Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/zgSfMRkHK3lwY3cjlSSJkxQDEcY.roa
File: zgSfMRkHK3lwY3cjlSSJkxQDEcY.roa (raw, json)
Hash identifier: 6lwgmTd9s0x4yXVfYFbLsmxJoN32B63rZifMsScsUaI=
Subject key identifier: CE:04:9F:31:19:07:2B:79:70:63:77:23:95:24:89:93:14:03:11:C6
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01942369ABFDE7D56914F4EA3BEDF4B8ECD3
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/zgSfMRkHK3lwY3cjlSSJkxQDEcY.roa
Signing time: Wed 01 Jan 2025 19:48:35 +0000
ROA not before: Wed 01 Jan 2025 19:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59995
IP address blocks: 188.212.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:ab:fd:e7:d5:69:14:f4:ea:3b:ed:f4:b8:ec:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 19:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ce049f3119072b797063772395248993140311c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:29:da:80:77:ed:93:13:7a:3a:f2:97:a3:00:
a9:f8:02:59:30:cc:8c:68:c9:47:24:ed:01:fe:c4:
b9:5a:a1:94:da:8f:e5:7a:42:a7:53:e0:82:c8:ed:
8f:7b:d4:92:ca:af:a3:08:6d:ac:08:89:38:05:d4:
b2:88:fe:3e:ad:94:b7:cd:cf:61:34:c2:d9:6a:93:
df:9a:ea:36:4a:24:ba:7d:21:1a:68:32:f7:db:b6:
f9:80:5a:92:4a:fc:34:06:92:5d:92:cf:17:b7:dd:
42:47:ce:3c:96:f9:41:09:d9:bd:7f:68:73:5e:a0:
ab:04:c0:74:d9:c4:f8:1a:4a:d4:eb:fb:6a:05:18:
ba:2f:ae:cd:0b:f1:97:f8:01:66:6f:37:f1:23:42:
ca:f2:91:a4:5c:82:5c:16:63:d1:46:df:8a:df:08:
5f:f4:ae:4a:4e:69:ac:fe:1b:93:ac:14:77:78:e8:
20:15:dd:4e:fe:4a:99:db:18:56:83:af:91:93:38:
be:89:9c:bd:4a:17:ad:1c:a7:3d:2b:f1:bd:8e:c4:
2f:48:46:52:79:4d:59:f2:9e:60:14:d4:3f:47:a1:
1d:a6:8e:92:8a:27:69:6c:9d:f6:1f:a4:75:85:a1:
06:4b:16:89:cb:7b:91:30:65:e8:1b:bb:fa:d4:e8:
28:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:04:9F:31:19:07:2B:79:70:63:77:23:95:24:89:93:14:03:11:C6
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/zgSfMRkHK3lwY3cjlSSJkxQDEcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.126.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:be:87:4d:06:94:48:e5:b8:e7:42:3d:74:1c:da:00:65:75:
b4:3a:02:7c:b8:51:e5:a0:de:ac:38:e4:5a:f7:0c:25:43:5f:
af:15:85:80:d8:09:a6:08:2c:d9:bd:64:31:72:ac:06:eb:23:
7d:06:b0:51:57:2a:e3:c7:95:ae:36:88:0d:fe:c9:36:43:79:
80:98:b2:fa:82:14:f1:62:d3:3c:b5:5c:2c:86:cd:42:b7:6b:
cb:8c:82:18:da:7f:ee:12:fe:a6:7f:97:bf:0c:b1:56:da:1d:
0d:c4:55:f1:16:1c:d1:ea:a4:67:50:60:81:74:38:3d:ee:3b:
55:51:67:9e:30:34:4f:49:b5:55:fb:de:f5:70:2a:c9:98:5b:
a0:95:b5:95:16:35:a5:dd:71:3b:a7:ea:db:17:25:5d:cb:84:
35:ce:87:f0:5e:aa:a4:5a:d9:4b:62:67:3e:cf:73:f3:54:b9:
f7:9a:59:ea:fa:77:31:8b:cb:83:6f:e9:03:8b:9d:1d:86:8a:
ef:16:23:25:81:eb:37:78:f8:12:74:76:a2:42:c0:87:ba:a5:
db:98:da:0f:aa:99:e5:2b:c7:70:f1:96:a6:0c:1c:79:04:dc:
29:d5:ff:86:ae:0e:1d:0f:67:30:f5:04:42:2c:ef:6a:06:67:
61:1f:24:a6
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZQjaav959VpFPTqO+30uOzTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy
MTliNTkwHhcNMjUwMTAxMTk0ODM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTA0OWYzMTE5MDcyYjc5NzA2Mzc3MjM5NTI0ODk5MzE0MDMxMWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArynagHftkxN6OvKXowCp+AJZMMyM
aMlHJO0B/sS5WqGU2o/lekKnU+CCyO2Pe9SSyq+jCG2sCIk4BdSyiP4+rZS3zc9h
NMLZapPfmuo2SiS6fSEaaDL327b5gFqSSvw0BpJdks8Xt91CR848lvlBCdm9f2hz
XqCrBMB02cT4GkrU6/tqBRi6L67NC/GX+AFmbzfxI0LK8pGkXIJcFmPRRt+K3whf
9K5KTmms/huTrBR3eOggFd1O/kqZ2xhWg6+Rkzi+iZy9ShetHKc9K/G9jsQvSEZS
eU1Z8p5gFNQ/R6Edpo6SiidpbJ32H6R1haEGSxaJy3uRMGXoG7v61OgoTQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFM4EnzEZByt5cGN3I5UkiZMUAxHGMB8GA1UdIwQY
MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl
LTkyZTI1ZmUxNjMzMS8xL3pnU2ZNUmtISzNsd1kzY2psU1NKa3hRREVjWS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz
MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC81H4w
DQYJKoZIhvcNAQELBQADggEBAOO+h00GlEjluOdCPXQc2gBldbQ6Any4UeWg3qw4
5Fr3DCVDX68VhYDYCaYILNm9ZDFyrAbrI30GsFFXKuPHla42iA3+yTZDeYCYsvqC
FPFi0zy1XCyGzUK3a8uMghjaf+4S/qZ/l78MsVbaHQ3EVfEWHNHqpGdQYIF0OD3u
O1VRZ54wNE9JtVX73vVwKsmYW6CVtZUWNaXdcTun6tsXJV3LhDXOh/BeqqRa2Uti
Zz7Pc/NUufeaWer6dzGLy4Nv6QOLnR2Giu8WIyWB6zd4+BJ0dqJCwIe6pduY2g+q
meUrx3DxlqYMHHkE3CnV/4auDh0PZzD1BEIs72oGZ2EfJKY=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:16 2025 by rpki-client