Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/120e16-e241-49f5-a6cc-666e554dbb62/1/wrbhuxMd3Jb1xFpyMGCxm3d6n4E.roa
File: wrbhuxMd3Jb1xFpyMGCxm3d6n4E.roa (raw, json)
Hash identifier: YmCb6Z1YJNROklXVQubCD14EcMfzW2WZ+05WXGmEPyo=
Subject key identifier: C2:B6:E1:BB:13:1D:DC:96:F5:C4:5A:72:30:60:B1:9B:77:7A:9F:81
Certificate issuer: /CN=f75d2c053b62966a209d4d211225c91b13bcdb13
Certificate serial: 018CC42540827AB4EF504F633F5C2764B0FD
Authority key identifier: F7:5D:2C:05:3B:62:96:6A:20:9D:4D:21:12:25:C9:1B:13:BC:DB:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/910sBTtilmognU0hEiXJGxO82xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/120e16-e241-49f5-a6cc-666e554dbb62/1/wrbhuxMd3Jb1xFpyMGCxm3d6n4E.roa
Signing time: Mon 01 Jan 2024 08:30:24 +0000
ROA not before: Mon 01 Jan 2024 08:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206265
IP address blocks: 185.188.210.0/24 maxlen: 24
185.188.211.0/24 maxlen: 24
185.188.208.0/24 maxlen: 24
185.188.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:40:82:7a:b4:ef:50:4f:63:3f:5c:27:64:b0:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d2c053b62966a209d4d211225c91b13bcdb13
Validity
Not Before: Jan 1 08:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2b6e1bb131ddc96f5c45a723060b19b777a9f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:33:26:7e:1f:bf:c1:c0:db:26:3a:f9:28:5e:
b6:47:70:52:e2:24:84:ef:8f:fa:a8:e6:7c:43:f5:
26:23:a3:97:8a:4e:a0:93:6f:1d:e4:2c:4b:71:e2:
59:d3:36:d2:41:80:c7:bb:7d:40:5c:a7:81:30:11:
36:6c:8d:c1:3a:d7:b3:5a:ba:87:4a:d0:97:43:f6:
52:fc:e1:90:16:ae:59:89:ac:5e:c7:92:76:3d:b2:
32:28:70:57:e4:77:d9:15:c9:65:46:b7:c6:c9:11:
53:ba:6e:49:95:c3:1a:6c:90:13:30:05:a4:db:8e:
b5:19:79:da:e6:10:23:f7:b7:f7:cd:03:c1:02:1a:
ec:09:7a:31:b3:19:87:e0:75:ea:b0:97:7e:37:55:
bd:ea:55:20:85:76:89:33:af:2a:5f:d3:bd:a7:c0:
f4:de:1c:e9:bc:1a:99:d6:69:b5:a1:cf:a2:8b:91:
61:3d:aa:96:9c:be:81:cd:6f:c6:29:c3:58:e1:50:
2e:32:ff:17:06:66:56:28:5e:3d:a5:81:87:17:c4:
be:e4:ec:67:95:97:2c:53:5b:d6:7c:b9:20:92:b8:
9a:74:59:b3:b2:24:02:b6:dd:3a:c4:18:72:54:20:
8d:04:d3:76:62:3f:06:61:a2:58:08:02:71:be:bf:
e6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B6:E1:BB:13:1D:DC:96:F5:C4:5A:72:30:60:B1:9B:77:7A:9F:81
X509v3 Authority Key Identifier:
keyid:F7:5D:2C:05:3B:62:96:6A:20:9D:4D:21:12:25:C9:1B:13:BC:DB:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/910sBTtilmognU0hEiXJGxO82xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/120e16-e241-49f5-a6cc-666e554dbb62/1/wrbhuxMd3Jb1xFpyMGCxm3d6n4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/120e16-e241-49f5-a6cc-666e554dbb62/1/910sBTtilmognU0hEiXJGxO82xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.208.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:c7:82:a2:1e:c8:b9:08:57:26:1b:56:1c:1a:a6:a7:ed:16:
2c:4d:c7:f3:f1:91:b9:e3:f6:bd:73:f3:9d:2a:9b:5d:5c:0c:
83:5b:d6:17:d3:a6:77:2a:64:4b:f3:75:b0:e6:c9:60:b6:15:
05:50:16:1f:bb:ec:96:91:36:5c:4f:22:d2:ee:a4:a7:69:ca:
52:ad:00:04:6b:1b:4c:5a:d2:37:15:5e:e4:84:a0:1b:40:88:
a8:8c:e7:2f:ae:6f:21:92:a9:24:f9:7d:32:4f:24:c4:29:f9:
d0:17:14:25:74:d4:cd:07:67:5a:50:a9:d9:a2:64:40:06:bf:
75:a3:85:cf:a9:c8:5f:b5:2b:06:7b:5c:b7:3a:b4:fc:df:31:
14:9f:5f:92:76:50:3a:8d:0b:0a:6f:0b:c1:a4:b1:48:5b:9a:
60:01:49:32:45:db:08:aa:bd:6a:f5:ac:46:0e:02:f3:a9:cb:
6b:00:69:7a:29:86:f5:5e:d8:a7:94:22:57:1a:a1:fe:68:ae:
e3:8b:c0:75:c9:21:40:c8:92:d0:bc:17:90:46:5c:f5:6e:80:
5f:8e:3d:d6:fd:f1:4e:04:5e:5c:63:61:85:b0:64:43:f9:9c:
36:0a:e1:ae:87:ee:aa:be:c5:89:0a:96:e7:03:e4:c8:e5:74:
93:5b:8a:9e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJUCCerTvUE9jP1wnZLD9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3NWQyYzA1M2I2Mjk2NmEyMDlkNGQyMTEyMjVjOTFiMTNi
Y2RiMTMwHhcNMjQwMTAxMDgzMDI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMmI2ZTFiYjEzMWRkYzk2ZjVjNDVhNzIzMDYwYjE5Yjc3N2E5ZjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlTMmfh+/wcDbJjr5KF62R3BS4iSE
74/6qOZ8Q/UmI6OXik6gk28d5CxLceJZ0zbSQYDHu31AXKeBMBE2bI3BOtezWrqH
StCXQ/ZS/OGQFq5Ziaxex5J2PbIyKHBX5HfZFcllRrfGyRFTum5JlcMabJATMAWk
2461GXna5hAj97f3zQPBAhrsCXoxsxmH4HXqsJd+N1W96lUghXaJM68qX9O9p8D0
3hzpvBqZ1mm1oc+ii5FhPaqWnL6BzW/GKcNY4VAuMv8XBmZWKF49pYGHF8S+5Oxn
lZcsU1vWfLkgkriadFmzsiQCtt06xBhyVCCNBNN2Yj8GYaJYCAJxvr/mJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMK24bsTHdyW9cRacjBgsZt3ep+BMB8GA1UdIwQY
MBaAFPddLAU7YpZqIJ1NIRIlyRsTvNsTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTEwc0JUdGlsbW9nblUwaEVpWEpHeE84MnhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMjBlMTYtZTI0MS00OWY1LWE2Y2Mt
NjY2ZTU1NGRiYjYyLzEvd3JiaHV4TWQzSmIxeEZweU1HQ3htM2Q2bjRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMjBlMTYtZTI0MS00OWY1LWE2Y2MtNjY2ZTU1NGRiYjYy
LzEvOTEwc0JUdGlsbW9nblUwaEVpWEpHeE84MnhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubzQMA0G
CSqGSIb3DQEBCwUAA4IBAQAKx4KiHsi5CFcmG1YcGqan7RYsTcfz8ZG54/a9c/Od
KptdXAyDW9YX06Z3KmRL83Ww5slgthUFUBYfu+yWkTZcTyLS7qSnacpSrQAEaxtM
WtI3FV7khKAbQIiojOcvrm8hkqkk+X0yTyTEKfnQFxQldNTNB2daUKnZomRABr91
o4XPqchftSsGe1y3OrT83zEUn1+SdlA6jQsKbwvBpLFIW5pgAUkyRdsIqr1q9axG
DgLzqctrAGl6KYb1XtinlCJXGqH+aK7ji8B1ySFAyJLQvBeQRlz1boBfjj3W/fFO
BF5cY2GFsGRD+Zw2CuGuh+6qvsWJCpbnA+TI5XSTW4qe
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:21 2025 by rpki-client