Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/xFW7C9ey9dUoJa4d9DInV8vBx7w.roa
File: xFW7C9ey9dUoJa4d9DInV8vBx7w.roa (raw, json)
Hash identifier: EQ/11pUPaVgWK9UDR6qLrVWzX5k2gDl/QL4jhzfgWqM=
Subject key identifier: C4:55:BB:0B:D7:B2:F5:D5:28:25:AE:1D:F4:32:27:57:CB:C1:C7:BC
Certificate issuer: /CN=bceef64a2e6e11c4dd6ad05b96eff644ddb457af
Certificate serial: 01843802FB369C6FEC102150B8230ECF165C
Authority key identifier: BC:EE:F6:4A:2E:6E:11:C4:DD:6A:D0:5B:96:EF:F6:44:DD:B4:57:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vO72Si5uEcTdatBblu_2RN20V68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/xFW7C9ey9dUoJa4d9DInV8vBx7w.roa
Signing time: Wed 02 Nov 2022 11:03:50 +0000
ROA not before: Wed 02 Nov 2022 11:03:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3561
IP address blocks: 178.212.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:38:02:fb:36:9c:6f:ec:10:21:50:b8:23:0e:cf:16:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bceef64a2e6e11c4dd6ad05b96eff644ddb457af
Validity
Not Before: Nov 2 11:03:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c455bb0bd7b2f5d52825ae1df4322757cbc1c7bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e1:64:fa:f7:9f:d6:53:ca:0d:2e:94:79:8b:
25:8d:9f:c9:fd:86:da:58:86:7f:c5:2c:f2:85:99:
b7:44:e3:32:ca:b7:10:c4:fd:fd:71:56:c8:8a:f5:
ab:f4:ec:e4:c9:d1:92:f6:3a:12:68:b8:58:d3:d6:
d0:01:1b:a9:49:55:cc:88:87:42:e8:a8:98:2e:97:
be:b5:83:6f:67:0a:93:6a:cc:8d:65:2d:65:ab:f9:
d0:a9:04:82:9a:2d:f7:e8:5c:21:4d:fb:15:33:6d:
4e:f5:10:84:05:d0:fc:de:00:64:fd:0d:b5:65:c4:
8d:bf:38:93:b1:e2:cd:a8:d9:bd:b9:97:a1:0b:9d:
76:71:9e:2d:cc:1c:12:91:92:f6:dc:12:ec:6f:4b:
06:6c:b6:5c:23:2a:fd:92:21:50:6b:e9:4f:11:48:
42:ee:48:07:2b:7a:a8:4d:36:78:8e:ed:35:e2:0f:
86:c2:bb:09:6a:13:e7:b0:9e:5c:b6:a5:93:eb:19:
30:bb:5b:56:50:d0:39:6c:b7:68:7f:4c:db:4b:78:
7b:1a:2b:88:dd:63:a8:19:2f:0e:ce:e1:62:aa:23:
f9:31:9d:69:a3:ff:41:9d:9d:a0:b4:db:8a:44:83:
f4:f7:75:b4:05:43:1c:84:ec:38:45:7c:16:63:03:
a4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:55:BB:0B:D7:B2:F5:D5:28:25:AE:1D:F4:32:27:57:CB:C1:C7:BC
X509v3 Authority Key Identifier:
keyid:BC:EE:F6:4A:2E:6E:11:C4:DD:6A:D0:5B:96:EF:F6:44:DD:B4:57:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vO72Si5uEcTdatBblu_2RN20V68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/xFW7C9ey9dUoJa4d9DInV8vBx7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/vO72Si5uEcTdatBblu_2RN20V68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.77.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:32:57:b4:c4:e7:e9:d2:27:d8:ad:ed:08:09:a6:61:c9:b8:
d6:8b:fc:20:3b:29:75:43:31:71:fb:00:4a:b0:55:d6:33:5d:
f9:a4:b7:73:5d:8e:cf:36:eb:bb:3b:d4:a0:57:44:d2:5a:98:
51:97:50:51:47:c9:90:5d:b1:00:a7:9b:d0:c6:72:45:16:e0:
aa:3f:4e:2e:da:0f:a9:ac:42:08:3f:de:b0:99:5e:02:b6:b9:
0b:eb:f2:bf:b9:20:b5:6b:d4:a9:16:ab:3c:cf:2d:87:ee:18:
11:64:60:22:dd:56:1e:62:91:71:be:25:22:e7:c9:5a:de:3d:
a2:75:05:25:f9:ff:76:91:9b:c7:06:05:ed:67:ff:f7:61:3e:
91:41:e1:1e:de:0c:0c:1c:0e:98:4a:2c:80:58:08:9c:49:f3:
56:93:fc:51:1f:7a:13:86:63:87:e0:d7:19:38:a4:54:14:9a:
a1:58:a9:58:14:bc:df:b3:c4:f0:90:13:fd:9f:67:c5:2d:a1:
e8:eb:81:4a:3c:fa:30:24:87:9e:d7:31:fa:90:15:02:1a:9d:
70:6a:85:c9:da:46:45:a5:bb:f4:53:7b:4f:d8:94:99:cf:e9:
43:af:7b:6e:a8:69:ab:08:11:29:dc:b7:1e:92:46:e1:cd:63:
bd:f8:e4:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:26 2025 by rpki-client