Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/7_41ic_7oJgUmMe6gb6ctma4oVQ.roa
File: 7_41ic_7oJgUmMe6gb6ctma4oVQ.roa (raw, json)
Hash identifier: tXLeHB3gnoashOFCX8MUWNYNclTldITXbPiaUUr/TB0=
Subject key identifier: EF:FE:35:89:CF:FB:A0:98:14:98:C7:BA:81:BE:9C:B6:66:B8:A1:54
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0194258F9CC123F469C769911B3F55861314
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/7_41ic_7oJgUmMe6gb6ctma4oVQ.roa
Signing time: Thu 02 Jan 2025 05:49:16 +0000
ROA not before: Thu 02 Jan 2025 05:49:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59831
IP address blocks: 217.78.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:9c:c1:23:f4:69:c7:69:91:1b:3f:55:86:13:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 05:49:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=effe3589cffba0981498c7ba81be9cb666b8a154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:86:38:fc:1a:3f:69:c3:19:ea:4b:6a:46:16:
fd:5a:78:6c:0b:31:6f:ff:11:76:62:5d:9d:13:1f:
eb:30:bb:7a:85:d5:ff:1c:ac:6b:22:18:ab:f6:53:
61:99:c2:d0:df:b7:72:b2:44:47:24:22:bc:26:1e:
f8:9e:c9:ca:ed:ca:30:56:ac:57:95:d2:61:31:46:
aa:14:fa:1c:78:cc:d9:b6:ec:6f:01:fe:84:7c:a3:
45:b9:e6:48:8d:34:8e:fe:51:64:8d:a2:7b:5c:31:
02:01:7c:7f:90:98:73:3d:b7:8e:b5:f0:47:62:11:
47:2d:99:28:61:c4:63:ef:ae:fa:81:94:e0:8f:5a:
09:c6:ae:6a:f6:3a:e7:af:61:c9:25:c3:42:28:73:
e3:58:f3:7e:3c:eb:89:3b:e1:66:94:b8:5b:85:3d:
69:c9:2e:47:7e:d6:8f:f2:b1:3c:58:4e:eb:83:a8:
fd:fd:34:01:82:39:80:d2:07:94:12:07:fd:b6:d8:
8c:cf:71:5e:74:14:39:0f:9a:25:7a:e1:7d:11:ad:
f8:93:84:a4:dc:9e:55:04:bc:07:03:41:69:59:0e:
c6:21:b7:71:23:b0:f0:22:80:ec:1f:31:dd:16:a3:
fc:43:21:0b:dd:8c:73:ca:23:65:11:9f:87:01:b4:
a9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:FE:35:89:CF:FB:A0:98:14:98:C7:BA:81:BE:9C:B6:66:B8:A1:54
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/7_41ic_7oJgUmMe6gb6ctma4oVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.78.235.0/24
Signature Algorithm: sha256WithRSAEncryption
29:b2:3e:8d:b4:d3:dc:5f:bf:46:e6:81:19:58:c5:ff:19:85:
ee:f7:b6:e7:f6:2f:9c:74:18:9b:ca:f3:26:ef:4f:06:48:c2:
57:b0:30:e4:26:f8:0d:73:c0:95:73:e2:cc:14:25:8c:a0:3f:
04:34:8c:1a:b9:54:34:f4:05:6d:88:c9:a0:8e:bd:b8:d2:8f:
56:01:58:fa:02:60:97:96:8a:9b:fc:fd:31:2f:46:09:05:5d:
d4:de:73:a8:ab:5b:30:f5:e0:f6:4a:15:89:c1:58:37:b7:58:
e9:55:c5:bf:aa:72:a6:69:d1:52:7e:22:14:f0:b0:fa:1e:b2:
99:77:83:c5:96:01:ef:db:ed:7d:bf:c2:95:29:f1:f6:9c:22:
9c:6e:3f:7b:22:97:81:7f:b7:9e:7d:fc:21:fc:6d:19:4b:c1:
55:31:c4:bf:e8:3c:a0:69:7a:ab:4d:48:61:13:8e:3b:a3:82:
ed:f7:93:2c:98:3c:a5:70:d1:1e:01:a0:10:77:78:6d:ac:63:
76:38:c7:62:84:94:ce:34:14:16:67:64:ca:b3:29:2e:75:de:
d4:03:b2:65:df:d6:95:bf:49:8e:f9:9c:d9:48:56:40:cb:03:
47:26:16:85:dc:97:25:ef:f9:b6:c1:8c:39:89:d5:e2:bb:98:
9c:4c:28:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:34:44 2025 by rpki-client