Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/WIdSsyCX57O0jLNkXtjrP1vhXSg.roa
File: WIdSsyCX57O0jLNkXtjrP1vhXSg.roa (raw, json)
Hash identifier: g0ccLEN+zmZYzIcNucOxzQOSHm/WBMyRcfAkc8Yy9KQ=
Subject key identifier: 58:87:52:B3:20:97:E7:B3:B4:8C:B3:64:5E:D8:EB:3F:5B:E1:5D:28
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0194258FA5BF253FC2BDB7E1EC8387088ED1
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/WIdSsyCX57O0jLNkXtjrP1vhXSg.roa
Signing time: Thu 02 Jan 2025 05:49:18 +0000
ROA not before: Thu 02 Jan 2025 05:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204834
IP address blocks: 188.75.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:a5:bf:25:3f:c2:bd:b7:e1:ec:83:87:08:8e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 2 05:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=588752b32097e7b3b48cb3645ed8eb3f5be15d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9c:75:ab:e7:b4:4b:d5:bd:b1:78:11:fc:0a:
bb:b4:1e:0f:4a:ed:f1:97:6d:27:89:8d:b4:0f:a3:
2d:8d:66:1d:a9:b9:be:41:d5:d6:17:2b:7d:d1:8a:
b0:08:bf:19:c6:1c:78:8a:14:c5:c0:52:a8:02:fe:
e0:74:5e:d2:a8:56:18:36:e7:ab:a1:49:f0:d2:f3:
04:bf:8a:7c:10:d0:df:73:35:c9:fd:88:a8:a6:a6:
f8:4f:91:f4:20:98:08:87:c9:29:55:d2:3b:f7:e4:
20:eb:9e:11:20:7d:bf:a7:2b:df:8c:5d:92:ae:7f:
c8:d5:ec:b3:a5:96:c4:2c:fc:19:cc:c5:88:d4:ef:
b0:18:2f:54:a7:d8:28:fd:a0:fe:1b:be:95:9b:d3:
28:54:b3:a0:f9:b9:af:82:fd:ad:87:80:1b:b7:1d:
2d:0f:65:48:7d:75:ce:e7:21:78:c0:1d:1e:be:43:
1f:9c:8d:86:b9:76:a7:79:ce:e6:32:9a:b3:8d:c6:
e5:06:77:ef:b1:f9:36:8d:97:7c:7a:30:35:45:5d:
55:42:5b:ca:72:66:97:43:0d:34:3f:5c:20:8b:d8:
bb:a6:bf:fc:6f:e7:76:06:30:2a:22:bd:d2:7a:18:
a8:c0:4c:1c:f2:d0:c7:be:35:9a:b3:99:6d:4c:d1:
30:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:87:52:B3:20:97:E7:B3:B4:8C:B3:64:5E:D8:EB:3F:5B:E1:5D:28
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/WIdSsyCX57O0jLNkXtjrP1vhXSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.75.108.0/22
Signature Algorithm: sha256WithRSAEncryption
63:3e:1a:42:a7:2b:b2:79:03:32:44:f7:a9:93:8d:9c:49:32:
bd:9d:6b:52:d2:c5:c4:ed:0f:0a:f1:69:09:14:5d:43:90:62:
32:63:bb:1e:2f:5a:80:19:7d:e2:eb:01:e8:76:c3:b1:6b:8a:
5b:c9:33:08:33:e7:1a:e0:7f:b6:4a:64:58:f2:eb:e4:ac:31:
ff:9b:07:21:72:b4:23:38:3f:82:04:65:e6:82:7c:cd:bc:41:
af:7d:d9:9e:8a:04:ec:bc:a7:43:29:bc:85:1b:71:e2:e1:ff:
ef:97:d6:be:85:89:7c:f7:84:ed:53:d8:9d:34:9e:f9:6a:62:
6f:ac:3e:23:64:fd:c1:5d:a7:e7:16:72:c4:0c:b6:a2:ae:f9:
ae:b3:ac:08:3b:a3:8a:58:f2:a9:d8:be:8f:f9:71:64:b6:41:
dd:33:bf:e2:59:b5:4b:d8:34:37:44:a6:55:a7:c0:da:5c:dc:
64:a1:9f:61:e7:7e:79:77:f3:5c:4c:86:af:ae:86:db:9c:6e:
ea:f4:14:cb:e9:48:e7:a6:0e:24:cd:54:c9:56:ba:bc:75:3c:
90:1a:fe:37:b6:e3:34:26:2e:59:4b:37:68:11:d6:49:ad:8a:
9c:26:4f:1c:8a:de:b1:54:9b:cf:80:48:24:0e:7a:35:6d:2f:
92:54:90:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:55:40 2025 by rpki-client