Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/iCjS8kIZtPvCT-FKJTVHlpVm5HE.roa
File: iCjS8kIZtPvCT-FKJTVHlpVm5HE.roa (raw, json)
Hash identifier: o+ybqh5CQtAeXDTvNnQSpD5ovHpI47d9s4nEoMG/egE=
Subject key identifier: 88:28:D2:F2:42:19:B4:FB:C2:4F:E1:4A:25:35:47:96:95:66:E4:71
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 019423698F7967C6E5DEC2E90BC25A0507EC
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/iCjS8kIZtPvCT-FKJTVHlpVm5HE.roa
Signing time: Wed 01 Jan 2025 19:48:28 +0000
ROA not before: Wed 01 Jan 2025 19:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39016
IP address blocks: 188.241.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:8f:79:67:c6:e5:de:c2:e9:0b:c2:5a:05:07:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 19:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8828d2f24219b4fbc24fe14a253547969566e471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8e:cb:7e:a2:3c:09:b7:7e:fd:c9:c4:42:16:
d8:47:0d:48:b6:b4:c6:64:46:6d:02:7d:08:28:9e:
55:98:bc:76:33:b4:7d:2d:0f:46:72:e1:60:d2:e9:
e4:32:db:c2:9e:92:8f:39:01:a6:6a:58:3b:ad:22:
96:f9:85:d1:10:f8:1b:d8:3c:7d:89:27:14:89:03:
b4:19:2f:47:ab:ed:70:a1:8d:75:8c:29:b2:19:62:
96:50:28:b4:e5:c5:b1:ff:9e:bb:de:04:04:99:44:
dd:fd:fe:74:10:92:0e:8b:5d:fc:b0:87:f2:23:59:
6f:54:fd:e4:85:44:75:51:5a:58:e5:9e:42:21:d2:
ff:53:6a:63:95:35:87:42:55:cd:6b:c6:f7:0a:f6:
b6:d0:62:03:42:40:b1:b0:21:4e:7a:47:4f:33:22:
23:3a:7e:c1:bc:47:38:20:5d:6b:31:1d:af:39:39:
e1:1e:c7:65:4e:b4:6d:2d:e9:43:77:8e:42:dc:c8:
7f:b4:74:47:69:18:f0:47:19:88:62:ea:97:88:41:
d0:bb:f7:ba:18:9c:35:f0:57:9b:45:20:65:7b:a3:
61:4c:b2:13:e2:78:0a:96:de:75:a8:0c:19:26:d5:
57:18:96:3f:b1:b4:57:f0:0e:30:c5:27:5a:b2:44:
0e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:28:D2:F2:42:19:B4:FB:C2:4F:E1:4A:25:35:47:96:95:66:E4:71
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/iCjS8kIZtPvCT-FKJTVHlpVm5HE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.127.0/24
Signature Algorithm: sha256WithRSAEncryption
80:08:42:4f:ea:7e:41:c7:e4:c2:6e:92:af:75:1f:58:a1:5b:
34:f9:f4:11:da:18:eb:9f:54:3b:29:de:cc:0d:fa:6b:01:1a:
b9:b3:10:ef:19:3c:55:bb:00:87:29:f1:6f:b2:ca:18:bd:47:
fd:5b:11:95:1d:47:3f:32:ff:16:ff:0c:ac:9e:a5:92:02:c7:
0c:c5:5d:b2:a8:dc:3e:e9:e9:ab:6d:7a:f5:0d:bc:68:73:34:
d2:0b:a1:6d:94:09:1f:d8:cd:ef:4a:38:d0:fe:7b:96:be:1b:
b2:90:6f:b2:4b:98:0f:05:8e:7d:62:a8:97:c8:17:a6:5f:4b:
44:e8:d9:21:ca:f6:14:ca:e6:03:1d:6b:d6:7b:90:ad:ab:49:
88:bd:8d:98:ef:70:f9:a8:c9:7b:1f:c9:80:cc:31:b2:cf:10:
6c:b2:d2:3d:c9:23:bb:fc:b6:3c:95:5a:ca:2d:a4:78:4d:7d:
60:8a:44:16:05:b9:c2:6e:ea:ea:a0:75:68:f9:de:b7:90:71:
9f:d6:5d:0a:f0:e2:87:a7:6f:0e:d4:6e:1e:03:a0:05:6e:47:
a4:36:77:04:ea:31:35:e1:7f:a1:a4:26:b9:31:47:87:91:30:
bf:1c:09:8d:13:af:2e:b1:e4:91:a7:32:1d:ca:92:9b:d8:52:
c6:f8:33:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:04 2025 by rpki-client