Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/0hQyQ7U51sCxrfobcPKWCWWkFNc.roa
File: 0hQyQ7U51sCxrfobcPKWCWWkFNc.roa (raw, json)
Hash identifier: NfaGTaDeVySVHGlHYpzLXFsc3iGKVOqXCiHIwpEnwko=
Subject key identifier: D2:14:32:43:B5:39:D6:C0:B1:AD:FA:1B:70:F2:96:09:65:A4:14:D7
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 019428281792047A0EE57F28C19CF46C4DDE
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/0hQyQ7U51sCxrfobcPKWCWWkFNc.roa
Signing time: Thu 02 Jan 2025 17:55:03 +0000
ROA not before: Thu 02 Jan 2025 17:55:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44179
IP address blocks: 82.103.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:17:92:04:7a:0e:e5:7f:28:c1:9c:f4:6c:4d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 17:55:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d2143243b539d6c0b1adfa1b70f2960965a414d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9e:8e:31:4a:94:b4:42:74:10:10:d0:ad:ec:
e7:45:bc:94:59:2f:8c:08:0a:e4:19:39:03:0a:67:
ee:b3:f8:8f:c5:9a:f2:bc:23:33:54:cf:1b:ce:7a:
2f:7f:ef:d6:b0:f3:e2:83:52:a5:01:12:c8:59:56:
a6:f7:9f:a2:32:93:d9:d7:5f:31:51:6f:65:64:8a:
3c:f4:50:2d:79:bf:9b:36:f6:e5:38:5b:4e:0a:ba:
8e:c5:cd:fe:a8:3e:6a:a0:bb:92:38:a8:99:4f:3e:
c4:52:75:2d:cd:50:c3:46:d5:86:16:54:30:ff:73:
54:03:45:0c:e7:51:66:6d:0b:e8:41:6e:75:85:50:
5f:55:a0:19:1a:1e:f5:80:2d:2b:09:e1:11:ca:6e:
71:b5:c6:30:49:ac:41:2f:a0:2f:8c:f4:30:53:0b:
d2:d6:1a:c9:0c:ef:d6:73:de:1a:e4:b2:33:93:a2:
0b:c3:9b:a7:37:3e:43:fe:ee:5d:87:52:1d:1b:2a:
bf:7d:77:3e:2e:d6:e6:b7:57:79:b9:f3:32:32:d3:
61:ce:8d:86:40:36:26:eb:8c:a2:08:f7:65:05:e8:
5d:3a:89:c8:d6:23:87:86:a1:6b:35:59:7a:38:1e:
57:c4:2a:6c:06:2c:3b:a8:ec:ac:ec:1b:49:60:fb:
7b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:14:32:43:B5:39:D6:C0:B1:AD:FA:1B:70:F2:96:09:65:A4:14:D7
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/0hQyQ7U51sCxrfobcPKWCWWkFNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.103.64.0/24
Signature Algorithm: sha256WithRSAEncryption
17:37:d9:11:c9:af:50:bd:ee:f4:b8:06:e7:ea:a1:3e:9e:ac:
74:67:69:30:02:c4:1a:52:16:5a:ee:e9:6e:96:a8:e0:2a:3f:
d9:16:44:b0:80:79:d7:c6:e6:ab:32:81:b6:1e:4d:b7:42:31:
53:80:1c:7e:2c:30:79:33:8a:b9:7e:9f:3a:c9:18:56:ef:d8:
ca:c1:61:12:04:f8:02:d6:1f:3c:b5:be:85:3b:d6:88:af:af:
55:c0:dd:76:ae:91:ec:e6:33:e8:3f:53:1d:33:3e:c1:d8:62:
17:a6:a1:35:e9:26:97:df:43:5c:79:06:99:38:56:10:51:c4:
21:fb:c2:75:8a:80:44:e3:c1:03:7a:ff:90:29:7a:79:07:7b:
1f:d7:5b:53:d9:36:a0:16:71:d6:46:69:97:66:52:93:61:50:
d2:55:1c:fb:ed:ba:fd:60:0e:cb:0a:f4:15:02:7e:70:37:84:
8b:5f:92:c0:60:32:5b:fb:2c:5e:b3:9a:bd:ab:a3:9d:8e:24:
a3:f8:03:d8:e1:da:69:27:7a:fa:c1:d8:50:65:c2:8f:b8:30:
15:b6:af:fb:12:a9:60:35:2b:88:ac:64:7e:79:d9:89:06:92:
7a:7a:c4:49:23:d7:e7:17:79:2b:05:7d:a5:78:ec:31:36:da:
df:26:5e:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoKBeSBHoO5X8owZz0bE3eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjUwMTAyMTc1NTAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjE0MzI0M2I1MzlkNmMwYjFhZGZhMWI3MGYyOTYwOTY1YTQxNGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJ6OMUqUtEJ0EBDQreznRbyUWS+M
CArkGTkDCmfus/iPxZryvCMzVM8bznovf+/WsPPig1KlARLIWVam95+iMpPZ118x
UW9lZIo89FAteb+bNvblOFtOCrqOxc3+qD5qoLuSOKiZTz7EUnUtzVDDRtWGFlQw
/3NUA0UM51FmbQvoQW51hVBfVaAZGh71gC0rCeERym5xtcYwSaxBL6AvjPQwUwvS
1hrJDO/Wc94a5LIzk6ILw5unNz5D/u5dh1IdGyq/fXc+Ltbmt1d5ufMyMtNhzo2G
QDYm64yiCPdlBehdOonI1iOHhqFrNVl6OB5XxCpsBiw7qOys7BtJYPt7cwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNIUMkO1OdbAsa36G3DylgllpBTXMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvMGhReVE3VTUxc0N4cmZvYmNQS1dDV1drRk5jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUmdAMA0G
CSqGSIb3DQEBCwUAA4IBAQAXN9kRya9Qve70uAbn6qE+nqx0Z2kwAsQaUhZa7ulu
lqjgKj/ZFkSwgHnXxuarMoG2Hk23QjFTgBx+LDB5M4q5fp86yRhW79jKwWESBPgC
1h88tb6FO9aIr69VwN12rpHs5jPoP1MdMz7B2GIXpqE16SaX30NceQaZOFYQUcQh
+8J1ioBE48EDev+QKXp5B3sf11tT2TagFnHWRmmXZlKTYVDSVRz77br9YA7LCvQV
An5wN4SLX5LAYDJb+yxes5q9q6OdjiSj+APY4dppJ3r6wdhQZcKPuDAVtq/7Eqlg
NSuIrGR+edmJBpJ6esRJI9fnF3krBX2leOwxNtrfJl6C
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:44:15 2025 by rpki-client