Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/kFMAd-JDRLVCMzEsmVxHgu8E_y8.roa
File: kFMAd-JDRLVCMzEsmVxHgu8E_y8.roa (raw, json)
Hash identifier: dBjRvGGPBqhousAxwKVNhk7QkLmuNZ2FhshPg6TE5nw=
Subject key identifier: 90:53:00:77:E2:43:44:B5:42:33:31:2C:99:5C:47:82:EF:04:FF:2F
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0194266BD64A7EA366CFDADC8E5A5124C69A
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/kFMAd-JDRLVCMzEsmVxHgu8E_y8.roa
Signing time: Thu 02 Jan 2025 09:49:48 +0000
ROA not before: Thu 02 Jan 2025 09:49:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33895
IP address blocks: 178.16.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:d6:4a:7e:a3:66:cf:da:dc:8e:5a:51:24:c6:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 2 09:49:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=90530077e24344b54233312c995c4782ef04ff2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2e:7e:01:41:bd:07:bf:cd:fe:90:5c:e7:51:
ac:2c:fa:4a:30:e9:92:67:0b:76:48:09:da:b9:78:
42:29:7c:35:e0:6e:67:bd:db:95:f6:b1:38:a0:9e:
d7:4b:7e:36:6f:cb:bb:c7:6b:c5:24:54:52:48:21:
cd:88:2d:57:79:2b:30:51:9e:62:84:13:51:18:0e:
bd:12:b5:2c:2d:79:fd:36:c2:33:df:d7:80:ea:ea:
8e:5f:12:67:29:d6:f5:fc:03:f3:88:ab:c2:8d:2f:
37:91:4c:aa:1a:ad:5d:a8:61:3b:03:68:dd:37:d4:
0a:61:e2:86:19:1b:84:94:33:a8:ab:bb:0e:4f:15:
8f:1a:dc:3b:a7:de:5a:dd:49:cb:7c:4f:3f:e6:85:
64:41:62:0f:be:29:75:85:31:85:f2:ee:c3:d6:ea:
f7:95:d6:b0:76:fb:44:d2:cb:61:07:49:1b:4f:9f:
aa:e9:b2:73:3c:3d:21:62:73:6e:db:4f:e9:09:6d:
7b:8c:7a:f2:d7:36:d8:98:e2:ae:f0:c3:d5:33:ab:
25:12:da:c4:ac:f5:15:71:9d:85:d6:f6:28:6c:17:
95:85:b5:08:e1:6c:91:e7:aa:10:dd:67:ef:b7:a3:
7f:bd:e6:6d:26:bc:55:6c:a0:c8:28:9b:6a:e9:23:
14:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:53:00:77:E2:43:44:B5:42:33:31:2C:99:5C:47:82:EF:04:FF:2F
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/kFMAd-JDRLVCMzEsmVxHgu8E_y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.112.0/24
Signature Algorithm: sha256WithRSAEncryption
96:b1:2e:a7:0b:e4:92:e1:20:6a:25:9f:0e:18:3b:c6:52:83:
f4:50:3a:94:d9:86:d2:ba:bc:1e:97:36:15:16:b4:80:84:6a:
ea:87:ae:27:6f:f0:58:89:17:35:3a:56:50:a5:65:9e:7c:6d:
ff:f4:7e:5f:f6:b2:31:70:a6:51:17:2a:a1:c9:ea:80:90:76:
ac:48:79:f6:50:eb:49:cd:b3:10:3f:e5:34:52:52:e1:63:ba:
1c:28:67:47:29:5e:11:99:0c:36:25:32:58:a5:36:e6:ba:93:
5e:ae:78:6a:27:bd:19:dd:45:a8:31:92:42:9b:0f:4c:95:52:
d1:38:96:36:19:a5:22:aa:b5:33:7e:6f:c3:48:76:2a:6b:b9:
2a:f9:79:56:b6:28:e4:1f:63:2d:99:d2:74:4b:77:bd:ff:d7:
75:fa:65:7f:6e:6b:b8:b6:5d:5c:f6:33:5e:cc:ef:dd:ee:1a:
2c:fe:60:dd:d3:e6:82:53:77:bb:14:18:dd:d0:2b:37:5e:10:
e3:a0:a4:f6:13:28:6d:6d:cc:70:21:12:06:cd:e0:82:a6:4e:
f2:9c:2e:69:d4:f5:2a:cf:8b:38:fb:71:7d:07:31:a5:69:7b:
08:45:36:0d:95:53:08:f4:a9:bf:7b:cc:2f:ac:af:1f:a6:a5:
8b:e6:71:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:26:15 2025 by rpki-client