Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/HJShLvj8EDhdxhrskOht13842lE.roa
File: HJShLvj8EDhdxhrskOht13842lE.roa (raw, json)
Hash identifier: Ko85NAPxOIX3iDA71FP4U8ZQRnM+616qKZiPIzve1G4=
Subject key identifier: 1C:94:A1:2E:F8:FC:10:38:5D:C6:1A:EC:90:E8:6D:D7:7F:38:DA:51
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B22823C8F5462A4C284E32FDE43BF5
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/HJShLvj8EDhdxhrskOht13842lE.roa
Signing time: Wed 01 Jan 2025 11:48:31 +0000
ROA not before: Wed 01 Jan 2025 11:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198023
IP address blocks: 88.220.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:28:23:c8:f5:46:2a:4c:28:4e:32:fd:e4:3b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c94a12ef8fc10385dc61aec90e86dd77f38da51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5d:f4:c2:d9:4c:9e:92:2d:49:a7:26:1f:77:
a1:fc:cd:9d:8f:91:d4:f5:f7:a7:dd:9e:4b:6c:b9:
11:1d:5b:8b:04:23:b1:b2:96:d4:39:58:ea:ed:94:
bd:fa:6a:4f:4b:f4:49:76:20:d8:9b:71:91:42:38:
8f:6c:ae:38:dc:d4:8c:b3:ff:9c:27:60:c4:48:29:
ca:a7:4f:9b:79:c3:23:76:5e:f7:d2:cb:dd:f8:cf:
a0:a7:f8:33:f6:56:ef:94:26:2e:bc:ac:0d:e2:5d:
f2:f0:6f:1d:1e:11:a6:d6:9d:fc:67:89:c8:b9:7a:
25:b6:49:18:0f:ef:39:dc:7a:c3:65:07:19:8e:5f:
61:9f:e8:6e:9f:9b:16:f9:97:b7:66:33:35:56:78:
0d:2a:96:c6:58:47:fe:70:4f:fe:b3:d5:72:08:e3:
c2:f2:fd:d4:e2:f4:30:93:f4:08:43:59:0b:37:1c:
ae:8f:91:8d:67:97:f0:fa:04:c7:2d:b6:bd:ad:ea:
82:cd:8b:6b:88:5e:9e:d2:df:f2:d3:20:29:35:1d:
f3:61:98:98:52:80:9d:00:70:31:c0:6a:b0:87:42:
08:5c:b0:57:be:1e:5d:22:52:9d:0c:a9:dc:b2:8e:
b5:5d:b2:c6:ab:cc:5e:49:ff:4b:3d:28:27:70:7f:
fb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:94:A1:2E:F8:FC:10:38:5D:C6:1A:EC:90:E8:6D:D7:7F:38:DA:51
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/HJShLvj8EDhdxhrskOht13842lE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.181.0/24
Signature Algorithm: sha256WithRSAEncryption
12:1a:3f:ea:35:87:43:b4:43:82:32:e7:e7:f7:04:fe:4c:f5:
62:16:43:36:b6:87:e5:81:2c:0e:17:33:cb:59:36:de:c7:7f:
ab:d5:4b:c4:eb:c9:22:d6:55:04:cf:61:96:93:91:d5:16:d0:
a7:c9:79:43:d4:76:15:ba:8b:cd:0b:1a:32:cd:68:b9:ef:18:
7e:77:33:65:0d:2d:ad:cf:5c:62:be:4f:f2:37:30:c1:f1:86:
1e:b1:6f:65:31:82:53:a8:67:c4:bb:fe:82:1f:87:6a:70:5b:
9c:a0:b7:f5:30:59:0f:96:32:99:d1:d5:8f:d5:2c:96:39:24:
34:90:72:ec:d8:dd:24:30:ca:b5:0d:36:a8:9c:f1:57:87:82:
1d:99:1a:dd:39:6e:79:86:2f:bd:7b:54:5b:ea:ed:04:6c:e2:
a9:e0:22:ea:c3:ac:56:17:15:0c:57:1a:6c:95:b0:b3:33:c0:
ec:1c:62:d5:37:13:55:57:c8:fc:f1:94:89:7d:02:38:72:ee:
3e:22:6f:ba:4a:bd:d7:04:f4:73:28:59:32:98:a6:4d:59:2a:
2f:0b:39:f5:c8:6b:a0:c5:5c:50:4c:ed:7d:2c:c1:03:7a:19:
db:99:69:29:ec:5a:8b:e5:0f:2b:61:f5:c5:57:2a:06:6b:fd:
9d:ce:7a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:44 2025 by rpki-client