Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/3dQ_t7TaEjNV0xQUjoa0qcFYXJc.roa
File: 3dQ_t7TaEjNV0xQUjoa0qcFYXJc.roa (raw, json)
Hash identifier: PgvgtzxgLGfmm28FBxAmoN0WomGbhvq0vt8kw3P9V00=
Subject key identifier: DD:D4:3F:B7:B4:DA:12:33:55:D3:14:14:8E:86:B4:A9:C1:58:5C:97
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018570F0CD333ED3A18F69AE7B6329659CB6
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/3dQ_t7TaEjNV0xQUjoa0qcFYXJc.roa
Signing time: Mon 02 Jan 2023 05:25:07 +0000
ROA not before: Mon 02 Jan 2023 05:25:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212305
IP address blocks: 88.220.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:cd:33:3e:d3:a1:8f:69:ae:7b:63:29:65:9c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 2 05:25:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddd43fb7b4da123355d314148e86b4a9c1585c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:9f:de:10:92:04:96:e4:d1:8e:c8:f3:d3:9b:
e2:b3:02:03:e8:40:ea:5d:d8:89:a1:6f:17:56:2d:
61:a7:33:22:26:ae:87:a1:f1:60:f9:a8:af:2e:14:
b0:6d:4e:11:67:e2:76:58:d6:b2:ee:e8:38:bc:89:
72:4f:d9:0e:6e:64:93:12:a5:e8:71:cf:b7:2a:39:
70:9c:34:9e:40:54:9b:09:1c:b6:74:33:a0:40:7e:
67:4d:a5:b8:54:b7:07:dc:a2:84:ff:c5:59:38:54:
69:14:92:94:53:af:ea:cf:68:02:d9:b8:3b:6e:97:
7d:f2:1a:42:47:22:81:f1:8e:58:46:73:87:68:67:
cc:2a:28:34:e5:5a:73:92:07:53:c4:df:0c:9b:dd:
d7:69:fa:40:41:4e:c9:67:a5:6f:e7:d5:39:e4:4c:
3e:68:6c:8c:d7:31:77:34:ae:13:33:a4:19:1a:64:
4b:df:e0:c2:56:c4:30:b0:d9:bb:9d:14:52:7d:bf:
5f:59:d9:df:df:c4:c8:17:69:08:7b:51:bf:7b:10:
ec:7b:e7:c2:6d:69:5d:d8:06:12:52:96:88:d1:c5:
61:9b:8e:e6:49:5c:0a:a5:6e:c4:52:2f:01:93:3a:
e3:34:bc:06:a0:e4:8a:ec:c1:5e:79:0f:cc:21:c6:
8b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D4:3F:B7:B4:DA:12:33:55:D3:14:14:8E:86:B4:A9:C1:58:5C:97
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/3dQ_t7TaEjNV0xQUjoa0qcFYXJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.90.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:76:23:e8:d9:73:2c:6c:ab:6f:5c:47:bc:c9:f9:08:a1:d9:
78:2c:eb:23:0c:f9:3e:b8:dd:41:b3:27:12:03:b7:4e:a7:59:
72:ea:af:4c:f9:e2:a3:1b:50:78:af:91:8f:9f:a7:a8:73:a7:
78:94:8a:59:fb:a7:d3:1b:e3:f1:0a:3d:bd:29:d9:48:75:51:
cf:3a:ae:f2:7c:3e:ff:b4:b0:87:2a:6a:71:d7:2d:de:65:aa:
19:56:09:4e:3a:26:d7:16:26:df:ac:99:0e:85:bd:26:31:d2:
d2:34:c4:55:66:bb:12:71:bd:15:0f:12:cb:f5:1a:c8:0b:75:
d8:1e:f3:29:f0:0c:45:6b:0a:75:df:b5:4b:bd:5d:08:98:ce:
82:05:b7:fe:10:49:1a:3f:be:87:79:8e:87:e2:9d:90:34:7b:
bc:ea:4e:60:e4:bd:c4:fd:8d:0c:0a:e7:3f:20:af:50:b3:91:
5f:b5:86:ce:1c:59:f3:0d:2e:35:cd:ee:fd:ba:98:a0:71:06:
88:46:72:77:0d:f1:21:3a:dd:56:42:d6:93:68:78:7b:46:bf:
47:51:64:fd:28:8e:33:fc:e8:b3:ec:16:c6:ad:32:8f:14:ac:
ae:68:7a:dd:ab:b5:ec:e4:ec:9a:fe:5a:fb:7b:fe:a4:72:f0:
9c:03:b4:59
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw8M0zPtOhj2mue2MpZZy2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NjgzNGU2ODg5MGYzOTg2YTFiMDQ1N2NlMGY1NGFlMDNj
MmQ3NmIwHhcNMjMwMTAyMDUyNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZGQ0M2ZiN2I0ZGExMjMzNTVkMzE0MTQ4ZTg2YjRhOWMxNTg1Yzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh5/eEJIEluTRjsjz05viswID6EDq
XdiJoW8XVi1hpzMiJq6HofFg+aivLhSwbU4RZ+J2WNay7ug4vIlyT9kObmSTEqXo
cc+3KjlwnDSeQFSbCRy2dDOgQH5nTaW4VLcH3KKE/8VZOFRpFJKUU6/qz2gC2bg7
bpd98hpCRyKB8Y5YRnOHaGfMKig05VpzkgdTxN8Mm93XafpAQU7JZ6Vv59U55Ew+
aGyM1zF3NK4TM6QZGmRL3+DCVsQwsNm7nRRSfb9fWdnf38TIF2kIe1G/exDse+fC
bWld2AYSUpaI0cVhm47mSVwKpW7EUi8BkzrjNLwGoOSK7MFeeQ/MIcaLiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN3UP7e02hIzVdMUFI6GtKnBWFyXMB8GA1UdIwQY
MBaAFFRoNOaIkPOYahsEV84PVK4DwtdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQt
NTI3NjZiMjRiYWE0LzEvM2RRX3Q3VGFFak5WMHhRVWpvYTBxY0ZZWEpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQtNTI3NjZiMjRiYWE0
LzEvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNxaMA0G
CSqGSIb3DQEBCwUAA4IBAQBddiPo2XMsbKtvXEe8yfkIodl4LOsjDPk+uN1BsycS
A7dOp1ly6q9M+eKjG1B4r5GPn6eoc6d4lIpZ+6fTG+PxCj29KdlIdVHPOq7yfD7/
tLCHKmpx1y3eZaoZVglOOibXFibfrJkOhb0mMdLSNMRVZrsScb0VDxLL9RrIC3XY
HvMp8AxFawp137VLvV0ImM6CBbf+EEkaP76HeY6H4p2QNHu86k5g5L3E/Y0MCuc/
IK9Qs5FftYbOHFnzDS41ze79upigcQaIRnJ3DfEhOt1WQtaTaHh7Rr9HUWT9KI4z
/Oiz7BbGrTKPFKyuaHrdq7Xs5Oya/lr7e/6kcvCcA7RZ
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:38 2025 by rpki-client