Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/Dgr2wvOQnRz5hgawqSG0QB7Wpf8.roa
File: Dgr2wvOQnRz5hgawqSG0QB7Wpf8.roa (raw, json)
Hash identifier: qz1bNfdEE/9TcJfQDqdc+8FtR45UoCnUkyfUGSABkmQ=
Subject key identifier: 0E:0A:F6:C2:F3:90:9D:1C:F9:86:06:B0:A9:21:B4:40:1E:D6:A5:FF
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 019427482167FC5139E025872F2907721060
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/Dgr2wvOQnRz5hgawqSG0QB7Wpf8.roa
Signing time: Thu 02 Jan 2025 13:50:26 +0000
ROA not before: Thu 02 Jan 2025 13:50:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208410
IP address blocks: 37.32.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:21:67:fc:51:39:e0:25:87:2f:29:07:72:10:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Jan 2 13:50:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e0af6c2f3909d1cf98606b0a921b4401ed6a5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d7:be:b8:f2:d1:04:95:47:d8:e9:de:03:18:
49:15:14:db:23:d8:a6:a5:ac:a6:6d:21:7a:53:87:
70:f8:92:38:fc:a7:d7:09:05:d5:a5:3f:ca:d9:ec:
c9:a8:8d:7b:31:10:f7:fd:82:dd:7e:ae:dd:d7:90:
f4:a1:10:13:d1:60:06:cd:f9:0c:76:4c:12:fa:95:
8d:22:dd:21:1e:02:b1:57:67:30:1e:22:6b:34:8d:
bf:8e:1a:73:84:f7:de:1a:e6:03:9e:5a:8b:06:a7:
45:22:5e:07:74:9e:4b:5c:c7:aa:e6:b6:01:bc:75:
bc:5e:f7:1a:0d:0d:a3:ae:d1:a8:9c:ea:fd:15:30:
41:17:6c:a4:43:9d:44:91:5b:73:b7:68:20:ee:bd:
e0:38:4f:67:f5:4c:e4:2c:c2:2f:84:25:13:8a:d6:
4e:fd:84:cb:11:5d:d8:9b:1f:6c:bb:00:52:0e:2b:
3f:35:5f:7b:2f:37:96:99:4d:fb:af:c1:47:ab:bf:
b2:42:7d:28:84:0a:29:12:70:f3:13:1d:a0:8d:40:
16:fa:09:ef:78:b0:99:c6:9d:2b:52:dd:f5:fb:e4:
0b:7b:b1:2f:92:58:28:2a:ce:04:89:90:fc:98:4e:
cb:38:98:6c:29:3b:ad:f9:1a:77:3d:25:9a:3e:52:
d5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:0A:F6:C2:F3:90:9D:1C:F9:86:06:B0:A9:21:B4:40:1E:D6:A5:FF
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/Dgr2wvOQnRz5hgawqSG0QB7Wpf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.78.0/24
Signature Algorithm: sha256WithRSAEncryption
33:c2:57:6c:71:bf:bf:ce:1e:58:d0:2d:dc:ed:35:cc:c7:26:
69:49:3f:1e:30:51:8e:d8:a4:96:5e:c1:0f:f2:89:4c:5e:91:
0a:c5:30:b1:5a:5f:c8:2f:b0:e3:5b:55:99:dc:b2:fe:ac:68:
5e:05:74:fa:2e:25:c6:e9:42:54:a7:10:f0:8b:9a:91:08:68:
cc:c9:7b:9c:17:58:ec:3b:fd:dd:30:fb:25:50:56:07:50:98:
ee:f3:d9:60:99:71:b8:11:4e:61:10:c6:4e:ba:8d:65:82:66:
e8:1f:69:27:bb:03:08:e2:e9:57:2d:bd:d4:67:f2:fc:d1:24:
cf:89:1f:da:85:bd:36:af:04:e9:42:4f:e3:ce:9d:f2:3d:39:
a0:d3:4f:9c:95:36:b1:79:44:65:54:2c:d3:e8:bb:0c:75:6d:
db:30:6e:bf:6d:55:df:1d:61:6f:70:cd:05:c0:71:b3:83:94:
6d:e5:75:ec:cb:70:be:97:e8:d3:f9:49:50:9f:97:e9:bc:84:
53:20:a4:15:80:2a:c7:02:b5:93:ad:e1:fe:c1:c7:92:5d:42:
af:92:0f:a9:ca:8b:46:cf:8f:c9:c7:45:7d:2b:f7:3c:57:e7:
b1:0a:9d:c6:33:11:a6:63:ef:3e:65:a6:f7:f3:28:0f:f1:40:
3f:4b:42:98
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSCFn/FE54CWHLykHchBgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZTgyYmExNzE1ZDZhZWFlNWIwMTAyNzI1ZmZlMGM4MzQ3
MzVkN2QwHhcNMjUwMTAyMTM1MDI2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTBhZjZjMmYzOTA5ZDFjZjk4NjA2YjBhOTIxYjQ0MDFlZDZhNWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvde+uPLRBJVH2OneAxhJFRTbI9im
paymbSF6U4dw+JI4/KfXCQXVpT/K2ezJqI17MRD3/YLdfq7d15D0oRAT0WAGzfkM
dkwS+pWNIt0hHgKxV2cwHiJrNI2/jhpzhPfeGuYDnlqLBqdFIl4HdJ5LXMeq5rYB
vHW8XvcaDQ2jrtGonOr9FTBBF2ykQ51EkVtzt2gg7r3gOE9n9UzkLMIvhCUTitZO
/YTLEV3Ymx9suwBSDis/NV97LzeWmU37r8FHq7+yQn0ohAopEnDzEx2gjUAW+gnv
eLCZxp0rUt31++QLe7EvklgoKs4EiZD8mE7LOJhsKTut+Rp3PSWaPlLV3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA4K9sLzkJ0c+YYGsKkhtEAe1qX/MB8GA1UdIwQY
MBaAFLToK6FxXWrq5bAQJyX/4Mg0c119MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE9ncm9YRmRhdXJsc0JBbkpmX2d5RFJ6WFgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy85MTUxYzAtMzMyNi00ODAxLTkzNjMt
YzdkMTk5MzBkNjZkLzEvRGdyMnd2T1FuUno1aGdhd3FTRzBRQjdXcGY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy85MTUxYzAtMzMyNi00ODAxLTkzNjMtYzdkMTk5MzBkNjZk
LzEvdE9ncm9YRmRhdXJsc0JBbkpmX2d5RFJ6WFgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJSBOMA0G
CSqGSIb3DQEBCwUAA4IBAQAzwldscb+/zh5Y0C3c7TXMxyZpST8eMFGO2KSWXsEP
8olMXpEKxTCxWl/IL7DjW1WZ3LL+rGheBXT6LiXG6UJUpxDwi5qRCGjMyXucF1js
O/3dMPslUFYHUJju89lgmXG4EU5hEMZOuo1lgmboH2knuwMI4ulXLb3UZ/L80STP
iR/ahb02rwTpQk/jzp3yPTmg00+clTaxeURlVCzT6LsMdW3bMG6/bVXfHWFvcM0F
wHGzg5Rt5XXsy3C+l+jT+UlQn5fpvIRTIKQVgCrHArWTreH+wceSXUKvkg+pyotG
z4/Jx0V9K/c8V+exCp3GMxGmY+8+Zab38ygP8UA/S0KY
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:56:01 2025 by rpki-client