Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/eIOn0Gzt9knnZgB8olZ3l9hbfBk.roa
File: eIOn0Gzt9knnZgB8olZ3l9hbfBk.roa (raw, json)
Hash identifier: Iid6V7sGvlrxr1/4U6Oe1wRExl0TO84t//YnkVNzUec=
Subject key identifier: 78:83:A7:D0:6C:ED:F6:49:E7:66:00:7C:A2:56:77:97:D8:5B:7C:19
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0194CF4B4E7A041BEBFFF4519A76FE5A4EAD
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/eIOn0Gzt9knnZgB8olZ3l9hbfBk.roa
Signing time: Tue 04 Feb 2025 04:50:06 +0000
ROA not before: Tue 04 Feb 2025 04:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 188.209.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:cf:4b:4e:7a:04:1b:eb:ff:f4:51:9a:76:fe:5a:4e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Feb 4 04:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7883a7d06cedf649e766007ca2567797d85b7c19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e6:67:5b:1c:2e:c3:14:10:98:4a:3c:1e:bf:
e3:54:fe:22:86:14:fa:72:c5:89:f9:a2:38:26:ff:
a1:24:2b:6c:3a:95:21:89:b0:33:50:4f:e6:ab:37:
46:83:49:7d:c4:f8:4b:69:68:4e:ee:6b:66:4d:a0:
c4:2d:78:5a:97:d6:36:58:62:26:5c:a4:64:56:10:
08:2f:57:51:74:f6:43:3c:5d:2a:b9:08:33:6d:ab:
3d:28:fe:0c:f1:f7:40:b7:e2:f6:ca:7a:3e:34:be:
5f:03:75:cf:35:cb:c4:65:0b:a2:e0:1a:96:a7:7f:
78:43:1f:29:5f:b4:88:d0:f8:f2:b2:41:a2:cf:5a:
86:55:cb:80:fd:2b:7b:75:95:44:d8:a4:1b:d2:16:
47:17:a7:17:2d:e7:db:0f:5a:db:3f:bc:bf:6c:44:
14:e8:df:84:0a:b5:b4:d9:49:99:d6:be:b2:26:33:
eb:92:22:60:24:a4:a5:ca:22:e5:58:89:ed:6f:38:
a6:fd:5a:e8:e6:c3:cc:58:5e:f5:52:f1:49:ad:c7:
d1:92:ff:2e:77:f5:ff:53:61:db:85:ef:57:d1:42:
d8:00:38:31:ce:9a:a2:ca:ee:74:e9:dc:5b:30:eb:
e7:55:10:26:c4:be:76:d8:6f:95:71:4d:42:9b:fc:
b2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:83:A7:D0:6C:ED:F6:49:E7:66:00:7C:A2:56:77:97:D8:5B:7C:19
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/eIOn0Gzt9knnZgB8olZ3l9hbfBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.135.0/24
Signature Algorithm: sha256WithRSAEncryption
78:c2:af:dc:9f:f1:26:6a:58:29:8f:bd:34:b5:a3:bb:dd:44:
7f:4b:3e:e1:00:74:0c:8d:c4:b1:c9:96:57:05:e4:6e:7e:e1:
2f:75:f2:f0:02:ab:50:58:a5:58:89:fd:47:90:50:80:d6:bd:
26:51:c6:7a:c8:e2:21:72:09:14:c9:27:a0:af:49:cb:3e:e4:
a9:d9:45:2e:12:24:79:45:13:8e:1f:f7:12:3e:46:a6:e9:c9:
c2:34:53:14:a7:b1:c2:09:ff:c7:44:6c:9a:d8:57:10:6f:9e:
c5:0f:c9:a3:8f:5f:bc:4c:dd:60:4a:f1:33:fc:b8:87:a5:d4:
03:2a:f6:34:1a:4e:ce:9f:2b:d2:53:22:db:02:26:58:54:36:
2b:c3:b1:c0:b6:94:31:7c:09:41:09:36:f7:66:d5:53:bb:f3:
75:65:7c:2b:12:90:84:28:e9:e0:60:73:b3:d5:83:f1:bb:9a:
c5:af:62:19:db:43:19:7a:7f:8b:5e:6e:76:e6:6d:b0:50:df:
2f:ad:e4:67:a0:b3:5c:73:ff:69:3d:eb:96:05:71:fc:15:8f:
5d:81:b2:19:9a:f6:b7:2a:24:e2:6c:60:fa:54:42:2b:0b:5d:
15:6a:06:3f:1e:6d:09:dc:40:cd:a2:e4:35:93:fd:61:9a:57:
fc:92:02:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:15:42 2025 by rpki-client