Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/EOVeqLVY7YQgxvYQ8YWMSeXKFNY.roa
File: EOVeqLVY7YQgxvYQ8YWMSeXKFNY.roa (raw, json)
Hash identifier: hvGEJ8ytuPo6C+ke0ltl0/nWw9ZMLCADEd+IRmTnDPs=
Subject key identifier: 10:E5:5E:A8:B5:58:ED:84:20:C6:F6:10:F1:85:8C:49:E5:CA:14:D6
Certificate issuer: /CN=331bce2ee806e93621112dbd618536f775f44fba
Certificate serial: 019421B1C243FF0CE8DE1218EAA9E03AB8EA
Authority key identifier: 33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/EOVeqLVY7YQgxvYQ8YWMSeXKFNY.roa
Signing time: Wed 01 Jan 2025 11:48:05 +0000
ROA not before: Wed 01 Jan 2025 11:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209500
IP address blocks: 185.130.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:c2:43:ff:0c:e8:de:12:18:ea:a9:e0:3a:b8:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331bce2ee806e93621112dbd618536f775f44fba
Validity
Not Before: Jan 1 11:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=10e55ea8b558ed8420c6f610f1858c49e5ca14d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c0:b9:ba:3e:25:b3:12:73:99:b0:5c:b7:71:
16:03:6b:cb:06:04:0f:86:07:fb:bc:d5:28:87:f0:
97:79:2a:81:27:60:48:19:3f:41:d7:4e:ac:3d:9b:
01:42:bb:99:c6:1c:a5:28:b9:8b:fe:1c:3d:02:80:
44:bf:cb:02:78:82:0a:85:5b:51:1d:52:94:d5:30:
f1:2f:9d:77:db:74:5e:15:fe:e2:61:68:c4:30:51:
5c:4e:7e:07:bb:31:e6:65:b1:c9:ef:9c:98:e0:a0:
c6:e1:26:e6:f9:ff:d4:ed:d4:e5:82:b0:0e:f4:9a:
b2:8e:52:a3:1f:b0:08:cd:4d:e1:a6:f1:94:eb:85:
c6:e1:e0:f8:15:30:ad:4f:05:df:40:72:d8:0a:ab:
94:6a:27:27:b9:eb:09:47:ac:9d:7c:10:f7:93:2f:
35:35:f0:df:5a:9f:be:1c:29:97:fe:2a:10:97:d4:
59:c3:24:0e:5b:94:8d:29:d4:86:0f:bd:5e:3b:ca:
fb:c2:4f:0b:3c:7c:21:3c:01:cc:fa:48:97:a3:f4:
d1:64:a2:c6:ae:aa:15:50:0a:19:84:2f:02:de:69:
ce:8a:31:9d:29:8b:0f:50:88:ad:8b:a3:57:bd:3b:
c7:fe:65:96:44:f9:cb:d6:a7:2e:11:85:bb:cf:d9:
fb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E5:5E:A8:B5:58:ED:84:20:C6:F6:10:F1:85:8C:49:E5:CA:14:D6
X509v3 Authority Key Identifier:
keyid:33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/EOVeqLVY7YQgxvYQ8YWMSeXKFNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/MxvOLugG6TYhES29YYU293X0T7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.56.0/24
Signature Algorithm: sha256WithRSAEncryption
18:92:8f:d8:d5:cc:b1:71:ff:02:0a:23:e8:86:f8:02:ee:d1:
db:57:35:1c:24:b5:1d:62:3a:60:da:24:54:99:ed:52:e2:1d:
b2:80:a9:d2:1c:d9:97:cd:5b:26:c2:97:1e:cc:3f:c9:65:cb:
27:77:72:93:7f:f9:5b:1c:d7:37:d2:98:10:73:7e:66:b8:d3:
8c:64:e6:30:9b:17:05:92:ba:7d:5b:4e:2e:cf:29:75:85:6e:
d0:b5:1a:b7:4b:07:8f:80:4e:e0:e7:53:ac:f1:8e:bd:2e:19:
5a:10:24:f6:77:3f:1b:56:e8:90:fa:7f:64:01:96:34:be:0f:
09:3a:db:ba:89:c3:3d:14:f1:5e:59:e7:c6:33:f6:63:97:f9:
01:d4:6c:63:8d:fa:d7:9c:43:80:59:3b:d9:f1:51:a7:1c:32:
d3:46:58:4d:5e:e8:c9:fd:f8:8c:50:a0:63:41:cd:58:16:28:
5c:ec:33:c1:a4:94:a5:e0:bf:23:d0:eb:52:e8:ff:00:f5:45:
bc:24:2a:fe:76:76:d6:ca:44:82:32:24:f5:e5:11:15:97:4f:
17:7f:34:4d:67:65:ae:f0:2a:f4:d9:fd:8f:6b:87:85:9a:0f:
e4:c2:14:99:a4:c6:15:8e:2b:3a:ef:43:2e:32:c8:59:2b:42:
9b:aa:16:57
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhscJD/wzo3hIY6qngOrjqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzMWJjZTJlZTgwNmU5MzYyMTExMmRiZDYxODUzNmY3NzVm
NDRmYmEwHhcNMjUwMTAxMTE0ODA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMGU1NWVhOGI1NThlZDg0MjBjNmY2MTBmMTg1OGM0OWU1Y2ExNGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMC5uj4lsxJzmbBct3EWA2vLBgQP
hgf7vNUoh/CXeSqBJ2BIGT9B106sPZsBQruZxhylKLmL/hw9AoBEv8sCeIIKhVtR
HVKU1TDxL51323ReFf7iYWjEMFFcTn4HuzHmZbHJ75yY4KDG4Sbm+f/U7dTlgrAO
9JqyjlKjH7AIzU3hpvGU64XG4eD4FTCtTwXfQHLYCquUaicnuesJR6ydfBD3ky81
NfDfWp++HCmX/ioQl9RZwyQOW5SNKdSGD71eO8r7wk8LPHwhPAHM+kiXo/TRZKLG
rqoVUAoZhC8C3mnOijGdKYsPUIiti6NXvTvH/mWWRPnL1qcuEYW7z9n75wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBDlXqi1WO2EIMb2EPGFjEnlyhTWMB8GA1UdIwQY
MBaAFDMbzi7oBuk2IREtvWGFNvd19E+6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXh2T0x1Z0c2VFloRVMyOVlZVTI5M1gwVDdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS80YmEzY2EtZDZmZC00MTE2LTkxNDYt
YWVhYzE2MjI3YzI1LzEvRU9WZXFMVlk3WVFneHZZUThZV01TZVhLRk5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS80YmEzY2EtZDZmZC00MTE2LTkxNDYtYWVhYzE2MjI3YzI1
LzEvTXh2T0x1Z0c2VFloRVMyOVlZVTI5M1gwVDdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYI4MA0G
CSqGSIb3DQEBCwUAA4IBAQAYko/Y1cyxcf8CCiPohvgC7tHbVzUcJLUdYjpg2iRU
me1S4h2ygKnSHNmXzVsmwpcezD/JZcsnd3KTf/lbHNc30pgQc35muNOMZOYwmxcF
krp9W04uzyl1hW7QtRq3SwePgE7g51Os8Y69LhlaECT2dz8bVuiQ+n9kAZY0vg8J
Otu6icM9FPFeWefGM/Zjl/kB1GxjjfrXnEOAWTvZ8VGnHDLTRlhNXujJ/fiMUKBj
Qc1YFihc7DPBpJSl4L8j0OtS6P8A9UW8JCr+dnbWykSCMiT15REVl08XfzRNZ2Wu
8Cr02f2Pa4eFmg/kwhSZpMYVjis670MuMshZK0KbqhZX
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:11 2025 by rpki-client