Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/c7e8d0-44df-40f0-a8cb-42b428dd4ab3/1/hiaPSPgf7HYYPqbrr5SIBSr3E74.roa
File: hiaPSPgf7HYYPqbrr5SIBSr3E74.roa (raw, json)
Hash identifier: 41usWuQhJTFEWwlnBTeOalrObRw9WwDPjbSJjdg+QgU=
Subject key identifier: 86:26:8F:48:F8:1F:EC:76:18:3E:A6:EB:AF:94:88:05:2A:F7:13:BE
Certificate issuer: /CN=5c0b45d54e5ff2f779cf2ad13699642c746ba40c
Certificate serial: 0D509E57
Authority key identifier: 5C:0B:45:D5:4E:5F:F2:F7:79:CF:2A:D1:36:99:64:2C:74:6B:A4:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XAtF1U5f8vd5zyrRNplkLHRrpAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/c7e8d0-44df-40f0-a8cb-42b428dd4ab3/1/hiaPSPgf7HYYPqbrr5SIBSr3E74.roa
Signing time: Mon 21 Feb 2022 18:51:20 +0000
ROA not before: Mon 21 Feb 2022 18:51:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34307
IP address blocks: 193.239.116.0/22 maxlen: 22
2001:7f8:13::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223387223 (0xd509e57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c0b45d54e5ff2f779cf2ad13699642c746ba40c
Validity
Not Before: Feb 21 18:51:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86268f48f81fec76183ea6ebaf9488052af713be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:92:87:be:0d:36:68:6a:33:2b:e1:b3:fb:35:
1d:b1:ff:8c:3a:a2:ee:83:e0:83:17:b8:60:16:89:
d3:2e:3a:08:6a:95:e6:5c:02:36:af:97:1f:21:ef:
be:92:7c:af:de:f8:b1:7d:60:a5:6c:96:8d:61:7a:
31:e2:d2:52:b7:db:ac:a8:e7:6a:7f:83:0f:83:77:
7b:1c:19:28:cc:8b:94:ea:91:f0:0c:68:56:0c:9a:
03:83:06:c6:89:b3:6f:f9:11:17:a1:e2:92:7e:1c:
11:34:45:0c:28:85:dc:b6:d3:14:cf:64:de:bb:a0:
fd:38:c5:5d:18:19:bd:57:52:4c:53:b0:97:5e:c5:
31:c7:92:a6:de:fd:15:04:72:9b:84:77:8b:a3:7a:
f1:96:22:8d:f8:24:5e:da:ae:9f:81:c5:4b:bb:97:
3e:65:19:15:10:74:7d:3c:d6:e7:c5:ed:f4:c3:43:
0d:da:54:4b:0c:40:72:ef:e1:f0:62:b9:58:7c:4f:
df:31:7e:3d:65:bb:52:46:52:42:ed:b3:d2:08:00:
30:ea:ec:6a:b2:2a:88:99:55:e5:c5:5a:15:ac:1e:
30:e9:f9:da:f9:ba:b1:99:a8:d9:7e:b0:21:c5:dc:
05:a4:12:51:4e:3a:54:bf:aa:0a:5a:a6:e7:26:9e:
d7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:26:8F:48:F8:1F:EC:76:18:3E:A6:EB:AF:94:88:05:2A:F7:13:BE
X509v3 Authority Key Identifier:
keyid:5C:0B:45:D5:4E:5F:F2:F7:79:CF:2A:D1:36:99:64:2C:74:6B:A4:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XAtF1U5f8vd5zyrRNplkLHRrpAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/c7e8d0-44df-40f0-a8cb-42b428dd4ab3/1/hiaPSPgf7HYYPqbrr5SIBSr3E74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/c7e8d0-44df-40f0-a8cb-42b428dd4ab3/1/XAtF1U5f8vd5zyrRNplkLHRrpAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.116.0/22
IPv6:
2001:7f8:13::/64
Signature Algorithm: sha256WithRSAEncryption
4c:40:9c:2c:d5:15:1e:0e:c1:dd:d5:2f:88:9d:df:02:48:a5:
7b:f2:ba:8e:aa:ca:4d:39:d8:95:1a:24:a7:40:77:fc:de:14:
39:17:00:7a:56:e4:c2:8c:6b:77:df:4d:c3:2c:b8:17:71:d4:
f7:2e:bf:13:47:6e:e3:d8:cd:a5:d4:96:38:dd:31:8c:fd:81:
f3:01:69:19:0e:07:6c:3f:01:73:9f:aa:87:8a:5e:13:97:bc:
6c:87:3c:36:21:ed:f7:f8:a6:f4:f0:48:74:ad:7d:98:18:71:
cd:ce:20:c1:73:58:e5:c8:c2:b6:79:09:d1:d2:ed:0c:8e:b1:
e8:2b:a5:89:48:9c:a3:4c:df:80:85:6c:9b:ac:10:8f:b2:de:
57:8a:12:5a:1d:16:13:c8:7f:6c:18:c1:b8:ae:80:76:ec:4a:
15:c9:22:a4:40:d9:72:08:b4:7d:1b:23:b2:b9:89:53:ad:dc:
b5:0c:5d:1c:41:20:d5:70:96:5a:89:14:e7:c2:80:96:2b:e6:
d0:d2:c1:f8:aa:b2:d9:8c:14:90:1e:71:a4:58:7f:30:6d:a1:
9b:ec:5f:3e:57:84:c6:91:f5:24:38:ba:fe:98:5a:2f:f9:98:
48:69:e4:1d:b2:8c:ed:36:21:66:41:8d:0a:4c:eb:38:a3:90:
a2:4b:2d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 28 22:38:57 2025 by rpki-client