Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/iXJOEjsOn5QC56oWOinXWEqS8Pw.roa
File: iXJOEjsOn5QC56oWOinXWEqS8Pw.roa (raw, json)
Hash identifier: jHJ0wtuFjDDxH8Gh1uDFMh4KEFYRZhcEVsJ0/xmH1ig=
Subject key identifier: 89:72:4E:12:3B:0E:9F:94:02:E7:AA:16:3A:29:D7:58:4A:92:F0:FC
Certificate issuer: /CN=63b82772af3d611b99b1ba6e3eb6cbfd16965363
Certificate serial: 01941F8C6F7BBED9E6E6DFE8D13D5168AAFE
Authority key identifier: 63:B8:27:72:AF:3D:61:1B:99:B1:BA:6E:3E:B6:CB:FD:16:96:53:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y7gncq89YRuZsbpuPrbL_RaWU2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/iXJOEjsOn5QC56oWOinXWEqS8Pw.roa
Signing time: Wed 01 Jan 2025 01:48:04 +0000
ROA not before: Wed 01 Jan 2025 01:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209716
IP address blocks: 88.218.235.0/25 maxlen: 25
2a0c:ad80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:6f:7b:be:d9:e6:e6:df:e8:d1:3d:51:68:aa:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63b82772af3d611b99b1ba6e3eb6cbfd16965363
Validity
Not Before: Jan 1 01:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89724e123b0e9f9402e7aa163a29d7584a92f0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fc:80:00:34:c6:9f:9f:40:55:65:cc:21:58:
2f:be:6e:5d:e7:41:83:80:5f:80:17:7c:ca:00:51:
03:09:92:a7:03:ca:5b:c0:e5:89:18:f5:79:e7:75:
f2:99:e4:17:ba:d4:31:af:d8:9b:8f:c2:9b:cd:20:
1d:04:1f:70:7c:46:b7:cc:9e:38:08:ba:4a:9e:bf:
de:2c:5c:6f:9a:23:0e:d3:86:bf:33:84:07:cc:b2:
53:42:75:7c:47:c9:01:12:a0:f8:9d:74:e0:17:9e:
1e:ae:ce:df:8a:7e:17:71:a1:ec:23:01:87:a4:8c:
af:4c:8d:b4:fa:cc:20:63:d6:29:fa:1f:2d:13:e8:
86:be:b3:e0:15:8d:fe:28:38:6e:12:4f:15:84:ea:
44:0a:e6:aa:5b:38:68:27:90:55:fb:e9:11:7f:ce:
f7:be:e6:9d:2f:6e:ba:45:4e:4a:b0:2c:7b:7c:7a:
1d:1e:f7:86:f6:6e:57:7b:0b:ce:4d:10:1b:b2:4d:
76:df:75:4a:6c:02:d6:27:6e:8a:d5:c7:4d:50:c8:
f0:ce:37:1d:4b:3b:cc:36:0c:41:59:0b:d3:ea:0a:
81:24:66:1a:ac:c3:8b:52:ae:eb:6c:22:3b:ae:d9:
b3:76:ed:06:8d:0a:11:29:bd:c5:7a:d8:6b:bf:ec:
81:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:72:4E:12:3B:0E:9F:94:02:E7:AA:16:3A:29:D7:58:4A:92:F0:FC
X509v3 Authority Key Identifier:
keyid:63:B8:27:72:AF:3D:61:1B:99:B1:BA:6E:3E:B6:CB:FD:16:96:53:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y7gncq89YRuZsbpuPrbL_RaWU2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/iXJOEjsOn5QC56oWOinXWEqS8Pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/Y7gncq89YRuZsbpuPrbL_RaWU2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.235.0/25
IPv6:
2a0c:ad80::/29
Signature Algorithm: sha256WithRSAEncryption
7b:66:ed:df:81:3b:aa:52:66:04:1d:b5:5d:96:db:ad:3b:46:
8c:ed:36:0d:2d:ad:97:5b:de:33:56:d0:3a:5f:57:89:7e:69:
b8:5d:86:1a:b6:92:92:46:68:9a:3c:1c:e8:fe:00:f5:47:02:
54:52:17:bd:52:fe:01:ee:91:db:ee:33:25:e1:d0:19:00:68:
a8:f2:7e:3f:82:3a:42:a0:2d:a8:03:e7:55:c6:57:14:e3:e3:
d6:d1:e9:8a:9d:8e:11:6b:51:65:4c:90:c0:b3:a1:fd:96:2b:
b1:b4:50:1b:04:79:65:84:7f:f5:f3:81:b8:69:52:49:26:83:
fd:17:e4:7d:79:bc:7e:e6:e4:8b:3c:5d:5b:c5:b4:6c:3d:0d:
ed:0e:f7:77:dd:c4:77:38:48:43:37:a9:8d:65:ed:39:d6:db:
54:43:4a:8b:72:ca:0c:66:7a:24:0b:08:71:b2:94:0d:e7:7b:
3e:78:79:eb:ab:55:06:c0:15:30:45:52:16:3a:81:0d:16:73:
0b:db:fa:e0:56:fc:12:d5:d8:c7:97:df:bc:34:db:c5:ce:18:
59:a3:30:83:5c:b9:84:63:bf:09:16:61:2a:2e:07:f4:c6:d6:
19:e4:9f:83:59:ba:2c:fc:bf:b7:a3:3c:bc:88:e5:e3:5f:77:
06:97:9d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:57 2025 by rpki-client on console.sobornost.net