Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Ew2_CMWrLvNwXlqPdNMMv7rl888.roa
File: Ew2_CMWrLvNwXlqPdNMMv7rl888.roa (raw, json)
Hash identifier: DWt/ZdjT6iSVeA6AJsZppWvO4lrS+RmO+Xtn3YbKJJo=
Subject key identifier: 13:0D:BF:08:C5:AB:2E:F3:70:5E:5A:8F:74:D3:0C:BF:BA:E5:F3:CF
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0187A43FDDA7D67CA0559EE75BDB5B9319D0
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Ew2_CMWrLvNwXlqPdNMMv7rl888.roa
Signing time: Fri 21 Apr 2023 14:37:41 +0000
ROA not before: Fri 21 Apr 2023 14:37:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 88.151.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a4:3f:dd:a7:d6:7c:a0:55:9e:e7:5b:db:5b:93:19:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 21 14:37:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=130dbf08c5ab2ef3705e5a8f74d30cbfbae5f3cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7c:44:42:6e:9a:c4:5b:a2:81:c4:a8:ab:d8:
af:6d:b7:49:d4:d0:29:ca:d6:ef:1e:84:50:af:ae:
48:29:5f:2e:0c:2f:07:8c:1c:b6:5c:e3:ea:2b:c0:
60:f3:04:79:88:7a:a4:1c:44:55:ec:66:4d:c4:de:
f7:0b:fd:86:97:37:de:aa:db:20:ad:c4:53:0b:74:
90:7b:57:63:6f:79:f0:8d:ad:f7:a9:92:2d:85:ea:
1b:0c:b2:2e:c2:b7:ee:d7:61:6e:48:15:e6:ca:f6:
34:bf:26:c2:bd:64:4d:11:96:f0:3d:ea:d4:54:3e:
5f:bc:0e:fc:ee:a3:6d:8a:44:32:de:cf:dc:a1:2a:
88:8f:2e:84:e7:f8:20:cb:44:5c:7e:15:fb:ee:50:
f2:e7:e3:97:b2:bf:37:9c:3e:f7:3f:c5:85:80:6f:
da:f0:df:ce:1d:bb:db:21:3d:0d:0f:63:c7:89:86:
56:25:87:36:85:37:2b:5b:f1:27:3b:ac:6a:ce:bf:
8c:98:03:41:0b:02:4a:9a:97:b5:ae:17:8a:19:fc:
b8:03:cd:bc:59:53:d7:83:2d:99:1d:21:fc:14:d5:
12:3d:3a:48:6f:02:8d:1b:27:f1:d3:68:63:e9:8c:
ec:9d:d3:9a:39:55:2a:9a:05:d9:de:fd:9a:30:be:
dc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:0D:BF:08:C5:AB:2E:F3:70:5E:5A:8F:74:D3:0C:BF:BA:E5:F3:CF
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Ew2_CMWrLvNwXlqPdNMMv7rl888.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.194.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:61:67:33:88:53:be:ab:ed:ef:69:3b:b8:09:f7:2a:cf:ec:
56:09:4e:b8:41:33:f6:6c:1b:07:3a:e4:b2:2c:56:db:b9:c8:
06:5c:db:7c:9d:76:b3:10:8e:89:53:da:54:63:b0:dd:84:5f:
65:6e:58:9b:cb:26:ff:8f:9a:2e:76:13:fc:91:21:49:76:ec:
26:f0:ae:79:57:0c:1d:d3:0c:83:1e:58:18:85:da:4a:02:07:
6b:a4:20:de:13:d0:9f:1c:5d:e0:f6:c1:fa:bf:0d:f6:8d:bc:
f0:d5:08:ef:0b:4f:8e:ab:32:54:e9:3b:1d:51:e9:c0:64:ca:
54:53:fa:56:91:d3:64:f4:71:a4:cd:8c:38:46:7a:55:f5:be:
96:2a:1e:dd:cc:3d:47:9e:42:8d:82:12:5f:da:63:d5:bd:bc:
cc:7e:e2:15:69:fb:ff:ea:7f:22:c9:7d:ec:c8:ed:02:21:59:
cc:51:89:ec:7c:03:a4:20:2b:9d:f6:d3:b7:30:99:bf:fa:11:
9a:10:5d:6b:c2:cc:ee:79:cd:32:a4:fd:7d:fb:52:75:a3:8c:
ed:78:f2:56:50:f8:19:8d:15:fe:dd:27:2d:65:5a:f9:09:c1:
c9:ef:bb:7d:0f:ca:40:74:80:31:d0:41:26:fc:45:1f:6a:cf:
f2:73:21:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:03 2025 by rpki-client