Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/CWMcUW7u2u8Z4JtmF4sYYChUajE.roa
File: CWMcUW7u2u8Z4JtmF4sYYChUajE.roa (raw, json)
Hash identifier: Td2J0/08kofyo0DgqEJ67/6Fx9akkxif+1AC6LaLA+s=
Subject key identifier: 09:63:1C:51:6E:EE:DA:EF:19:E0:9B:66:17:8B:18:60:28:54:6A:31
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01942369AF37525A1E3DB8A130682FD41195
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/CWMcUW7u2u8Z4JtmF4sYYChUajE.roa
Signing time: Wed 01 Jan 2025 19:48:36 +0000
ROA not before: Wed 01 Jan 2025 19:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60761
IP address blocks: 188.215.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:af:37:52:5a:1e:3d:b8:a1:30:68:2f:d4:11:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 19:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=09631c516eeedaef19e09b66178b186028546a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4d:93:07:60:52:3f:23:88:4a:d3:b4:1d:b8:
c0:2c:65:58:5e:c5:d4:48:ba:da:19:5b:e5:d1:5e:
70:01:76:90:70:0d:81:1c:01:67:ae:d6:e1:6a:d7:
0d:e7:28:45:44:fd:b7:d3:fc:02:5b:d0:93:a9:36:
e7:a1:7f:21:f8:35:21:0c:41:bd:9d:63:69:6f:52:
0c:f5:cb:02:d7:dc:63:48:3f:8b:6f:38:e0:f6:1d:
49:c7:96:af:ff:5a:9a:80:be:59:80:bd:ac:79:ab:
e9:16:7e:56:ec:74:d9:1b:63:92:0d:21:47:30:c4:
21:fd:52:bb:58:f4:19:b1:c5:29:46:29:25:94:9c:
9e:ee:58:82:f1:d7:f7:c0:66:24:56:45:2a:61:0e:
7b:d3:8e:ca:e4:e6:77:9b:af:6a:0e:33:52:6f:6a:
2a:cb:4e:66:04:13:d2:12:01:a2:55:a7:78:38:1d:
18:a2:ea:dc:2e:84:e6:43:ea:b3:29:e8:ad:ba:bd:
4b:73:d4:53:78:0f:d3:f9:59:ea:d8:75:a6:d1:68:
7a:7b:bf:11:3a:1d:59:c4:e3:8c:56:18:28:61:4a:
b1:2e:61:dd:8b:c2:75:cf:81:71:41:74:f9:52:76:
13:73:26:ec:2d:ad:5f:69:61:f3:20:5c:48:17:48:
29:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:63:1C:51:6E:EE:DA:EF:19:E0:9B:66:17:8B:18:60:28:54:6A:31
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/CWMcUW7u2u8Z4JtmF4sYYChUajE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.37.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:16:b6:20:1a:b1:ac:60:f1:86:1b:9b:54:27:42:97:49:32:
b2:a9:08:c3:c6:f8:9c:2d:13:8a:d5:0b:7c:4b:61:a0:e4:ab:
ee:1f:a1:53:65:95:8c:31:c0:1c:2b:c1:7d:7a:20:f6:de:7e:
24:7f:df:f9:28:25:9a:2a:d6:56:ea:c4:92:3a:c9:7d:be:d1:
35:4a:44:d8:b9:cb:24:c3:f4:62:5d:3a:15:a2:69:7e:4b:76:
e0:fe:46:62:ac:92:b2:ec:3d:60:29:39:b9:f2:f1:b8:7f:55:
01:3a:3e:c5:21:66:d5:aa:7b:44:b1:d3:db:82:d7:d2:d9:06:
92:11:9b:68:04:29:6c:fc:9c:0f:dc:32:b8:50:60:b0:c8:c2:
e2:19:65:74:59:c5:af:5b:df:69:21:0f:38:58:9e:c2:f8:e5:
0a:cd:bd:b2:ef:c1:07:5d:8e:cd:c8:d8:3c:e2:3c:13:c6:61:
1e:54:3e:d2:d9:f7:73:55:23:55:da:85:27:3f:31:9d:03:c4:
fb:1a:74:04:41:fc:f6:11:a9:d1:c6:d8:b7:36:73:7d:0e:fd:
c0:aa:fe:78:66:94:e2:12:3d:b4:ac:cd:0d:e4:1a:f9:e1:41:
7b:a3:ba:d1:81:1e:fe:a1:39:21:27:7a:a1:c6:a8:21:ce:0d:
ff:ec:6e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:20 2025 by rpki-client