Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/mydwIq9OlVQqWSNMn8po55GbGXI.roa
File: mydwIq9OlVQqWSNMn8po55GbGXI.roa (raw, json)
Hash identifier: cEHqEM19qZknvjHYErCpHF4Ngwitsv4ZNDJBbOmkX+Y=
Subject key identifier: 9B:27:70:22:AF:4E:95:54:2A:59:23:4C:9F:CA:68:E7:91:9B:19:72
Certificate issuer: /CN=c5f9f50ca1c34a3be610048d138af3c0753af92b
Certificate serial: 01949AFAF93C9BC0F2DA8BCC2AD63F09F1FB
Authority key identifier: C5:F9:F5:0C:A1:C3:4A:3B:E6:10:04:8D:13:8A:F3:C0:75:3A:F9:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xfn1DKHDSjvmEASNE4rzwHU6-Ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/mydwIq9OlVQqWSNMn8po55GbGXI.roa
Signing time: Sat 25 Jan 2025 01:02:06 +0000
ROA not before: Sat 25 Jan 2025 01:02:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 188.214.234.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:9a:fa:f9:3c:9b:c0:f2:da:8b:cc:2a:d6:3f:09:f1:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5f9f50ca1c34a3be610048d138af3c0753af92b
Validity
Not Before: Jan 25 01:02:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9b277022af4e95542a59234c9fca68e7919b1972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:93:12:16:13:f0:ed:8d:3b:09:f5:f0:00:60:
ae:3e:22:c2:4a:b9:c4:c1:cc:cc:e3:3c:17:3d:f1:
0c:6e:6e:16:1a:de:27:99:6f:ab:4e:12:78:6e:5e:
83:5a:c8:57:b6:79:62:cc:aa:6c:87:0e:5f:50:9b:
7b:2f:e5:3e:b4:10:3c:1b:7c:57:65:7e:3a:db:00:
05:e8:22:89:6f:39:ca:10:5c:8e:da:14:15:21:90:
f9:be:ce:7e:44:98:d8:a4:47:c9:7a:4e:5a:4d:78:
f0:8a:d4:ff:50:17:ad:bd:e7:22:97:24:d8:2e:71:
81:b8:42:ff:44:df:46:90:27:18:6c:2a:11:99:f5:
fb:ee:ff:51:d5:9b:55:19:90:4c:49:75:5c:03:a5:
f9:d6:2c:0e:02:da:3e:bd:88:47:e7:ad:2e:4a:5a:
b7:5c:6e:1a:2d:1d:15:8b:b4:5d:a1:01:b9:78:f9:
94:38:19:73:f1:b7:0d:64:1b:de:25:1c:63:c5:73:
a5:ce:60:77:02:27:4b:d4:7d:46:38:d1:e7:67:a7:
ff:7f:45:33:83:5c:0c:90:ce:b7:7d:4c:16:84:67:
93:c2:5f:d2:e1:c4:9e:5f:e4:3c:19:33:41:87:ca:
cd:7d:3a:c9:41:cf:4f:33:a2:02:ba:78:81:2d:36:
25:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:27:70:22:AF:4E:95:54:2A:59:23:4C:9F:CA:68:E7:91:9B:19:72
X509v3 Authority Key Identifier:
keyid:C5:F9:F5:0C:A1:C3:4A:3B:E6:10:04:8D:13:8A:F3:C0:75:3A:F9:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xfn1DKHDSjvmEASNE4rzwHU6-Ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/mydwIq9OlVQqWSNMn8po55GbGXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/xfn1DKHDSjvmEASNE4rzwHU6-Ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.234.0/23
Signature Algorithm: sha256WithRSAEncryption
39:59:cf:ea:f2:cf:ce:d4:18:c4:cf:53:05:45:33:b6:9d:e6:
4a:f2:d5:3b:0a:16:24:ea:c0:9d:61:9a:0b:df:78:ac:73:51:
3d:f5:af:db:30:7f:35:3a:56:fc:89:38:61:5f:b3:0c:e8:55:
05:50:94:3c:a2:fc:b4:f8:60:e8:8c:be:4d:9d:6d:0f:d3:a8:
92:9b:69:eb:34:dd:02:a9:f3:2c:bc:7a:96:47:cc:56:72:ef:
fc:6f:9e:f1:dd:05:8d:23:21:bb:6f:1f:c8:ab:97:75:41:55:
7b:65:8e:72:53:88:50:67:ef:af:a9:bf:37:bc:f7:6b:9c:8d:
75:8f:f4:5b:be:7f:55:8b:31:ec:4e:7f:e7:73:d9:51:4b:fb:
e1:2a:87:c8:45:e5:7b:c9:40:1a:5e:81:a8:49:fc:9c:8a:49:
44:e7:1b:63:2b:89:e1:d1:34:63:43:8d:4d:35:fe:0f:8b:48:
aa:11:f2:1b:f7:5e:7f:60:63:73:50:07:f4:90:40:86:8d:f3:
90:c9:32:7c:b9:a2:d7:8b:b2:99:cb:2a:93:e8:e4:7b:7a:29:
19:ae:3a:36:ec:f6:3d:77:ba:b7:57:cc:ce:18:28:a6:f3:bd:
31:fa:c8:de:4a:c5:d3:0d:46:0e:bd:6c:7f:3c:b0:61:74:6c:
0c:1e:00:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:27:14 2025 by rpki-client