Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/_kgTfnh2IhwE3karbM7ZM9LjcrI.roa
File: _kgTfnh2IhwE3karbM7ZM9LjcrI.roa (raw, json)
Hash identifier: d1WXXDTUKjm64faaJWCzssGFN/smGamAlWGW19dGLg4=
Subject key identifier: FE:48:13:7E:78:76:22:1C:04:DE:46:AB:6C:CE:D9:33:D2:E3:72:B2
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A9AB2A3
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/_kgTfnh2IhwE3karbM7ZM9LjcrI.roa
Signing time: Sat 01 Jan 2022 04:52:22 +0000
ROA not before: Sat 01 Jan 2022 04:52:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212305
IP address blocks: 88.220.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 983216803 (0x3a9ab2a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe48137e7876221c04de46ab6cced933d2e372b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a5:ea:ba:62:3b:b7:dc:2c:ad:39:c5:fb:90:
dd:03:02:e5:13:52:1d:b9:ad:3e:b7:06:c6:6b:85:
ae:b2:93:41:fe:eb:42:89:44:69:07:1a:ba:16:70:
85:01:13:2a:fe:9d:7e:56:69:0c:3e:83:bb:b1:b5:
01:02:a8:11:21:6d:9b:54:13:e5:b1:6c:96:9a:7c:
3b:6a:eb:3b:99:73:4b:c5:24:5a:95:91:3a:df:4b:
f2:1f:bc:d5:0a:21:2f:d0:b1:60:15:18:e2:80:0a:
55:f5:cf:ab:0b:cb:4f:ce:7f:da:b8:7c:3f:b4:55:
81:be:9d:65:ad:a7:c0:98:6b:74:fe:14:2e:eb:89:
15:76:e9:6f:dd:93:ad:8c:bb:b4:dd:43:b5:b6:3a:
e3:1b:9a:30:10:1b:bb:03:aa:c3:d7:6c:17:33:67:
c3:24:ef:8f:70:d1:e9:bb:a1:c7:ed:54:9e:75:e4:
89:7e:7f:d9:34:ef:66:a8:5c:6d:2a:13:4f:ab:97:
4a:53:cc:68:b3:78:36:c2:60:7c:a2:d5:cf:bf:b4:
b4:d9:32:aa:5f:20:e4:ee:1f:bd:50:23:16:01:e8:
77:54:dc:42:ab:03:36:27:16:88:1e:37:12:b5:31:
72:7a:cd:6b:33:46:30:cd:80:be:4d:c9:5c:b1:81:
8b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:48:13:7E:78:76:22:1C:04:DE:46:AB:6C:CE:D9:33:D2:E3:72:B2
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/_kgTfnh2IhwE3karbM7ZM9LjcrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.90.0/24
Signature Algorithm: sha256WithRSAEncryption
04:6a:f8:b3:1a:59:8a:82:7d:38:95:71:ab:fb:73:bb:0e:a8:
de:3f:5a:49:14:05:20:06:47:02:64:4b:68:74:4d:93:a7:ad:
82:76:a4:f2:54:d8:cf:90:b5:60:18:e6:b2:75:91:b9:5c:b5:
14:b2:34:61:4e:8e:c9:4a:9b:ce:11:f1:ec:71:f0:49:a1:95:
5f:e0:ba:db:89:8f:b0:03:90:a5:f6:13:67:5c:f5:81:c7:98:
94:86:bf:db:fa:5f:44:c5:1b:04:1b:cb:11:0c:31:a8:58:c6:
ba:3d:c9:d2:47:58:29:84:26:2b:e8:f7:a8:7f:f8:5a:b7:74:
29:9e:b1:e5:fc:f3:67:a5:7c:07:12:39:11:c6:66:57:09:2f:
ea:ad:38:a6:17:b8:7c:65:cc:f5:01:2f:2e:bd:35:1a:6a:5f:
55:c7:43:8e:b5:bf:d9:65:7d:74:e8:df:6b:32:66:5c:27:38:
42:eb:f3:2c:b4:2c:a7:c6:5e:af:b1:c8:71:c4:c5:3b:61:38:
0c:3c:64:ac:f0:bc:d8:22:41:8f:aa:0b:08:4d:34:17:e0:e0:
bc:5f:60:b4:97:46:48:65:be:36:16:94:6a:6e:a0:73:b3:26:
3b:b9:f3:94:ad:5f:90:06:4b:fa:d2:7a:86:b8:29:c3:68:85:
91:4b:39:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:07 2025 by rpki-client