Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/Xmv46alzrB60JmjVYvB6COzgMjA.roa
File: Xmv46alzrB60JmjVYvB6COzgMjA.roa (raw, json)
Hash identifier: hA/zNdXVXqQjvFAUICGet5aUd1QUuqsgENdS1uEiVVY=
Subject key identifier: 5E:6B:F8:E9:A9:73:AC:1E:B4:26:68:D5:62:F0:7A:08:EC:E0:32:30
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 01942444DA8023DB566A67F2BCBB9D450973
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/Xmv46alzrB60JmjVYvB6COzgMjA.roa
Signing time: Wed 01 Jan 2025 23:47:59 +0000
ROA not before: Wed 01 Jan 2025 23:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212335
IP address blocks: 88.80.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:da:80:23:db:56:6a:67:f2:bc:bb:9d:45:09:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 1 23:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5e6bf8e9a973ac1eb42668d562f07a08ece03230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:67:95:07:0e:7f:86:12:b3:1f:4e:cb:a1:be:
ee:a7:d6:f5:de:6e:05:05:b6:fb:04:ff:98:bf:32:
77:55:03:d9:98:e0:3f:e4:79:a3:f4:fa:4b:60:15:
2a:76:71:f7:83:a3:f1:6f:97:f9:b2:5a:54:6b:fe:
cb:1c:28:45:ef:d8:10:6c:03:1b:ef:bd:88:2a:4e:
42:98:80:f9:61:4c:ab:4e:ed:de:f1:24:18:0f:57:
33:b6:a1:4c:e0:db:b3:20:92:e4:14:d3:ce:9c:00:
b4:08:82:47:62:ec:75:ea:8d:35:6a:dc:64:07:1e:
b4:e9:5f:b8:89:bf:92:ac:e1:29:bf:88:c1:07:45:
d9:22:c7:2b:da:8d:73:ac:5d:0c:25:6d:71:88:6e:
f5:e5:33:5c:34:a8:df:1a:4c:33:d9:08:17:cf:fb:
bf:c3:24:ff:6f:c9:ec:e9:62:be:10:ea:11:7a:85:
56:61:b1:b8:62:dd:b6:8f:3c:0d:4f:fd:79:aa:e8:
8d:40:bd:36:39:81:8b:94:39:88:13:f2:b9:fa:7f:
4e:3f:54:46:31:90:6e:68:4a:bb:d0:69:c3:ac:4a:
76:3a:d0:d4:60:c1:75:77:c2:75:93:de:9e:b8:df:
10:19:0d:3f:e8:86:66:8d:b6:cd:10:05:0c:05:ae:
30:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:6B:F8:E9:A9:73:AC:1E:B4:26:68:D5:62:F0:7A:08:EC:E0:32:30
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/Xmv46alzrB60JmjVYvB6COzgMjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.138.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:5a:1f:8f:91:91:97:fb:f2:4b:2c:0f:60:0d:84:d2:65:f9:
23:cc:30:94:7a:56:0f:50:d9:ef:a0:09:66:0b:5f:25:df:a2:
c5:bc:d8:a5:dc:95:f0:5a:da:aa:6e:69:82:ac:0a:6c:d2:bd:
a5:a2:f4:14:d4:8e:7c:59:c6:75:4b:68:78:51:f2:f6:fc:7f:
de:41:0e:39:86:5f:68:ef:0a:d1:50:7d:cb:cd:de:1b:33:a6:
5c:3e:7a:eb:a7:12:9b:3f:ca:32:ae:47:88:f7:70:d1:78:55:
64:12:d3:b8:e9:18:3f:1c:81:9f:a7:ae:c7:70:6c:e4:47:a3:
32:31:35:e4:24:cb:ce:4e:d0:65:06:ae:e3:1a:72:40:b2:50:
28:f2:18:1b:ab:c7:ba:43:90:d7:31:52:35:a0:65:09:bc:42:
28:af:45:1f:f4:76:3d:51:57:7b:72:b2:80:e9:8f:20:71:9a:
62:5d:84:db:00:b9:4f:eb:be:95:03:d5:9f:f8:cb:45:04:f5:
3e:90:bf:83:9b:1e:f6:4f:d4:ed:87:38:e6:f6:d7:33:90:ff:
76:00:83:42:44:00:b3:ea:cb:22:9c:c1:47:d1:5b:64:a1:fe:
42:5a:1b:67:13:7d:c3:3d:42:36:f4:f8:f1:5d:2a:14:a3:50:
1c:e2:9d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:09:52 2025 by rpki-client