Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/S-O3TbcstTKMug___VSvS3cgrog.roa
File: S-O3TbcstTKMug___VSvS3cgrog.roa (raw, json)
Hash identifier: 3ebQ/8RxqwDIFEsCdZKDawRwthwgLIDNt8oqNlSOX+8=
Subject key identifier: 4B:E3:B7:4D:B7:2C:B5:32:8C:BA:0F:FF:FD:54:AF:4B:77:20:AE:88
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 019420681228DF3AA288B2AF2BACE393084E
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/S-O3TbcstTKMug___VSvS3cgrog.roa
Signing time: Wed 01 Jan 2025 05:47:58 +0000
ROA not before: Wed 01 Jan 2025 05:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214542
IP address blocks: 193.57.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:12:28:df:3a:a2:88:b2:af:2b:ac:e3:93:08:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 05:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4be3b74db72cb5328cba0ffffd54af4b7720ae88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:45:ed:28:8d:c2:a4:57:6f:e9:68:da:c7:
c3:85:03:eb:a5:17:15:c1:0c:82:28:57:51:1d:3a:
91:59:ff:81:e3:ac:fd:5e:26:84:5f:9c:22:fa:8a:
36:a3:d3:5b:85:1c:f2:33:a5:94:56:1d:01:3c:23:
c4:2a:7b:d3:c3:5e:33:d4:76:ba:c5:81:e9:3b:09:
c9:d7:9d:7f:49:79:32:ed:da:99:65:83:a9:c8:3e:
95:c4:ca:c2:39:ae:1d:f6:41:cf:c4:48:88:1e:a3:
19:15:e9:b3:af:df:50:fb:65:d1:54:d4:61:77:31:
f6:16:83:08:0a:59:73:78:e3:91:ee:45:16:13:d3:
64:59:cb:5f:58:45:73:98:3f:08:4c:e9:5b:cb:7c:
ad:7b:c4:99:1c:d6:c8:cb:56:0a:92:0f:59:d3:42:
09:ec:c5:e2:1f:08:7d:5b:6d:07:87:37:fd:0f:34:
f2:ee:49:a0:a1:b8:63:dd:be:74:22:ee:3a:86:1b:
d0:11:2a:04:2a:2a:5a:a8:f0:db:14:25:1e:f5:b6:
a9:10:de:58:d8:fd:f4:0a:79:ef:de:26:d2:60:2e:
ab:1e:de:7b:16:fc:29:7a:c3:d7:76:ab:68:51:3f:
b3:cc:81:f0:fa:84:3e:b1:f9:52:5b:94:9b:8a:75:
a1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:E3:B7:4D:B7:2C:B5:32:8C:BA:0F:FF:FD:54:AF:4B:77:20:AE:88
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/S-O3TbcstTKMug___VSvS3cgrog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.9.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:53:4a:dd:b7:97:73:85:e1:1d:34:86:4f:9f:9b:69:16:01:
5d:c2:5b:17:cc:4c:ed:0e:ab:fd:01:ff:3c:ec:e8:b9:ab:cb:
4c:19:2e:a8:e3:de:15:28:9f:5c:6c:a2:b8:c9:3e:5d:ff:9b:
18:7a:a1:95:bc:9e:a2:44:d1:04:1e:5f:56:90:7c:d4:06:16:
44:36:e6:b6:80:ff:34:4d:75:5a:09:e8:9f:34:bd:13:50:9b:
e6:5d:bf:da:9a:28:2e:2e:bb:5d:fa:a6:9d:7a:dd:61:e8:a1:
58:4a:c9:eb:bb:97:a7:93:3a:e5:03:b1:31:a7:be:ac:a5:6a:
dd:4f:db:d5:aa:b9:8e:49:55:c8:67:fe:42:d3:ab:98:72:a6:
76:2b:a2:43:c6:bc:77:99:60:74:cf:4a:a7:6d:25:72:73:6f:
93:46:9b:e2:d6:c9:da:9a:f2:cf:e0:fc:61:5b:76:2f:11:70:
4a:89:57:ef:a4:63:a6:8c:48:43:60:f6:1e:1b:b8:a9:53:91:
6c:c8:d9:9a:2b:21:65:7d:13:d5:f2:ef:c9:57:8c:1d:f0:23:
10:85:85:f3:e5:24:14:b8:33:e5:d7:1f:ab:69:af:e1:42:e5:
a2:c1:4e:55:92:bf:76:ef:37:c6:57:64:1d:59:27:b1:31:42:
a4:aa:ff:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQgaBIo3zqiiLKvK6zjkwhOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjUwMTAxMDU0NzU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YmUzYjc0ZGI3MmNiNTMyOGNiYTBmZmZmZDU0YWY0Yjc3MjBhZTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLpF7SiNwqRXb+lo2sfDhQPrpRcV
wQyCKFdRHTqRWf+B46z9XiaEX5wi+oo2o9NbhRzyM6WUVh0BPCPEKnvTw14z1Ha6
xYHpOwnJ151/SXky7dqZZYOpyD6VxMrCOa4d9kHPxEiIHqMZFemzr99Q+2XRVNRh
dzH2FoMICllzeOOR7kUWE9NkWctfWEVzmD8ITOlby3yte8SZHNbIy1YKkg9Z00IJ
7MXiHwh9W20Hhzf9DzTy7kmgobhj3b50Iu46hhvQESoEKipaqPDbFCUe9bapEN5Y
2P30Cnnv3ibSYC6rHt57FvwpesPXdqtoUT+zzIHw+oQ+sflSW5SbinWhsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEvjt023LLUyjLoP//1Ur0t3IK6IMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvUy1PM1RiY3N0VEtNdWdfX19WU3ZTM2Nncm9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTkJMA0G
CSqGSIb3DQEBCwUAA4IBAQAdU0rdt5dzheEdNIZPn5tpFgFdwlsXzEztDqv9Af88
7Oi5q8tMGS6o494VKJ9cbKK4yT5d/5sYeqGVvJ6iRNEEHl9WkHzUBhZENua2gP80
TXVaCeifNL0TUJvmXb/amiguLrtd+qadet1h6KFYSsnru5enkzrlA7Exp76spWrd
T9vVqrmOSVXIZ/5C06uYcqZ2K6JDxrx3mWB0z0qnbSVyc2+TRpvi1snamvLP4Pxh
W3YvEXBKiVfvpGOmjEhDYPYeG7ipU5FsyNmaKyFlfRPV8u/JV4wd8CMQhYXz5SQU
uDPl1x+raa/hQuWiwU5Vkr927zfGV2QdWSexMUKkqv+0
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:07:44 2025 by rpki-client