:46:d5:86:cc:88:8e:ea:
33:a7:20:61:85:41:12:4a:cf:65:db:20:be:2e:3d:
7a:0f:ed:71:00:5a:a5:ae:4e:6f:65:42:09:5a:ba:
55:ee:98:ca:82:2a:46:7c:f8:df:2c:88:5b:ed:df:
99:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E0:A0:7B:D2:8C:D9:32:80:85:54:E2:F7:29:D6:B7:5E:C6:F3:FC
X509v3 Authority Key Identifier:
keyid:B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/cuCge9KM2TKAhVTi9ynWt17G8_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.73.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:8e:81:85:77:6a:22:f3:58:cf:5f:3e:65:08:1d:60:ba:77:
e4:a7:a3:d6:5d:79:96:8b:f8:53:a3:47:91:62:f8:58:4e:49:
b3:98:31:2a:cf:5b:18:59:55:83:6a:e6:aa:52:1c:c0:ca:91:
59:20:05:5a:4a:8d:58:c5:3a:27:5d:50:7a:b2:d2:77:0a:31:
21:e1:49:f4:ae:b1:f7:12:e1:eb:00:2a:bd:c7:e2:73:e3:d3:
da:ae:56:03:ad:b0:fa:1b:62:32:2e:1b:f0:5b:a9:67:cb:b5:
a6:88:68:ad:6b:98:de:36:19:30:88:4a:11:fa:9d:b9:a1:94:
77:a9:5b:0b:9d:c4:b7:09:b9:17:8a:6c:7e:12:c4:6f:04:f6:
5f:ad:f5:25:4b:83:8c:5f:7f:0b:7a:df:89:40:35:b2:81:2f:
45:fb:de:90:5b:65:a6:4a:84:a2:fe:2e:db:44:4c:dd:ac:c5:
7a:eb:99:0f:c0:53:76:96:22:42:e6:ae:c8:6c:32:c5:87:a2:
ea:14:51:c8:f9:0f:a9:c4:8d:8f:84:c2:d3:59:73:ec:ab:6e:
41:a7:e4:7e:0e:13:9a:d8:03:12:89:fb:75:fb:b5:7a:15:5e:
72:d6:24:23:f9:ba:d1:56:52:5b:73:86:0a:e2:47:8d:e3:7a:
00:77:22:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:59 2025 by rpki-client