Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/q-KsgHc87yurkiTPrGB6_ENn-Sg.roa
File: q-KsgHc87yurkiTPrGB6_ENn-Sg.roa (raw, json)
Hash identifier: cFavBWqarVDA4XfAipmh7/d8krk6AEiGb/atvWyd1pQ=
Subject key identifier: AB:E2:AC:80:77:3C:EF:2B:AB:92:24:CF:AC:60:7A:FC:43:67:F9:28
Certificate issuer: /CN=1d157824c638c718a07b535e0d824cb24afc070c
Certificate serial: 019427480B026480600CD6090B4FD902F6FF
Authority key identifier: 1D:15:78:24:C6:38:C7:18:A0:7B:53:5E:0D:82:4C:B2:4A:FC:07:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRV4JMY4xxige1NeDYJMskr8Bww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/q-KsgHc87yurkiTPrGB6_ENn-Sg.roa
Signing time: Thu 02 Jan 2025 13:50:20 +0000
ROA not before: Thu 02 Jan 2025 13:50:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211802
IP address blocks: 88.218.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:0b:02:64:80:60:0c:d6:09:0b:4f:d9:02:f6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d157824c638c718a07b535e0d824cb24afc070c
Validity
Not Before: Jan 2 13:50:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=abe2ac80773cef2bab9224cfac607afc4367f928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7a:59:c9:77:b1:a6:19:f5:97:ff:72:e2:b5:
ef:b6:95:85:35:35:5d:c8:4a:f1:11:88:4f:02:16:
e9:01:fb:8d:fe:bd:c6:8e:51:92:cf:3d:45:a4:fe:
c1:b9:1a:87:4c:59:b5:76:71:67:9e:0d:cc:3a:52:
49:28:eb:fb:bc:b1:b4:3f:e5:64:98:5f:3f:fa:81:
c0:ca:22:aa:27:b3:5e:55:df:77:53:79:b2:41:a8:
56:06:b6:79:9a:47:05:10:c1:57:d3:0d:ee:a9:55:
a8:48:72:45:37:05:2a:fd:de:1a:ee:6d:65:4a:8d:
ce:df:e9:bf:ad:27:69:79:fc:9a:ab:bb:47:a4:2a:
a4:47:59:57:37:cd:dc:94:47:3b:2f:77:1f:cc:84:
32:38:b2:21:62:ad:7d:de:30:02:08:c1:c4:4d:d0:
ce:e3:5b:7b:ec:36:f2:fe:50:9a:01:a3:21:27:9f:
fb:ab:da:86:77:64:d1:18:18:41:c8:8b:61:a3:5c:
be:90:22:24:94:5b:b3:17:66:4c:21:f1:77:a1:28:
99:11:15:fe:3e:9b:5a:32:63:82:f1:d0:b9:07:d3:
7d:fc:e3:2d:ce:7b:40:6a:fd:44:97:55:ed:8a:85:
cc:2d:bc:cd:24:9e:2d:94:1c:80:75:e3:c1:b6:05:
3c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E2:AC:80:77:3C:EF:2B:AB:92:24:CF:AC:60:7A:FC:43:67:F9:28
X509v3 Authority Key Identifier:
keyid:1D:15:78:24:C6:38:C7:18:A0:7B:53:5E:0D:82:4C:B2:4A:FC:07:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRV4JMY4xxige1NeDYJMskr8Bww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/q-KsgHc87yurkiTPrGB6_ENn-Sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/HRV4JMY4xxige1NeDYJMskr8Bww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.222.0/24
Signature Algorithm: sha256WithRSAEncryption
84:b5:d0:d4:6a:b4:c1:d2:9c:e0:fd:36:99:eb:b2:96:57:c8:
5a:68:9e:f1:7d:21:2a:68:12:13:c2:b6:35:1a:9f:8e:da:6e:
45:4b:4b:84:a6:a5:d5:fc:9b:56:57:d3:b3:54:cd:37:74:7d:
2f:6e:d0:49:84:6a:1a:20:7b:1a:fc:6a:26:7e:03:1c:bd:03:
c0:9e:c1:c9:b7:12:9b:82:cb:dc:ee:44:15:5e:1f:95:ec:9f:
cc:68:1b:59:f3:47:d9:71:f0:54:0e:a1:1d:e8:c7:92:e4:cc:
0a:c1:eb:19:2a:b2:0d:a2:d0:1e:8e:a9:4f:81:69:f1:e6:0c:
a2:72:dc:3f:22:12:5d:e4:04:5e:6a:25:cd:ce:05:9b:a0:af:
5e:aa:83:24:e9:e7:8e:7f:15:93:64:f6:28:60:23:13:00:ae:
7a:38:a8:67:0e:3a:a5:88:23:c0:54:e0:ee:10:00:23:cf:30:
72:ca:01:5e:eb:d2:75:82:e7:4d:c0:7d:56:3c:29:4e:ce:4b:
4f:bb:38:0e:7e:dd:13:43:23:26:a6:71:0b:e0:3c:34:b3:97:
01:d8:ad:ee:5a:c3:bc:54:ad:b5:60:05:fa:78:2b:80:f9:8b:
14:6d:d3:ab:2b:15:5b:4f:e3:21:a1:05:7d:4b:d1:b3:bb:3f:
7a:ef:93:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:52 2025 by rpki-client on console.sobornost.net