Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ht8VbyTSw0nsNawK_niRHh_9H4M.roa
File: ht8VbyTSw0nsNawK_niRHh_9H4M.roa (raw, json)
Hash identifier: fWa0dv6CvhTyrQldYgDU4gxwIE6Oirwkitn87EACZwA=
Subject key identifier: 86:DF:15:6F:24:D2:C3:49:EC:35:AC:0A:FE:78:91:1E:1F:FD:1F:83
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01948E586A24C9102A6F48C21020ABAD8AEA
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ht8VbyTSw0nsNawK_niRHh_9H4M.roa
Signing time: Wed 22 Jan 2025 14:09:06 +0000
ROA not before: Wed 22 Jan 2025 14:09:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 5.134.80.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8e:58:6a:24:c9:10:2a:6f:48:c2:10:20:ab:ad:8a:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 22 14:09:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86df156f24d2c349ec35ac0afe78911e1ffd1f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:89:6a:b9:b0:80:38:94:a8:e3:bb:01:55:5a:
8c:78:f6:ec:0d:92:b6:ce:a4:7e:d9:59:5c:e6:d7:
e6:3f:36:e8:94:6c:37:6d:5c:58:4e:65:e4:97:57:
be:72:d2:de:73:71:65:1b:7e:fc:b4:f1:24:4a:5e:
da:8c:0c:08:d0:c7:9c:e6:e3:b7:c9:fa:de:0e:7d:
22:a8:64:c7:b5:b0:ca:c6:ef:f7:e1:71:d7:8a:b1:
66:bb:72:fd:a9:9a:ff:55:09:a9:d1:79:47:f6:13:
de:54:bc:fa:49:9f:e4:e8:cf:b5:e0:e4:9a:46:ec:
15:65:09:d9:53:8d:b0:af:bc:de:7c:48:ab:90:2f:
fc:eb:57:99:ce:a6:4f:a7:5d:75:0b:f4:b5:51:51:
26:68:e1:ed:ae:a3:ef:ba:a0:d1:34:bd:5c:7c:cc:
61:7f:16:70:2a:51:4b:08:7e:7c:b3:9a:6f:88:77:
b7:dc:dd:c9:6d:ce:5b:ac:45:d3:4b:41:46:6a:72:
7a:f1:00:1e:f5:00:42:e5:ed:0f:0f:c2:db:20:48:
27:85:a2:12:eb:2d:17:65:d7:4a:9c:11:f3:d1:0d:
be:35:f2:d2:eb:4e:98:83:b9:44:45:6b:fd:92:e0:
b2:54:d9:d6:7c:50:0c:d8:90:31:94:4c:49:39:ce:
ab:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DF:15:6F:24:D2:C3:49:EC:35:AC:0A:FE:78:91:1E:1F:FD:1F:83
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ht8VbyTSw0nsNawK_niRHh_9H4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.80.0/22
Signature Algorithm: sha256WithRSAEncryption
85:1b:bd:d6:b0:d6:6f:1f:34:ac:72:67:b8:c3:7c:5d:60:d7:
54:59:0d:ba:9b:8b:46:25:9f:58:dc:02:51:6b:35:16:4b:1c:
e8:ae:11:5f:c5:21:fa:b8:29:c1:dd:50:7d:71:ae:0a:2c:73:
f8:e8:61:fc:6f:a6:be:81:9f:29:af:e0:bb:1e:fe:39:d9:6b:
30:87:ee:fb:54:cd:f7:06:e2:18:12:e9:ff:b2:78:8e:51:17:
8e:2a:9d:45:70:a6:b0:3c:3a:73:fe:1c:19:a8:dc:b7:26:30:
39:8b:12:02:2f:cb:db:14:09:db:ff:b5:10:9c:e3:86:5b:2e:
dc:7e:88:b3:4c:15:8f:c7:0c:42:80:43:87:c6:42:5d:ca:a1:
8c:17:fd:c6:97:26:70:a0:3b:db:d1:fa:13:bb:08:4e:61:76:
e9:6e:c4:eb:d8:49:16:1d:9e:44:c6:f6:d2:96:e2:e5:1c:66:
df:fb:d7:20:b9:ec:0f:a8:59:11:02:05:de:65:6f:ce:57:26:
17:98:d8:88:c3:c1:31:65:11:87:e0:fc:45:ac:16:61:36:52:
9b:b0:15:ef:c2:88:00:17:c5:10:e4:74:bf:b9:ed:be:f3:62:
c9:06:06:e3:c1:59:b1:de:61:73:cf:66:4a:f1:a9:d2:aa:60:
21:ee:cf:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZSOWGokyRAqb0jCECCrrYrqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZThmNGVkNWRkMDYzMDFjNDIzOTg4ZTc4NmRhYmY1MWM1
ZjU2NzQwHhcNMjUwMTIyMTQwOTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmRmMTU2ZjI0ZDJjMzQ5ZWMzNWFjMGFmZTc4OTExZTFmZmQxZjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnIlqubCAOJSo47sBVVqMePbsDZK2
zqR+2Vlc5tfmPzbolGw3bVxYTmXkl1e+ctLec3FlG378tPEkSl7ajAwI0Mec5uO3
yfreDn0iqGTHtbDKxu/34XHXirFmu3L9qZr/VQmp0XlH9hPeVLz6SZ/k6M+14OSa
RuwVZQnZU42wr7zefEirkC/861eZzqZPp111C/S1UVEmaOHtrqPvuqDRNL1cfMxh
fxZwKlFLCH58s5pviHe33N3Jbc5brEXTS0FGanJ68QAe9QBC5e0PD8LbIEgnhaIS
6y0XZddKnBHz0Q2+NfLS606Yg7lERWv9kuCyVNnWfFAM2JAxlExJOc6rMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIbfFW8k0sNJ7DWsCv54kR4f/R+DMB8GA1UdIwQY
MBaAFJPo9O1d0GMBxCOYjnhtq/UcX1Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQt
MWZjMTllYTczYTJhLzEvaHQ4VmJ5VFN3MG5zTmF3S19uaVJIaF85SDRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQtMWZjMTllYTczYTJh
LzEvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBYZQMA0G
CSqGSIb3DQEBCwUAA4IBAQCFG73WsNZvHzSscme4w3xdYNdUWQ26m4tGJZ9Y3AJR
azUWSxzorhFfxSH6uCnB3VB9ca4KLHP46GH8b6a+gZ8pr+C7Hv452Wswh+77VM33
BuIYEun/sniOUReOKp1FcKawPDpz/hwZqNy3JjA5ixICL8vbFAnb/7UQnOOGWy7c
foizTBWPxwxCgEOHxkJdyqGMF/3GlyZwoDvb0foTuwhOYXbpbsTr2EkWHZ5ExvbS
luLlHGbf+9cguewPqFkRAgXeZW/OVyYXmNiIw8ExZRGH4PxFrBZhNlKbsBXvwogA
F8UQ5HS/ue2+82LJBgbjwVmx3mFzz2ZK8anSqmAh7s+z
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:15:43 2025 by rpki-client