Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/WpoA3G8yIF3wcQ33Jai94DLyCBU.roa
File: WpoA3G8yIF3wcQ33Jai94DLyCBU.roa (raw, json)
Hash identifier: vskrcT48nU/PRVkzbQuNyWrJBWEtehRyO1Zh4/qrl80=
Subject key identifier: 5A:9A:00:DC:6F:32:20:5D:F0:71:0D:F7:25:A8:BD:E0:32:F2:08:15
Certificate issuer: /CN=542f633f76e8d8aaeaa32b5ace16a3db3943d80c
Certificate serial: 0194266A565007F39D6AE0A81943130CF328
Authority key identifier: 54:2F:63:3F:76:E8:D8:AA:EA:A3:2B:5A:CE:16:A3:DB:39:43:D8:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VC9jP3bo2Krqoytazhaj2zlD2Aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/WpoA3G8yIF3wcQ33Jai94DLyCBU.roa
Signing time: Thu 02 Jan 2025 09:48:10 +0000
ROA not before: Thu 02 Jan 2025 09:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200091
IP address blocks: 188.125.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:56:50:07:f3:9d:6a:e0:a8:19:43:13:0c:f3:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=542f633f76e8d8aaeaa32b5ace16a3db3943d80c
Validity
Not Before: Jan 2 09:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a9a00dc6f32205df0710df725a8bde032f20815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2f:c0:c2:5a:1c:f6:37:4b:84:bd:18:c6:ea:
71:f5:32:a1:70:cc:77:80:56:95:71:88:f2:e7:f4:
e8:5e:db:3a:a2:3b:f4:58:5f:1d:e0:91:38:ed:d3:
b4:62:af:5a:fd:cd:4b:14:3a:82:ce:af:48:a9:13:
d4:a3:ef:61:08:d9:2a:6d:43:10:0c:a5:55:8d:eb:
b2:7d:73:33:65:49:fb:37:c6:ee:28:09:e8:c2:b8:
87:76:01:af:1f:d1:fc:30:48:31:59:3d:bc:81:fa:
a0:c6:55:fa:98:08:80:e5:38:11:e5:2a:4c:13:6b:
f0:70:0c:65:92:73:10:ff:2a:a7:7a:d0:a3:65:a7:
75:f8:e1:79:f0:33:83:9a:be:67:6a:59:ce:6c:59:
8c:39:b3:60:ce:f7:b3:b1:37:98:77:7a:3c:c1:6a:
b1:e3:17:6c:bb:20:84:57:d6:97:06:d7:69:b9:dd:
71:06:cd:48:92:ec:d9:64:68:40:6c:60:72:8e:1b:
0d:39:1e:56:38:c8:35:8c:1f:80:91:31:54:2e:01:
a0:07:0c:e4:ce:5b:df:de:24:53:7a:be:98:ac:1d:
59:67:53:d0:aa:1f:e6:7c:14:e9:4c:b2:1f:51:41:
a9:5d:0f:31:2f:23:fc:1c:03:6e:17:93:44:1f:c0:
2e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:9A:00:DC:6F:32:20:5D:F0:71:0D:F7:25:A8:BD:E0:32:F2:08:15
X509v3 Authority Key Identifier:
keyid:54:2F:63:3F:76:E8:D8:AA:EA:A3:2B:5A:CE:16:A3:DB:39:43:D8:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VC9jP3bo2Krqoytazhaj2zlD2Aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/WpoA3G8yIF3wcQ33Jai94DLyCBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/VC9jP3bo2Krqoytazhaj2zlD2Aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.125.165.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:cf:7d:85:d0:3c:63:ff:0d:c2:13:88:32:c6:10:d9:06:30:
79:17:25:99:98:1f:8d:47:97:3b:44:78:f2:6f:5c:b5:66:dc:
4f:f1:21:04:5f:1e:8d:e2:04:0f:96:f2:ed:05:df:16:0f:c0:
0f:31:54:99:55:6e:b9:e6:66:9a:28:6c:d9:6a:d3:28:9a:bf:
ea:17:ac:3e:9e:b0:9d:b6:02:8a:42:c8:0d:26:57:5f:74:92:
b3:50:d7:bf:ae:ec:bc:eb:7d:34:c5:5d:f3:53:19:4a:2c:72:
cd:67:c5:6a:9a:3f:71:79:d1:41:f9:47:c9:f7:f8:3c:2f:c1:
ab:58:2c:9f:dc:56:f1:f7:4f:1b:70:7f:76:f4:5c:7b:30:24:
cb:fc:95:b3:ec:85:bd:83:4c:6e:8a:d9:20:89:e8:fb:a7:7c:
83:30:eb:1b:4b:70:21:94:7d:86:bc:71:d6:ec:64:72:b5:1c:
b1:5d:19:d1:f2:3c:ca:57:0e:b3:fb:1e:56:cb:29:2c:9f:f5:
67:be:60:58:0c:05:16:a2:0f:91:a2:9e:9c:55:b8:e7:7f:5d:
d5:65:fb:92:20:2b:28:60:d5:e8:17:ea:e3:06:6a:ab:34:76:
e7:52:28:04:44:38:dd:1b:b1:97:46:c0:9c:fb:87:07:b9:8c:
cf:38:3f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:07 2025 by rpki-client on console.sobornost.net