Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/3c6cb5-a72c-4701-ae6c-306c5651343e/1/aWPrtGmH1Yyr9JygOmf8I8XXZSE.roa
File: aWPrtGmH1Yyr9JygOmf8I8XXZSE.roa (raw, json)
Hash identifier: rxPNfyseh9mYpYa5sMESZMtb8GzaNyszUYWBRocITXE=
Subject key identifier: 69:63:EB:B4:69:87:D5:8C:AB:F4:9C:A0:3A:67:FC:23:C5:D7:65:21
Certificate issuer: /CN=9944f812a0e002c38e84e47628bdba038598090b
Certificate serial: 019423D72E05BEDEA8A76F787FAD483CE88C
Authority key identifier: 99:44:F8:12:A0:E0:02:C3:8E:84:E4:76:28:BD:BA:03:85:98:09:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mUT4EqDgAsOOhOR2KL26A4WYCQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/3c6cb5-a72c-4701-ae6c-306c5651343e/1/aWPrtGmH1Yyr9JygOmf8I8XXZSE.roa
Signing time: Wed 01 Jan 2025 21:48:12 +0000
ROA not before: Wed 01 Jan 2025 21:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35448
IP address blocks: 88.213.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:2e:05:be:de:a8:a7:6f:78:7f:ad:48:3c:e8:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9944f812a0e002c38e84e47628bdba038598090b
Validity
Not Before: Jan 1 21:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6963ebb46987d58cabf49ca03a67fc23c5d76521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e9:1e:11:c2:f5:45:63:59:c3:49:8f:46:f4:
73:9c:ea:e8:3a:14:6f:d3:d9:5f:bb:eb:03:48:cc:
b3:28:d0:95:cc:f4:81:eb:b7:ec:04:37:42:8f:ac:
73:aa:51:a6:3b:ef:b4:60:fa:58:ec:47:cd:c8:6c:
0e:91:4b:e1:b8:64:c2:0f:07:c7:62:f1:6e:63:1c:
cb:e1:6b:b4:b4:3d:82:c1:17:ef:60:2a:5f:19:ac:
67:d3:6f:68:89:8f:86:3e:8b:8d:c8:94:05:04:43:
1d:e5:ba:52:37:8c:18:f2:6d:64:53:e9:e2:41:d9:
5a:ee:fe:30:9d:c9:bf:1b:f0:9a:6d:28:7f:fa:c6:
cd:ff:3f:82:ce:96:3f:5f:af:30:55:53:93:cc:71:
fe:ee:fd:a0:01:3a:4c:d9:12:89:c2:ed:2a:b2:e0:
5a:2c:81:3f:fa:70:da:ba:b6:f1:62:30:74:e0:69:
3b:18:2a:65:fa:99:64:b8:85:a3:20:dd:89:51:50:
7b:21:1f:14:36:4f:bb:35:6f:a2:55:63:0c:05:80:
ae:a0:29:03:5e:54:37:54:c3:04:8b:90:37:1c:ad:
da:d7:02:5e:b7:42:ed:01:44:7e:52:ec:9d:07:c9:
24:22:41:f3:0d:da:4d:d0:11:6a:5d:a7:ef:22:16:
81:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:63:EB:B4:69:87:D5:8C:AB:F4:9C:A0:3A:67:FC:23:C5:D7:65:21
X509v3 Authority Key Identifier:
keyid:99:44:F8:12:A0:E0:02:C3:8E:84:E4:76:28:BD:BA:03:85:98:09:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mUT4EqDgAsOOhOR2KL26A4WYCQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3c6cb5-a72c-4701-ae6c-306c5651343e/1/aWPrtGmH1Yyr9JygOmf8I8XXZSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3c6cb5-a72c-4701-ae6c-306c5651343e/1/mUT4EqDgAsOOhOR2KL26A4WYCQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.213.212.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:ac:24:d4:7b:3c:9d:3c:4a:8b:9a:bf:7f:ce:e5:24:af:4b:
50:21:b7:d1:a3:9b:95:3f:3e:9d:58:09:a5:fb:13:6a:4c:ca:
9b:0f:8a:e9:22:3e:16:15:5e:88:47:d3:a7:e4:85:3e:83:9a:
d0:8d:53:6a:2c:a2:0a:b9:58:c8:42:4b:f9:7e:bd:40:a9:e3:
c4:d2:40:23:b6:27:c7:b7:6b:87:2d:9a:b9:bd:8f:1d:6c:47:
f4:3a:be:a9:f6:08:cd:5e:e2:89:cd:b5:77:71:39:4a:c5:cc:
4f:ed:fe:dd:f2:23:c1:7e:81:c2:04:92:16:69:5a:6b:09:f7:
c8:a3:dd:24:17:ec:68:f2:bf:bc:b9:91:5a:e5:b5:f4:6f:ae:
84:21:6c:d0:7f:83:94:6f:bb:ae:ed:48:ae:f2:0b:1a:5c:89:
04:42:1d:b4:5e:75:56:2b:cd:1a:dc:b3:17:66:e3:6d:71:30:
5f:61:f7:2f:6b:f3:da:01:29:df:62:b6:ad:a6:3c:0e:af:2b:
d5:b4:11:a2:be:06:7a:9c:20:eb:c0:95:e0:62:ed:88:ac:95:
35:39:21:da:bd:80:9c:1a:e0:64:22:b8:31:6a:d4:81:7d:77:
f5:03:41:ec:a1:93:07:d9:d0:c7:fc:4c:c9:07:0c:40:3b:99:
4c:2c:c8:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:54:08 2025 by rpki-client