Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/9f6872-581b-4d47-bc6a-eba0cd57c020/1/Rjc45YVuDrAMQdY8qgjKUXqz9To.roa
File: Rjc45YVuDrAMQdY8qgjKUXqz9To.roa (raw, json)
Hash identifier: VkM0hIqEPGBmrXo8E00kzKR2aWKMeDBdfCqKvjZR58E=
Subject key identifier: 46:37:38:E5:85:6E:0E:B0:0C:41:D6:3C:AA:08:CA:51:7A:B3:F5:3A
Certificate issuer: /CN=9fd9886e2db2709db22364e334d39e2ee488d36e
Certificate serial: 01942144700EDD3E844E86D0125BD3B0676C
Authority key identifier: 9F:D9:88:6E:2D:B2:70:9D:B2:23:64:E3:34:D3:9E:2E:E4:88:D3:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n9mIbi2ycJ2yI2TjNNOeLuSI024.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/9f6872-581b-4d47-bc6a-eba0cd57c020/1/Rjc45YVuDrAMQdY8qgjKUXqz9To.roa
Signing time: Wed 01 Jan 2025 09:48:40 +0000
ROA not before: Wed 01 Jan 2025 09:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20847
IP address blocks: 185.158.200.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:70:0e:dd:3e:84:4e:86:d0:12:5b:d3:b0:67:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fd9886e2db2709db22364e334d39e2ee488d36e
Validity
Not Before: Jan 1 09:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=463738e5856e0eb00c41d63caa08ca517ab3f53a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4e:1c:55:cf:65:a3:59:8c:32:a3:7b:ec:40:
e0:4e:4f:54:44:7d:d1:ad:1e:27:d2:ef:98:63:86:
8b:a2:4c:f5:d2:73:5e:68:24:bc:7a:50:c1:54:c9:
ca:bf:1e:d9:19:4d:6e:89:d2:b7:c2:1d:84:ab:f4:
3d:16:f0:14:da:56:e4:76:19:34:9e:d9:96:15:a5:
63:d9:0a:cf:fd:2f:5e:49:bd:6a:27:ad:02:08:ec:
d9:1e:02:b0:eb:5d:3f:63:7b:a1:76:54:e2:30:06:
85:7d:bb:08:4c:a4:32:fc:c3:da:1e:62:4b:95:70:
77:34:3f:43:bc:c9:d0:01:44:7e:f6:24:c1:ea:a5:
9d:75:9a:b6:0f:67:a2:ad:97:58:c6:cf:03:dc:e2:
bc:1e:c7:8e:77:5c:7c:ed:27:8e:3b:70:a5:fd:d0:
7f:22:d3:f2:c3:ce:b4:71:23:53:35:34:ad:22:14:
77:07:e8:1b:d2:c7:12:f5:b9:2f:8f:00:d6:40:a5:
b2:ea:69:59:7b:2f:4d:cb:f5:d9:6e:ff:f0:ea:2f:
d3:d0:1c:7d:86:b7:a3:55:06:5d:2f:18:34:bd:d2:
02:98:7f:63:63:fb:7c:da:e9:8d:99:db:f4:ef:a6:
7f:19:03:e2:6f:0d:27:7d:4a:1e:28:26:9b:59:36:
75:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:37:38:E5:85:6E:0E:B0:0C:41:D6:3C:AA:08:CA:51:7A:B3:F5:3A
X509v3 Authority Key Identifier:
keyid:9F:D9:88:6E:2D:B2:70:9D:B2:23:64:E3:34:D3:9E:2E:E4:88:D3:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n9mIbi2ycJ2yI2TjNNOeLuSI024.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/9f6872-581b-4d47-bc6a-eba0cd57c020/1/Rjc45YVuDrAMQdY8qgjKUXqz9To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/9f6872-581b-4d47-bc6a-eba0cd57c020/1/n9mIbi2ycJ2yI2TjNNOeLuSI024.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.200.0/22
Signature Algorithm: sha256WithRSAEncryption
92:4e:f5:d0:d4:9f:a4:69:10:fc:e1:f0:5b:60:5e:61:29:07:
65:a4:2a:f6:8f:8e:10:61:47:2b:cd:27:b1:08:18:c7:dd:67:
90:f2:12:dd:ab:e3:0d:87:ca:b7:48:65:46:98:f8:ea:b7:22:
e6:59:5f:83:a4:42:6b:b1:d2:7f:af:63:c9:01:a8:af:dd:5e:
ff:86:47:f8:44:56:82:9d:93:6d:4a:dc:55:bf:b2:0a:c3:9e:
c9:1b:1b:da:2a:25:95:9a:c5:33:ea:a7:eb:79:05:94:f2:ae:
72:67:39:b6:87:8a:b0:76:19:ac:55:89:a0:d8:5e:a0:fe:3b:
d5:d5:98:82:56:07:ab:fb:d4:d1:2a:81:3a:48:c6:f3:e4:75:
23:82:91:9e:df:93:1b:c8:b3:d9:72:64:5b:89:bc:80:c8:ce:
a9:75:25:c9:a1:01:25:a6:5a:c9:3b:88:a5:ed:16:e2:09:ef:
fc:da:59:e1:25:6a:6a:2e:2a:98:c0:bf:bb:5a:b2:4c:ec:52:
c5:51:6c:db:97:93:66:71:46:eb:b4:bf:ef:01:ba:59:e6:6d:
94:24:44:03:d7:ea:d7:da:30:e7:31:21:3f:99:2e:26:f1:9d:
98:55:c3:f4:61:99:d3:7f:8e:16:b3:7a:68:c4:13:72:91:c8:
5c:d5:81:60
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhRHAO3T6ETobQElvTsGdsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmZDk4ODZlMmRiMjcwOWRiMjIzNjRlMzM0ZDM5ZTJlZTQ4
OGQzNmUwHhcNMjUwMTAxMDk0ODQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NjM3MzhlNTg1NmUwZWIwMGM0MWQ2M2NhYTA4Y2E1MTdhYjNmNTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuE4cVc9lo1mMMqN77EDgTk9URH3R
rR4n0u+YY4aLokz10nNeaCS8elDBVMnKvx7ZGU1uidK3wh2Eq/Q9FvAU2lbkdhk0
ntmWFaVj2QrP/S9eSb1qJ60CCOzZHgKw610/Y3uhdlTiMAaFfbsITKQy/MPaHmJL
lXB3ND9DvMnQAUR+9iTB6qWddZq2D2eirZdYxs8D3OK8HseOd1x87SeOO3Cl/dB/
ItPyw860cSNTNTStIhR3B+gb0scS9bkvjwDWQKWy6mlZey9Ny/XZbv/w6i/T0Bx9
hrejVQZdLxg0vdICmH9jY/t82umNmdv076Z/GQPibw0nfUoeKCabWTZ17QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEY3OOWFbg6wDEHWPKoIylF6s/U6MB8GA1UdIwQY
MBaAFJ/ZiG4tsnCdsiNk4zTTni7kiNNuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbjltSWJpMnljSjJ5STJUak5OT2VMdVNJMDI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS85ZjY4NzItNTgxYi00ZDQ3LWJjNmEt
ZWJhMGNkNTdjMDIwLzEvUmpjNDVZVnVEckFNUWRZOHFnaktVWHF6OVRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS85ZjY4NzItNTgxYi00ZDQ3LWJjNmEtZWJhMGNkNTdjMDIw
LzEvbjltSWJpMnljSjJ5STJUak5OT2VMdVNJMDI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZ7IMA0G
CSqGSIb3DQEBCwUAA4IBAQCSTvXQ1J+kaRD84fBbYF5hKQdlpCr2j44QYUcrzSex
CBjH3WeQ8hLdq+MNh8q3SGVGmPjqtyLmWV+DpEJrsdJ/r2PJAaiv3V7/hkf4RFaC
nZNtStxVv7IKw57JGxvaKiWVmsUz6qfreQWU8q5yZzm2h4qwdhmsVYmg2F6g/jvV
1ZiCVger+9TRKoE6SMbz5HUjgpGe35MbyLPZcmRbibyAyM6pdSXJoQElplrJO4il
7RbiCe/82lnhJWpqLiqYwL+7WrJM7FLFUWzbl5NmcUbrtL/vAbpZ5m2UJEQD1+rX
2jDnMSE/mS4m8Z2YVcP0YZnTf44Ws3poxBNykchc1YFg
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:42:25 2025 by rpki-client