Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7a44cc-bc62-4fd2-b0c1-8d2a279e02b3/1/Ro36iM8Zkod9zJ6CnaAzI4rVtRk.roa
File: Ro36iM8Zkod9zJ6CnaAzI4rVtRk.roa (raw, json)
Hash identifier: dDErkS7eO9XkmpVPz6AK4hjiLL/MjMAGgHYgL9bAEu0=
Subject key identifier: 46:8D:FA:88:CF:19:92:87:7D:CC:9E:82:9D:A0:33:23:8A:D5:B5:19
Certificate issuer: /CN=a67ecbb4f65f88b45cccce7cc97807a984384b5d
Certificate serial: 013D01
Authority key identifier: A6:7E:CB:B4:F6:5F:88:B4:5C:CC:CE:7C:C9:78:07:A9:84:38:4B:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pn7LtPZfiLRczM58yXgHqYQ4S10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7a44cc-bc62-4fd2-b0c1-8d2a279e02b3/1/Ro36iM8Zkod9zJ6CnaAzI4rVtRk.roa
Signing time: Tue 17 May 2022 15:59:00 +0000
ROA not before: Tue 17 May 2022 15:59:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202833
IP address blocks: 193.19.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81153 (0x13d01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67ecbb4f65f88b45cccce7cc97807a984384b5d
Validity
Not Before: May 17 15:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=468dfa88cf1992877dcc9e829da033238ad5b519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cf:f0:dc:d7:2f:02:92:90:e6:c0:81:6a:cc:
d3:0a:9e:6d:52:9d:55:f7:bf:d5:9b:f3:bd:77:9f:
10:fa:db:06:7b:8b:a5:82:9f:ee:b5:1f:d5:bf:81:
e7:73:e4:b0:4a:71:3c:8f:b8:d3:91:8d:6f:7b:9c:
19:16:e4:09:8a:f6:5e:54:e7:54:ee:1d:6b:08:e6:
08:30:dc:a5:bf:8f:cf:42:30:19:5a:37:9f:5e:d6:
f7:02:d9:fa:c9:7e:7e:98:0c:57:30:3b:37:7a:ee:
a2:2f:5b:7e:f7:20:da:fb:11:7f:ee:0e:c8:c6:c9:
31:d6:e1:ba:e9:6c:b2:65:b1:c3:56:38:81:01:01:
bd:17:4e:45:4a:0a:3e:5e:c2:76:2b:7b:fb:45:e1:
89:e1:4f:71:11:c5:88:f4:26:5c:6d:6d:01:1c:4b:
20:21:af:3f:75:81:e8:89:f7:9c:ff:13:6c:00:5b:
c0:6d:68:d2:97:22:ab:8d:c6:e7:a5:dd:e6:44:81:
0d:0e:6e:3d:98:e2:59:65:0b:cb:38:f7:68:ba:40:
21:99:b8:5b:f2:9d:61:30:3f:5b:bd:e1:81:c5:2a:
0c:32:d0:cd:9a:47:42:f9:f2:31:4e:0e:ae:f2:e3:
9c:80:7e:4e:7a:a4:c4:2d:d4:f4:3e:eb:88:b4:a2:
d6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:8D:FA:88:CF:19:92:87:7D:CC:9E:82:9D:A0:33:23:8A:D5:B5:19
X509v3 Authority Key Identifier:
keyid:A6:7E:CB:B4:F6:5F:88:B4:5C:CC:CE:7C:C9:78:07:A9:84:38:4B:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pn7LtPZfiLRczM58yXgHqYQ4S10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7a44cc-bc62-4fd2-b0c1-8d2a279e02b3/1/Ro36iM8Zkod9zJ6CnaAzI4rVtRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7a44cc-bc62-4fd2-b0c1-8d2a279e02b3/1/pn7LtPZfiLRczM58yXgHqYQ4S10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.148.0/22
Signature Algorithm: sha256WithRSAEncryption
55:68:25:b6:91:05:8a:4f:cc:fe:1d:8f:ab:6c:93:36:28:7b:
32:58:f9:4b:1f:4b:a0:95:a7:d7:9e:55:97:f7:b0:35:64:37:
34:57:33:0a:17:ca:ad:f3:65:f4:37:f5:92:ce:31:e4:d5:e1:
c1:38:90:3c:41:71:4e:9d:e7:31:91:fd:06:85:4b:5d:ad:d1:
4c:68:7e:d1:f1:f1:a8:50:a4:d8:15:c3:16:c4:fd:9d:c1:df:
c7:b3:ba:83:dd:0e:6e:61:07:9d:40:40:bc:8c:20:be:ee:76:
86:8a:89:12:e3:c4:44:47:4a:f5:55:bd:2c:28:45:85:4e:bb:
99:b9:8d:56:cd:77:9d:70:78:55:5f:6b:d0:0e:e8:99:50:e6:
af:15:f8:51:46:d2:2d:9a:98:87:38:6e:cb:0f:e4:23:fb:db:
62:8e:90:b5:28:19:8d:a3:78:bc:44:6e:83:68:40:88:2b:fa:
67:36:9d:fe:ba:ef:c2:9c:3e:ec:1d:e2:1f:8c:24:11:31:9f:
69:bc:39:0d:86:ca:9e:2c:64:87:4d:ad:4a:83:d4:1e:c0:fe:
b3:f7:3d:b2:c7:1f:49:eb:2c:1e:3a:8c:19:39:d5:3a:2a:4a:
35:a9:78:75:ea:4d:b9:4d:68:f4:b8:58:ec:28:3e:e7:d6:eb:
3d:8f:bc:68
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAT0BMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE2
N2VjYmI0ZjY1Zjg4YjQ1Y2NjY2U3Y2M5NzgwN2E5ODQzODRiNWQwHhcNMjIwNTE3
MTU1OTAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0NjhkZmE4OGNmMTk5
Mjg3N2RjYzllODI5ZGEwMzMyMzhhZDViNTE5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAps/w3NcvApKQ5sCBaszTCp5tUp1V97/Vm/O9d58Q+tsGe4ul
gp/utR/Vv4Hnc+SwSnE8j7jTkY1ve5wZFuQJivZeVOdU7h1rCOYIMNylv4/PQjAZ
WjefXtb3Atn6yX5+mAxXMDs3eu6iL1t+9yDa+xF/7g7Ixskx1uG66WyyZbHDVjiB
AQG9F05FSgo+XsJ2K3v7ReGJ4U9xEcWI9CZcbW0BHEsgIa8/dYHoifec/xNsAFvA
bWjSlyKrjcbnpd3mRIENDm49mOJZZQvLOPdoukAhmbhb8p1hMD9bveGBxSoMMtDN
mkdC+fIxTg6u8uOcgH5OeqTELdT0PuuItKLWaQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEaN+ojPGZKHfcyegp2gMyOK1bUZMB8GA1UdIwQYMBaAFKZ+y7T2X4i0XMzO
fMl4B6mEOEtdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cG43THRQWmZpTFJjek01OHlYZ0hxWVE0UzEwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wOS83YTQ0Y2MtYmM2Mi00ZmQyLWIwYzEtOGQyYTI3OWUwMmIzLzEv
Um8zNmlNOFprb2Q5eko2Q25hQXpJNHJWdFJrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83
YTQ0Y2MtYmM2Mi00ZmQyLWIwYzEtOGQyYTI3OWUwMmIzLzEvcG43THRQWmZpTFJj
ek01OHlYZ0hxWVE0UzEwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwROUMA0GCSqGSIb3DQEBCwUAA4IB
AQBVaCW2kQWKT8z+HY+rbJM2KHsyWPlLH0uglafXnlWX97A1ZDc0VzMKF8qt82X0
N/WSzjHk1eHBOJA8QXFOnecxkf0GhUtdrdFMaH7R8fGoUKTYFcMWxP2dwd/Hs7qD
3Q5uYQedQEC8jCC+7naGiokS48RER0r1Vb0sKEWFTruZuY1WzXedcHhVX2vQDuiZ
UOavFfhRRtItmpiHOG7LD+Qj+9tijpC1KBmNo3i8RG6DaECIK/pnNp3+uu/CnD7s
HeIfjCQRMZ9pvDkNhsqeLGSHTa1Kg9QewP6z9z2yxx9J6yweOowZOdU6Kko1qXh1
6k25TWj0uFjsKD7n1us9j7xo
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:56:56 2025 by rpki-client