Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PHDzlb9CgzBjd_rP_1gPJzQh2tU.roa
File: PHDzlb9CgzBjd_rP_1gPJzQh2tU.roa (raw, json)
Hash identifier: 60obwTIRS9IuyQpCzvR2DNVvcnX37KaCz5hzUxUNoq4=
Subject key identifier: 3C:70:F3:95:BF:42:83:30:63:77:FA:CF:FF:58:0F:27:34:21:DA:D5
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0193F990D737CCEC82E9BA3C4FD0F48C5926
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PHDzlb9CgzBjd_rP_1gPJzQh2tU.roa
Signing time: Tue 24 Dec 2024 16:47:19 +0000
ROA not before: Tue 24 Dec 2024 16:47:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202736
IP address blocks: 163.5.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f9:90:d7:37:cc:ec:82:e9:ba:3c:4f:d0:f4:8c:59:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 24 16:47:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c70f395bf4283306377facfff580f273421dad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:51:4e:4e:b4:bd:a6:4e:d7:e4:2d:17:d1:55:
d3:ed:ae:a5:fa:64:ef:88:1f:0a:4b:05:25:52:f9:
e8:47:df:c7:ca:59:6d:c7:e0:87:5a:56:e1:2b:2c:
8b:77:25:6f:b1:04:c2:40:73:44:c3:45:26:75:47:
b7:52:21:b1:3c:68:a4:e4:44:60:8e:8c:cc:73:43:
78:3d:ee:99:7a:aa:f5:79:5d:fe:dd:bc:76:c7:3c:
c1:2f:39:be:be:f4:b5:30:44:d1:2a:87:45:21:28:
3a:c5:55:56:d6:8b:40:c1:6f:ed:30:b7:d3:f6:9c:
51:a3:38:ba:97:2c:3d:6e:f1:03:5b:24:f0:73:c8:
e3:66:54:75:ae:9d:dc:2a:5f:7c:9e:4a:27:75:15:
de:3f:dd:a7:ec:ab:6f:ad:4c:7e:b1:63:67:47:c3:
d9:f2:d7:23:3b:e7:bc:84:21:8b:73:a0:2e:7e:ef:
68:8e:24:66:3b:21:78:4c:8c:9c:29:c7:f2:5f:8e:
58:e5:d3:5d:dc:82:b1:be:57:24:53:5c:9e:5a:a5:
05:e7:d4:38:06:ed:15:ab:a4:28:d3:f0:ff:2c:ec:
11:2c:ec:3d:8d:8e:69:e4:93:f6:25:ea:66:dc:5b:
a3:59:f4:41:03:a9:b4:3d:ed:04:ce:a5:95:3c:87:
24:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:70:F3:95:BF:42:83:30:63:77:FA:CF:FF:58:0F:27:34:21:DA:D5
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PHDzlb9CgzBjd_rP_1gPJzQh2tU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.230.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:09:89:be:0f:78:a1:e5:ba:c7:aa:d5:ee:7b:3f:f0:80:e0:
f1:f0:8c:9e:61:17:5c:24:c7:e8:12:87:65:73:b0:23:e3:66:
be:85:8a:fb:a8:ec:da:fc:12:07:8d:2c:12:15:82:b4:ad:40:
e8:e3:d6:4f:6a:5e:4e:ec:df:0a:3d:5e:7e:e6:f4:2e:10:90:
fa:e1:b7:72:36:78:7b:9a:c5:4e:48:ad:46:8e:f7:0f:2e:0e:
5e:15:75:8c:a3:64:10:81:c3:ba:82:66:8f:7e:7e:87:44:b6:
f2:2e:84:9b:6a:31:56:36:40:55:7a:1d:01:e4:26:76:5c:cb:
48:11:d4:00:2e:9a:8b:37:f1:b4:9d:5e:ef:29:21:86:a0:67:
7c:84:70:8f:b4:79:de:6f:a4:86:21:cd:91:72:70:fd:a9:06:
48:23:31:4f:a3:46:4a:3b:a5:b5:19:ba:2c:7c:95:d9:1a:a9:
67:aa:b3:0c:d6:da:46:d2:21:9f:7b:71:fd:06:55:ea:74:d6:
49:d0:a2:53:61:7f:e7:ea:6b:be:8e:5d:40:95:29:c7:1e:94:
40:bb:69:02:dc:24:76:96:43:d8:28:2d:33:01:65:11:05:67:
82:3b:29:ec:63:31:28:28:13:05:d1:1c:03:9c:1b:16:93:a4:
39:d4:d1:8b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZP5kNc3zOyC6bo8T9D0jFkmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQxMjI0MTY0NzE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzcwZjM5NWJmNDI4MzMwNjM3N2ZhY2ZmZjU4MGYyNzM0MjFkYWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1FOTrS9pk7X5C0X0VXT7a6l+mTv
iB8KSwUlUvnoR9/Hylltx+CHWlbhKyyLdyVvsQTCQHNEw0UmdUe3UiGxPGik5ERg
jozMc0N4Pe6Zeqr1eV3+3bx2xzzBLzm+vvS1METRKodFISg6xVVW1otAwW/tMLfT
9pxRozi6lyw9bvEDWyTwc8jjZlR1rp3cKl98nkondRXeP92n7KtvrUx+sWNnR8PZ
8tcjO+e8hCGLc6Aufu9ojiRmOyF4TIycKcfyX45Y5dNd3IKxvlckU1yeWqUF59Q4
Bu0Vq6Qo0/D/LOwRLOw9jY5p5JP2Jepm3FujWfRBA6m0Pe0EzqWVPIckDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDxw85W/QoMwY3f6z/9YDyc0IdrVMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvUEhEemxiOUNnekJqZF9yUF8xZ1BKelFoMnRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowXmMA0G
CSqGSIb3DQEBCwUAA4IBAQAbCYm+D3ih5brHqtXuez/wgODx8IyeYRdcJMfoEodl
c7Aj42a+hYr7qOza/BIHjSwSFYK0rUDo49ZPal5O7N8KPV5+5vQuEJD64bdyNnh7
msVOSK1GjvcPLg5eFXWMo2QQgcO6gmaPfn6HRLbyLoSbajFWNkBVeh0B5CZ2XMtI
EdQALpqLN/G0nV7vKSGGoGd8hHCPtHneb6SGIc2RcnD9qQZIIzFPo0ZKO6W1Gbos
fJXZGqlnqrMM1tpG0iGfe3H9BlXqdNZJ0KJTYX/n6mu+jl1AlSnHHpRAu2kC3CR2
lkPYKC0zAWURBWeCOynsYzEoKBMF0RwDnBsWk6Q51NGL
-----END CERTIFICATE-----
Generated at Wed Apr 9 22:25:45 2025 by rpki-client