Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/eK1G7y0WTD4O6k1uxdyaBfdKhHw.roa
File: eK1G7y0WTD4O6k1uxdyaBfdKhHw.roa (raw, json)
Hash identifier: CJCgyS7BbMh60oyfwtTWkPo1GVsMQr+a4QDoR2NN3rs=
Subject key identifier: 78:AD:46:EF:2D:16:4C:3E:0E:EA:4D:6E:C5:DC:9A:05:F7:4A:84:7C
Certificate issuer: /CN=c3ab8f44fc356096b8e656fc8739871ec00d1f12
Certificate serial: 0E84D25C
Authority key identifier: C3:AB:8F:44:FC:35:60:96:B8:E6:56:FC:87:39:87:1E:C0:0D:1F:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6uPRPw1YJa45lb8hzmHHsANHxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/eK1G7y0WTD4O6k1uxdyaBfdKhHw.roa
Signing time: Sat 01 Jan 2022 08:55:39 +0000
ROA not before: Sat 01 Jan 2022 08:55:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204463
IP address blocks: 176.98.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243585628 (0xe84d25c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3ab8f44fc356096b8e656fc8739871ec00d1f12
Validity
Not Before: Jan 1 08:55:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78ad46ef2d164c3e0eea4d6ec5dc9a05f74a847c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:5f:cd:e3:0d:19:22:2f:a0:b0:b3:bd:0f:b3:
3e:56:c5:40:dd:1f:36:10:45:82:86:b9:61:c2:ba:
db:16:56:b1:f5:30:ee:74:86:53:12:15:98:64:dc:
08:39:54:62:66:92:70:d4:ea:6d:42:3d:67:1d:66:
9b:a6:4d:50:19:27:56:b4:84:cd:0c:cb:55:1a:2d:
37:ed:6d:80:ee:90:02:84:b4:df:d5:d1:d9:54:ca:
7d:61:66:42:9e:91:a4:5f:c4:d3:5f:ba:15:49:1f:
ff:7c:24:ff:d7:a8:a7:04:f8:cf:4d:41:c4:5e:b3:
8a:38:c9:14:6a:40:3d:15:3e:65:72:f4:66:3c:97:
e0:77:7e:7c:12:da:3b:1b:d5:83:0b:8b:59:2c:a1:
ad:a1:ec:ab:a7:49:38:73:30:9a:0c:4a:05:f6:4e:
8f:f4:09:b2:ba:0f:44:52:3b:ec:da:b9:16:fc:cf:
82:c9:73:05:e5:d3:d6:28:29:d8:07:06:53:90:3c:
df:c3:2a:a9:b0:4a:d2:48:54:f1:da:52:57:19:b1:
ec:3b:4c:22:9a:7b:47:fa:86:09:e7:c5:d2:fc:cf:
99:e9:8b:29:fe:39:6c:6a:3c:e7:95:e5:20:c7:8c:
12:59:1b:d6:aa:4d:a9:f9:63:6e:32:99:de:96:67:
d8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:AD:46:EF:2D:16:4C:3E:0E:EA:4D:6E:C5:DC:9A:05:F7:4A:84:7C
X509v3 Authority Key Identifier:
keyid:C3:AB:8F:44:FC:35:60:96:B8:E6:56:FC:87:39:87:1E:C0:0D:1F:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6uPRPw1YJa45lb8hzmHHsANHxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/eK1G7y0WTD4O6k1uxdyaBfdKhHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/w6uPRPw1YJa45lb8hzmHHsANHxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.222.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:55:34:ea:a4:8f:cc:4e:83:6f:6b:d5:8a:74:83:16:1b:d8:
ef:65:c1:c6:15:94:9c:85:1c:ce:34:88:02:bb:57:92:51:04:
e7:6b:75:b3:9d:04:bc:da:63:82:d2:2b:bb:13:ab:9a:41:ee:
99:a5:11:e6:94:a4:70:74:3a:5e:80:08:44:bd:14:bc:e8:4e:
63:7f:f9:2a:3e:16:68:aa:aa:a7:84:ea:fc:36:9d:b0:e2:f4:
bf:27:2c:ce:d9:41:6b:2f:3b:2a:58:d0:91:44:89:64:40:4e:
27:3a:85:d1:d8:9b:a0:a5:d8:42:88:5d:77:0a:3e:8f:2d:fb:
83:46:70:0e:9b:31:b2:c9:de:f5:a7:81:79:ee:5e:e3:22:90:
5f:48:4b:4b:e8:7c:df:10:e2:f2:f7:18:6a:53:53:75:33:2a:
bc:9a:87:eb:29:27:57:82:ec:25:ff:34:56:43:1b:59:b8:b0:
f6:47:e6:11:a0:6c:31:c3:94:ef:1c:39:e4:44:48:90:cc:b9:
a4:50:14:82:3b:58:53:73:cd:14:10:ad:e3:44:f8:34:89:53:
23:b0:6a:4b:b7:b5:9b:3e:7c:c2:d4:05:67:4f:ae:d9:70:72:
0f:b0:32:97:fe:af:85:ca:cd:6b:d0:44:f9:ef:04:b1:e8:ed:
d9:92:78:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 16:10:51 2025 by rpki-client