Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/hNWwx7OL-9adb1_PVQj7dLugRbE.roa
File: hNWwx7OL-9adb1_PVQj7dLugRbE.roa (raw, json)
Hash identifier: a5RZCNYvOxtuFY3pREa+RhVOW1R7dmnnmbvgTvDFgik=
Subject key identifier: 84:D5:B0:C7:B3:8B:FB:D6:9D:6F:5F:CF:55:08:FB:74:BB:A0:45:B1
Certificate issuer: /CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Certificate serial: 0194266BAA8591BFD65ED8F367753980FF34
Authority key identifier: F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/hNWwx7OL-9adb1_PVQj7dLugRbE.roa
Signing time: Thu 02 Jan 2025 09:49:37 +0000
ROA not before: Thu 02 Jan 2025 09:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 185.76.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:aa:85:91:bf:d6:5e:d8:f3:67:75:39:80:ff:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Validity
Not Before: Jan 2 09:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=84d5b0c7b38bfbd69d6f5fcf5508fb74bba045b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:04:dd:1b:46:37:03:7f:1a:b1:0b:45:54:dd:
6e:0c:fa:ef:c7:52:0e:50:24:66:34:ca:3c:34:e3:
11:16:80:52:04:3b:3c:52:28:83:9b:27:bd:7e:50:
5d:93:47:1c:ec:07:f9:64:08:53:a5:90:c9:a0:83:
f5:01:73:47:52:5d:f2:83:9a:0e:a1:57:40:03:74:
90:f1:4f:82:fd:0b:02:d7:8b:ca:82:0c:5a:3f:0f:
db:16:b7:6a:66:6a:22:d8:84:1c:bb:6c:ee:3d:61:
52:38:c6:ee:7c:50:25:aa:cf:26:87:e0:0b:23:86:
f7:ba:71:88:39:d3:59:4d:26:77:a2:25:44:c4:6e:
db:44:90:45:8e:5d:c5:fb:bd:c5:b4:a7:09:40:8a:
88:c6:b6:6d:9a:4d:c8:2e:2a:46:52:7b:f0:11:f5:
ef:a3:90:6e:82:51:c2:35:5a:c9:79:1a:c7:f1:12:
24:ad:f4:7e:78:04:53:4a:66:cb:a8:45:89:f1:9c:
07:4a:2b:3a:97:4b:1a:6b:ee:5f:72:3b:d2:55:99:
b3:98:68:47:c5:4d:30:bd:60:5f:62:48:9f:74:34:
27:d7:b0:3c:91:2a:0f:36:48:d7:de:25:6c:8c:3d:
0a:0a:17:c6:7b:9a:b9:2f:b6:94:c2:b7:dd:a1:64:
a3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D5:B0:C7:B3:8B:FB:D6:9D:6F:5F:CF:55:08:FB:74:BB:A0:45:B1
X509v3 Authority Key Identifier:
keyid:F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/hNWwx7OL-9adb1_PVQj7dLugRbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.38.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:7e:c3:32:8b:d3:74:09:22:89:a7:4f:8b:2e:c8:97:3d:62:
1a:d1:d5:31:8a:20:16:78:6e:31:a3:92:f5:bc:e6:19:05:23:
d3:e2:70:4e:a7:b6:46:09:15:da:fa:0c:59:b2:c4:9e:c0:f8:
a5:ad:91:a9:36:1a:07:0b:a6:d4:29:6d:7a:0c:f1:a2:85:8a:
bd:f4:ac:36:79:59:33:59:8a:55:19:d1:11:ef:0b:ba:7c:80:
19:75:d6:00:eb:c4:a7:ae:b8:44:3f:4c:7c:1e:ce:98:dc:de:
68:eb:16:f6:75:16:dd:af:1e:19:c8:b0:cd:12:b3:eb:55:83:
4c:60:a2:64:f8:5f:12:d2:2d:1c:e6:85:d8:5c:24:b2:1f:f6:
3e:56:81:13:19:3c:80:96:23:6a:ac:4b:c4:46:b4:6c:5f:8a:
d7:dd:f1:0a:bc:b9:0a:ff:9f:b5:a7:f9:d5:2d:5e:08:4f:d5:
eb:9f:47:ad:6a:9f:1b:ea:52:0d:b0:47:32:3e:88:c8:4f:ea:
95:14:2f:fd:39:61:42:85:ca:70:ac:47:88:c5:9f:9d:08:c0:
26:98:68:dd:fd:7e:3a:81:bb:88:43:30:f8:c9:5f:9e:56:73:
d4:d6:13:49:9b:77:2a:41:a7:f2:0e:a4:3b:10:7f:fa:ed:e5:
2e:8a:93:6e
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZQma6qFkb/WXtjzZ3U5gP80MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5YzllMDMwNWNmZWQ1Nzk0NDQ4NzMyYThiMGJkODQyNzQ1
MGQ4MTMwHhcNMjUwMTAyMDk0OTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NGQ1YjBjN2IzOGJmYmQ2OWQ2ZjVmY2Y1NTA4ZmI3NGJiYTA0NWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxATdG0Y3A38asQtFVN1uDPrvx1IO
UCRmNMo8NOMRFoBSBDs8UiiDmye9flBdk0cc7Af5ZAhTpZDJoIP1AXNHUl3yg5oO
oVdAA3SQ8U+C/QsC14vKggxaPw/bFrdqZmoi2IQcu2zuPWFSOMbufFAlqs8mh+AL
I4b3unGIOdNZTSZ3oiVExG7bRJBFjl3F+73FtKcJQIqIxrZtmk3ILipGUnvwEfXv
o5BuglHCNVrJeRrH8RIkrfR+eARTSmbLqEWJ8ZwHSis6l0saa+5fcjvSVZmzmGhH
xU0wvWBfYkifdDQn17A8kSoPNkjX3iVsjD0KChfGe5q5L7aUwrfdoWSjDQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFITVsMezi/vWnW9fz1UI+3S7oEWxMB8GA1UdIwQY
MBaAFPnJ4DBc/tV5REhzKosL2EJ0UNgTMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1jbmdNRnotMVhsRVNITXFpd3ZZUW5SUTJCTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzcvMzYxOTBkLTFjNmMtNDhjNi1hNDE0
LTJmYmIyMDhhZDE4Mi8xL2hOV3d4N09MLTlhZGIxX1BWUWo3ZEx1Z1JiRS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMzcvMzYxOTBkLTFjNmMtNDhjNi1hNDE0LTJmYmIyMDhhZDE4
Mi8xLzEtY25nTUZ6LTFYbEVTSE1xaXd2WVFuUlEyQk0uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5TCYw
DQYJKoZIhvcNAQELBQADggEBACt+wzKL03QJIomnT4suyJc9YhrR1TGKIBZ4bjGj
kvW85hkFI9PicE6ntkYJFdr6DFmyxJ7A+KWtkak2GgcLptQpbXoM8aKFir30rDZ5
WTNZilUZ0RHvC7p8gBl11gDrxKeuuEQ/THwezpjc3mjrFvZ1Ft2vHhnIsM0Ss+tV
g0xgomT4XxLSLRzmhdhcJLIf9j5WgRMZPICWI2qsS8RGtGxfitfd8Qq8uQr/n7Wn
+dUtXghP1eufR61qnxvqUg2wRzI+iMhP6pUUL/05YUKFynCsR4jFn50IwCaYaN39
fjqBu4hDMPjJX55Wc9TWE0mbdypBp/IOpDsQf/rt5S6Kk24=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:12:47 2025 by rpki-client