Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/KQPVZjd8uXoJ_0dV4AjDeWiqQQI.roa
File: KQPVZjd8uXoJ_0dV4AjDeWiqQQI.roa (raw, json)
Hash identifier: 9hWXYGll9zn/YFmZU7mBxZ+s82nTPV++un3qIDJzhn0=
Subject key identifier: 29:03:D5:66:37:7C:B9:7A:09:FF:47:55:E0:08:C3:79:68:AA:41:02
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 0194221F3AFC129C10D9C2D9E08B08756B52
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/KQPVZjd8uXoJ_0dV4AjDeWiqQQI.roa
Signing time: Wed 01 Jan 2025 13:47:39 +0000
ROA not before: Wed 01 Jan 2025 13:47:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 152475
IP address blocks: 188.130.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:3a:fc:12:9c:10:d9:c2:d9:e0:8b:08:75:6b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Jan 1 13:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2903d566377cb97a09ff4755e008c37968aa4102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ad:55:ee:a2:da:f0:2c:6b:8a:ae:5a:85:d6:
23:dd:ae:9c:b3:96:73:45:b8:2c:55:01:e7:1a:a8:
e3:a6:e3:03:4f:61:fa:c7:bc:20:88:4f:65:7c:a4:
7a:09:56:14:15:f6:2d:80:db:48:94:02:ae:71:f5:
d6:37:2a:79:a6:ed:6d:14:bb:0d:bc:3e:50:8b:6f:
a5:e1:e0:11:b3:b4:58:9c:f6:8c:d6:99:08:05:03:
bb:f8:47:50:30:f9:f2:41:96:03:61:95:f3:b9:2d:
1c:db:32:b8:f4:47:06:61:03:66:85:01:e6:ac:f2:
55:fd:67:84:a8:49:14:fd:56:f8:a2:67:5c:2c:fc:
18:18:7b:f0:34:ff:f5:ef:9d:ab:1b:22:c2:ae:37:
7a:80:26:d5:c9:95:e4:d0:d4:a6:a1:36:6d:8b:9c:
c1:8d:d8:a1:e0:9e:80:95:72:ca:9b:ea:c1:8d:bb:
01:38:60:be:bc:74:78:02:61:01:d1:1e:c2:62:8e:
e7:2e:45:2b:15:ea:04:3e:fd:4c:51:7f:19:18:5f:
7e:71:9e:90:11:52:0e:ca:f5:bf:93:d3:83:a0:22:
16:3c:76:d5:54:01:61:4d:b7:29:78:bd:c6:62:43:
c1:5a:dd:e3:6a:30:2a:6b:ca:b6:57:c0:7e:3f:d5:
92:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:03:D5:66:37:7C:B9:7A:09:FF:47:55:E0:08:C3:79:68:AA:41:02
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/KQPVZjd8uXoJ_0dV4AjDeWiqQQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.130.231.0/24
Signature Algorithm: sha256WithRSAEncryption
46:cb:7c:3c:62:d3:d8:17:e3:48:07:22:5b:93:8a:20:c8:56:
d7:e3:fe:51:9a:fc:31:ae:48:80:40:e5:73:e6:f0:fe:f9:a7:
a3:95:bc:5e:fd:e4:5a:31:d2:fc:3b:a1:3b:f1:8b:78:8c:0c:
b1:8b:ff:2c:02:be:fe:d0:b7:5b:2f:26:37:bf:51:6f:64:03:
1c:bb:29:0f:df:9e:63:5b:bc:cd:a2:e2:a5:db:1e:12:1a:1e:
70:59:32:c5:8e:05:10:af:ff:c8:eb:90:07:d3:42:fb:a7:ba:
9a:44:e3:50:f1:31:3f:7c:67:f8:85:98:0d:73:e5:ac:b7:09:
4f:96:d9:0b:14:16:93:39:a8:06:63:f4:15:04:20:fb:81:64:
a2:ad:92:0c:f5:da:21:fd:9f:0b:15:62:96:e4:92:40:e8:6c:
f4:00:f2:ef:2a:f2:e1:07:86:c8:fd:ee:92:27:da:46:5e:83:
02:f0:20:06:7a:4c:d8:94:1a:c4:e1:4d:81:98:c5:54:e0:eb:
38:97:09:3f:e6:25:5c:26:7e:9a:df:53:0a:bf:32:c3:a8:b8:
86:f4:35:ee:05:bf:23:38:23:a0:cb:4b:d6:f7:81:79:00:b0:
3d:4c:c0:f9:70:a2:d9:b6:d3:88:03:d8:d5:5d:13:e7:5d:d1:
b1:b8:47:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:27 2025 by rpki-client