Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/tpnmWmgCmabU_2oOZqy3Q9IkftA.roa
File: tpnmWmgCmabU_2oOZqy3Q9IkftA.roa (raw, json)
Hash identifier: wEKQVgcFDmccCVviX6YIkR6k6kWFdgViI6VRX1q3Dsg=
Subject key identifier: B6:99:E6:5A:68:02:99:A6:D4:FF:6A:0E:66:AC:B7:43:D2:24:7E:D0
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 01919B1271130A3D166658FBD67007C3C159
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/tpnmWmgCmabU_2oOZqy3Q9IkftA.roa
Signing time: Wed 28 Aug 2024 22:19:22 +0000
ROA not before: Wed 28 Aug 2024 22:19:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 188.241.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9b:12:71:13:0a:3d:16:66:58:fb:d6:70:07:c3:c1:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Aug 28 22:19:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b699e65a680299a6d4ff6a0e66acb743d2247ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6a:44:7f:dd:1a:67:2f:33:d7:76:eb:15:73:
db:bd:28:6f:03:cc:79:1e:c1:78:a2:65:ef:84:53:
ab:36:3f:19:e0:3e:8e:08:d0:ac:b0:9f:c6:6e:27:
e5:85:b1:51:4a:a6:74:84:1e:ba:f2:25:9f:58:6c:
0e:ef:83:ed:d9:40:5f:ee:4b:6a:45:02:74:c5:52:
dc:ed:86:46:1c:30:bd:1e:d7:5a:81:e3:8c:01:9c:
f2:7f:b5:58:0b:57:26:f7:98:6d:e8:89:77:2a:4b:
ff:60:7a:55:40:b0:7d:7e:12:72:e5:e3:84:33:03:
38:44:db:98:c0:8b:8a:e6:ee:2a:62:60:b9:29:b3:
ec:c6:11:02:a2:87:02:67:38:5d:ce:fe:c4:80:e7:
bb:92:b2:9b:fc:d3:92:0e:d4:b8:e9:99:c8:86:48:
83:dd:89:29:97:96:42:ec:c9:79:49:2e:ba:6b:53:
a4:7d:40:a8:6b:86:94:77:f5:50:51:74:38:e1:04:
bf:1f:8e:73:df:98:2b:e6:ce:4e:72:78:d7:3c:41:
0c:00:24:cc:8f:55:3b:6c:1a:ec:87:f8:fc:25:9f:
12:cf:23:18:a6:01:45:85:ea:9d:07:d8:cf:e1:5c:
bb:a1:da:e1:b0:d8:19:86:f3:b3:10:df:d1:05:6d:
e7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:99:E6:5A:68:02:99:A6:D4:FF:6A:0E:66:AC:B7:43:D2:24:7E:D0
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/tpnmWmgCmabU_2oOZqy3Q9IkftA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.192.0/24
Signature Algorithm: sha256WithRSAEncryption
05:42:7b:11:45:8a:a8:2b:9a:09:12:fd:9f:08:dd:ee:86:84:
83:6c:60:43:6a:44:b1:05:88:d9:6f:36:bf:dd:fb:75:72:9a:
90:38:16:52:76:60:60:86:62:4c:3d:a6:56:da:80:aa:11:8e:
97:57:6b:05:de:8f:df:a1:b2:21:2e:4d:e7:50:c8:23:64:d2:
4c:09:db:68:30:9d:8a:cf:39:60:a4:0a:d2:6b:7b:eb:58:db:
cf:6f:63:75:9b:97:a4:39:3e:03:18:33:da:a0:ae:87:ad:bc:
9a:8c:5c:71:60:c8:67:a6:81:08:32:ab:48:fb:7d:27:a0:21:
d6:31:53:2d:75:50:cb:f4:bc:a2:b9:54:e6:c5:bd:d3:33:68:
bf:d5:8e:99:df:5e:ef:19:c3:27:14:26:e9:d5:4b:62:26:39:
da:43:0b:12:4a:d6:ec:ac:92:25:55:b5:a1:42:d0:4e:e1:af:
b2:7d:9f:1b:69:a7:46:97:18:52:e3:52:59:43:4f:00:c6:8d:
f9:a7:8d:65:eb:3c:e6:69:d3:9d:35:38:28:35:93:2f:80:59:
65:31:9b:5c:10:e9:b7:03:11:b1:b7:6d:65:b4:17:2c:fd:44:
28:6b:ff:a5:59:92:e3:5c:e0:bf:f1:de:80:49:bd:ef:11:0e:
02:81:26:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:05 2025 by rpki-client