Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/gfYKr34MNgtM1p2EuaIy7Xh3Af4.roa
File: gfYKr34MNgtM1p2EuaIy7Xh3Af4.roa (raw, json)
Hash identifier: a6/IOsg+GVPI8Ed6LIOY5QeznEk5tFog8BPqd+eVacc=
Subject key identifier: 81:F6:0A:AF:7E:0C:36:0B:4C:D6:9D:84:B9:A2:32:ED:78:77:01:FE
Certificate issuer: /CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Certificate serial: 018D03893746434C51735DD702161553F97B
Authority key identifier: B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/gfYKr34MNgtM1p2EuaIy7Xh3Af4.roa
Signing time: Sat 13 Jan 2024 15:55:40 +0000
ROA not before: Sat 13 Jan 2024 15:55:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 178.248.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:03:89:37:46:43:4c:51:73:5d:d7:02:16:15:53:f9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Validity
Not Before: Jan 13 15:55:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81f60aaf7e0c360b4cd69d84b9a232ed787701fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ef:4d:a7:72:38:0e:18:a6:9f:d2:8f:f4:e3:
90:83:9b:0b:10:5e:ee:67:b6:7d:67:d9:4b:1c:2a:
28:25:fc:76:af:42:95:72:c5:9f:57:ca:36:27:cc:
c1:1f:fc:a7:ca:bf:f4:12:92:b8:48:70:9e:51:31:
8d:1f:8e:21:ac:b1:19:82:59:57:b9:94:d0:0a:ef:
91:5a:9b:07:47:15:76:af:f2:66:31:2a:07:c3:05:
47:08:08:1f:98:9b:0b:4c:d8:40:9e:82:e4:21:f1:
cb:5a:1b:42:ae:86:59:fe:34:6a:08:19:0f:77:cf:
bd:47:8d:e0:a1:ca:f9:1f:11:91:b2:fd:dc:64:72:
15:3f:be:5a:2e:7c:8c:ed:74:de:4c:80:66:82:d4:
f2:e6:d0:d4:e5:2e:af:15:c5:20:23:5c:9d:37:71:
1e:d7:f8:9a:d5:2a:6a:c3:3f:f9:9c:51:12:34:d4:
f9:01:59:57:6d:0b:84:ae:75:ef:05:46:4b:7c:c7:
25:5b:5e:86:8a:92:33:66:71:da:8b:38:71:a1:29:
cf:5b:40:66:17:d5:65:ae:a4:42:20:ee:d6:05:92:
ca:58:65:15:14:a9:ea:8e:21:8e:82:6c:89:9e:8e:
57:2f:16:29:11:17:d7:6c:77:49:1a:dc:90:60:7b:
dc:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:F6:0A:AF:7E:0C:36:0B:4C:D6:9D:84:B9:A2:32:ED:78:77:01:FE
X509v3 Authority Key Identifier:
keyid:B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/gfYKr34MNgtM1p2EuaIy7Xh3Af4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.76.0/24
Signature Algorithm: sha256WithRSAEncryption
70:93:1a:d8:b7:a4:1c:b4:bb:45:f2:0b:f2:7a:86:db:1d:b5:
df:13:3d:61:49:0d:e6:cd:95:09:5e:5e:6a:88:1a:68:d2:52:
e7:0e:47:bd:86:31:29:e5:ee:c9:87:b6:c2:0f:18:f8:33:80:
7a:9b:3d:c5:3a:5b:62:d5:a1:6f:c4:ed:52:d8:31:2a:87:c0:
04:32:31:22:f3:8d:c9:c7:57:a5:f1:ff:ff:b7:dc:4d:04:fd:
34:ed:9b:a0:a2:21:9a:3b:94:c4:23:73:c9:c2:d2:49:55:5d:
72:bc:8d:8c:60:34:6f:4d:c8:21:a0:f8:bf:2c:b0:0a:dd:cb:
ad:60:04:f4:ac:27:51:9f:c5:dd:bb:a4:82:a0:01:ef:a7:f8:
42:15:fb:40:b2:7c:1f:1e:0a:c7:ad:8c:31:c1:20:c0:78:1b:
55:81:a9:7a:c8:bf:d6:3b:a6:c4:8e:17:15:b6:fe:b4:bd:25:
c9:d0:a3:e1:62:ed:8f:b5:05:29:72:68:41:f6:13:79:67:a3:
70:32:a0:ff:99:67:e8:83:7c:d4:02:39:d3:05:f3:9b:aa:fe:
64:fd:0b:cb:b8:8c:37:19:c0:85:b0:6c:cb:c3:3a:76:bd:e5:
8f:69:01:4f:05:85:de:4c:47:28:fe:2e:31:e2:31:f4:a8:ae:
4a:6b:73:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:24:12 2025 by rpki-client