Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/1bca6a-511e-4150-9cfa-c52c6c0e3a8a/1/kvpjW1OQ3nnqnZospDXyTTjms3c.roa
File: kvpjW1OQ3nnqnZospDXyTTjms3c.roa (raw, json)
Hash identifier: jdHb9YcJtduSRgTK6EOa2Lgs5rNOzEsJ93AqGYpkqHg=
Subject key identifier: 92:FA:63:5B:53:90:DE:79:EA:9D:9A:2C:A4:35:F2:4D:38:E6:B3:77
Certificate issuer: /CN=7819b096edf8760e8e500f94169bc00378ae9475
Certificate serial: 0194258E734A13C523D9397B0BDE0A1C8803
Authority key identifier: 78:19:B0:96:ED:F8:76:0E:8E:50:0F:94:16:9B:C0:03:78:AE:94:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eBmwlu34dg6OUA-UFpvAA3iulHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/1bca6a-511e-4150-9cfa-c52c6c0e3a8a/1/kvpjW1OQ3nnqnZospDXyTTjms3c.roa
Signing time: Thu 02 Jan 2025 05:48:00 +0000
ROA not before: Thu 02 Jan 2025 05:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51294
IP address blocks: 178.23.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:73:4a:13:c5:23:d9:39:7b:0b:de:0a:1c:88:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7819b096edf8760e8e500f94169bc00378ae9475
Validity
Not Before: Jan 2 05:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=92fa635b5390de79ea9d9a2ca435f24d38e6b377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a6:c7:a9:ec:f1:c7:2e:c3:07:47:d7:c8:75:
ff:fa:bf:bc:9b:1c:0b:db:97:14:67:ba:b9:f0:06:
97:79:72:6b:bc:0b:9e:ae:78:84:fe:85:29:88:42:
a8:0e:24:4b:a0:31:59:01:6f:59:59:4e:8e:bc:5d:
2a:15:2e:73:67:56:9c:98:66:0e:96:02:ba:d6:25:
1a:c9:06:f6:17:17:eb:62:d3:52:68:81:2b:0e:1b:
eb:8d:57:fe:c1:0d:49:fc:7f:3c:bf:07:56:28:92:
c2:67:c5:fa:ba:5b:10:fc:67:43:e6:19:2e:c2:f6:
7f:99:f0:f8:6d:c8:e0:39:02:ec:d3:90:e5:84:9e:
88:41:6f:0c:62:f9:3e:cd:77:57:b9:6c:a9:85:70:
a9:89:a7:fa:89:a4:2a:d5:34:7d:a5:11:65:61:43:
db:bd:de:55:02:c6:75:d6:e2:84:ad:fc:ae:63:07:
d3:d0:de:a8:c4:e2:9e:e1:e0:48:6a:f8:65:c4:71:
9c:dd:43:af:12:c8:88:a7:e6:b3:67:95:9e:1d:c6:
85:f2:8a:c1:12:08:18:0a:1a:89:ee:de:e3:64:be:
07:02:21:ef:3b:2f:5a:36:3c:c0:4a:a6:8b:02:ea:
3f:c9:3c:0f:e1:4e:10:ff:20:be:92:70:d6:fc:a8:
61:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:FA:63:5B:53:90:DE:79:EA:9D:9A:2C:A4:35:F2:4D:38:E6:B3:77
X509v3 Authority Key Identifier:
keyid:78:19:B0:96:ED:F8:76:0E:8E:50:0F:94:16:9B:C0:03:78:AE:94:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eBmwlu34dg6OUA-UFpvAA3iulHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1bca6a-511e-4150-9cfa-c52c6c0e3a8a/1/kvpjW1OQ3nnqnZospDXyTTjms3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1bca6a-511e-4150-9cfa-c52c6c0e3a8a/1/eBmwlu34dg6OUA-UFpvAA3iulHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.23.56.0/21
Signature Algorithm: sha256WithRSAEncryption
56:d1:73:4a:0e:a0:ca:1d:a1:25:79:26:7c:37:34:d6:ac:70:
b6:01:19:ce:1a:89:d1:43:81:80:be:56:d3:23:05:89:18:59:
2a:2c:d7:ad:b0:30:e7:a7:a9:23:cf:44:0c:85:c3:81:65:47:
a4:9d:70:f5:64:88:5c:74:45:99:3b:66:a2:6e:5d:5b:30:fc:
3e:a3:c4:76:3f:f0:71:32:17:5e:0b:72:1f:56:69:66:44:64:
fd:43:f9:5a:e5:ae:91:2d:02:65:e3:a6:89:24:b4:7f:7f:fe:
d6:4d:b7:60:7a:72:5c:30:57:58:c3:0c:9c:a4:5f:32:10:e6:
2f:f8:9d:32:67:89:da:e1:db:44:0d:61:cd:8d:29:af:7a:28:
00:94:83:32:73:4a:1c:72:c5:14:0c:51:4c:a3:c1:8e:b9:77:
b6:98:e6:0e:c5:c0:14:5f:5b:82:74:cf:79:ec:95:e9:e9:79:
64:ca:23:83:a8:5f:5f:5f:13:93:ca:1b:e8:75:36:37:13:94:
8c:d6:b0:17:b0:d0:77:a7:8a:f0:59:13:d4:6f:47:55:02:71:
40:1d:73:13:ba:4a:38:09:23:1a:d8:fc:6c:e4:c2:05:29:cb:
e1:55:d8:7d:e8:da:87:f9:e6:b5:2b:46:6b:7a:0e:86:44:58:
33:2c:48:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:49:04 2025 by rpki-client