Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/9wBBpSen88iAztLXe2iXtXRk3zA.roa
File: 9wBBpSen88iAztLXe2iXtXRk3zA.roa (raw, json)
Hash identifier: mhoZBa/+NtxXGURL/B8o0mpcaxs5E4ChfiWyLLqsxNA=
Subject key identifier: F7:00:41:A5:27:A7:F3:C8:80:CE:D2:D7:7B:68:97:B5:74:64:DF:30
Certificate issuer: /CN=c3ab8f44fc356096b8e656fc8739871ec00d1f12
Certificate serial: 018CC348982729833A4D81541305768337C9
Authority key identifier: C3:AB:8F:44:FC:35:60:96:B8:E6:56:FC:87:39:87:1E:C0:0D:1F:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6uPRPw1YJa45lb8hzmHHsANHxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/9wBBpSen88iAztLXe2iXtXRk3zA.roa
Signing time: Mon 01 Jan 2024 04:29:23 +0000
ROA not before: Mon 01 Jan 2024 04:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210097
IP address blocks: 176.98.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:98:27:29:83:3a:4d:81:54:13:05:76:83:37:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3ab8f44fc356096b8e656fc8739871ec00d1f12
Validity
Not Before: Jan 1 04:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f70041a527a7f3c880ced2d77b6897b57464df30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:6d:80:19:8d:e7:2f:1b:8e:ce:7b:7f:4f:d2:
89:33:da:b6:23:3b:c2:5a:de:0b:3c:6c:5b:34:e9:
1d:06:9b:56:24:07:c5:46:2f:0b:fe:34:72:79:e8:
4c:94:cf:a9:64:91:85:18:d5:df:59:20:91:3d:e4:
94:d6:3c:a2:84:eb:5d:0d:7d:0f:c1:05:6f:5e:63:
80:a0:91:5d:54:98:a8:b8:21:a3:2f:6b:c7:f8:af:
ba:3e:69:12:f9:0b:9a:09:fd:5e:23:39:f2:7c:32:
b4:e4:85:7d:05:4e:c6:17:56:c4:26:a6:3d:0f:c5:
8e:7e:f4:68:ed:76:33:d3:10:91:77:0f:fb:89:ba:
6e:1b:39:68:0b:90:c5:2b:8d:d4:bf:d1:a2:79:d1:
78:21:09:54:96:da:f7:55:42:12:2a:75:50:9b:5a:
d8:cf:d9:ef:6e:b8:ee:ff:d2:ef:04:61:b6:a1:7c:
41:3c:3b:40:7d:dd:5c:2c:f2:42:46:73:91:e9:0e:
17:9a:ce:03:d6:f9:c1:4f:6a:c4:4e:9c:12:34:39:
aa:c8:ae:65:cf:40:f0:ff:10:7f:73:58:dd:f3:40:
a6:c4:54:79:ee:87:83:35:d1:5d:97:79:24:af:96:
5d:d7:84:90:73:b5:96:98:fa:ef:5c:00:c4:13:ec:
43:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:00:41:A5:27:A7:F3:C8:80:CE:D2:D7:7B:68:97:B5:74:64:DF:30
X509v3 Authority Key Identifier:
keyid:C3:AB:8F:44:FC:35:60:96:B8:E6:56:FC:87:39:87:1E:C0:0D:1F:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6uPRPw1YJa45lb8hzmHHsANHxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/9wBBpSen88iAztLXe2iXtXRk3zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/w6uPRPw1YJa45lb8hzmHHsANHxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.221.0/24
Signature Algorithm: sha256WithRSAEncryption
78:5a:05:25:7f:cb:d1:30:14:af:9a:e2:2c:12:8f:40:94:1c:
5a:b8:65:81:e7:ac:9a:d8:70:07:37:04:ba:29:a0:c9:bd:87:
e4:55:7f:1e:df:c8:38:85:9e:9e:0c:57:7e:26:5f:02:20:8e:
5b:19:46:36:66:d9:ca:e3:88:1b:07:5f:9f:f1:5f:43:21:29:
d7:dd:53:f3:84:5d:48:da:84:b5:85:96:14:fe:77:40:f8:2a:
e4:92:52:b1:03:90:1f:c3:1b:a4:5e:57:1c:3a:f4:56:e9:42:
0b:99:80:a4:a5:b0:2f:5a:35:a6:a9:f6:10:5c:fc:26:0f:d6:
fa:5b:87:62:ab:f4:d8:60:0c:63:f3:e6:f5:fd:45:7e:ee:d9:
04:09:80:0d:c7:99:ce:ac:a0:5f:a5:5f:86:39:3c:51:3d:d9:
6a:7c:27:f0:f7:f1:46:5c:a3:f9:d7:eb:00:5f:5d:dd:46:ed:
d6:46:68:0c:19:b8:a6:06:27:b3:1d:92:68:ec:6e:01:f6:d5:
c2:5e:83:12:91:5a:55:1c:a9:f7:2e:1a:17:8a:7c:23:a1:55:
b0:ea:41:56:5f:24:d5:51:f2:b8:54:df:df:ea:b9:1e:63:4e:
34:38:55:6f:7f:20:d1:92:a4:21:28:ae:fc:47:17:10:41:1f:
43:b4:96:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 22:02:00 2025 by rpki-client