Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/093a51-1075-40be-9dc2-d15b079c35fb/1/d9_S0MdBcLLQhVMY4GIXLkmlz3w.roa
File: d9_S0MdBcLLQhVMY4GIXLkmlz3w.roa (raw, json)
Hash identifier: JIdW7E8RpIHlAxf+ndeNBtGoppjXWf7rJVf8yChsf7I=
Subject key identifier: 77:DF:D2:D0:C7:41:70:B2:D0:85:53:18:E0:62:17:2E:49:A5:CF:7C
Certificate issuer: /CN=f566016d878230128b58e279d661c195e6399588
Certificate serial: 0194228D8EDE68E4DEC4BA3E70BB0A2A57F7
Authority key identifier: F5:66:01:6D:87:82:30:12:8B:58:E2:79:D6:61:C1:95:E6:39:95:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9WYBbYeCMBKLWOJ51mHBleY5lYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/093a51-1075-40be-9dc2-d15b079c35fb/1/d9_S0MdBcLLQhVMY4GIXLkmlz3w.roa
Signing time: Wed 01 Jan 2025 15:48:09 +0000
ROA not before: Wed 01 Jan 2025 15:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 185.158.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:8e:de:68:e4:de:c4:ba:3e:70:bb:0a:2a:57:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f566016d878230128b58e279d661c195e6399588
Validity
Not Before: Jan 1 15:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77dfd2d0c74170b2d0855318e062172e49a5cf7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:24:54:a1:05:26:e1:b1:71:6c:40:da:bf:38:
2f:69:e1:40:10:fc:9b:8a:00:f6:33:4e:d2:9d:b5:
cf:00:85:f5:4d:bb:4a:9b:b8:ba:87:4c:1e:00:bc:
da:fa:44:1b:ce:75:25:65:07:a4:5a:a4:d4:09:e7:
a5:33:75:3e:1d:a4:d4:e5:9f:f1:3f:34:26:8e:10:
c1:eb:4d:9c:6f:a2:b3:7d:62:a1:99:b9:d5:2a:03:
2d:9a:78:ea:75:85:bb:ef:33:bc:cf:7a:12:bc:76:
93:c3:c9:31:e3:f5:ac:41:de:10:68:7d:24:0e:9c:
8a:bb:33:44:de:02:ae:59:39:c2:62:b8:08:bc:c4:
78:dd:a7:b8:fa:6b:3a:92:7f:99:5a:40:51:18:60:
d8:db:6b:13:60:bd:30:33:01:47:d3:f2:29:21:4e:
15:7f:ad:c3:f2:f5:fb:e0:bd:7e:30:e1:08:3c:0b:
59:bf:f2:6c:74:60:bc:cc:a2:03:2d:ba:fd:b0:55:
37:dd:44:ec:eb:18:e8:d8:f0:73:d7:cf:1f:69:d3:
b2:1c:a0:cf:97:e3:d4:55:5c:12:66:65:5e:f6:01:
35:a3:8b:c0:9d:f7:01:1a:85:b6:dc:c4:30:b9:9a:
2b:c3:31:f2:dc:57:ac:78:a5:f8:8a:59:66:91:50:
47:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DF:D2:D0:C7:41:70:B2:D0:85:53:18:E0:62:17:2E:49:A5:CF:7C
X509v3 Authority Key Identifier:
keyid:F5:66:01:6D:87:82:30:12:8B:58:E2:79:D6:61:C1:95:E6:39:95:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9WYBbYeCMBKLWOJ51mHBleY5lYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/093a51-1075-40be-9dc2-d15b079c35fb/1/d9_S0MdBcLLQhVMY4GIXLkmlz3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/093a51-1075-40be-9dc2-d15b079c35fb/1/9WYBbYeCMBKLWOJ51mHBleY5lYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.109.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:82:42:31:b9:88:b4:57:97:81:95:3d:62:15:54:c6:77:2e:
a1:5d:f3:9b:bd:e5:8b:50:e2:39:b6:64:46:3c:69:61:c8:ce:
8b:f2:c6:cd:cc:44:92:21:32:d5:7b:ac:0c:92:da:d7:00:74:
44:e3:6f:07:b5:c4:e4:31:2c:50:4e:db:38:b0:8f:90:70:d0:
06:ff:3c:61:51:cc:b2:40:75:45:8e:55:08:2b:df:1d:7f:93:
39:8f:af:4a:89:ec:b5:c9:63:89:20:1c:b0:63:5c:2b:29:14:
33:04:66:c8:6a:45:a2:2c:ae:24:51:66:aa:ba:3e:8c:6e:c9:
8d:f9:52:cd:ca:52:94:20:7b:db:b0:9a:f3:86:0a:34:bb:2f:
b1:c7:64:09:bc:5b:ef:d6:3b:66:8a:e5:81:de:99:b5:0f:8b:
3e:a7:84:92:65:47:eb:df:eb:42:b6:ac:53:1f:9c:8f:a7:61:
a8:a3:ad:e7:3b:96:b8:bb:82:08:51:b1:da:1d:34:3d:d9:6d:
8b:30:ed:91:f4:10:c1:09:da:ae:3f:d9:6a:3e:b4:7b:fb:df:
92:e8:62:4d:3f:c6:76:b8:1e:70:91:aa:12:57:73:3a:dd:0e:
af:31:c8:04:a3:c4:ea:12:aa:1c:47:03:ab:ab:ea:d6:a2:93:
ae:7e:2b:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijY7eaOTexLo+cLsKKlf3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1NjYwMTZkODc4MjMwMTI4YjU4ZTI3OWQ2NjFjMTk1ZTYz
OTk1ODgwHhcNMjUwMTAxMTU0ODA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2RmZDJkMGM3NDE3MGIyZDA4NTUzMThlMDYyMTcyZTQ5YTVjZjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjCRUoQUm4bFxbEDavzgvaeFAEPyb
igD2M07SnbXPAIX1TbtKm7i6h0weALza+kQbznUlZQekWqTUCeelM3U+HaTU5Z/x
PzQmjhDB602cb6KzfWKhmbnVKgMtmnjqdYW77zO8z3oSvHaTw8kx4/WsQd4QaH0k
DpyKuzNE3gKuWTnCYrgIvMR43ae4+ms6kn+ZWkBRGGDY22sTYL0wMwFH0/IpIU4V
f63D8vX74L1+MOEIPAtZv/JsdGC8zKIDLbr9sFU33UTs6xjo2PBz188fadOyHKDP
l+PUVVwSZmVe9gE1o4vAnfcBGoW23MQwuZorwzHy3FeseKX4illmkVBHAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHff0tDHQXCy0IVTGOBiFy5Jpc98MB8GA1UdIwQY
MBaAFPVmAW2HgjASi1jiedZhwZXmOZWIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOVdZQmJZZUNNQktMV09KNTFtSEJsZVk1bFlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi8wOTNhNTEtMTA3NS00MGJlLTlkYzIt
ZDE1YjA3OWMzNWZiLzEvZDlfUzBNZEJjTExRaFZNWTRHSVhMa21sejN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi8wOTNhNTEtMTA3NS00MGJlLTlkYzItZDE1YjA3OWMzNWZi
LzEvOVdZQmJZZUNNQktMV09KNTFtSEJsZVk1bFlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZ5tMA0G
CSqGSIb3DQEBCwUAA4IBAQBOgkIxuYi0V5eBlT1iFVTGdy6hXfObveWLUOI5tmRG
PGlhyM6L8sbNzESSITLVe6wMktrXAHRE428HtcTkMSxQTts4sI+QcNAG/zxhUcyy
QHVFjlUIK98df5M5j69Kiey1yWOJIBywY1wrKRQzBGbIakWiLK4kUWaquj6MbsmN
+VLNylKUIHvbsJrzhgo0uy+xx2QJvFvv1jtmiuWB3pm1D4s+p4SSZUfr3+tCtqxT
H5yPp2Goo63nO5a4u4IIUbHaHTQ92W2LMO2R9BDBCdquP9lqPrR7+9+S6GJNP8Z2
uB5wkaoSV3M63Q6vMcgEo8TqEqocRwOrq+rWopOufisn
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:10:12 2025 by rpki-client