Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/bBmwPBIN2Tw9ch2JTb-Jk1aFkow.roa
File: bBmwPBIN2Tw9ch2JTb-Jk1aFkow.roa (raw, json)
Hash identifier: JohsMKzc7NS3iKOPkRn0oanEwpp18WubB1nHsAAF+rk=
Subject key identifier: 6C:19:B0:3C:12:0D:D9:3C:3D:72:1D:89:4D:BF:89:93:56:85:92:8C
Certificate issuer: /CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Certificate serial: 01941F8C029B22122052560FDF29BC1EDCA2
Authority key identifier: B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/bBmwPBIN2Tw9ch2JTb-Jk1aFkow.roa
Signing time: Wed 01 Jan 2025 01:47:36 +0000
ROA not before: Wed 01 Jan 2025 01:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43444
IP address blocks: 178.159.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:02:9b:22:12:20:52:56:0f:df:29:bc:1e:dc:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Validity
Not Before: Jan 1 01:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c19b03c120dd93c3d721d894dbf89935685928c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0e:4c:10:a8:d8:2d:3b:85:92:f2:4f:a3:eb:
dc:71:22:39:d5:19:bd:87:33:bf:41:2a:04:1b:f8:
8f:23:9f:d6:45:3d:3f:b9:61:19:d0:81:38:d4:32:
e5:90:a3:88:0a:2e:2a:0e:4f:fb:00:59:bd:ec:42:
ff:8a:06:da:df:cb:0c:05:f2:37:8d:f7:5f:24:cb:
10:e1:39:5c:73:a5:74:65:23:46:9b:03:78:b0:d1:
4c:48:a5:a7:07:df:ce:65:a6:aa:a8:6f:fc:f6:c8:
ab:4d:89:0f:1e:71:65:c3:16:4c:4e:32:52:91:3d:
d3:03:94:50:a6:28:a3:cf:60:e2:9d:fc:82:08:56:
42:ce:85:d1:92:73:56:c9:00:b2:af:a0:12:a7:ca:
5d:e5:11:c0:6d:00:ae:a9:2e:da:d7:13:09:65:8f:
80:02:47:26:7b:a0:b4:16:0d:a3:30:91:65:97:90:
c2:67:3d:e8:a5:39:1d:da:09:30:0e:0b:08:04:6b:
9a:17:af:51:de:f8:22:01:f2:0a:d4:3b:5f:bd:d7:
25:dd:84:27:9f:46:1e:ae:ed:63:29:bf:88:b9:4d:
cc:82:4b:f3:f1:9f:1f:62:5b:01:b0:cb:1c:18:27:
01:bd:bc:02:4d:90:73:6f:8f:f7:8a:79:27:f9:03:
ec:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:19:B0:3C:12:0D:D9:3C:3D:72:1D:89:4D:BF:89:93:56:85:92:8C
X509v3 Authority Key Identifier:
keyid:B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/bBmwPBIN2Tw9ch2JTb-Jk1aFkow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/uC57gGjErprkykw6ayCWGZp0H_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.99.0/24
Signature Algorithm: sha256WithRSAEncryption
52:0a:c9:a8:18:05:9c:80:2a:39:4c:9b:ad:31:9a:e3:4d:95:
84:c6:7f:b3:22:3a:90:3c:67:17:ae:70:87:6a:b7:b8:11:de:
24:aa:4d:43:3e:af:d1:8d:d4:06:21:c3:97:d6:b7:6a:e8:7d:
c0:8a:55:83:d4:bf:6a:ef:0c:26:02:59:d8:fc:d2:74:d4:53:
bf:11:0c:29:05:2b:02:3b:0d:5f:65:9e:09:f7:17:33:b5:c7:
89:51:f4:50:18:34:75:31:0e:bb:ba:05:74:f1:07:70:04:98:
0f:7e:30:76:70:4e:37:ae:d1:0e:e1:1c:67:e1:ba:b2:6b:25:
61:22:61:85:7c:32:cc:e3:f2:84:fb:b0:15:05:1b:0f:90:f8:
cb:09:a6:54:34:4d:40:4a:48:f9:ed:4d:ce:d1:3b:69:d2:b2:
c3:fe:22:8a:ce:c7:e1:66:06:00:0c:79:9f:cc:66:13:3f:4b:
a5:7e:a1:71:06:86:ac:a6:48:af:84:81:a2:e7:ca:6b:42:bf:
2e:32:92:fc:51:43:9e:de:ea:f7:b8:57:f9:19:67:a0:b4:22:
52:c8:a4:c7:39:7a:06:1e:b8:2e:93:19:f5:63:22:d4:1f:08:
99:03:2f:6d:6e:60:82:dc:0b:ee:6e:38:1d:0d:e7:43:e1:99:
6b:e9:08:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 06:51:14 2025 by rpki-client