Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/9IZmoVaiXdG3q97ZLcN41pqrMyg.roa
File: 9IZmoVaiXdG3q97ZLcN41pqrMyg.roa (raw, json)
Hash identifier: 4Dq1t+wv/iPd3vfgNTZtR4FLOuqHnpGw55b/IlXlXfo=
Subject key identifier: F4:86:66:A1:56:A2:5D:D1:B7:AB:DE:D9:2D:C3:78:D6:9A:AB:33:28
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 019423698AC8B7ADB5434504D0D0B968C037
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/9IZmoVaiXdG3q97ZLcN41pqrMyg.roa
Signing time: Wed 01 Jan 2025 19:48:26 +0000
ROA not before: Wed 01 Jan 2025 19:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34353
IP address blocks: 188.210.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:8a:c8:b7:ad:b5:43:45:04:d0:d0:b9:68:c0:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 19:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f48666a156a25dd1b7abded92dc378d69aab3328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:49:4b:28:72:ac:47:68:77:88:1e:69:ac:de:
6d:28:a2:f4:9b:fe:ab:81:66:6c:29:f2:28:b0:37:
d9:b5:d6:cf:ab:72:d4:bb:f8:ba:e9:a1:52:ec:a8:
15:cc:d9:3c:37:ee:37:c2:6e:d0:da:52:4f:ca:d0:
7c:5e:82:ca:1f:49:8a:11:3b:5c:13:86:76:49:54:
2f:47:1f:a1:6b:79:8e:c9:8d:25:93:bc:93:c1:84:
3a:c6:f5:bd:ae:6f:81:b5:74:cb:b9:c3:25:55:4b:
44:a3:86:31:86:c0:37:9a:a5:42:13:0a:7a:e4:d9:
c4:7f:f8:43:57:ff:fe:0d:b1:d9:2b:29:51:be:c5:
26:9b:b1:f0:71:18:65:6d:2e:76:53:af:b1:e2:e0:
6c:98:0c:48:25:3f:df:94:fa:bf:0d:50:73:cd:25:
82:9b:78:4e:26:eb:88:e1:0e:0c:9b:44:45:d4:9a:
84:b1:b0:f3:91:63:b9:13:95:0f:08:50:a1:de:3f:
b3:8e:4c:6a:58:18:e2:e3:13:f4:44:13:d0:9b:4c:
03:24:81:f1:73:6e:44:d7:e9:50:6d:04:46:11:cb:
76:c8:2d:5a:2d:eb:0f:fa:68:a6:d7:55:8f:6d:0e:
2b:b0:9f:06:e8:8a:f2:02:b4:37:41:7c:0c:a9:52:
55:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:86:66:A1:56:A2:5D:D1:B7:AB:DE:D9:2D:C3:78:D6:9A:AB:33:28
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/9IZmoVaiXdG3q97ZLcN41pqrMyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.210.237.0/24
Signature Algorithm: sha256WithRSAEncryption
00:17:b9:40:56:53:c5:45:9f:bf:fa:27:e7:8f:a8:ee:4b:3b:
44:c5:06:57:66:86:97:fd:dd:86:ca:25:58:25:f5:7b:38:2b:
0a:f6:e7:b2:27:12:e7:b9:b7:33:3e:86:d6:ca:ab:c8:b7:04:
20:ea:05:a3:c7:cd:0d:80:8e:2f:75:0a:1b:d5:87:56:77:a4:
d9:80:2d:63:46:aa:3d:ce:6d:9b:b8:fd:e6:cc:4b:7d:05:f3:
5e:24:34:4b:56:ef:85:43:d2:7c:35:d0:da:3b:d8:11:8f:4e:
34:e0:82:45:9f:57:e8:e0:22:7e:85:29:14:c4:8e:a4:db:ac:
f8:8a:49:a0:53:10:37:54:1f:66:57:f1:84:26:c3:c2:1f:4d:
14:10:ef:67:11:59:d8:c8:7d:69:d3:bf:d3:6b:56:24:39:60:
ef:ad:42:dd:7f:09:8e:c3:46:63:61:3c:cb:53:fa:e6:bc:4e:
20:72:e3:a8:c1:02:5e:f2:7f:26:4b:5d:f8:86:04:c3:0f:03:
51:38:c0:3a:59:82:34:02:f6:57:29:50:96:c3:65:47:d0:bd:
47:3d:e5:52:03:1a:7a:a4:ef:b6:56:b6:76:01:da:18:c5:c3:
f1:b7:53:ce:7e:60:c9:96:7d:69:2a:42:dc:37:66:1f:05:ff:
83:c4:ae:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 18:15:29 2025 by rpki-client