Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Ez-tXmqDqZ8H_kot2kAZvxUx--Q.roa
File: Ez-tXmqDqZ8H_kot2kAZvxUx--Q.roa (raw, json)
Hash identifier: kpCnNweFwcmsQuyBLdH3496CHUD7Pdq6gDpMSW5u2kg=
Subject key identifier: 13:3F:AD:5E:6A:83:A9:9F:07:FE:4A:2D:DA:40:19:BF:15:31:FB:E4
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B2251FD1401BBC4CB41A20C85E7C98
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Ez-tXmqDqZ8H_kot2kAZvxUx--Q.roa
Signing time: Wed 01 Jan 2025 11:48:30 +0000
ROA not before: Wed 01 Jan 2025 11:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62147
IP address blocks: 88.220.250.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:25:1f:d1:40:1b:bc:4c:b4:1a:20:c8:5e:7c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=133fad5e6a83a99f07fe4a2dda4019bf1531fbe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:aa:cc:90:f3:1b:b2:15:70:7d:96:99:e7:3e:
5b:28:aa:38:66:d8:c2:dc:74:80:7e:3f:61:3a:bb:
cb:2e:0d:9f:87:84:b4:55:78:9e:c9:59:46:94:50:
7b:51:c8:14:61:62:72:94:6b:d4:7d:81:10:7a:fc:
75:71:64:c7:5f:bb:35:9c:78:87:13:d6:6e:78:a5:
61:66:59:88:1a:ba:31:c1:fc:d8:29:8c:6d:02:cf:
c5:2a:9b:3d:15:96:5a:ae:11:79:e8:bc:f8:4a:57:
be:81:ae:b0:a1:74:44:07:20:87:e0:cb:c1:f1:f4:
90:eb:57:b5:dd:e2:93:d7:c3:a8:cd:9b:09:83:34:
e5:7f:ff:05:7d:79:82:fa:c5:09:5a:60:a8:91:4a:
82:51:f5:76:65:f4:8b:4b:dc:c0:a8:e0:b0:f1:c0:
e4:27:f9:db:3a:32:e7:c8:0c:95:4f:59:ce:ef:09:
04:d2:6f:70:62:46:12:c0:ec:16:ad:95:ae:dc:81:
3d:9f:72:94:28:e9:25:2f:82:d8:14:82:8e:15:16:
1b:26:bb:7b:c0:11:74:11:9f:f6:8b:53:13:34:ab:
e7:75:94:59:49:9b:5b:e8:f8:81:92:04:3f:2b:92:
42:84:33:a5:0e:2f:40:55:54:8c:1a:c2:e0:63:bf:
37:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3F:AD:5E:6A:83:A9:9F:07:FE:4A:2D:DA:40:19:BF:15:31:FB:E4
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Ez-tXmqDqZ8H_kot2kAZvxUx--Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.250.0/23
Signature Algorithm: sha256WithRSAEncryption
55:f8:38:f1:c7:33:fa:4c:01:8e:a9:a1:0d:7e:e8:99:3c:b5:
1a:65:ad:dd:b4:e5:59:43:d3:91:95:cf:5f:c1:f9:df:28:7c:
fb:1b:46:13:ad:72:5b:10:30:9f:ce:f6:b7:d7:f2:14:2d:8e:
50:e7:fb:21:49:30:e6:c0:a7:6d:19:74:10:7f:b5:47:71:21:
08:1a:b8:a5:c5:ab:cb:9b:ed:d5:63:a0:82:9e:db:c2:c2:cc:
28:3c:ce:e2:99:5a:60:f3:a1:d7:6d:43:71:b8:54:0a:0a:02:
9c:69:0a:5d:4a:46:c1:dc:1f:88:15:2b:c0:5f:e8:a1:38:a7:
3f:48:d5:19:98:19:74:21:e2:b5:8d:cf:16:57:2f:4b:2d:6d:
52:08:d2:40:09:89:2e:e5:b9:e7:a1:02:bc:12:65:2a:b8:4c:
ef:79:d5:3c:01:b8:8e:ad:d3:22:fd:b9:bc:71:12:9e:f3:00:
bf:ef:a0:6a:7d:86:25:86:b5:f6:45:90:e3:de:ef:cd:1f:d5:
a7:27:86:bb:ba:9d:a8:10:8b:a0:e0:b5:b8:a0:f4:07:ea:cb:
46:1d:b2:23:06:57:85:cd:0c:1e:27:26:8f:e5:c0:18:46:69:
be:10:e6:6b:cb:ed:8c:c5:2a:6f:c8:75:02:21:a5:53:38:89:
2f:dc:f4:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:58 2025 by rpki-client