Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/edWAVfkKeL_p4SOqKwWgAG9qG9o.roa
File: edWAVfkKeL_p4SOqKwWgAG9qG9o.roa (raw, json)
Hash identifier: eesAWNHbi/a4/dOuceKDaMTobB00ZxoBZJAUv+VOUbI=
Subject key identifier: 79:D5:80:55:F9:0A:78:BF:E9:E1:23:AA:2B:05:A0:00:6F:6A:1B:DA
Certificate issuer: /CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7
Certificate serial: 019422FB6883FFEBAF9610F89BF93A0222E5
Authority key identifier: A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/edWAVfkKeL_p4SOqKwWgAG9qG9o.roa
Signing time: Wed 01 Jan 2025 17:48:09 +0000
ROA not before: Wed 01 Jan 2025 17:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200019
IP address blocks: 188.214.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:68:83:ff:eb:af:96:10:f8:9b:f9:3a:02:22:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7
Validity
Not Before: Jan 1 17:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=79d58055f90a78bfe9e123aa2b05a0006f6a1bda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f5:d0:25:5c:db:5f:66:cb:88:ed:5e:ab:8e:
08:7d:9c:ae:10:7e:07:25:54:fe:7c:7b:d7:aa:9c:
25:c8:de:d3:00:15:48:bb:fb:b8:d7:c4:d6:0a:3d:
bf:49:e7:27:7e:bf:4c:fa:e2:0e:41:3b:c9:a4:87:
2d:ce:84:fd:02:97:8b:ce:14:03:3c:93:79:6c:c1:
f0:79:3b:51:33:07:52:c2:8a:ee:4a:5a:81:bc:8f:
e2:54:3c:fa:1d:93:57:a7:93:8b:be:b6:3f:0e:8a:
4e:e9:ef:77:be:97:35:ad:40:b7:b9:42:5b:94:b5:
13:19:94:07:b2:7d:cd:b2:fc:92:93:d4:4f:7f:78:
e2:6d:4a:3d:2e:8f:1a:a9:47:81:f4:1e:0f:a2:a2:
a7:63:c5:87:86:08:d2:52:b5:c0:24:68:4b:ec:eb:
a0:e1:5a:e8:85:75:39:d6:71:97:2f:a6:5e:66:46:
f9:c3:69:16:a2:e1:cc:ea:37:a1:dd:8a:b7:66:5b:
b0:d0:32:0d:fb:75:05:7f:fd:3d:64:bd:5f:de:2f:
f9:32:cb:e7:06:d0:3b:46:97:1b:3f:54:30:33:55:
c1:91:0f:f4:e6:2f:52:80:41:e1:ac:f2:11:b6:06:
4e:62:8a:d1:fa:1a:69:75:ad:bf:78:93:80:f5:7c:
7a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D5:80:55:F9:0A:78:BF:E9:E1:23:AA:2B:05:A0:00:6F:6A:1B:DA
X509v3 Authority Key Identifier:
keyid:A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/edWAVfkKeL_p4SOqKwWgAG9qG9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.144.0/24
Signature Algorithm: sha256WithRSAEncryption
09:d8:d2:8e:e6:b3:d5:43:bb:2e:62:6d:1c:ed:0c:33:3a:d2:
fc:eb:2e:4e:ce:dd:d5:6b:25:20:f8:df:b9:88:68:40:b9:9d:
88:16:d0:86:6b:0c:49:3b:0a:39:6f:76:fc:c4:9f:75:f9:30:
98:9d:7c:99:13:07:08:d6:94:fc:ec:a7:cd:f5:1a:5e:c4:6e:
c2:18:80:62:b5:f0:f4:a2:d8:e4:99:6a:a8:76:28:66:c3:60:
98:24:7d:ea:16:8e:f9:0b:c4:ed:93:60:da:32:d3:33:16:62:
a1:da:a2:48:bb:38:ab:fe:3f:6e:c4:b7:cb:da:db:1a:c3:3a:
8b:54:8e:b0:1d:40:79:99:c5:01:0e:31:67:ee:5d:ae:20:3f:
26:d7:53:4b:53:96:7b:62:a1:cf:02:ec:24:e6:c8:ba:d6:f1:
13:a6:65:ff:bc:60:ac:ac:13:a2:74:41:cd:d6:5b:b5:61:38:
8c:48:dc:5b:71:bd:42:b4:5d:39:38:ed:37:32:d0:18:66:11:
1e:11:61:4b:ec:8d:e2:97:43:f2:56:6f:88:9a:de:bb:2d:ce:
60:fd:fa:5d:a1:8f:0d:96:70:97:ff:58:00:d4:2b:4f:9c:85:
68:96:b4:b6:af:5e:03:e3:ca:b7:b8:c8:3d:77:ad:46:72:06:
d1:f5:62:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:47 2025 by rpki-client