Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/6b9c00-cbe0-4f88-aed5-99f5491c4447/1/FhKQz8lDpX26sddnWuv4Qd-s0Lo.roa
File: FhKQz8lDpX26sddnWuv4Qd-s0Lo.roa (raw, json)
Hash identifier: uKWdyH5ZOtgc6blqUmb2AJiWCJ+sSkDUvZn4Njy6GPI=
Subject key identifier: 16:12:90:CF:C9:43:A5:7D:BA:B1:D7:67:5A:EB:F8:41:DF:AC:D0:BA
Certificate issuer: /CN=720606eddbcec7a57211941a67cc729b42915c5e
Certificate serial: 018D8431D9F39B8F9B43DE3CF9124B28CA42
Authority key identifier: 72:06:06:ED:DB:CE:C7:A5:72:11:94:1A:67:CC:72:9B:42:91:5C:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgYG7dvOx6VyEZQaZ8xym0KRXF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/6b9c00-cbe0-4f88-aed5-99f5491c4447/1/FhKQz8lDpX26sddnWuv4Qd-s0Lo.roa
Signing time: Wed 07 Feb 2024 15:31:16 +0000
ROA not before: Wed 07 Feb 2024 15:31:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64492
IP address blocks: 178.212.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:31:d9:f3:9b:8f:9b:43:de:3c:f9:12:4b:28:ca:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=720606eddbcec7a57211941a67cc729b42915c5e
Validity
Not Before: Feb 7 15:31:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=161290cfc943a57dbab1d7675aebf841dfacd0ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ca:ab:16:50:02:45:b0:48:95:a5:95:c0:80:
63:eb:68:39:51:27:98:bd:42:5a:19:d2:bd:d2:dc:
0c:ab:84:c2:90:8f:16:2e:4a:db:e4:85:46:93:88:
e7:44:69:b8:41:64:a1:a3:e8:de:34:c2:7c:26:8b:
88:a7:32:59:38:0d:37:f7:76:29:70:67:01:2d:62:
3d:4a:37:7f:b3:e5:a7:55:d3:f3:2d:5f:58:ad:f3:
a1:6f:6c:a0:c1:5b:9a:bb:ba:01:7e:f2:16:83:c2:
74:f4:97:d0:09:1a:2a:3f:a9:6c:e2:67:84:40:73:
da:cb:1b:71:fc:5c:c2:be:d6:78:7f:e1:bd:cd:89:
bb:17:62:aa:96:3f:b4:a1:f1:e1:00:f7:4a:9a:01:
11:a9:e2:cf:80:ee:31:d1:44:1e:ed:af:83:b2:3d:
3d:93:87:4e:7e:0e:c3:66:05:81:09:8f:fc:ba:dc:
5d:b7:4f:37:ce:89:1f:74:17:04:8c:01:a4:f6:d7:
7b:a6:3e:ad:06:24:ec:89:a5:44:42:32:b8:61:f8:
4b:b7:76:8b:30:ca:f9:a2:8a:a1:b0:e9:3c:2e:dc:
76:6c:da:fd:bc:71:cd:27:e2:74:cc:09:e0:05:8f:
64:ef:ff:d3:dd:a2:22:4a:b5:78:d3:a1:10:10:bc:
eb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:12:90:CF:C9:43:A5:7D:BA:B1:D7:67:5A:EB:F8:41:DF:AC:D0:BA
X509v3 Authority Key Identifier:
keyid:72:06:06:ED:DB:CE:C7:A5:72:11:94:1A:67:CC:72:9B:42:91:5C:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgYG7dvOx6VyEZQaZ8xym0KRXF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/6b9c00-cbe0-4f88-aed5-99f5491c4447/1/FhKQz8lDpX26sddnWuv4Qd-s0Lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/6b9c00-cbe0-4f88-aed5-99f5491c4447/1/cgYG7dvOx6VyEZQaZ8xym0KRXF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.143.0/24
Signature Algorithm: sha256WithRSAEncryption
96:74:e8:80:f7:cb:bf:f8:7d:5a:54:82:67:0c:68:9d:18:08:
8a:47:6e:6c:96:5b:0b:79:2c:81:f2:e8:fb:e8:6c:96:a0:11:
59:c2:33:3d:55:23:bc:b4:60:90:ff:62:fd:7e:cd:9d:0a:dc:
f2:2b:35:38:72:9f:a4:c4:fe:d5:3f:76:07:21:a1:38:0e:3a:
18:11:95:ee:0f:b1:ce:fb:6a:24:21:5b:da:de:a3:b4:1c:d8:
c0:a7:12:01:1f:ac:16:73:27:2a:15:3e:1d:ab:69:81:70:e1:
59:13:78:db:b9:6f:45:89:07:e4:40:e3:e6:85:a4:6e:4d:34:
ab:cc:dd:68:64:46:8b:b7:80:39:77:3c:e4:bd:a9:a1:3a:4d:
24:f7:1a:ec:c3:79:98:e7:5d:9a:cf:43:c3:b8:57:cf:49:4b:
03:00:4c:cf:6d:28:5c:2c:62:7b:0f:ab:f5:ae:12:89:a4:dd:
5d:2a:93:22:72:a2:65:f1:31:cb:d5:da:1c:82:6c:af:29:ce:
10:ea:da:62:dd:aa:a8:79:b0:64:e1:7d:14:8a:da:5a:02:85:
ef:28:53:eb:03:6e:56:6a:e4:e5:c9:be:95:5b:40:c2:96:52:
08:60:38:af:0a:20:e6:a5:04:b4:63:6d:ad:22:17:10:3c:15:
0a:45:0b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:51:35 2025 by rpki-client