Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/phdVSjC8d7P_IPR9pfuqF3ibJeQ.roa
File: phdVSjC8d7P_IPR9pfuqF3ibJeQ.roa (raw, json)
Hash identifier: LdfALFSTfppofahy/V7vrDSqtAjnA1jl4Wz8tBm0yaQ=
Subject key identifier: A6:17:55:4A:30:BC:77:B3:FF:20:F4:7D:A5:FB:AA:17:78:9B:25:E4
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 019420D5E16530F3E5B12956FE04CB2044F1
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/phdVSjC8d7P_IPR9pfuqF3ibJeQ.roa
Signing time: Wed 01 Jan 2025 07:47:55 +0000
ROA not before: Wed 01 Jan 2025 07:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208226
IP address blocks: 88.151.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:e1:65:30:f3:e5:b1:29:56:fe:04:cb:20:44:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 07:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a617554a30bc77b3ff20f47da5fbaa17789b25e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ff:33:95:42:42:6e:4e:cd:2f:0a:3b:d3:94:
2c:ae:c5:55:e7:9c:64:93:39:b4:90:ee:aa:d4:3b:
a4:12:28:30:0a:49:35:62:fe:a5:33:41:c3:78:a9:
fe:16:ff:91:ac:a9:77:01:f9:26:de:7a:85:f4:6d:
f8:2d:97:80:17:db:8e:67:e2:f4:31:f0:f9:b2:0d:
49:c8:45:90:a0:d9:e5:9e:0b:3b:40:2e:e2:7d:73:
98:82:76:05:4b:2a:9c:38:79:b1:0c:86:09:5d:b9:
7c:1d:ac:ab:25:26:31:f0:8f:c3:78:04:1a:f5:85:
68:28:90:ae:ba:86:25:fe:7f:5d:6e:3a:ba:ab:de:
68:a2:bf:80:a1:d4:f5:24:ad:e7:40:7e:aa:80:38:
1d:4a:48:67:ca:9d:49:d6:ee:31:28:7f:5b:17:24:
f3:08:a6:cb:0a:c0:17:14:91:0a:7d:64:46:99:ac:
14:5e:22:77:a5:1a:bb:98:ef:d5:fb:80:e2:24:8f:
37:dd:8e:67:e3:00:93:12:30:cc:46:5c:fb:e9:9f:
d4:a0:83:03:3e:c3:c1:24:5f:bc:63:7c:1e:d0:aa:
7f:e1:f5:dd:29:37:02:47:a9:59:5e:43:69:0e:9a:
1e:97:1a:c6:6a:a3:11:16:a6:1b:a0:ff:da:d3:d5:
98:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:17:55:4A:30:BC:77:B3:FF:20:F4:7D:A5:FB:AA:17:78:9B:25:E4
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/phdVSjC8d7P_IPR9pfuqF3ibJeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.197.0/24
Signature Algorithm: sha256WithRSAEncryption
23:49:02:eb:1a:34:b8:1c:10:d4:4d:e3:bc:78:f2:67:d7:ba:
31:25:8d:5e:e0:e2:ff:55:a8:ba:e4:2b:11:8f:67:5a:39:68:
7f:41:3d:2a:54:18:25:5e:00:48:49:91:0e:27:93:5c:13:3a:
10:df:65:b6:15:4d:14:e1:cd:91:f5:8b:fe:9c:8a:16:a1:06:
b3:a7:fd:71:71:42:84:fe:cf:10:6a:1a:9e:9d:2c:2b:61:45:
5a:c7:b3:d7:7c:84:0f:b7:01:98:55:ca:34:8a:bf:f6:eb:15:
6a:9c:c7:ea:77:ac:aa:ba:aa:f1:28:1a:35:2e:79:ab:31:9a:
47:4e:e1:62:4a:b4:cd:42:51:d1:8c:c6:cf:82:7a:ab:8e:13:
d0:13:0c:66:10:0e:55:89:5b:6c:3c:65:92:69:f0:f4:f1:eb:
bc:e5:0e:cc:09:91:51:a5:6b:e7:e7:5e:59:4f:0b:2c:d6:8d:
10:e2:8f:a6:3b:37:7c:17:ae:20:33:8b:74:91:20:de:2f:20:
e1:93:d0:af:7c:19:d0:5f:46:22:3a:a7:24:0d:52:2f:01:1d:
02:ac:81:25:6c:b6:f5:5f:66:c9:f2:ab:7a:5e:74:6a:da:e7:
f9:bb:97:2f:25:e0:12:b8:29:18:4e:7f:42:37:65:45:39:47:
4d:f8:e3:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1eFlMPPlsSlW/gTLIETxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjUwMTAxMDc0NzU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjE3NTU0YTMwYmM3N2IzZmYyMGY0N2RhNWZiYWExNzc4OWIyNWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuv8zlUJCbk7NLwo705QsrsVV55xk
kzm0kO6q1DukEigwCkk1Yv6lM0HDeKn+Fv+RrKl3Afkm3nqF9G34LZeAF9uOZ+L0
MfD5sg1JyEWQoNnlngs7QC7ifXOYgnYFSyqcOHmxDIYJXbl8HayrJSYx8I/DeAQa
9YVoKJCuuoYl/n9dbjq6q95oor+AodT1JK3nQH6qgDgdSkhnyp1J1u4xKH9bFyTz
CKbLCsAXFJEKfWRGmawUXiJ3pRq7mO/V+4DiJI833Y5n4wCTEjDMRlz76Z/UoIMD
PsPBJF+8Y3we0Kp/4fXdKTcCR6lZXkNpDpoelxrGaqMRFqYboP/a09WY7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKYXVUowvHez/yD0faX7qhd4myXkMB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvcGhkVlNqQzhkN1BfSVBSOXBmdXFGM2liSmVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWJfFMA0G
CSqGSIb3DQEBCwUAA4IBAQAjSQLrGjS4HBDUTeO8ePJn17oxJY1e4OL/Vai65CsR
j2daOWh/QT0qVBglXgBISZEOJ5NcEzoQ32W2FU0U4c2R9Yv+nIoWoQazp/1xcUKE
/s8QahqenSwrYUVax7PXfIQPtwGYVco0ir/26xVqnMfqd6yquqrxKBo1LnmrMZpH
TuFiSrTNQlHRjMbPgnqrjhPQEwxmEA5ViVtsPGWSafD08eu85Q7MCZFRpWvn515Z
Twss1o0Q4o+mOzd8F64gM4t0kSDeLyDhk9CvfBnQX0YiOqckDVIvAR0CrIElbLb1
X2bJ8qt6XnRq2uf5u5cvJeASuCkYTn9CN2VFOUdN+OOO
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:17 2025 by rpki-client