Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/fd492d-2ca7-4fa2-8ece-9b9324d618db/1/lo2R0nrGX4fAe4XtF9d1YZT_jmM.roa
File: lo2R0nrGX4fAe4XtF9d1YZT_jmM.roa (raw, json)
Hash identifier: XiAvdkMrN8D+Ilcz48reaytMw/4m0Z4ytTMct2Rb9Ww=
Subject key identifier: 96:8D:91:D2:7A:C6:5F:87:C0:7B:85:ED:17:D7:75:61:94:FF:8E:63
Certificate issuer: /CN=1488c18c62f08a4ed8ef83e0aa8d5690b8505368
Certificate serial: 018AE7679552A8430076EA097DD9188133DE
Authority key identifier: 14:88:C1:8C:62:F0:8A:4E:D8:EF:83:E0:AA:8D:56:90:B8:50:53:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FIjBjGLwik7Y74Pgqo1WkLhQU2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/fd492d-2ca7-4fa2-8ece-9b9324d618db/1/lo2R0nrGX4fAe4XtF9d1YZT_jmM.roa
Signing time: Sat 30 Sep 2023 18:43:59 +0000
ROA not before: Sat 30 Sep 2023 18:43:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216255
IP address blocks: 176.116.1.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e7:67:95:52:a8:43:00:76:ea:09:7d:d9:18:81:33:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1488c18c62f08a4ed8ef83e0aa8d5690b8505368
Validity
Not Before: Sep 30 18:43:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=968d91d27ac65f87c07b85ed17d7756194ff8e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:78:78:7c:38:b4:78:fd:8c:04:b7:d3:dd:fa:
2a:81:aa:4a:df:6f:72:6b:77:89:1f:46:59:ee:5d:
40:35:c7:bf:34:03:3e:f9:59:c8:34:cf:b9:79:ec:
2c:a8:2d:35:44:e9:38:4f:8f:8b:e9:3e:42:5b:45:
5e:20:e8:76:88:bf:31:ec:72:4b:1e:b3:e6:03:db:
48:7c:18:37:d4:9b:14:ef:25:90:6c:3a:f7:8c:41:
ff:6a:21:c1:34:df:a7:d5:28:11:0a:56:f0:8e:1b:
5b:b0:79:6b:56:15:ef:8b:bd:6e:0b:1b:c6:a9:4e:
59:69:fa:68:1c:d7:41:04:c3:c5:8a:50:e3:28:43:
b5:1c:08:df:33:5e:57:5e:e6:53:1d:21:5c:d7:44:
1f:be:63:29:59:6e:1e:eb:de:75:11:9e:1d:0e:f1:
b1:76:46:d1:58:9a:19:a4:ea:98:cc:26:f8:e9:de:
3c:ec:bf:25:8a:8a:d0:5e:88:05:c8:51:d7:4a:cc:
6a:01:9f:6c:51:3c:7a:38:b8:38:50:67:85:38:70:
33:a1:73:0d:92:8e:ad:14:74:40:58:c0:0f:00:f4:
26:ce:b5:0e:5d:7e:cb:95:1b:96:e3:8f:44:26:55:
cf:0e:94:46:32:9b:b8:a1:07:ab:7f:c2:cc:4a:2a:
2b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8D:91:D2:7A:C6:5F:87:C0:7B:85:ED:17:D7:75:61:94:FF:8E:63
X509v3 Authority Key Identifier:
keyid:14:88:C1:8C:62:F0:8A:4E:D8:EF:83:E0:AA:8D:56:90:B8:50:53:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FIjBjGLwik7Y74Pgqo1WkLhQU2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/fd492d-2ca7-4fa2-8ece-9b9324d618db/1/lo2R0nrGX4fAe4XtF9d1YZT_jmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/fd492d-2ca7-4fa2-8ece-9b9324d618db/1/FIjBjGLwik7Y74Pgqo1WkLhQU2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.1.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:9b:0d:3f:6a:35:26:e3:98:a6:13:77:09:32:b8:23:77:3b:
29:3c:33:04:fb:35:e6:4d:39:2c:3c:c0:77:32:14:c7:75:08:
ff:08:24:fe:55:2d:8b:17:4c:37:6f:de:cf:41:a6:8a:01:2a:
29:0a:c2:e2:6c:aa:f2:f5:88:e9:41:74:de:aa:1d:91:2f:bc:
b2:42:ad:0e:ff:de:6c:2e:23:25:c0:ac:c7:31:df:e4:28:55:
de:3b:82:0f:76:a4:bc:5a:ae:82:4a:5a:2b:3c:b2:dd:8f:59:
a1:99:5e:5e:01:d1:ee:cb:81:c1:a0:13:f7:2b:53:66:f7:8e:
5a:d4:cb:6f:66:41:15:b8:51:31:60:39:b6:cb:e9:98:7a:14:
42:5d:f5:68:33:37:0b:d5:33:db:c3:4a:7b:80:04:16:4c:fe:
c3:15:18:57:9e:c0:37:fd:9f:d7:15:14:06:e6:4d:44:7e:d3:
7c:06:0d:70:f7:61:d3:b4:f6:f5:18:fb:c1:ee:bc:d0:46:94:
d3:b1:03:a3:0f:e2:d2:17:20:b2:42:69:2d:06:c8:91:dd:d4:
24:94:94:2a:ea:5d:7b:10:16:e6:23:e4:40:c1:89:6e:3a:40:
a4:bc:a2:8f:95:07:75:9b:bd:1d:68:05:9b:87:25:b2:f1:fb:
a7:20:13:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrnZ5VSqEMAduoJfdkYgTPeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0ODhjMThjNjJmMDhhNGVkOGVmODNlMGFhOGQ1NjkwYjg1
MDUzNjgwHhcNMjMwOTMwMTg0MzU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NjhkOTFkMjdhYzY1Zjg3YzA3Yjg1ZWQxN2Q3NzU2MTk0ZmY4ZTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg3h4fDi0eP2MBLfT3foqgapK329y
a3eJH0ZZ7l1ANce/NAM++VnINM+5eewsqC01ROk4T4+L6T5CW0VeIOh2iL8x7HJL
HrPmA9tIfBg31JsU7yWQbDr3jEH/aiHBNN+n1SgRClbwjhtbsHlrVhXvi71uCxvG
qU5ZafpoHNdBBMPFilDjKEO1HAjfM15XXuZTHSFc10QfvmMpWW4e6951EZ4dDvGx
dkbRWJoZpOqYzCb46d487L8liorQXogFyFHXSsxqAZ9sUTx6OLg4UGeFOHAzoXMN
ko6tFHRAWMAPAPQmzrUOXX7LlRuW449EJlXPDpRGMpu4oQerf8LMSior5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJaNkdJ6xl+HwHuF7RfXdWGU/45jMB8GA1UdIwQY
MBaAFBSIwYxi8IpO2O+D4KqNVpC4UFNoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRklqQmpHTHdpazdZNzRQZ3FvMVdrTGhRVTJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9mZDQ5MmQtMmNhNy00ZmEyLThlY2Ut
OWI5MzI0ZDYxOGRiLzEvbG8yUjBuckdYNGZBZTRYdEY5ZDFZWlRfam1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9mZDQ5MmQtMmNhNy00ZmEyLThlY2UtOWI5MzI0ZDYxOGRi
LzEvRklqQmpHTHdpazdZNzRQZ3FvMVdrTGhRVTJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHQBMA0G
CSqGSIb3DQEBCwUAA4IBAQBPmw0/ajUm45imE3cJMrgjdzspPDME+zXmTTksPMB3
MhTHdQj/CCT+VS2LF0w3b97PQaaKASopCsLibKry9YjpQXTeqh2RL7yyQq0O/95s
LiMlwKzHMd/kKFXeO4IPdqS8Wq6CSlorPLLdj1mhmV5eAdHuy4HBoBP3K1Nm945a
1MtvZkEVuFExYDm2y+mYehRCXfVoMzcL1TPbw0p7gAQWTP7DFRhXnsA3/Z/XFRQG
5k1EftN8Bg1w92HTtPb1GPvB7rzQRpTTsQOjD+LSFyCyQmktBsiR3dQklJQq6l17
EBbmI+RAwYluOkCkvKKPlQd1m70daAWbhyWy8funIBPL
-----END CERTIFICATE-----
Generated at Sun Apr 20 17:38:28 2025 by rpki-client