Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/0XQR0GR5stZrUPJCaA6MZ-Mynuk.roa
File: 0XQR0GR5stZrUPJCaA6MZ-Mynuk.roa (raw, json)
Hash identifier: o+Ujy5trfs+wZh1c3IvyV6rv0vC4CJVH25PvaO1Sz9A=
Subject key identifier: D1:74:11:D0:64:79:B2:D6:6B:50:F2:42:68:0E:8C:67:E3:32:9E:E9
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 018F7D5F9037ED89A41EBA2274FE6DC56A92
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/0XQR0GR5stZrUPJCaA6MZ-Mynuk.roa
Signing time: Wed 15 May 2024 17:49:25 +0000
ROA not before: Wed 15 May 2024 17:49:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 212.69.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7d:5f:90:37:ed:89:a4:1e:ba:22:74:fe:6d:c5:6a:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: May 15 17:49:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d17411d06479b2d66b50f242680e8c67e3329ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a3:a6:44:ad:f2:40:9a:98:4d:01:1f:44:76:
cd:1a:78:76:24:70:50:35:3d:c3:84:88:ee:c3:f0:
b7:4e:d7:04:f8:07:aa:77:91:57:57:8b:c7:67:0f:
2d:17:37:06:bb:a4:7e:4b:a0:3d:89:02:72:a5:55:
9f:55:cb:60:e6:83:8e:33:ce:48:bd:a4:db:0d:16:
cd:2a:05:2b:54:e6:f7:06:ec:69:69:d0:01:a0:3a:
5a:74:cb:ea:76:aa:c4:b5:a0:83:46:5f:4f:65:5d:
0a:05:f7:59:38:fc:e0:01:d9:34:e4:d6:43:0a:ad:
5c:77:75:d5:05:25:d0:0a:06:c3:c9:95:67:5e:12:
9b:2c:0c:47:96:bc:70:c0:5e:c9:ff:8e:ae:c6:64:
7d:86:f0:5f:07:b3:73:f4:a5:b3:c0:4d:8b:d6:f4:
96:71:27:9a:a9:41:02:01:1a:b9:68:22:76:f4:f6:
60:7a:69:c8:08:21:0f:db:ab:60:9c:25:cc:0e:d6:
30:84:5f:c9:36:eb:dd:01:e7:48:26:83:ae:f4:f5:
87:64:2d:0f:6d:e2:c9:d6:07:f8:65:cd:cc:8e:b6:
56:85:7d:51:ff:4e:df:f3:5d:a1:70:3a:79:c9:db:
29:96:5f:1a:f1:bd:ca:98:bf:a5:3d:eb:8e:50:07:
ea:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:74:11:D0:64:79:B2:D6:6B:50:F2:42:68:0E:8C:67:E3:32:9E:E9
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/0XQR0GR5stZrUPJCaA6MZ-Mynuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.88.0/22
Signature Algorithm: sha256WithRSAEncryption
48:eb:0b:a3:6f:f9:60:d2:ca:e1:29:2f:29:f3:50:9c:84:fb:
22:26:8b:30:0a:9e:83:8f:cc:a9:41:32:f6:1e:e8:5e:e7:8a:
da:d0:d3:ed:51:51:53:3a:16:95:7d:93:a4:48:1a:64:1e:ba:
16:98:25:d8:b2:12:a9:52:ed:bd:47:45:2a:6a:0a:94:28:53:
35:cf:7c:69:30:e8:3c:b0:74:a4:01:26:90:eb:84:04:1c:46:
8c:aa:54:49:21:f3:35:7d:e2:d5:99:7f:eb:80:70:2f:11:d6:
31:29:3d:da:78:58:06:55:64:15:31:c2:ed:d9:a3:99:a1:0e:
0b:40:5b:ef:15:3f:65:3f:4d:cc:68:2c:07:8f:55:51:95:4d:
21:ed:20:d0:dc:8a:67:8e:b2:a4:da:25:16:92:0c:e0:94:43:
ad:03:f1:40:20:f9:74:76:ec:76:29:5d:cc:25:75:43:53:dc:
ba:55:33:c4:1a:dc:4f:87:50:ec:f2:75:6a:cd:7d:37:26:ef:
74:c0:80:49:fd:9a:e9:dc:83:0c:b3:28:5a:e9:9e:57:5b:13:
bf:7c:26:3f:b1:79:8b:c1:3a:b1:e5:88:67:25:74:03:c3:d5:
7c:4a:74:15:21:7a:fa:12:0d:de:a2:97:bc:4a:2a:b9:ca:45:
24:3d:7f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:10 2025 by rpki-client