Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/s6XbpS6zvG-OGcqP78qsGOOoOlQ.roa
File: s6XbpS6zvG-OGcqP78qsGOOoOlQ.roa (raw, json)
Hash identifier: vai/46FuXyssCtnAk+MIcYY2mUqRBxwISqAf2lFmzsg=
Subject key identifier: B3:A5:DB:A5:2E:B3:BC:6F:8E:19:CA:8F:EF:CA:AC:18:E3:A8:3A:54
Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Certificate serial: 019425211EB8C92A8458843E8570B6DB9DB0
Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/s6XbpS6zvG-OGcqP78qsGOOoOlQ.roa
Signing time: Thu 02 Jan 2025 03:48:34 +0000
ROA not before: Thu 02 Jan 2025 03:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214379
IP address blocks: 178.250.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:1e:b8:c9:2a:84:58:84:3e:85:70:b6:db:9d:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Validity
Not Before: Jan 2 03:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b3a5dba52eb3bc6f8e19ca8fefcaac18e3a83a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:64:11:46:d1:8a:be:91:b8:57:df:00:52:8f:
d2:47:fc:c9:7c:7e:25:e5:c4:98:27:a8:a4:88:75:
df:0b:cd:9c:70:d5:ce:c7:da:6e:69:1d:35:71:77:
c2:cd:04:0f:7d:00:8d:26:62:76:6c:c8:74:ee:a9:
42:41:2c:b6:6d:6d:e5:14:4c:7d:7e:36:46:bf:ed:
c7:65:aa:1a:11:ed:d7:fe:24:cb:62:24:fd:a2:e9:
ce:e9:17:13:b6:b3:a4:ed:55:b8:ca:b6:84:c9:77:
a9:4c:f2:fa:61:03:cc:ad:77:24:31:ce:fc:d0:66:
80:e6:56:87:1b:9e:0c:0d:9c:13:f0:dc:29:bb:fb:
ed:da:af:ea:6b:17:dd:92:77:42:d8:6f:2b:4f:d0:
e0:ef:b8:5b:93:29:9b:53:b4:c2:ca:0b:31:c1:61:
81:9b:b0:ae:d6:40:a9:ed:e7:d8:f8:91:7c:0e:d6:
22:17:b7:26:09:02:9f:26:9f:80:c3:52:a2:6f:53:
27:9d:e7:1f:cb:5e:4a:e3:f0:6d:ea:8d:34:ec:fd:
71:48:3e:1e:b6:94:90:a9:2f:d3:f6:80:69:36:cd:
7a:77:9c:1c:8b:b4:f8:6a:53:00:d9:75:4d:2c:70:
e8:bb:d6:c4:55:aa:f8:a1:d6:5f:fe:41:59:75:d0:
77:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A5:DB:A5:2E:B3:BC:6F:8E:19:CA:8F:EF:CA:AC:18:E3:A8:3A:54
X509v3 Authority Key Identifier:
keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/s6XbpS6zvG-OGcqP78qsGOOoOlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.250.189.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:fc:a8:a4:92:bf:2e:f3:94:bd:30:7f:ba:b3:5f:4d:18:d2:
1e:7e:d5:ea:92:ec:5b:03:ce:e6:03:8b:e3:34:9f:19:f2:af:
70:84:b4:80:ec:25:c6:54:c4:66:34:c0:b6:32:61:eb:bd:7b:
50:fb:ee:8d:fe:35:1e:3a:8e:84:31:db:e6:31:1d:bf:55:f1:
87:47:be:e1:21:3d:aa:d3:4d:c9:95:92:00:0f:4c:9f:47:92:
8d:03:e5:49:f8:aa:97:7b:34:55:c5:22:2c:ba:fa:b8:51:dd:
ef:03:84:ec:3d:64:fb:7c:eb:13:6d:fb:6c:93:89:84:2c:60:
2a:8e:b6:0c:99:82:f2:01:7c:ac:a1:77:f7:cc:c8:90:9a:b0:
27:92:27:eb:8c:56:d3:40:d5:2f:01:36:18:38:8e:5e:cb:9c:
f5:f0:8f:43:7d:61:d0:d9:02:61:dc:fe:a4:f4:ba:63:a6:c4:
af:39:6e:60:be:36:45:1e:d0:1d:a8:85:2e:a1:84:fd:86:9e:
ff:98:5e:e6:4c:d2:55:32:b3:63:91:b7:5b:38:d5:aa:e2:20:
d7:95:32:78:23:16:6f:b7:4f:ec:a7:0c:38:58:28:2f:78:bc:
0e:cd:a7:25:fd:74:a7:3a:1e:a5:48:d6:fa:00:a5:35:61:fd:
71:0d:cf:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:28:15 2025 by rpki-client