Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/R__OIuiWeJhM3-oyWZDizDg7Buk.roa
File: R__OIuiWeJhM3-oyWZDizDg7Buk.roa (raw, json)
Hash identifier: Vs2oOkjKk05R67mfALSJJ2/W/cAhVghrS/0IFjoXmVc=
Subject key identifier: 47:FF:CE:22:E8:96:78:98:4C:DF:EA:32:59:90:E2:CC:38:3B:06:E9
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 019422FC19595AFBCF60037094B0A844C441
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/R__OIuiWeJhM3-oyWZDizDg7Buk.roa
Signing time: Wed 01 Jan 2025 17:48:54 +0000
ROA not before: Wed 01 Jan 2025 17:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205124
IP address blocks: 147.78.20.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:19:59:5a:fb:cf:60:03:70:94:b0:a8:44:c4:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 17:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=47ffce22e89678984cdfea325990e2cc383b06e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:64:8a:46:63:e8:b2:be:96:22:ae:4d:d4:ea:
26:33:b1:f3:7e:6c:e9:04:52:42:cd:77:81:f7:0d:
2c:3a:09:95:b5:b3:1e:52:ce:83:7f:2d:95:ea:26:
37:db:fc:9c:7b:79:ae:de:f1:af:9b:46:a3:83:89:
1b:67:6c:b6:df:65:d4:3c:c4:cd:9b:81:33:e1:29:
cf:99:e2:bb:3d:76:71:c5:50:51:fb:62:db:6c:e3:
5f:f2:ad:73:eb:63:47:e6:ef:90:05:aa:60:a3:a6:
21:c8:e8:db:af:05:24:dd:61:06:4c:6d:26:26:89:
3c:63:ac:cf:92:5f:62:2a:bd:d1:9d:f0:13:b1:02:
65:ce:22:85:92:c5:54:bf:12:fa:85:ef:82:2a:b6:
e2:65:66:60:87:43:11:b2:11:41:f6:00:ee:90:41:
60:12:a2:01:9c:ec:be:64:ac:e6:d9:2e:b5:f3:a0:
2b:fd:dc:33:61:04:6e:ad:ec:82:8c:01:17:e7:f3:
6b:e0:6b:a7:c4:35:54:a5:8c:c0:90:0b:66:ce:97:
86:3b:5d:c7:a8:a9:75:b9:b3:96:78:84:cb:20:92:
a1:a5:cc:cf:50:63:05:db:08:e1:18:7d:76:70:e9:
bc:bf:e6:77:d7:3d:a1:a1:2c:5b:9f:1a:35:67:11:
14:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FF:CE:22:E8:96:78:98:4C:DF:EA:32:59:90:E2:CC:38:3B:06:E9
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/R__OIuiWeJhM3-oyWZDizDg7Buk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.20.0/22
Signature Algorithm: sha256WithRSAEncryption
26:4d:7d:2e:52:bb:fc:78:fd:24:64:b8:14:b3:b2:7b:d5:f6:
19:20:3c:de:c4:2a:05:a8:84:43:6e:c5:72:a1:58:7c:cf:48:
f2:eb:0f:c6:7b:7f:94:ec:7f:4a:de:50:f4:1f:38:4e:e9:1e:
4f:7c:44:40:59:41:0d:01:75:d4:67:54:0f:ff:b3:37:1c:10:
37:7c:88:e7:04:61:10:a6:89:41:0c:7f:dd:0b:4d:e4:88:3f:
b0:e5:1a:f1:f9:d4:85:c3:33:63:96:54:7f:0c:a5:d6:8a:75:
ff:f5:cd:18:1f:90:a7:af:9a:83:f8:b5:32:12:45:c6:8a:cc:
c6:98:91:e2:13:8f:a8:bc:d6:be:b9:8e:e1:6b:e5:69:a8:99:
91:de:36:61:99:2c:d9:b6:bd:f9:64:9d:65:f1:a3:24:2e:b0:
f4:f3:76:bf:b3:09:32:bb:e1:74:78:f8:09:fc:1a:e4:74:83:
87:6c:0d:7d:37:9b:e7:9a:52:9b:57:e7:46:b1:b9:d9:ab:c1:
b1:d3:d8:8f:ae:1f:82:ae:88:16:8e:60:d9:8b:42:a9:9d:a1:
db:8a:c3:8b:71:4c:d8:f1:2d:b9:17:e9:22:31:ca:d5:2c:46:
19:87:dc:2e:45:03:e8:46:9d:6f:66:30:0a:77:ef:b8:82:7f:
2f:28:64:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:28:46 2025 by rpki-client