Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/352d11-d0e3-453f-80fc-69c93d31db64/1/IaKhoFTC0ilECfNvZalwMCLoJaE.roa
File: IaKhoFTC0ilECfNvZalwMCLoJaE.roa (raw, json)
Hash identifier: PHJz2qlUYd7YCcFugvBnDYag0aeEWVGE91IBVZUZOx8=
Subject key identifier: 21:A2:A1:A0:54:C2:D2:29:44:09:F3:6F:65:A9:70:30:22:E8:25:A1
Certificate issuer: /CN=16de8a33a02cfe8fff75d0980f559771c93febd4
Certificate serial: 018AC6814CF7AB17772FF59652E742064A5A
Authority key identifier: 16:DE:8A:33:A0:2C:FE:8F:FF:75:D0:98:0F:55:97:71:C9:3F:EB:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ft6KM6As_o__ddCYD1WXcck_69Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/352d11-d0e3-453f-80fc-69c93d31db64/1/IaKhoFTC0ilECfNvZalwMCLoJaE.roa
Signing time: Sun 24 Sep 2023 09:24:37 +0000
ROA not before: Sun 24 Sep 2023 09:24:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209279
IP address blocks: 185.188.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c6:81:4c:f7:ab:17:77:2f:f5:96:52:e7:42:06:4a:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16de8a33a02cfe8fff75d0980f559771c93febd4
Validity
Not Before: Sep 24 09:24:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21a2a1a054c2d2294409f36f65a9703022e825a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:7b:5b:83:5f:0a:da:d0:73:cd:17:df:14:30:
c5:37:d6:4c:bf:85:69:71:e3:19:fc:64:ce:64:60:
fb:5e:3f:43:6a:14:3d:f2:f1:6a:19:42:a1:72:19:
03:3a:9b:52:d0:97:3d:9b:7b:d3:6f:52:2f:de:34:
9e:e1:53:08:84:23:e1:d7:e4:d8:26:e9:5e:51:33:
10:5d:27:f3:ea:01:ed:29:9a:de:2b:3d:94:d2:81:
61:af:2a:ee:c2:8f:e6:b7:ec:2e:f0:94:96:72:38:
15:3b:dd:a4:05:07:55:6e:80:19:63:24:47:1f:e1:
7c:c9:07:e9:b6:6d:30:2a:ae:38:16:21:d6:f2:28:
da:55:f6:e8:91:35:83:d1:44:04:81:c8:43:e4:1c:
11:eb:26:e8:7e:82:35:94:af:49:1a:99:c3:7a:4b:
ff:97:3f:b9:c7:b9:29:0d:fa:3b:b8:2e:fc:5b:86:
c7:20:8b:37:6d:c4:55:b5:d8:9d:66:f3:f1:2e:f7:
9c:5b:14:fa:2a:e7:78:47:9f:17:bb:7f:6a:6d:2d:
ca:7d:e0:3b:59:9b:9e:03:b7:f0:d2:25:63:ef:76:
bd:9b:ac:4e:5d:b3:ee:db:2d:ed:41:87:35:df:71:
59:21:f1:e1:ee:aa:1e:82:37:3d:81:05:56:80:ce:
0d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A2:A1:A0:54:C2:D2:29:44:09:F3:6F:65:A9:70:30:22:E8:25:A1
X509v3 Authority Key Identifier:
keyid:16:DE:8A:33:A0:2C:FE:8F:FF:75:D0:98:0F:55:97:71:C9:3F:EB:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ft6KM6As_o__ddCYD1WXcck_69Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/352d11-d0e3-453f-80fc-69c93d31db64/1/IaKhoFTC0ilECfNvZalwMCLoJaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/352d11-d0e3-453f-80fc-69c93d31db64/1/Ft6KM6As_o__ddCYD1WXcck_69Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.31.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:cd:05:17:1b:2e:40:86:b2:25:b3:55:db:8f:fe:a4:aa:5b:
cb:e2:71:d8:60:03:f6:e6:c9:cb:42:38:28:a5:d2:cd:ec:9b:
8c:4d:af:d2:d7:b9:d5:60:0e:e9:9f:f6:59:14:71:42:b7:03:
1d:2d:cc:eb:a7:7b:73:52:77:58:1f:1f:ae:41:ae:e0:76:56:
f0:11:37:36:ac:98:cf:40:55:d1:38:52:b8:31:74:3e:57:be:
41:ac:6b:07:a0:bb:3c:2b:7d:1a:1e:1c:85:1b:e7:a2:d1:92:
ec:f8:a5:8e:7e:75:a4:f5:ca:1e:09:f3:b5:27:49:e1:2d:f5:
2d:a1:0a:72:8d:71:b1:e6:d3:d6:27:0c:aa:d2:74:1d:44:00:
92:d0:4b:38:a3:12:89:40:32:21:e7:dc:89:db:3e:21:ce:59:
73:80:05:dd:25:8a:ae:26:e1:5f:25:19:d8:95:b1:f8:c7:b1:
df:60:76:0a:08:9e:6c:5e:49:93:91:9e:39:63:05:38:d8:f7:
0f:10:2a:c0:37:7b:d5:30:e8:e6:0d:0b:b8:cb:34:fc:dd:bc:
aa:c4:64:c8:1a:b7:59:27:d3:c4:80:2e:a8:94:46:e0:2d:75:
f9:42:0f:8f:75:d2:62:35:b6:5d:bd:da:81:90:82:72:70:dd:
79:4d:35:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:35:14 2025 by rpki-client