Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/L2lE8nOnlyxmaD3x1ZRACrDCMP8.roa
File: L2lE8nOnlyxmaD3x1ZRACrDCMP8.roa (raw, json)
Hash identifier: ZXu28qkdGNNh4liAxQWetF6CZII1uCDb6IiGf6WW5Vw=
Subject key identifier: 2F:69:44:F2:73:A7:97:2C:66:68:3D:F1:D5:94:40:0A:B0:C2:30:FF
Certificate issuer: /CN=017c90654653ac150028562b32431491b52147d1
Certificate serial: 019423D6E05CDAD5FEE79CE9BE96B264B42B
Authority key identifier: 01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/L2lE8nOnlyxmaD3x1ZRACrDCMP8.roa
Signing time: Wed 01 Jan 2025 21:47:52 +0000
ROA not before: Wed 01 Jan 2025 21:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200322
IP address blocks: 194.48.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:e0:5c:da:d5:fe:e7:9c:e9:be:96:b2:64:b4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=017c90654653ac150028562b32431491b52147d1
Validity
Not Before: Jan 1 21:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2f6944f273a7972c66683df1d594400ab0c230ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ea:4b:2e:d9:c4:43:46:08:71:c6:aa:00:2d:
07:00:0f:e1:11:76:2d:ef:3e:ce:1b:fa:ae:47:28:
d8:b1:e7:2c:bf:9a:cd:9c:12:b3:d3:69:c0:24:50:
0a:de:7d:5f:50:90:0d:37:b0:bf:72:bf:3f:78:f7:
26:81:e3:79:a7:a2:18:bd:66:ad:69:29:6d:c9:3e:
11:b0:1c:e4:c4:8c:d2:7e:92:40:5d:31:97:eb:db:
b5:2d:68:f2:ab:72:c0:99:2e:50:74:d2:3d:aa:18:
f4:77:e7:56:61:65:f7:83:58:75:e5:b5:15:0c:a9:
6d:66:85:3e:31:c9:11:d9:56:43:3d:04:5d:91:41:
66:7c:9d:a2:ec:98:48:b4:b9:1f:8d:a8:f2:fc:d1:
86:9c:de:a6:15:df:58:9a:bf:c8:a3:11:13:47:c2:
14:4d:15:cc:76:3e:9e:9e:58:00:c8:92:a4:c7:6d:
09:c1:f0:eb:ed:52:8d:a2:60:d7:89:8c:0d:37:71:
0e:5b:f1:77:76:4b:3d:26:9b:e3:fa:fc:2f:cc:9f:
37:c4:a2:0c:c0:dd:fd:f3:ab:b7:84:a5:5b:56:88:
ad:30:df:f5:f7:09:0b:07:48:65:4f:58:0a:df:85:
34:9d:97:f0:2c:47:f8:18:40:4b:3f:af:92:3c:a6:
e3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:69:44:F2:73:A7:97:2C:66:68:3D:F1:D5:94:40:0A:B0:C2:30:FF
X509v3 Authority Key Identifier:
keyid:01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/L2lE8nOnlyxmaD3x1ZRACrDCMP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.0.0/24
Signature Algorithm: sha256WithRSAEncryption
13:45:00:c1:f6:ee:c7:02:53:1b:3d:65:a2:14:8f:18:f4:dc:
1e:6b:3e:4c:80:53:1e:dd:1d:bc:26:ad:8d:2d:7a:c6:e2:0a:
55:f8:37:71:36:63:25:20:2e:82:3a:fe:84:07:a5:f4:e3:51:
66:ca:df:32:68:90:21:96:9a:4a:bb:74:66:e2:45:65:87:9b:
ac:5e:48:ed:58:ce:77:53:71:40:4f:0f:3a:aa:ab:68:8f:f8:
84:d6:6d:5e:b8:b7:53:6a:ed:20:76:3f:13:04:4c:b0:51:17:
e1:bd:b3:b4:b6:ac:54:00:b5:8b:ea:d5:e0:b0:a8:81:f8:6f:
23:4c:7d:72:8f:47:76:5e:03:f8:6c:2b:ae:cd:f8:0e:cd:f2:
32:cb:9b:35:23:38:89:fa:ab:8c:b9:9f:1e:61:08:eb:cf:6d:
fd:fd:f5:44:84:aa:7d:54:6c:1b:2b:53:5f:5c:b3:a2:25:63:
da:7f:e1:2a:eb:d8:59:d0:92:13:ce:cd:51:4a:18:45:72:36:
9f:f9:47:b7:8c:f1:03:85:1f:70:c6:bc:5a:47:21:d9:ff:9e:
df:e8:5b:50:4b:c4:5e:a4:64:10:ef:88:27:4b:ec:ee:b7:19:
e7:c6:a9:34:af:85:69:d4:26:e9:27:cd:ca:f5:e7:ff:39:a2:
b5:0a:70:66
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj1uBc2tX+55zpvpayZLQrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxN2M5MDY1NDY1M2FjMTUwMDI4NTYyYjMyNDMxNDkxYjUy
MTQ3ZDEwHhcNMjUwMTAxMjE0NzUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjY5NDRmMjczYTc5NzJjNjY2ODNkZjFkNTk0NDAwYWIwYzIzMGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOpLLtnEQ0YIccaqAC0HAA/hEXYt
7z7OG/quRyjYsecsv5rNnBKz02nAJFAK3n1fUJANN7C/cr8/ePcmgeN5p6IYvWat
aSltyT4RsBzkxIzSfpJAXTGX69u1LWjyq3LAmS5QdNI9qhj0d+dWYWX3g1h15bUV
DKltZoU+MckR2VZDPQRdkUFmfJ2i7JhItLkfjajy/NGGnN6mFd9Ymr/IoxETR8IU
TRXMdj6enlgAyJKkx20JwfDr7VKNomDXiYwNN3EOW/F3dks9Jpvj+vwvzJ83xKIM
wN3986u3hKVbVoitMN/19wkLB0hlT1gK34U0nZfwLEf4GEBLP6+SPKbjdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC9pRPJzp5csZmg98dWUQAqwwjD/MB8GA1UdIwQY
MBaAFAF8kGVGU6wVAChWKzJDFJG1IUfRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8zNWI3ZTUtODg2NC00NzU5LWJiODYt
NzAxM2E2YzQzOTg1LzEvTDJsRThuT25seXhtYUQzeDFaUkFDckRDTVA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8zNWI3ZTUtODg2NC00NzU5LWJiODYtNzAxM2E2YzQzOTg1
LzEvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjAAMA0G
CSqGSIb3DQEBCwUAA4IBAQATRQDB9u7HAlMbPWWiFI8Y9Nweaz5MgFMe3R28Jq2N
LXrG4gpV+DdxNmMlIC6COv6EB6X041Fmyt8yaJAhlppKu3Rm4kVlh5usXkjtWM53
U3FATw86qqtoj/iE1m1euLdTau0gdj8TBEywURfhvbO0tqxUALWL6tXgsKiB+G8j
TH1yj0d2XgP4bCuuzfgOzfIyy5s1IziJ+quMuZ8eYQjrz239/fVEhKp9VGwbK1Nf
XLOiJWPaf+Eq69hZ0JITzs1RShhFcjaf+Ue3jPEDhR9wxrxaRyHZ/57f6FtQS8Re
pGQQ74gnS+zutxnnxqk0r4Vp1CbpJ83K9ef/OaK1CnBm
-----END CERTIFICATE-----
Generated at Thu Feb 20 03:18:50 2025 by rpki-client