Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/KQTK1M5p1w2tgkimZwP7TTABtyY.roa
File: KQTK1M5p1w2tgkimZwP7TTABtyY.roa (raw, json)
Hash identifier: LTRVwyOZnYQaG256SSamw/dl7HTrEkfEZ7OCXHYqevA=
Subject key identifier: 29:04:CA:D4:CE:69:D7:0D:AD:82:48:A6:67:03:FB:4D:30:01:B7:26
Certificate issuer: /CN=8017eaa1daaf225f453802a33baf9638cccd77a5
Certificate serial: 01942143E29DB5E4F77F2A2E932BE5ABC7EB
Authority key identifier: 80:17:EA:A1:DA:AF:22:5F:45:38:02:A3:3B:AF:96:38:CC:CD:77:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBfqodqvIl9FOAKjO6-WOMzNd6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/KQTK1M5p1w2tgkimZwP7TTABtyY.roa
Signing time: Wed 01 Jan 2025 09:48:04 +0000
ROA not before: Wed 01 Jan 2025 09:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 400810
IP address blocks: 78.24.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:e2:9d:b5:e4:f7:7f:2a:2e:93:2b:e5:ab:c7:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8017eaa1daaf225f453802a33baf9638cccd77a5
Validity
Not Before: Jan 1 09:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2904cad4ce69d70dad8248a66703fb4d3001b726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:36:96:7d:3f:d8:36:03:c8:60:09:d6:88:3f:
c3:7a:ad:6a:84:f7:75:8e:0b:db:3f:41:f3:4e:20:
79:d4:f8:9c:c5:0b:5e:6a:a0:2c:19:3f:33:5b:d9:
bf:0e:bb:75:48:1b:b0:8c:54:61:ad:09:ca:ba:35:
09:f0:2d:16:16:d7:b6:d2:d1:9b:63:c4:b9:6a:8b:
f2:45:89:8a:85:e2:33:d0:cf:e0:30:6f:fe:4c:11:
91:a0:89:8a:ef:4a:d3:ad:9f:bd:56:a5:3e:78:d3:
24:6d:e8:6a:23:cb:ce:77:00:5c:37:06:d9:d7:e6:
08:c2:d4:ad:22:d0:46:3d:a5:c1:33:36:5e:9a:62:
4a:d4:15:c5:b1:b1:ae:38:b0:c5:26:01:43:b2:09:
91:cd:0e:34:f3:0c:44:cf:53:ab:05:3e:56:b7:34:
c0:7d:07:28:4d:d8:e6:26:cc:f6:78:85:3f:52:67:
a1:e4:5f:d3:2c:6e:9f:6e:ec:6c:1d:8a:1b:d7:1b:
f2:17:d6:bc:b2:71:af:c2:ab:ab:a0:ed:a0:f4:05:
1f:3a:f7:85:55:85:25:d5:75:46:14:b4:48:37:89:
9c:69:7f:4f:2b:d8:d8:23:b1:c9:54:dc:9e:58:01:
14:08:3a:8d:d0:87:c8:68:ec:90:81:01:87:02:85:
47:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:04:CA:D4:CE:69:D7:0D:AD:82:48:A6:67:03:FB:4D:30:01:B7:26
X509v3 Authority Key Identifier:
keyid:80:17:EA:A1:DA:AF:22:5F:45:38:02:A3:3B:AF:96:38:CC:CD:77:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBfqodqvIl9FOAKjO6-WOMzNd6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/KQTK1M5p1w2tgkimZwP7TTABtyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/gBfqodqvIl9FOAKjO6-WOMzNd6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.205.0/24
Signature Algorithm: sha256WithRSAEncryption
17:09:b3:d9:3b:50:98:f0:bc:99:09:52:b8:be:8a:5e:ee:59:
90:8f:b4:bc:8c:f7:b6:d3:31:d4:a7:8a:8c:64:f3:24:b8:cd:
34:01:6d:00:a4:82:2f:b9:7a:4d:de:74:b5:87:32:b1:85:a7:
97:5f:86:db:69:ab:d1:47:ef:5f:d0:42:23:2f:1d:7a:87:59:
00:6f:a7:65:b4:d5:44:47:9d:75:5d:be:03:0d:07:e5:f8:2c:
12:a7:74:cf:2b:ca:56:71:61:1b:5d:ec:c6:bb:36:c8:1b:36:
60:7e:84:e4:a3:5a:07:7a:0e:54:03:e2:d1:6e:5e:e6:f8:e4:
cc:6b:95:a7:10:55:85:73:41:b4:d0:20:47:2d:63:0e:ae:b9:
fc:ac:08:eb:35:d5:c7:91:f9:a5:35:31:71:45:f7:53:fc:57:
a6:c4:48:9d:30:9f:ae:79:58:6a:c6:56:4f:60:ae:29:ee:1b:
38:2b:5b:56:39:0c:6f:f5:4d:2e:bd:ab:4f:b4:2d:d2:54:15:
b0:69:f0:94:dd:d5:6e:8c:6b:7c:f1:da:37:47:b6:59:c9:c8:
43:d5:51:88:2d:0f:21:74:51:47:ed:82:03:2d:59:39:d7:ca:
b0:07:5b:7b:45:94:53:47:cc:5c:a6:68:fc:d6:75:cc:af:5c:
a1:f0:8f:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:28:05 2025 by rpki-client