Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/nk0e3kAP4kdr0du585r8uqE2rXE.roa
File: nk0e3kAP4kdr0du585r8uqE2rXE.roa (raw, json)
Hash identifier: KsuGETMtfoIxTQYxdHEYT5GTp69aezOSaCqf+u/4oI0=
Subject key identifier: 9E:4D:1E:DE:40:0F:E2:47:6B:D1:DB:B9:F3:9A:FC:BA:A1:36:AD:71
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CE3A41F
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/nk0e3kAP4kdr0du585r8uqE2rXE.roa
Signing time: Fri 15 Apr 2022 18:48:35 +0000
ROA not before: Fri 15 Apr 2022 18:48:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 195.252.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216245279 (0xce3a41f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 15 18:48:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e4d1ede400fe2476bd1dbb9f39afcbaa136ad71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c0:c3:d5:ee:5a:e7:1d:17:8e:16:56:9b:e4:
e3:07:8a:d5:60:9f:0a:97:a7:1c:a7:d9:9c:c5:e0:
6a:8d:84:18:b9:8b:c7:a9:f9:cb:c1:71:88:c1:b0:
ed:51:9c:d5:c3:80:2d:2c:c0:85:2a:01:66:4b:b2:
58:84:a4:17:0b:c5:74:21:9c:d2:5a:48:d0:8b:53:
60:1a:83:ee:a2:cb:31:66:ef:97:2d:f3:73:4e:22:
89:41:67:4c:79:f3:af:2d:5e:d7:d4:af:26:ec:f5:
81:b7:c9:a9:2e:76:e8:b8:c6:15:c4:aa:ee:fb:42:
e3:01:6d:41:45:c9:d4:2b:f4:1c:80:91:cf:1b:71:
49:e3:96:f3:b3:b2:d3:8d:61:d4:ef:24:3c:c2:1f:
56:d3:61:88:7f:e4:96:0b:f5:f8:29:dc:10:59:63:
0d:86:8e:cc:30:f3:ce:59:d1:11:b6:26:1e:e5:00:
7b:e5:b6:ab:e0:26:ff:89:f8:ff:bc:2c:ec:49:1c:
a1:71:b2:bb:dc:36:30:78:ac:d3:1a:f4:4f:07:85:
fb:99:df:6d:0c:9f:a7:34:95:19:f9:59:b0:f9:2c:
bd:55:51:61:3f:5c:a2:68:d6:ee:9b:73:83:2d:4b:
83:2b:24:c8:26:8e:97:72:50:ca:4f:2e:5d:37:84:
ab:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:4D:1E:DE:40:0F:E2:47:6B:D1:DB:B9:F3:9A:FC:BA:A1:36:AD:71
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/nk0e3kAP4kdr0du585r8uqE2rXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.252.174.0/24
Signature Algorithm: sha256WithRSAEncryption
36:13:57:14:ca:0c:f2:d4:0b:a8:94:ec:62:85:5d:31:ea:f5:
b6:e5:4d:c9:4c:fc:6c:21:fc:8d:0d:02:7b:cf:e5:90:f8:14:
4b:b6:f0:2e:27:f6:bb:aa:8a:7c:dc:75:4e:1f:26:6c:3c:c4:
c0:ce:41:6e:43:11:78:c2:6a:52:d7:39:5d:64:03:ef:fe:ef:
c3:73:99:cd:14:e8:f5:d0:76:43:34:f8:39:bc:41:b5:12:6f:
9d:e9:e4:3d:e4:69:91:e9:60:0e:f4:50:e6:47:f9:0a:93:c7:
57:82:76:0c:0c:88:c2:e7:97:58:e2:9c:e5:c1:84:5b:2d:de:
25:42:2d:72:5d:26:4a:10:05:06:1e:40:fe:0f:5b:4f:71:22:
c6:d6:d1:a4:a6:36:6e:01:0a:5d:40:f3:ac:94:9e:15:80:a7:
ce:1b:bb:bc:9d:75:3a:c5:cd:0a:ac:0c:78:4c:db:37:bd:90:
51:5b:6c:ba:b4:3c:81:a1:2d:89:62:9e:41:dd:b8:5e:73:de:
b2:af:7a:66:4d:e5:96:ed:ce:ce:24:65:b0:2f:71:b7:00:f0:
6e:82:d4:32:b2:b5:f8:9f:26:93:eb:43:75:85:90:b6:ce:6b:
8a:6c:8d:5a:01:b6:b5:dc:6a:64:84:e6:ad:35:cc:fe:40:96:
1d:db:97:4c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDOOkHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDQx
NTE4NDgzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWU0ZDFlZGU0MDBm
ZTI0NzZiZDFkYmI5ZjM5YWZjYmFhMTM2YWQ3MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALXAw9XuWucdF44WVpvk4weK1WCfCpenHKfZnMXgao2EGLmL
x6n5y8FxiMGw7VGc1cOALSzAhSoBZkuyWISkFwvFdCGc0lpI0ItTYBqD7qLLMWbv
ly3zc04iiUFnTHnzry1e19SvJuz1gbfJqS526LjGFcSq7vtC4wFtQUXJ1Cv0HICR
zxtxSeOW87Oy041h1O8kPMIfVtNhiH/klgv1+CncEFljDYaOzDDzzlnREbYmHuUA
e+W2q+Am/4n4/7ws7EkcoXGyu9w2MHis0xr0TweF+5nfbQyfpzSVGflZsPksvVVR
YT9comjW7ptzgy1LgyskyCaOl3JQyk8uXTeEqysCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSeTR7eQA/iR2vR27nzmvy6oTatcTAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
L25rMGUza0FQNGtkcjBkdTU4NXI4dXFFMnJYRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMP8rjANBgkqhkiG9w0BAQsFAAOC
AQEANhNXFMoM8tQLqJTsYoVdMer1tuVNyUz8bCH8jQ0Ce8/lkPgUS7bwLif2u6qK
fNx1Th8mbDzEwM5BbkMReMJqUtc5XWQD7/7vw3OZzRTo9dB2QzT4ObxBtRJvnenk
PeRpkelgDvRQ5kf5CpPHV4J2DAyIwueXWOKc5cGEWy3eJUItcl0mShAFBh5A/g9b
T3EixtbRpKY2bgEKXUDzrJSeFYCnzhu7vJ11OsXNCqwMeEzbN72QUVtsurQ8gaEt
iWKeQd24XnPesq96Zk3llu3OziRlsC9xtwDwboLUMrK1+J8mk+tDdYWQts5rimyN
WgG2tdxqZITmrTXM/kCWHduXTA==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:25 2025 by rpki-client