Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/ruV6M_L_vyULp4Ss-6UCRY9SBx0.roa
File: ruV6M_L_vyULp4Ss-6UCRY9SBx0.roa (raw, json)
Hash identifier: BmUZDYA1IJby60CRqGOwmnqIbgF/89zITc1b59rpcXY=
Subject key identifier: AE:E5:7A:33:F2:FF:BF:25:0B:A7:84:AC:FB:A5:02:45:8F:52:07:1D
Certificate issuer: /CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Certificate serial: 019174F200A9621BA385AC2681F58F1DDD38
Authority key identifier: B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/ruV6M_L_vyULp4Ss-6UCRY9SBx0.roa
Signing time: Wed 21 Aug 2024 12:38:22 +0000
ROA not before: Wed 21 Aug 2024 12:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 95.174.80.0/24 maxlen: 24
185.144.16.0/22 maxlen: 24
2a04:2f81::/42 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:74:f2:00:a9:62:1b:a3:85:ac:26:81:f5:8f:1d:dd:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Validity
Not Before: Aug 21 12:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aee57a33f2ffbf250ba784acfba502458f52071d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2b:65:b4:9d:f6:e4:74:f5:cc:f8:30:b8:87:
f7:71:3d:3a:20:25:2b:e7:01:ca:d5:d3:1e:0a:a3:
ef:c2:83:16:9c:0a:f8:27:ea:e1:c5:10:3c:9e:a1:
44:22:df:a4:bb:0a:2a:2e:f6:5f:fe:24:6a:59:48:
fc:19:ac:2d:a4:b7:80:f6:92:ff:76:34:f0:6f:4c:
1d:5b:9a:4a:fe:97:2e:42:50:2f:d0:7c:a8:bb:5c:
f4:f1:8e:fa:6a:7a:a8:09:d9:9c:a1:39:1c:7e:21:
04:2e:73:f5:e0:70:e1:72:34:a6:77:96:1d:28:a8:
7d:ba:a9:a6:29:d7:9b:a8:d0:b6:3d:71:ba:bc:9f:
82:a6:b2:1b:a0:d3:9a:d4:0f:2e:8e:39:88:6f:8c:
b1:b5:92:1b:a8:98:17:5a:77:ce:72:2e:ce:c1:33:
94:c0:e0:0e:d2:a0:3d:7e:24:09:31:9d:d6:47:55:
63:cf:eb:3c:71:ba:db:f2:d0:30:a2:17:5e:9f:ca:
32:35:3b:9e:40:9d:fe:38:0f:c3:d0:d1:db:52:09:
e1:4c:17:09:ef:a2:56:e2:6a:87:52:95:82:00:d7:
fc:42:e3:22:12:06:2e:df:7b:eb:b9:76:ee:3e:4a:
4c:2d:55:11:48:07:c5:4c:4d:aa:87:0d:5e:1f:21:
d0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E5:7A:33:F2:FF:BF:25:0B:A7:84:AC:FB:A5:02:45:8F:52:07:1D
X509v3 Authority Key Identifier:
keyid:B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/ruV6M_L_vyULp4Ss-6UCRY9SBx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/sf_ufb9_RWbqnjBUaywqLnM28vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.174.80.0/24
185.144.16.0/22
IPv6:
2a04:2f81::/42
Signature Algorithm: sha256WithRSAEncryption
53:99:83:14:4d:bf:32:6c:df:b0:87:e3:3a:26:5e:5d:3b:b7:
90:9b:cd:50:99:da:45:2b:59:9a:56:b6:71:1a:e6:51:2f:10:
a1:39:d6:95:f5:3a:ba:a3:2e:4d:4e:f1:50:e2:10:e6:ae:dd:
71:a2:e5:11:e0:4f:60:a4:d2:fd:6a:89:52:a5:03:c3:bc:84:
23:fb:d4:1c:a1:ce:bb:69:00:8d:6d:d9:6f:c4:ca:5c:c1:4f:
5c:2f:50:0a:9d:d1:d0:08:6f:cd:72:ed:13:16:84:3f:8d:c8:
df:76:06:ed:20:2b:23:89:92:bb:79:b9:d5:04:29:06:01:a0:
51:09:e3:67:80:da:73:59:73:72:55:8e:28:45:1c:e3:17:b9:
c6:bb:70:79:fc:04:c4:d4:8c:23:79:60:7b:8e:d8:88:51:3c:
2b:00:43:fa:d2:3d:3d:ac:b1:95:56:a6:6b:f2:02:5f:4a:b0:
b7:a6:5a:8e:16:b6:34:fd:f8:7e:72:21:fa:7b:18:1b:2b:59:
8a:ea:72:50:e0:ff:d1:5f:70:ff:09:64:49:ff:6e:37:df:1b:
82:83:5c:a3:8f:85:bb:8e:02:0e:ff:86:ff:6b:ee:12:fe:42:
51:70:54:98:67:4d:a9:89:d9:25:1f:d7:f4:74:78:9c:95:5b:
a9:66:2b:25
-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgISAZF08gCpYhujhawmgfWPHd04MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZmZlZTdkYmY3ZjQ1NjZlYTllMzA1NDZiMmMyYTJlNzMz
NmYyZjQwHhcNMjQwODIxMTIzODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWU1N2EzM2YyZmZiZjI1MGJhNzg0YWNmYmE1MDI0NThmNTIwNzFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxytltJ325HT1zPgwuIf3cT06ICUr
5wHK1dMeCqPvwoMWnAr4J+rhxRA8nqFEIt+kuwoqLvZf/iRqWUj8GawtpLeA9pL/
djTwb0wdW5pK/pcuQlAv0Hyou1z08Y76anqoCdmcoTkcfiEELnP14HDhcjSmd5Yd
KKh9uqmmKdebqNC2PXG6vJ+CprIboNOa1A8ujjmIb4yxtZIbqJgXWnfOci7OwTOU
wOAO0qA9fiQJMZ3WR1Vjz+s8cbrb8tAwohden8oyNTueQJ3+OA/D0NHbUgnhTBcJ
76JW4mqHUpWCANf8QuMiEgYu33vruXbuPkpMLVURSAfFTE2qhw1eHyHQnwIDAQAB
o4ICIDCCAhwwHQYDVR0OBBYEFK7lejPy/78lC6eErPulAkWPUgcdMB8GA1UdIwQY
MBaAFLH/7n2/f0Vm6p4wVGssKi5zNvL0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2ZfdWZiOV9SV2JxbmpCVWF5d3FMbk0yOHZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8yZmNiYjItYzNjMC00YjFlLThhZDUt
N2Y1Zjc4MzQ2ZDZmLzEvcnVWNk1fTF92eVVMcDRTcy02VUNSWTlTQngwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8yZmNiYjItYzNjMC00YjFlLThhZDUtN2Y1Zjc4MzQ2ZDZm
LzEvc2ZfdWZiOV9SV2JxbmpCVWF5d3FMbk0yOHZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAX65QAwQC
uZAQMA8EAgACMAkDBwYqBC+BAAAwDQYJKoZIhvcNAQELBQADggEBAFOZgxRNvzJs
37CH4zomXl07t5CbzVCZ2kUrWZpWtnEa5lEvEKE51pX1OrqjLk1O8VDiEOau3XGi
5RHgT2Ck0v1qiVKlA8O8hCP71ByhzrtpAI1t2W/EylzBT1wvUAqd0dAIb81y7RMW
hD+NyN92Bu0gKyOJkrt5udUEKQYBoFEJ42eA2nNZc3JVjihFHOMXuca7cHn8BMTU
jCN5YHuO2IhRPCsAQ/rSPT2ssZVWpmvyAl9KsLemWo4WtjT9+H5yIfp7GBsrWYrq
clDg/9FfcP8JZEn/bjffG4KDXKOPhbuOAg7/hv9r7hL+QlFwVJhnTamJ2SUf1/R0
eJyVW6lmKyU=
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:40:51 2025 by rpki-client