Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/4ox_NqnaYxSsz2vDYzH22uhK-q0.roa
File: 4ox_NqnaYxSsz2vDYzH22uhK-q0.roa (raw, json)
Hash identifier: tPMnjXMOGzaQzjzqogLfkjg5to+JCQG3GUdCZD2iBZs=
Subject key identifier: E2:8C:7F:36:A9:DA:63:14:AC:CF:6B:C3:63:31:F6:DA:E8:4A:FA:AD
Certificate issuer: /CN=bceef64a2e6e11c4dd6ad05b96eff644ddb457af
Certificate serial: D31008
Authority key identifier: BC:EE:F6:4A:2E:6E:11:C4:DD:6A:D0:5B:96:EF:F6:44:DD:B4:57:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vO72Si5uEcTdatBblu_2RN20V68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/4ox_NqnaYxSsz2vDYzH22uhK-q0.roa
Signing time: Sat 01 Jan 2022 02:50:55 +0000
ROA not before: Sat 01 Jan 2022 02:50:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 178.212.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13832200 (0xd31008)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bceef64a2e6e11c4dd6ad05b96eff644ddb457af
Validity
Not Before: Jan 1 02:50:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e28c7f36a9da6314accf6bc36331f6dae84afaad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:bf:77:29:40:1d:bf:fa:ef:2b:9a:27:6e:76:
c3:a5:5d:02:8a:f9:53:5a:08:69:b6:04:7d:f4:9f:
c0:4f:31:37:3b:90:5c:40:57:c6:20:74:62:b9:53:
c1:d4:f1:c4:3a:27:fa:93:41:82:5d:c5:2b:1b:0c:
19:27:03:db:27:9b:67:f2:f6:95:b1:d5:ff:d3:4e:
79:c0:3a:25:c8:c3:98:f7:b5:d5:d5:0c:c5:d7:47:
6f:f7:4d:a8:75:50:7a:b3:e1:fe:97:84:c1:ea:b9:
df:62:6a:59:bb:77:00:82:01:0a:14:1b:8c:23:5f:
67:eb:c6:fb:8a:95:53:9b:09:27:b7:20:fd:49:b9:
0c:1a:0d:a0:13:45:6a:2b:64:5e:a7:e6:9e:cf:73:
09:da:71:1d:9b:a7:78:a8:a9:61:ce:5c:68:2b:e5:
94:2c:c1:ef:49:1f:ce:61:69:94:03:1d:df:ad:51:
0f:74:62:f4:ae:41:3f:6d:e5:07:a3:88:45:aa:63:
1e:1e:bc:4c:dc:ef:d3:56:4a:4d:5e:ed:a1:da:32:
3e:b0:df:6e:49:b0:c2:91:ee:ca:a3:54:bc:c5:04:
17:c3:31:4b:24:81:37:65:7d:93:a4:83:13:f7:fb:
00:68:5f:18:5e:3b:03:1c:49:8e:0c:db:66:c6:12:
6f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:8C:7F:36:A9:DA:63:14:AC:CF:6B:C3:63:31:F6:DA:E8:4A:FA:AD
X509v3 Authority Key Identifier:
keyid:BC:EE:F6:4A:2E:6E:11:C4:DD:6A:D0:5B:96:EF:F6:44:DD:B4:57:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vO72Si5uEcTdatBblu_2RN20V68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/4ox_NqnaYxSsz2vDYzH22uhK-q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/vO72Si5uEcTdatBblu_2RN20V68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.77.0/24
Signature Algorithm: sha256WithRSAEncryption
32:58:22:2a:4c:30:eb:8e:da:45:ad:0e:14:1a:4d:f1:ee:b6:
fe:4a:83:f2:6d:52:bc:12:2e:1a:81:c4:56:de:bd:7c:01:94:
1e:56:ea:7e:d2:89:6f:dd:53:6d:9d:9f:da:63:d6:67:07:75:
ce:94:aa:50:0f:45:a0:9f:8b:e1:45:f2:19:3d:29:11:e4:ee:
c9:fa:18:3e:66:ee:d1:6a:42:5e:08:ce:7f:d0:a7:0f:cc:70:
1f:f0:9c:49:bc:06:cf:a4:fa:44:20:df:45:6e:c7:b1:a3:a6:
c7:34:d0:f1:49:da:36:89:a0:11:0c:60:18:c0:ed:0d:95:04:
59:a3:ef:11:e9:74:fd:76:dd:c0:3a:0c:fd:3e:9f:47:fc:97:
58:6d:e8:ea:66:18:2d:1f:2e:5a:22:84:90:03:2c:09:da:68:
8f:ec:e1:c7:fa:1f:54:b8:e2:c3:f4:f0:95:f9:50:2e:12:00:
8b:47:40:16:ab:ab:1b:4f:db:0f:99:2b:c3:d0:65:fc:04:89:
8c:4b:93:a1:52:97:95:34:47:c7:b9:a0:45:92:90:ed:60:d5:
63:e8:de:4b:70:96:7b:50:9a:a0:2e:4a:69:00:b5:71:b2:e0:
4f:69:06:6d:65:6d:b3:0b:2c:c5:43:9f:2f:07:86:40:03:f2:
b8:da:da:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:40:04 2025 by rpki-client