Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/lp7QbrvMyM5kPr018iGNAUnpdCs.roa
File: lp7QbrvMyM5kPr018iGNAUnpdCs.roa (raw, json)
Hash identifier: Yfscsd30JjcXi4i5ioWbSVLp5/A5B/6do0bojAtsj54=
Subject key identifier: 96:9E:D0:6E:BB:CC:C8:CE:64:3E:BD:35:F2:21:8D:01:49:E9:74:2B
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0194B89DF2BEE820953157DAF22D97D5BE76
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/lp7QbrvMyM5kPr018iGNAUnpdCs.roa
Signing time: Thu 30 Jan 2025 19:09:06 +0000
ROA not before: Thu 30 Jan 2025 19:09:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215789
IP address blocks: 147.45.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b8:9d:f2:be:e8:20:95:31:57:da:f2:2d:97:d5:be:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 30 19:09:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=969ed06ebbccc8ce643ebd35f2218d0149e9742b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d4:b8:e2:4a:ec:dc:5f:c5:ae:94:67:fa:7c:
82:dd:8e:bf:c3:1b:e8:de:c1:6b:23:98:bc:0f:46:
90:99:66:84:6b:a6:56:d1:ff:1b:b9:ac:e8:47:f3:
00:b7:ef:91:6f:10:33:fb:fa:97:4e:6e:86:58:42:
a5:3e:61:8f:02:c4:2e:6e:30:53:9b:eb:20:07:f7:
45:cb:c2:e5:5c:b3:63:60:df:b1:18:0b:da:f1:e4:
cb:6f:96:c3:a5:ab:1f:17:a1:b1:50:74:cf:83:70:
cb:dd:f2:a4:fd:71:20:f2:66:35:6f:4b:6f:b4:bf:
0e:70:ed:24:e9:1d:ad:82:d6:a7:15:df:46:7d:f2:
09:b9:ba:d0:b3:2c:99:dc:a1:fc:b9:af:f8:75:a4:
5e:3d:c7:85:39:d8:51:31:70:a2:3f:d2:85:0b:09:
7d:9a:f0:1e:86:41:40:5b:9c:97:5c:35:8d:46:81:
cc:40:18:a9:df:78:fa:f4:d8:5a:06:58:e1:58:82:
f0:19:8f:15:94:89:a9:d9:69:aa:7d:46:6b:fb:81:
60:f7:8e:44:e1:84:5c:ed:60:e5:95:d0:d9:2e:39:
b1:d1:6d:24:d1:fc:97:7f:0a:b7:59:4a:3a:18:26:
76:36:fe:fe:bb:3a:73:40:be:d0:a2:7a:a4:92:8f:
f4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:9E:D0:6E:BB:CC:C8:CE:64:3E:BD:35:F2:21:8D:01:49:E9:74:2B
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/lp7QbrvMyM5kPr018iGNAUnpdCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.44.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:bc:14:a5:be:18:5a:3b:b5:38:c7:b3:1a:51:8c:75:49:e0:
bd:fe:3a:2b:0b:77:b4:38:32:0b:8c:36:4b:ce:f8:98:bd:66:
b5:65:f1:7a:d1:b9:f9:2e:43:78:04:0d:c5:d7:d7:1e:ea:42:
be:70:27:43:0d:0f:5f:c4:21:e2:b3:9a:8c:68:c2:31:19:1f:
c4:79:74:de:86:1b:94:a2:e2:c4:a7:64:12:28:76:74:c4:af:
a2:0b:07:24:3c:c5:f2:1e:83:ac:ea:14:b2:69:86:80:a1:f3:
cc:c1:9b:3e:aa:bd:89:a9:ae:c4:ee:50:96:28:a4:8b:c9:78:
c2:09:61:9b:88:c5:54:fd:b5:17:ad:11:c0:bc:6d:dc:f3:8d:
48:b6:9a:42:2d:ad:06:00:f8:be:f0:23:de:d4:26:53:e6:9c:
77:31:f8:85:2c:70:5f:c5:bb:9f:d6:01:e0:36:50:3d:0f:d2:
81:ea:c8:a5:3a:6e:ac:f0:82:d9:1f:cf:f2:4d:d8:a4:22:80:
b2:c6:92:8b:0d:f7:85:a6:48:d9:33:29:8e:13:3c:c6:8f:a4:
a2:ab:ef:c9:9b:d1:d1:ff:21:11:6c:f1:c9:fd:81:ec:b2:2d:
1f:30:ca:66:08:47:ba:fb:b9:bb:1d:7b:11:ed:8e:bb:20:f4:
74:dc:47:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZS4nfK+6CCVMVfa8i2X1b52MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjUwMTMwMTkwOTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NjllZDA2ZWJiY2NjOGNlNjQzZWJkMzVmMjIxOGQwMTQ5ZTk3NDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA69S44krs3F/FrpRn+nyC3Y6/wxvo
3sFrI5i8D0aQmWaEa6ZW0f8buazoR/MAt++RbxAz+/qXTm6GWEKlPmGPAsQubjBT
m+sgB/dFy8LlXLNjYN+xGAva8eTLb5bDpasfF6GxUHTPg3DL3fKk/XEg8mY1b0tv
tL8OcO0k6R2tgtanFd9GffIJubrQsyyZ3KH8ua/4daRePceFOdhRMXCiP9KFCwl9
mvAehkFAW5yXXDWNRoHMQBip33j69NhaBljhWILwGY8VlImp2WmqfUZr+4Fg945E
4YRc7WDlldDZLjmx0W0k0fyXfwq3WUo6GCZ2Nv7+uzpzQL7Qonqkko/06wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJae0G67zMjOZD69NfIhjQFJ6XQrMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvbHA3UWJydk15TTVrUHIwMThpR05BVW5wZENzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAky0sMA0G
CSqGSIb3DQEBCwUAA4IBAQAOvBSlvhhaO7U4x7MaUYx1SeC9/jorC3e0ODILjDZL
zviYvWa1ZfF60bn5LkN4BA3F19ce6kK+cCdDDQ9fxCHis5qMaMIxGR/EeXTehhuU
ouLEp2QSKHZ0xK+iCwckPMXyHoOs6hSyaYaAofPMwZs+qr2Jqa7E7lCWKKSLyXjC
CWGbiMVU/bUXrRHAvG3c841ItppCLa0GAPi+8CPe1CZT5px3MfiFLHBfxbuf1gHg
NlA9D9KB6silOm6s8ILZH8/yTdikIoCyxpKLDfeFpkjZMymOEzzGj6Siq+/Jm9HR
/yERbPHJ/YHssi0fMMpmCEe6+7m7HXsR7Y67IPR03Ect
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:50 2025 by rpki-client