Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/0SX6tguCPbTedDIJv_v61mNVvPQ.roa
File: 0SX6tguCPbTedDIJv_v61mNVvPQ.roa (raw, json)
Hash identifier: OkN/xXnA9ztS0yO9CPbdPXj9DcZxVLy9MCAhSe7Y+Vs=
Subject key identifier: D1:25:FA:B6:0B:82:3D:B4:DE:74:32:09:BF:FB:FA:D6:63:55:BC:F4
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 019427B5AC24A0E3731F3CB4F45EA6AD6C11
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/0SX6tguCPbTedDIJv_v61mNVvPQ.roa
Signing time: Thu 02 Jan 2025 15:50:04 +0000
ROA not before: Thu 02 Jan 2025 15:50:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9009
IP address blocks: 188.66.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:ac:24:a0:e3:73:1f:3c:b4:f4:5e:a6:ad:6c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Jan 2 15:50:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d125fab60b823db4de743209bffbfad66355bcf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a7:0d:da:5e:94:bb:ca:88:bb:4e:a2:c1:21:
c6:99:a1:cb:30:d6:06:8b:d4:07:fe:a7:06:b7:62:
2d:f9:32:04:d3:ff:26:34:c4:14:5e:c0:6f:21:4c:
97:77:ad:d8:d1:3b:e9:8b:d5:4e:42:df:28:0e:ce:
b4:60:7b:be:47:51:4e:07:1a:0e:93:2c:24:95:d6:
ab:50:86:ea:6a:7b:a2:af:eb:86:12:ee:7a:53:48:
cb:b9:1b:be:70:d5:ac:43:1c:a4:de:6b:5a:80:6e:
7f:69:40:e6:15:6b:6b:97:77:45:59:fc:05:af:47:
b6:a0:eb:b7:c9:6f:bd:23:b3:41:19:d6:04:37:62:
9b:b6:ba:91:d7:fb:44:db:dd:68:97:c0:e8:5c:f1:
c7:d3:3d:24:19:85:53:f7:10:36:eb:91:9b:4a:f7:
73:95:ee:e7:c0:70:68:65:bb:c5:c2:6b:58:89:b1:
db:5d:c6:8e:b2:4b:31:a8:ed:8c:98:82:72:5f:97:
2e:34:08:8e:f7:ad:5c:6b:8e:11:97:15:8e:0a:0d:
bb:0e:f7:8e:be:3c:32:12:44:3c:1e:8e:0f:cf:2a:
8b:72:5d:e8:05:16:3c:c2:18:62:e1:21:e1:d6:7b:
8a:27:eb:9b:06:3e:cd:e8:11:6d:9e:b7:16:0f:0c:
a7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:25:FA:B6:0B:82:3D:B4:DE:74:32:09:BF:FB:FA:D6:63:55:BC:F4
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/0SX6tguCPbTedDIJv_v61mNVvPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.25.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:78:55:99:5e:59:52:81:e1:57:e7:13:4b:02:9d:9c:99:a8:
ba:c0:b1:1e:53:8f:4d:63:53:b2:98:90:1a:56:73:96:9b:12:
80:5a:8c:e3:ab:58:ee:b0:3a:82:ce:54:8c:f0:f0:ae:b0:2d:
20:92:20:00:79:31:f8:93:10:a4:97:f0:7d:ef:42:0e:05:51:
57:0b:c1:02:bb:31:25:26:1d:d2:23:ea:ed:3d:d9:49:39:a9:
e9:64:85:e4:61:25:e8:0d:d9:c8:16:e5:dd:b4:27:5b:73:b3:
8e:a1:1a:cd:da:cf:a8:d4:84:ac:bd:29:db:51:91:a4:f4:33:
e7:60:b9:5b:7d:fb:07:45:c1:af:3a:ab:3d:0c:4b:9d:d1:29:
09:ee:dc:dc:80:e3:6a:41:2b:bf:55:24:33:da:93:56:af:c5:
98:fa:c6:dc:01:8c:8e:1a:dd:49:c0:1e:17:6f:11:d5:89:36:
b2:82:40:37:f8:73:07:0d:13:ef:9b:3b:64:d2:c3:88:ad:7f:
66:c5:59:b6:41:19:cb:d3:8c:86:de:66:c8:ab:ee:07:b5:0c:
9a:d7:8b:a7:72:87:bb:80:5c:27:c1:53:70:4e:b8:f7:18:0a:
11:a6:c3:81:fd:56:f9:dc:da:31:25:90:34:98:ed:1e:75:49:
96:50:a9:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:26:21 2025 by rpki-client