Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/xEZbomTGWUC3peferD0NJJvnGU4.roa
File: xEZbomTGWUC3peferD0NJJvnGU4.roa (raw, json)
Hash identifier: OfbZGYLKwggP5CvfHCQfqFay/K5YrFn62bzx3hOitQI=
Subject key identifier: C4:46:5B:A2:64:C6:59:40:B7:A5:E7:DE:AC:3D:0D:24:9B:E7:19:4E
Certificate issuer: /CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Certificate serial: 023253D3
Authority key identifier: 2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/xEZbomTGWUC3peferD0NJJvnGU4.roa
Signing time: Mon 21 Mar 2022 08:36:58 +0000
ROA not before: Mon 21 Mar 2022 08:36:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203004
IP address blocks: 217.78.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36852691 (0x23253d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Validity
Not Before: Mar 21 08:36:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4465ba264c65940b7a5e7deac3d0d249be7194e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ec:21:5c:83:21:3e:a5:51:ca:a9:a0:0e:3b:
62:b5:bb:c2:14:63:1c:3c:4d:b1:ca:d8:46:49:1a:
22:64:c0:03:eb:61:d0:ed:d5:9c:94:c5:1e:c5:7e:
72:8d:2c:b3:52:29:db:76:43:3b:82:b8:81:25:4f:
ea:a1:8c:33:c1:f2:e9:1f:76:04:aa:56:86:bc:2e:
bd:b8:e3:dd:b1:9c:07:63:94:fb:c4:2e:72:82:79:
76:d1:4f:87:c3:c9:99:06:88:4f:20:4e:2c:0f:18:
d1:2e:f6:58:f8:0f:e1:62:0b:fb:10:31:94:87:2a:
62:3d:c8:14:3e:1c:a3:b8:9e:a5:41:44:99:51:b0:
a5:2b:79:be:eb:6e:bd:5d:d6:38:60:6a:ba:83:03:
bd:39:1b:cc:dd:fa:47:01:3e:ce:1d:8f:ab:db:e4:
f2:38:df:ac:d9:96:26:f0:a6:0d:0b:cb:c3:10:7c:
d3:02:86:f3:a8:8f:72:0e:d9:18:20:e6:2d:60:24:
39:29:5e:80:7c:96:96:eb:3f:9c:90:fa:f1:8c:82:
02:ab:9c:55:9e:38:f1:82:b3:a6:bc:52:22:3f:30:
75:e8:7c:fd:3a:a1:f4:4a:07:ea:54:e9:be:43:00:
e9:6c:66:69:7f:b9:84:fa:f8:9a:f1:3b:c3:f3:8c:
f3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:46:5B:A2:64:C6:59:40:B7:A5:E7:DE:AC:3D:0D:24:9B:E7:19:4E
X509v3 Authority Key Identifier:
keyid:2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/xEZbomTGWUC3peferD0NJJvnGU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.78.239.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:1f:39:99:0b:83:67:2c:ee:05:68:06:28:80:72:16:a1:85:
a0:e0:0c:86:c9:e6:19:f3:fa:07:ed:7f:f5:6a:d6:6d:80:c7:
84:83:2b:74:06:e5:91:43:41:a0:07:31:17:c4:f6:36:d3:16:
c9:09:91:26:4e:8c:ec:84:af:4f:b2:1f:0f:09:8e:f7:98:cd:
82:95:f2:d7:a9:9a:00:0b:45:50:c1:e9:e1:7a:5a:4c:9e:d3:
2c:a9:d8:7e:e7:1f:cb:f8:3f:73:c4:4c:48:da:87:6a:46:7e:
10:9b:ef:2c:9e:a4:99:4a:79:d1:08:5a:29:b6:f2:c9:28:74:
a5:f4:1c:8a:30:ca:f4:1c:7e:22:76:23:c4:10:4d:84:13:f1:
a2:58:3e:6c:02:37:06:34:21:63:ec:70:7e:2b:e6:53:e5:33:
47:1e:55:ea:73:2a:7e:d3:88:2d:44:ea:e4:02:96:cc:5c:41:
73:3d:e9:85:54:8a:af:19:f2:f7:74:91:e2:8a:f2:15:66:0e:
22:e4:8e:5e:17:95:f5:9c:c0:9f:2c:a4:ee:6b:af:58:2a:6c:
99:84:dd:59:58:0f:de:5a:e4:86:ea:9b:4b:3f:fc:90:fd:5f:
ed:51:4a:85:a0:06:6c:cb:d9:58:11:1a:0e:60:15:66:98:5f:
43:89:e3:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:42 2025 by rpki-client