Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/428db9-a1a4-4f5d-a411-df29d618d660/1/I2NQvtxXXOSO6W_0ee5DJeYW9yc.roa
File: I2NQvtxXXOSO6W_0ee5DJeYW9yc.roa (raw, json)
Hash identifier: vT2NicTnR8CFXskCLVFDPA6mZcLfP+IpkecKwut9nLA=
Subject key identifier: 23:63:50:BE:DC:57:5C:E4:8E:E9:6F:F4:79:EE:43:25:E6:16:F7:27
Certificate issuer: /CN=0eecb618add708467f774d93e2674076993ecd54
Certificate serial: 01882DE137208DF67A425EB2A911BB56D964
Authority key identifier: 0E:EC:B6:18:AD:D7:08:46:7F:77:4D:93:E2:67:40:76:99:3E:CD:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Duy2GK3XCEZ_d02T4mdAdpk-zVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/428db9-a1a4-4f5d-a411-df29d618d660/1/I2NQvtxXXOSO6W_0ee5DJeYW9yc.roa
Signing time: Thu 18 May 2023 08:01:54 +0000
ROA not before: Thu 18 May 2023 08:01:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206502
IP address blocks: 78.108.212.0/24 maxlen: 24
78.108.212.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2d:e1:37:20:8d:f6:7a:42:5e:b2:a9:11:bb:56:d9:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eecb618add708467f774d93e2674076993ecd54
Validity
Not Before: May 18 08:01:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=236350bedc575ce48ee96ff479ee4325e616f727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8f:93:73:46:06:0d:a1:38:7e:5b:9b:48:51:
e1:fa:08:e4:7c:37:5c:20:e9:b1:bd:1f:e1:60:6f:
20:c2:73:f2:18:a8:75:c2:10:cf:3c:75:1b:94:1a:
d1:ac:ef:af:c7:a1:b0:d2:69:d6:c3:bf:f3:27:b9:
ee:fe:96:23:47:d0:d8:89:7f:95:7a:76:79:e7:07:
55:c6:ba:36:cc:75:8a:ae:d8:f2:5c:74:9a:cc:ac:
e1:ae:9d:f2:67:5a:a7:82:fd:63:03:d2:d0:7d:75:
f8:e8:27:8c:6c:a4:78:5f:8d:31:54:31:e4:cf:25:
b9:61:9a:e4:80:7b:f3:a5:6d:b9:b5:dc:fb:db:a3:
42:5f:2d:49:28:55:09:21:7f:2c:60:20:ac:d4:25:
0a:7a:c3:e2:52:cf:91:43:a3:67:77:d4:55:0c:17:
d5:e5:15:04:75:ae:2c:b9:73:4d:ef:0c:ee:a5:ca:
80:40:9a:9c:3a:80:c6:e4:a9:87:92:97:c3:3b:76:
cf:f1:0a:f5:f4:2e:3c:53:e8:18:27:d1:5c:d8:c7:
3d:17:50:09:f5:68:64:c5:b1:a8:22:46:20:0e:5f:
d6:99:86:d0:cf:c0:c3:72:f3:93:25:ef:13:c0:53:
22:b8:de:3d:6a:e2:a2:08:5f:e6:d8:b6:a4:cc:9b:
b9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:63:50:BE:DC:57:5C:E4:8E:E9:6F:F4:79:EE:43:25:E6:16:F7:27
X509v3 Authority Key Identifier:
keyid:0E:EC:B6:18:AD:D7:08:46:7F:77:4D:93:E2:67:40:76:99:3E:CD:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Duy2GK3XCEZ_d02T4mdAdpk-zVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/428db9-a1a4-4f5d-a411-df29d618d660/1/I2NQvtxXXOSO6W_0ee5DJeYW9yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/428db9-a1a4-4f5d-a411-df29d618d660/1/Duy2GK3XCEZ_d02T4mdAdpk-zVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.212.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:76:28:3a:6b:ac:12:4c:c6:65:ee:4b:a5:d1:71:ea:77:83:
0d:42:0e:6a:1f:29:5d:c9:b3:ab:25:e5:60:0a:01:9e:26:01:
28:3a:6c:dd:7a:b4:b7:cc:c8:17:83:60:13:c1:d2:7e:89:e1:
a2:62:99:f5:6c:a2:00:56:f4:b3:6d:48:74:93:78:23:27:06:
7a:de:07:70:be:b2:7a:89:3d:bb:5f:c4:9e:2d:13:b9:bc:b9:
c2:8b:6f:92:ec:10:34:59:7a:99:b1:77:20:20:b2:b2:df:55:
07:4c:6c:7c:c2:a8:29:03:50:e5:63:bb:f1:16:45:d7:de:26:
a8:17:3f:95:36:f4:e9:41:4b:c8:f0:cb:b2:d6:82:7b:86:fd:
56:c0:9a:0d:4e:a4:ac:fe:26:e6:a0:32:89:ab:52:91:5f:e3:
bf:15:67:96:de:81:4f:81:d5:d7:a1:c7:f2:57:f9:66:a7:d4:
f4:c7:1b:6a:4e:7f:66:4c:95:8f:aa:7e:42:d5:8e:d0:3d:3d:
a5:49:0f:a0:a1:87:67:e1:d9:a6:cf:3e:1c:fb:fe:c0:df:cd:
6a:c7:68:33:97:7a:03:63:af:50:dd:ef:7f:04:9f:31:e1:83:
06:51:75:90:62:02:28:65:00:61:c9:16:44:3e:9c:68:b6:87:
0a:08:91:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:33:34 2025 by rpki-client