Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/AaVGMHShGIWbi3dbzWyBJYgsLto.roa
File: AaVGMHShGIWbi3dbzWyBJYgsLto.roa (raw, json)
Hash identifier: jUG8qz7REoWxiJn5mUkCJdojR6PcmVPdJhuHHerF4To=
Subject key identifier: 01:A5:46:30:74:A1:18:85:9B:8B:77:5B:CD:6C:81:25:88:2C:2E:DA
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 0191DE526A880BF9D2955BA5AFF0E7BF4316
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/AaVGMHShGIWbi3dbzWyBJYgsLto.roa
Signing time: Tue 10 Sep 2024 23:43:48 +0000
ROA not before: Tue 10 Sep 2024 23:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.241.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:de:52:6a:88:0b:f9:d2:95:5b:a5:af:f0:e7:bf:43:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Sep 10 23:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01a5463074a118859b8b775bcd6c8125882c2eda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:45:78:91:49:39:60:49:3c:c3:e3:a8:71:57:
72:89:2d:d7:f5:90:e4:ad:d4:02:cf:46:3e:ac:4d:
9f:37:9a:77:29:e9:dc:ed:66:a4:10:9b:5e:13:ae:
9e:24:75:14:4f:23:b5:bf:30:c0:6d:bf:ab:ee:1b:
05:66:57:be:0d:ea:88:28:57:e7:9a:96:1d:a6:74:
9e:7f:1b:21:d8:e8:ed:b8:46:94:2b:43:32:78:6b:
f6:59:b0:f2:60:8a:67:4d:18:95:e3:4f:67:85:a2:
68:8e:f9:62:6b:62:28:60:f2:88:fb:b4:85:ae:b7:
47:7a:9b:68:05:e1:60:0e:a1:15:22:6c:a7:50:38:
cb:71:dd:12:7f:f9:3c:25:c0:81:76:6f:39:47:d0:
ae:30:db:59:92:c3:62:f7:3a:da:c5:01:69:2e:0c:
40:a2:bd:f3:d9:55:c0:f0:1e:6a:f7:8f:c3:5b:3d:
ef:f0:64:05:20:1a:47:df:27:c1:a1:6f:22:1b:93:
64:f8:56:1f:7a:e3:56:30:ef:2a:18:21:78:28:1f:
60:38:3a:dd:e9:7d:c6:de:21:08:61:f0:85:06:4d:
d5:13:9a:29:0b:be:fb:3d:69:ee:b7:41:6f:7d:52:
f7:35:aa:9f:d6:fe:b8:0d:99:16:33:00:da:e8:05:
84:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A5:46:30:74:A1:18:85:9B:8B:77:5B:CD:6C:81:25:88:2C:2E:DA
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/AaVGMHShGIWbi3dbzWyBJYgsLto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.192.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a3:9e:84:e3:04:78:71:ec:ba:34:99:b6:58:a4:2b:00:c8:
8f:34:c1:94:c5:64:43:84:94:3d:d4:50:58:4c:de:cb:57:6b:
12:a7:15:15:09:6b:a3:78:2f:7f:15:f9:c9:87:35:d2:85:63:
3f:6d:77:5a:8a:c7:52:f5:6e:f8:59:07:fe:34:79:27:34:39:
6a:ad:54:7c:58:dc:06:5b:b7:bc:fc:9c:bb:b7:a0:2b:5d:27:
a2:11:09:41:d3:31:c6:a9:90:f3:eb:d1:4e:05:30:2c:53:85:
cc:3e:3b:88:a9:f1:cd:25:9d:85:70:22:99:a2:15:ed:4a:7f:
2a:fe:c5:d5:9d:d9:69:e6:ba:69:2b:85:64:8d:72:77:fb:54:
d8:67:54:30:35:e5:97:46:73:df:1c:d6:f6:b2:25:a3:96:52:
52:00:50:1d:44:36:0d:c6:50:c7:d6:8f:cb:e7:07:c3:b4:6a:
98:e4:75:8d:25:c2:79:48:57:4c:d8:76:ec:f5:7d:59:2e:ba:
61:3b:85:7b:e5:d6:a9:7c:5c:a9:20:3f:ef:00:ef:9c:42:31:
e5:e0:33:49:50:6f:03:b6:7f:1d:61:0d:3b:f5:51:fa:f7:e8:
e3:6c:69:ba:40:d5:a0:3d:d5:09:53:d4:9d:08:d2:28:26:1e:
78:49:98:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:04 2025 by rpki-client