Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/8MT0UIFQ6nU4uCjhLGDXmH7jOwI.roa
File: 8MT0UIFQ6nU4uCjhLGDXmH7jOwI.roa (raw, json)
Hash identifier: y1UnhD4e5XuBcO21Blgmd9ITMRK078RzME966GC0y5c=
Subject key identifier: F0:C4:F4:50:81:50:EA:75:38:B8:28:E1:2C:60:D7:98:7E:E3:3B:02
Certificate issuer: /CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Certificate serial: 0194887F87BDD43D52F7F9E81A83C18F0040
Authority key identifier: 88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/8MT0UIFQ6nU4uCjhLGDXmH7jOwI.roa
Signing time: Tue 21 Jan 2025 10:54:06 +0000
ROA not before: Tue 21 Jan 2025 10:54:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56884
IP address blocks: 84.246.111.0/24 maxlen: 24
91.247.178.0/24 maxlen: 24
176.97.213.0/24 maxlen: 24
178.23.188.0/24 maxlen: 24
194.26.223.0/24 maxlen: 24
213.232.252.0/24 maxlen: 24
2a11:a100::/29 maxlen: 29
2a13:8e00::/29 maxlen: 29
2a13:9200::/29 maxlen: 29
2a13:b100::/29 maxlen: 29
2a13:b500::/29 maxlen: 29
2a13:b700::/29 maxlen: 29
2a13:b900::/29 maxlen: 29
2a13:da00::/29 maxlen: 32
2a13:e200::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:88:7f:87:bd:d4:3d:52:f7:f9:e8:1a:83:c1:8f:00:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Validity
Not Before: Jan 21 10:54:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f0c4f4508150ea7538b828e12c60d7987ee33b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:31:85:e2:fe:cd:ad:16:d3:51:de:2f:7f:a8:
b7:5b:6e:f0:9a:5b:c7:b1:a0:eb:8c:73:0d:b9:f8:
7a:f4:3f:75:ff:ef:25:68:b9:03:d6:5f:c3:72:f5:
dc:04:46:a6:79:b4:bb:18:23:1b:7f:69:83:06:77:
d8:5b:1f:5b:cb:7a:98:26:f1:68:e0:56:57:cd:7d:
0e:52:3c:c2:dc:16:1c:08:69:89:1d:c6:ce:70:9f:
44:bb:19:c2:cb:6f:d4:5d:0c:63:a6:27:4d:93:23:
af:95:30:33:e6:66:b3:2f:f1:8c:b1:92:9f:2e:a6:
fd:be:9c:70:2a:f7:dc:38:4a:2a:37:c4:1a:6a:94:
8f:69:78:5c:23:87:3c:10:f2:fa:ea:7c:f4:f6:a7:
98:0f:e6:94:00:33:83:01:24:66:87:7d:c8:1e:4c:
49:5d:20:dc:9d:99:35:8d:e0:c1:74:4d:1f:99:6d:
76:4c:ad:d6:ed:c2:9a:85:20:7e:46:51:1a:a6:21:
a8:7a:79:f2:67:7e:f0:05:56:63:d5:1d:fe:23:72:
fb:d6:4a:12:4e:1a:af:cb:34:84:67:99:72:0d:95:
a5:f1:f6:fa:9c:33:f4:c6:ed:b4:a9:f9:f3:e7:d5:
f3:42:6e:4a:76:30:35:ae:b1:2b:b6:a8:c7:18:01:
8d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C4:F4:50:81:50:EA:75:38:B8:28:E1:2C:60:D7:98:7E:E3:3B:02
X509v3 Authority Key Identifier:
keyid:88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/8MT0UIFQ6nU4uCjhLGDXmH7jOwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/iLITvxYnVI79-xsuJkW6rx2YOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.246.111.0/24
91.247.178.0/24
176.97.213.0/24
178.23.188.0/24
194.26.223.0/24
213.232.252.0/24
IPv6:
2a11:a100::/29
2a13:8e00::/29
2a13:9200::/29
2a13:b100::/29
2a13:b500::/29
2a13:b700::/29
2a13:b900::/29
2a13:da00::/29
2a13:e200::/29
Signature Algorithm: sha256WithRSAEncryption
6a:ef:89:db:64:b6:5b:15:10:9a:c8:ea:30:77:fe:20:62:3e:
cf:82:31:84:0a:53:f7:57:72:ae:cf:f1:17:84:35:71:35:2d:
29:cf:8e:8d:a5:e6:28:46:fe:98:15:ff:3e:e9:0d:27:7c:35:
86:c8:f0:2f:21:05:7d:98:76:d9:89:21:89:8c:cc:c5:28:25:
76:b0:f3:4e:6a:ce:dc:61:40:6f:4b:6b:3c:96:52:cc:5b:50:
52:3a:37:cb:d9:7f:99:e2:f6:25:48:8f:af:f9:54:77:85:70:
b6:d5:a5:92:04:11:34:46:37:cc:ac:69:ca:ef:45:55:18:d7:
45:94:ad:b2:18:79:ed:2b:11:6c:c2:62:d7:61:24:cf:6d:63:
c8:a9:86:ed:8a:47:5b:4f:71:53:ae:00:37:0b:e7:57:74:ef:
c1:20:7f:76:c1:30:f0:70:cb:a6:64:5c:1f:5d:39:ef:84:28:
cf:3c:58:e6:78:5d:4b:23:06:24:13:ce:61:82:45:67:a3:84:
4b:bf:2e:ce:13:24:af:5b:b6:cd:f3:0d:09:1f:d5:f5:e1:6a:
32:65:8f:db:e4:01:5e:72:68:40:68:41:fb:b7:b2:88:e3:7d:
b6:a4:e1:ed:de:12:15:ea:af:4e:b6:8f:69:8f:d4:c8:5f:7f:
0c:00:fb:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 06:44:56 2025 by rpki-client