Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/CvcLy-kMftRDnhFJ0e4Z3sTEHyY.roa
File: CvcLy-kMftRDnhFJ0e4Z3sTEHyY.roa (raw, json)
Hash identifier: Yet3DpNMZITYAum6tV6MuDT9XZJrmFWunKZqpCSSvYY=
Subject key identifier: 0A:F7:0B:CB:E9:0C:7E:D4:43:9E:11:49:D1:EE:19:DE:C4:C4:1F:26
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 01941FFA787ADE7CB4EBB1D74325D3ECDDF9
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/CvcLy-kMftRDnhFJ0e4Z3sTEHyY.roa
Signing time: Wed 01 Jan 2025 03:48:15 +0000
ROA not before: Wed 01 Jan 2025 03:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201122
IP address blocks: 88.199.172.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:78:7a:de:7c:b4:eb:b1:d7:43:25:d3:ec:dd:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 03:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0af70bcbe90c7ed4439e1149d1ee19dec4c41f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:90:e3:c4:83:d0:75:9b:09:ae:78:c8:4a:59:
50:63:42:2a:08:51:f3:c1:e2:67:07:08:fa:d4:c5:
d3:60:12:93:47:a8:af:4d:d5:fa:33:cd:82:27:b3:
09:44:cf:25:f7:76:b9:26:93:63:3c:05:30:cb:54:
a4:fa:c0:05:1d:d0:43:73:02:1b:4e:bb:54:aa:26:
52:90:36:7a:a2:e7:ee:3e:92:ee:95:51:2e:f2:cd:
0c:22:f2:53:ba:e9:b0:42:2f:72:10:64:35:41:82:
79:fe:5b:5f:5d:a6:9b:0b:d2:05:50:66:da:03:ea:
24:b6:72:5e:84:e9:48:61:d1:a8:ee:98:46:d3:dc:
c6:04:cc:3c:1f:11:cd:27:a1:cb:5a:7c:ff:9b:5e:
04:37:de:66:72:59:89:13:36:91:c6:0a:da:e8:33:
34:32:8d:0a:83:f4:44:b6:ce:95:fa:2f:cb:da:79:
89:9d:2f:57:50:35:00:09:c6:4e:dd:95:de:43:e7:
59:e8:8c:e0:77:22:80:a7:bb:dc:8d:5d:63:cf:1c:
5c:88:c8:41:9e:3d:51:a3:a3:63:a8:41:73:67:05:
14:63:9d:37:0c:00:42:12:dd:80:42:29:cb:89:76:
c7:b0:e8:97:4f:9b:2a:95:e5:0a:60:f4:48:64:43:
ad:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F7:0B:CB:E9:0C:7E:D4:43:9E:11:49:D1:EE:19:DE:C4:C4:1F:26
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/CvcLy-kMftRDnhFJ0e4Z3sTEHyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.199.172.0/23
Signature Algorithm: sha256WithRSAEncryption
67:be:b2:e6:f5:b5:b9:73:b9:50:a7:24:e1:44:6b:f5:73:80:
03:f8:b9:92:11:5a:1a:94:81:f5:27:e4:60:6f:62:d1:19:c9:
5a:32:35:1e:50:7a:c0:48:94:cd:90:2b:f1:68:6e:59:13:12:
c6:1c:be:e9:3c:a5:91:ab:ed:d0:6f:e5:d7:97:01:c8:37:60:
ed:10:3b:33:7c:c0:23:48:77:55:da:b2:e0:a2:c5:8b:08:a0:
17:73:8e:e1:8e:09:8c:dc:3d:d1:36:58:a7:9b:b0:10:73:d7:
6f:47:bd:51:8d:62:06:8c:e3:a0:d3:b8:d9:e0:a8:6d:d1:dc:
a9:34:8e:d7:33:ac:2d:2a:e3:80:a1:83:dd:fb:4a:7f:36:40:
b7:de:d0:84:82:dc:d5:4b:28:49:f6:3c:aa:89:23:88:b6:f7:
e3:fd:40:27:99:55:ec:db:4a:a7:15:74:62:45:60:8c:8a:17:
12:49:4d:af:49:2a:57:6d:0e:95:58:a6:0e:55:24:17:b4:31:
ae:96:28:03:0b:49:3e:1e:fa:8d:a2:f0:51:35:89:c5:af:f0:
22:ad:c1:21:8b:30:8b:93:ce:5b:eb:ed:f2:70:f5:68:94:d3:
f8:f3:58:f7:57:60:7b:0c:df:46:68:ff:34:55:ad:a8:e3:db:
d7:37:f5:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net