Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/o6DDKTyADlYItUmp2wjrWSRuSY0.roa
File: o6DDKTyADlYItUmp2wjrWSRuSY0.roa (raw, json)
Hash identifier: WZlPD3QbdUvxIuP8y0oO7ka4+gI87dqzfRhZgc4276s=
Subject key identifier: A3:A0:C3:29:3C:80:0E:56:08:B5:49:A9:DB:08:EB:59:24:6E:49:8D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0194236A220D0D13206633B22733975899E0
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/o6DDKTyADlYItUmp2wjrWSRuSY0.roa
Signing time: Wed 01 Jan 2025 19:49:05 +0000
ROA not before: Wed 01 Jan 2025 19:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7029
IP address blocks: 163.5.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:22:0d:0d:13:20:66:33:b2:27:33:97:58:99:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 19:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a3a0c3293c800e5608b549a9db08eb59246e498d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ba:da:af:1e:d4:a1:2f:eb:e6:84:81:0a:d3:
43:58:2d:66:40:13:04:ca:ae:71:0b:48:98:12:63:
49:ea:b8:20:7a:a5:5f:98:ea:43:ef:b0:2b:dd:6f:
94:34:ef:71:e9:e9:61:8c:28:73:dd:0d:5d:fb:cf:
b5:81:80:d5:f7:5b:68:fd:f6:00:68:77:a8:7a:bc:
16:5e:b4:e5:0a:40:1e:19:c2:e9:b2:ca:12:bb:9f:
ff:0f:4e:7e:d9:80:20:ee:7a:fd:aa:04:3b:15:4f:
5f:ae:30:c2:81:c0:92:8c:90:30:15:76:c9:22:b2:
da:c8:84:5a:36:aa:36:c0:8e:b0:9b:f6:dc:8a:0f:
cc:eb:4c:f6:b1:ae:87:e1:b7:85:55:65:f6:0e:f8:
d9:60:c4:a4:81:2f:e3:3e:b2:86:33:ea:a3:b8:17:
87:97:17:91:5f:20:c6:02:3f:36:e2:89:d4:23:b7:
d4:81:61:fe:da:4e:5a:5b:5c:a7:c7:67:77:85:8d:
13:d7:6f:06:50:a6:aa:28:6a:e7:b3:e4:1c:32:2d:
a3:3b:3f:07:1c:b0:a3:20:61:25:3b:1f:c5:17:f9:
d2:9e:08:13:c7:2d:70:e8:45:48:10:00:cd:7f:88:
b9:45:60:33:33:2e:c2:49:16:c3:7d:93:5a:66:71:
a2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A0:C3:29:3C:80:0E:56:08:B5:49:A9:DB:08:EB:59:24:6E:49:8D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/o6DDKTyADlYItUmp2wjrWSRuSY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.185.0/24
Signature Algorithm: sha256WithRSAEncryption
02:08:96:1b:78:56:40:1e:59:08:83:1e:61:0a:6d:4d:18:ba:
9c:94:82:de:97:16:69:34:7f:bd:56:08:0e:8e:94:81:79:37:
ce:bc:fb:b8:6e:f3:57:34:a4:e9:2e:36:cb:a2:56:4a:e3:0c:
d2:16:b6:51:01:66:19:82:e1:59:a6:28:83:a5:4a:0f:e9:8c:
1d:ee:bb:f6:de:52:66:9e:5d:6f:df:bb:8b:33:96:f6:20:b2:
7d:f9:7d:9b:ce:58:31:b0:6d:33:b0:13:ec:9b:b5:32:e1:e6:
ed:5b:b5:cc:6a:5d:80:ea:1d:9d:93:5c:9f:b6:9e:bc:32:4c:
c9:1c:66:ff:c4:01:1f:fc:fa:f7:75:90:f6:6b:1a:87:2e:da:
65:82:51:eb:2e:fc:ac:ad:bc:5c:6b:9a:30:3d:87:6f:b9:4f:
6e:56:fa:71:35:ed:55:e4:e2:2b:3d:b7:12:d3:63:45:fd:24:
f9:05:e3:78:7d:ea:b9:c4:b8:84:f3:4c:1d:3d:0e:6f:52:4d:
7d:7c:16:11:4b:24:40:e5:80:1a:69:2c:ad:ac:2f:0f:18:dd:
9d:3e:25:85:5e:0c:49:71:48:60:79:54:93:57:ae:cf:ea:93:
bf:fc:58:6f:70:d1:81:e7:42:e3:f7:0d:f7:1c:6b:b8:b2:17:
d6:b8:66:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQjaiINDRMgZjOyJzOXWJngMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjUwMTAxMTk0OTA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhM2EwYzMyOTNjODAwZTU2MDhiNTQ5YTlkYjA4ZWI1OTI0NmU0OThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1rrarx7UoS/r5oSBCtNDWC1mQBME
yq5xC0iYEmNJ6rggeqVfmOpD77Ar3W+UNO9x6elhjChz3Q1d+8+1gYDV91to/fYA
aHeoerwWXrTlCkAeGcLpssoSu5//D05+2YAg7nr9qgQ7FU9frjDCgcCSjJAwFXbJ
IrLayIRaNqo2wI6wm/bcig/M60z2sa6H4beFVWX2DvjZYMSkgS/jPrKGM+qjuBeH
lxeRXyDGAj824onUI7fUgWH+2k5aW1ynx2d3hY0T128GUKaqKGrns+QcMi2jOz8H
HLCjIGElOx/FF/nSnggTxy1w6EVIEADNf4i5RWAzMy7CSRbDfZNaZnGinQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKOgwyk8gA5WCLVJqdsI61kkbkmNMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvbzZEREtUeUFEbFlJdFVtcDJ3anJXU1J1U1kwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowW5MA0G
CSqGSIb3DQEBCwUAA4IBAQACCJYbeFZAHlkIgx5hCm1NGLqclILelxZpNH+9VggO
jpSBeTfOvPu4bvNXNKTpLjbLolZK4wzSFrZRAWYZguFZpiiDpUoP6Ywd7rv23lJm
nl1v37uLM5b2ILJ9+X2bzlgxsG0zsBPsm7Uy4ebtW7XMal2A6h2dk1yftp68MkzJ
HGb/xAEf/Pr3dZD2axqHLtplglHrLvysrbxca5owPYdvuU9uVvpxNe1V5OIrPbcS
02NF/ST5BeN4feq5xLiE80wdPQ5vUk19fBYRSyRA5YAaaSytrC8PGN2dPiWFXgxJ
cUhgeVSTV67P6pO//FhvcNGB50Lj9w33HGu4shfWuGYN
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:53:13 2025 by rpki-client