Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/JDa6SY9OudTO59Luwi4g9XuH-5g.roa
File: JDa6SY9OudTO59Luwi4g9XuH-5g.roa (raw, json)
Hash identifier: 9WJ0L7baOHSNBgfr0oc7eP1UiTVZAMhpoL/3V6eL10k=
Subject key identifier: 24:36:BA:49:8F:4E:B9:D4:CE:E7:D2:EE:C2:2E:20:F5:7B:87:FB:98
Certificate issuer: /CN=27f5180f9b93ae7573c08a894bd452bd77ce56cd
Certificate serial: 01941F8C3356CA1FAFAD484B30F2562B6F0A
Authority key identifier: 27:F5:18:0F:9B:93:AE:75:73:C0:8A:89:4B:D4:52:BD:77:CE:56:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_UYD5uTrnVzwIqJS9RSvXfOVs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/JDa6SY9OudTO59Luwi4g9XuH-5g.roa
Signing time: Wed 01 Jan 2025 01:47:49 +0000
ROA not before: Wed 01 Jan 2025 01:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6732
IP address blocks: 193.247.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:33:56:ca:1f:af:ad:48:4b:30:f2:56:2b:6f:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f5180f9b93ae7573c08a894bd452bd77ce56cd
Validity
Not Before: Jan 1 01:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2436ba498f4eb9d4cee7d2eec22e20f57b87fb98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:84:e7:7e:db:17:b2:41:91:97:5e:2e:0f:d0:
83:78:bd:af:91:8a:39:20:8b:3c:c9:d3:8a:fb:47:
d9:ba:54:1b:26:f1:11:be:38:ca:21:88:85:4b:c1:
88:3e:d8:89:ee:f5:7e:bd:a0:56:be:7e:ef:7b:5b:
86:5b:f7:a5:23:41:0c:a0:19:06:6a:35:09:5c:79:
01:a3:5c:dc:1a:c9:46:50:4d:70:c1:53:2a:3e:28:
46:23:f6:30:54:d1:36:a8:49:12:29:7b:88:c7:ac:
ac:93:bb:d1:0f:64:d6:06:ce:2c:1b:86:2b:ff:0a:
e5:7a:11:e5:10:34:15:2d:eb:71:06:09:30:f8:fe:
4f:d1:b4:9c:6b:1e:6f:d0:f5:f1:00:9e:4e:c2:63:
a9:6c:09:73:6a:0f:28:5e:c7:23:8e:e8:73:22:14:
94:bb:09:f0:83:f8:2a:c8:2f:2a:df:87:ca:18:7b:
4b:a7:ad:7b:f6:c9:c0:8d:60:ec:7f:65:ea:1e:8a:
55:db:7a:10:36:9e:29:e0:db:db:34:cc:c0:bc:6b:
ee:72:f3:3e:d2:b4:10:33:dd:3b:56:c9:a5:ef:a0:
a4:54:ed:d3:e7:f0:00:ea:83:07:55:96:ee:7d:f4:
99:77:49:50:c5:66:ea:13:4e:94:04:ec:d4:79:18:
a7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:36:BA:49:8F:4E:B9:D4:CE:E7:D2:EE:C2:2E:20:F5:7B:87:FB:98
X509v3 Authority Key Identifier:
keyid:27:F5:18:0F:9B:93:AE:75:73:C0:8A:89:4B:D4:52:BD:77:CE:56:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_UYD5uTrnVzwIqJS9RSvXfOVs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/JDa6SY9OudTO59Luwi4g9XuH-5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/J_UYD5uTrnVzwIqJS9RSvXfOVs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.146.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b6:1c:77:98:c0:cb:c7:94:e6:28:ed:4c:9c:53:c3:08:66:
5a:25:09:4d:e2:c8:d2:80:dc:cf:c0:f7:4c:e4:2a:58:d0:df:
8e:bf:8c:ad:79:f7:2a:b7:74:a7:82:74:fd:39:cb:53:35:9f:
49:30:7b:01:3e:9b:e0:b2:31:2a:94:54:4e:69:5b:a5:06:60:
cc:55:b7:e8:6d:97:0a:1f:fd:f4:ae:10:69:87:e8:2b:c9:f9:
94:68:e4:5b:c7:85:0c:e0:f4:34:dd:de:35:d2:f9:13:79:c8:
2d:9f:fb:a9:7a:07:00:33:f6:67:ca:f1:76:1b:91:99:23:2f:
c7:a3:53:66:16:46:28:ee:26:71:9e:4f:00:50:30:07:df:45:
b4:dc:d9:f7:e0:99:ad:9f:1e:56:fa:ea:c9:40:d7:33:99:fb:
bb:18:b5:87:bc:e3:3a:a6:5c:f6:7f:a6:90:03:5e:c8:a5:9c:
bd:3b:f3:5b:2e:5a:e2:ca:45:2f:31:21:5f:c1:d9:13:ab:f1:
75:f6:b1:a8:a0:60:47:53:b0:5f:cb:f9:fe:f5:cc:02:06:68:
20:79:d7:c8:b3:7b:0c:62:75:9e:59:ad:b7:e9:38:8b:b2:ea:
15:45:cd:c6:d2:ff:3c:29:28:7a:69:c6:09:1f:b7:67:05:bb:
96:fa:a1:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjDNWyh+vrUhLMPJWK28KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3ZjUxODBmOWI5M2FlNzU3M2MwOGE4OTRiZDQ1MmJkNzdj
ZTU2Y2QwHhcNMjUwMTAxMDE0NzQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDM2YmE0OThmNGViOWQ0Y2VlN2QyZWVjMjJlMjBmNTdiODdmYjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApITnftsXskGRl14uD9CDeL2vkYo5
IIs8ydOK+0fZulQbJvERvjjKIYiFS8GIPtiJ7vV+vaBWvn7ve1uGW/elI0EMoBkG
ajUJXHkBo1zcGslGUE1wwVMqPihGI/YwVNE2qEkSKXuIx6ysk7vRD2TWBs4sG4Yr
/wrlehHlEDQVLetxBgkw+P5P0bScax5v0PXxAJ5OwmOpbAlzag8oXscjjuhzIhSU
uwnwg/gqyC8q34fKGHtLp6179snAjWDsf2XqHopV23oQNp4p4NvbNMzAvGvucvM+
0rQQM907Vsml76CkVO3T5/AA6oMHVZbuffSZd0lQxWbqE06UBOzUeRinIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCQ2ukmPTrnUzufS7sIuIPV7h/uYMB8GA1UdIwQY
MBaAFCf1GA+bk651c8CKiUvUUr13zlbNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSl9VWUQ1dVRyblZ6d0lxSlM5UlN2WGZPVnMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lMWI4NGItMzlhNi00YWM4LWJlNjMt
MzBmZWUyN2U4NGNiLzEvSkRhNlNZOU91ZFRPNTlMdXdpNGc5WHVILTVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9lMWI4NGItMzlhNi00YWM4LWJlNjMtMzBmZWUyN2U4NGNi
LzEvSl9VWUQ1dVRyblZ6d0lxSlM5UlN2WGZPVnMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwfeSMA0G
CSqGSIb3DQEBCwUAA4IBAQBUthx3mMDLx5TmKO1MnFPDCGZaJQlN4sjSgNzPwPdM
5CpY0N+Ov4ytefcqt3SngnT9OctTNZ9JMHsBPpvgsjEqlFROaVulBmDMVbfobZcK
H/30rhBph+gryfmUaORbx4UM4PQ03d410vkTecgtn/upegcAM/ZnyvF2G5GZIy/H
o1NmFkYo7iZxnk8AUDAH30W03Nn34Jmtnx5W+urJQNczmfu7GLWHvOM6plz2f6aQ
A17IpZy9O/NbLlriykUvMSFfwdkTq/F19rGooGBHU7Bfy/n+9cwCBmggedfIs3sM
YnWeWa236TiLsuoVRc3G0v88KSh6acYJH7dnBbuW+qGl
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:17:34 2025 by rpki-client