Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/1e6c54-503c-4b55-93b5-a094ddea0c1a/1/rhtLkO1LgxwQ6A05seAeay51QnI.roa
File: rhtLkO1LgxwQ6A05seAeay51QnI.roa (raw, json)
Hash identifier: TzK2JqoYXIl73ds2WIdt1+Y5YJUlqJYFpxc7qe162mE=
Subject key identifier: AE:1B:4B:90:ED:4B:83:1C:10:E8:0D:39:B1:E0:1E:6B:2E:75:42:72
Certificate issuer: /CN=25778b203d7bcc64a960dc7d16c8211287401652
Certificate serial: 018CC80183CBF8D21AADD06F2A3C51EC76C4
Authority key identifier: 25:77:8B:20:3D:7B:CC:64:A9:60:DC:7D:16:C8:21:12:87:40:16:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXeLID17zGSpYNx9FsghEodAFlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6c54-503c-4b55-93b5-a094ddea0c1a/1/rhtLkO1LgxwQ6A05seAeay51QnI.roa
Signing time: Tue 02 Jan 2024 02:29:51 +0000
ROA not before: Tue 02 Jan 2024 02:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50284
IP address blocks: 88.151.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:83:cb:f8:d2:1a:ad:d0:6f:2a:3c:51:ec:76:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25778b203d7bcc64a960dc7d16c8211287401652
Validity
Not Before: Jan 2 02:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae1b4b90ed4b831c10e80d39b1e01e6b2e754272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:74:ec:d7:34:a4:7d:3d:fb:fb:03:62:db:52:
b6:e9:fb:47:ff:7e:af:68:6f:15:6f:26:1f:41:3f:
9c:c2:6e:4f:ad:69:1c:84:d4:70:85:46:45:2f:3c:
3f:2b:63:dd:1d:8d:7a:f2:d1:b9:3c:4b:1e:8c:75:
46:f6:9f:d0:a5:b3:14:dd:ed:7c:57:ec:59:f9:0d:
9c:4a:83:bf:44:3d:ed:a8:39:55:46:b5:a7:f0:85:
2f:7d:36:7c:db:ee:93:20:d6:02:e7:7a:b8:88:68:
a7:a3:28:be:02:6b:47:a8:31:b3:62:d0:ef:cd:36:
42:e0:c5:dd:57:75:a0:5c:bf:e0:f4:ca:07:67:d0:
62:8d:62:c9:2b:bf:f0:1e:b4:c2:8e:7a:47:fd:6b:
9f:a7:23:4e:30:5d:cf:b8:86:10:42:6c:1c:10:cf:
b6:e1:9c:23:55:22:0b:91:64:84:ac:72:8c:a9:40:
74:49:58:b5:74:08:45:51:de:93:71:22:e0:50:8c:
24:15:2f:ad:3e:c2:d0:8e:c7:0e:84:ef:1d:a8:24:
cd:14:c1:b1:74:ff:e9:50:f6:54:4a:13:bb:53:6f:
2e:1c:26:6a:ba:ef:95:a2:92:5e:e1:5d:ad:ce:8d:
83:a8:15:41:f7:ea:20:00:e4:69:1d:e3:af:d7:94:
73:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:1B:4B:90:ED:4B:83:1C:10:E8:0D:39:B1:E0:1E:6B:2E:75:42:72
X509v3 Authority Key Identifier:
keyid:25:77:8B:20:3D:7B:CC:64:A9:60:DC:7D:16:C8:21:12:87:40:16:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXeLID17zGSpYNx9FsghEodAFlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6c54-503c-4b55-93b5-a094ddea0c1a/1/rhtLkO1LgxwQ6A05seAeay51QnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6c54-503c-4b55-93b5-a094ddea0c1a/1/JXeLID17zGSpYNx9FsghEodAFlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.117.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:dd:a6:59:47:a8:01:c9:9a:fc:22:49:06:c6:2c:2d:83:b9:
1f:b6:e7:a6:3f:50:38:02:a6:a1:1d:fa:a5:5e:b3:be:dd:3b:
40:6c:eb:c0:b6:ab:2a:ff:b4:59:26:38:5c:0b:58:2e:b7:0d:
5f:89:4a:89:8d:54:f0:2f:48:94:c6:9a:e2:4a:c3:95:df:71:
c9:99:39:63:5a:25:ba:2b:1a:fa:19:75:ec:7e:c8:91:ef:31:
b4:c1:d9:4c:a3:da:8b:95:21:86:86:bd:ae:a4:df:ea:47:f1:
df:90:b1:e7:8d:f1:b8:3e:df:4c:85:e3:9e:ba:90:ce:3a:6e:
de:8e:8a:9b:a3:ed:0c:0f:ec:95:bc:29:4c:8d:be:ac:27:a0:
bc:fb:7b:f1:1f:bf:d6:f1:87:95:84:cd:02:18:c0:eb:2c:cd:
9f:df:1a:97:f0:f7:20:25:79:c3:2b:69:d8:55:f2:c2:6f:c6:
84:b6:e6:09:6b:38:85:6b:ca:37:09:f2:77:f2:00:41:af:81:
67:58:14:b3:dc:2b:a0:f2:8d:10:e6:05:c9:83:a8:53:c1:61:
3f:e3:84:6e:9a:d9:78:c5:fc:f7:9e:51:10:fd:2c:d7:01:e4:
c7:c3:95:61:22:bf:7e:17:22:c8:15:d2:ee:2e:e1:d3:8e:e0:
a2:8d:8a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:04 2025 by rpki-client