Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/9-oXeinWUZAYjFXuiL08sqaJW8g.roa
File: 9-oXeinWUZAYjFXuiL08sqaJW8g.roa (raw, json)
Hash identifier: cAN+gvZbUhraGIUJaa7cnumBKdikaTnSPVpELO6/zis=
Subject key identifier: F7:EA:17:7A:29:D6:51:90:18:8C:55:EE:88:BD:3C:B2:A6:89:5B:C8
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0194244481AD202A5FD97FCCD66AFD9F1625
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/9-oXeinWUZAYjFXuiL08sqaJW8g.roa
Signing time: Wed 01 Jan 2025 23:47:36 +0000
ROA not before: Wed 01 Jan 2025 23:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 178.22.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:81:ad:20:2a:5f:d9:7f:cc:d6:6a:fd:9f:16:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 23:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f7ea177a29d65190188c55ee88bd3cb2a6895bc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:08:6d:79:11:5f:6f:92:7c:11:07:27:49:b3:
a7:f6:5f:df:91:7c:64:53:18:ff:e1:64:24:77:c6:
83:d0:be:d1:3a:35:12:e9:a2:c8:51:9e:a6:95:9d:
be:eb:b8:c1:19:df:5f:13:53:0b:c6:eb:61:d1:56:
d8:b7:83:a3:62:da:65:d9:05:37:ce:02:2a:66:02:
81:b4:0f:b1:db:e9:ac:57:d9:b3:6d:4d:b3:af:aa:
4f:b6:aa:b1:97:af:5a:02:a7:c1:cc:c0:bf:16:94:
28:74:35:f7:63:6a:28:8a:b7:e5:1a:5b:25:8f:a1:
e7:65:88:d7:31:aa:9c:f7:50:1f:1d:f7:87:07:6c:
8b:aa:fd:8b:c5:1c:14:70:b8:16:86:fc:f9:38:41:
d5:a3:31:62:b4:99:1a:67:0d:0b:7f:ec:cb:7b:48:
2d:bd:86:c7:4d:22:be:86:0e:14:14:9f:9e:65:21:
f3:52:d6:91:7b:ef:6a:d1:7b:95:1a:d5:c7:6d:61:
f9:4d:34:72:73:08:e8:af:25:c0:e8:64:04:21:c5:
a9:61:3f:69:d0:9e:02:7d:2a:8d:24:09:b4:49:80:
a3:39:7e:c1:eb:6a:2e:0c:cd:64:62:89:b7:97:c6:
3c:2e:eb:8c:3a:b5:37:46:a4:70:d1:4c:04:4d:26:
38:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:EA:17:7A:29:D6:51:90:18:8C:55:EE:88:BD:3C:B2:A6:89:5B:C8
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/9-oXeinWUZAYjFXuiL08sqaJW8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.26.0/24
Signature Algorithm: sha256WithRSAEncryption
14:f6:ee:0a:0a:26:ed:f0:b3:95:d8:df:73:70:d6:ad:26:6a:
d7:17:d5:09:56:de:95:14:06:f6:51:7b:7b:aa:2b:9a:bc:a7:
95:f4:d9:3a:37:c8:3b:71:d4:f6:b7:18:8b:76:16:6f:88:98:
87:48:b6:bd:5f:14:7b:fa:82:65:38:56:7b:c0:72:f9:91:90:
e6:15:63:5c:93:ae:00:0d:d8:49:5c:32:44:bf:9e:ee:cb:51:
0c:66:e3:7f:ca:f3:70:c8:19:32:32:7e:c2:fd:bc:0c:a2:73:
46:09:83:e5:37:38:68:d2:6b:62:2c:b6:5a:e9:34:6c:87:82:
ee:64:b1:11:5e:2e:17:c3:95:e8:2c:1c:a6:06:64:5d:f6:f5:
21:15:db:34:0d:eb:0c:14:21:05:e0:4c:f3:3e:9f:2d:3c:a0:
30:1e:f4:d1:c4:e2:f1:2a:e2:95:8c:00:4f:66:80:29:3b:12:
8c:69:7d:3a:79:5d:07:7c:ea:b7:9c:2c:4b:5d:36:74:16:b4:
e8:60:9f:64:01:67:f9:b6:85:46:37:76:a3:72:30:d6:c2:ae:
65:6a:6d:b8:8a:f4:13:7f:16:21:ae:e2:68:02:da:35:a7:f3:
68:34:67:97:99:2d:19:4f:b9:55:87:44:88:dd:7c:bb:8f:96:
d7:e1:ca:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:50:58 2025 by rpki-client