Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/miOh_83jZwWl_qPp9t6-NxX0CDo.roa
File: miOh_83jZwWl_qPp9t6-NxX0CDo.roa (raw, json)
Hash identifier: BbhwHkHcL2d2dqej9iHjJmaMA7fCkPA0EEeYREcjNeE=
Subject key identifier: 9A:23:A1:FF:CD:E3:67:05:A5:FE:A3:E9:F6:DE:BE:37:15:F4:08:3A
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0194282394551993EC3C5EA16F4ABA84E8C5
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/miOh_83jZwWl_qPp9t6-NxX0CDo.roa
Signing time: Thu 02 Jan 2025 17:50:07 +0000
ROA not before: Thu 02 Jan 2025 17:50:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64267
IP address blocks: 188.209.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:94:55:19:93:ec:3c:5e:a1:6f:4a:ba:84:e8:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 2 17:50:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9a23a1ffcde36705a5fea3e9f6debe3715f4083a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:29:65:6e:ec:cd:66:24:29:2d:3b:f5:f6:8f:
b8:57:7b:cb:a6:71:00:95:33:66:7e:c5:dc:ca:3a:
a0:12:ef:fb:8c:de:1f:25:33:3b:fd:74:7d:66:02:
9b:17:9f:45:31:7b:dd:ef:82:a0:3e:69:72:4d:16:
b7:2d:9a:61:b0:be:29:7b:47:d1:d4:6d:b5:5c:d8:
d5:9b:60:f3:ef:0e:d9:d9:cd:78:a1:25:16:7a:be:
29:7f:22:e4:20:68:0d:53:4d:d4:c7:8a:58:f5:63:
2d:93:93:53:e9:ef:47:59:71:d2:a9:49:50:c5:9c:
95:c4:d9:aa:fd:9f:f9:f6:0b:5f:d1:af:5b:cc:19:
ab:b1:52:9b:a7:7c:b4:13:07:86:f3:da:4f:d2:20:
7b:c6:b4:a3:0a:cc:5e:c1:07:bc:70:83:73:b6:fe:
6c:7a:e3:6b:de:57:45:d0:f4:ed:d9:b4:55:b1:1c:
e7:1d:a8:78:0f:e9:5c:8c:82:8a:db:e8:1d:8f:ac:
b7:74:b4:7f:d2:9c:c9:45:e7:da:c3:d1:93:76:02:
f1:7f:da:91:7e:4d:7f:29:7e:34:59:e1:19:96:4f:
a7:15:65:76:05:f4:ae:a7:7a:e0:3b:a3:af:dd:86:
6a:7b:55:2d:d4:b2:92:7f:bf:69:6a:77:af:57:17:
31:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:23:A1:FF:CD:E3:67:05:A5:FE:A3:E9:F6:DE:BE:37:15:F4:08:3A
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/miOh_83jZwWl_qPp9t6-NxX0CDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.133.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:34:03:0f:7e:48:d1:79:65:8b:2c:9a:58:09:4b:16:69:99:
57:10:43:24:42:ae:f7:5e:0a:52:ee:47:dc:5e:ab:66:0a:f6:
e3:eb:e9:47:2b:6f:be:e4:80:f3:69:fc:f3:56:61:30:a5:02:
83:f4:5b:bb:ba:40:03:08:69:67:36:eb:3e:bc:35:88:6e:5b:
38:4b:14:59:75:a0:e5:33:14:43:90:c6:35:72:78:d7:2b:99:
03:4a:4a:43:41:30:c2:b6:36:b8:f1:56:b4:91:1d:fb:67:39:
d0:0d:16:d4:b2:c6:fd:7c:50:b6:c4:49:7f:f2:66:18:24:93:
9f:33:85:72:71:1b:a3:73:8c:c8:a8:cc:4b:b9:5c:4b:b5:84:
ae:f0:48:1f:9d:f8:71:e6:14:54:be:03:83:0e:09:ba:43:13:
72:e8:b4:e8:31:55:09:2e:ce:85:25:6a:6f:89:01:b8:7a:3d:
87:a9:8a:66:6e:7e:20:83:8e:cb:b1:cd:37:5f:54:92:d3:0c:
e5:8d:44:a0:a2:db:47:8e:7e:5e:f5:a4:86:3d:1b:e7:6b:f8:
75:8f:15:dd:9e:1f:1f:71:5b:a1:63:1c:54:a6:89:61:6c:fc:
6d:ae:fd:f0:65:35:98:8a:3c:68:3c:f1:d0:a1:e1:73:da:32:
13:91:9c:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:07:36 2025 by rpki-client