Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/7e51b4-0ab4-4719-b330-bdc5ae8abdb1/1/rub7QgF_m8ViZ2zh8TifmWsv33k.roa
File: rub7QgF_m8ViZ2zh8TifmWsv33k.roa (raw, json)
Hash identifier: D3MkLEEj8OyFp5olxebWk6+e8+j7slJr87cSCNkpbeI=
Subject key identifier: AE:E6:FB:42:01:7F:9B:C5:62:67:6C:E1:F1:38:9F:99:6B:2F:DF:79
Certificate issuer: /CN=0cbe91eb63a44f1e9f1a83edd218a1ec75c25e91
Certificate serial: 01942144358A5CD017A458BF020A7626F275
Authority key identifier: 0C:BE:91:EB:63:A4:4F:1E:9F:1A:83:ED:D2:18:A1:EC:75:C2:5E:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DL6R62OkTx6fGoPt0hih7HXCXpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/7e51b4-0ab4-4719-b330-bdc5ae8abdb1/1/rub7QgF_m8ViZ2zh8TifmWsv33k.roa
Signing time: Wed 01 Jan 2025 09:48:25 +0000
ROA not before: Wed 01 Jan 2025 09:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 185.235.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:35:8a:5c:d0:17:a4:58:bf:02:0a:76:26:f2:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cbe91eb63a44f1e9f1a83edd218a1ec75c25e91
Validity
Not Before: Jan 1 09:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aee6fb42017f9bc562676ce1f1389f996b2fdf79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cb:ed:20:f3:ae:44:be:47:26:51:e0:77:fb:
3b:a1:d9:a6:ec:9b:7e:25:9e:d7:3f:13:8f:ec:02:
6e:c1:58:dd:c9:d5:5c:3c:5f:12:b6:af:47:4e:6c:
b4:6a:30:26:2d:24:1c:00:86:1e:ce:0d:a8:b6:f7:
42:55:66:6c:f9:60:8c:dd:b3:c8:51:10:3b:50:b7:
31:a0:27:41:11:53:6d:dc:41:11:9e:67:81:5f:a3:
3f:97:aa:88:df:76:f8:00:7e:a6:29:31:16:68:ef:
07:1c:60:07:d9:13:02:48:93:6d:a7:7c:e2:35:4d:
87:a3:06:15:16:8c:4a:72:a5:bb:75:32:3c:10:4f:
10:a9:35:0a:35:28:14:45:3e:3e:c5:50:ec:ef:54:
be:4c:5a:f3:71:08:eb:62:d8:eb:29:9e:c1:09:2c:
09:59:82:b0:cc:c5:ab:78:97:86:d6:18:fc:11:85:
4a:80:08:f9:e0:cc:44:01:53:50:d7:06:23:1d:a7:
cb:cc:36:3e:b3:37:13:51:cb:7b:3e:69:72:9f:74:
e2:38:1d:16:d7:f3:54:db:d9:95:db:a4:84:46:6e:
0e:3e:74:fc:b7:ba:9a:5b:55:53:c0:bf:76:9b:b9:
fc:fd:39:7e:71:0c:31:00:3a:e2:ef:98:49:0b:6e:
de:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E6:FB:42:01:7F:9B:C5:62:67:6C:E1:F1:38:9F:99:6B:2F:DF:79
X509v3 Authority Key Identifier:
keyid:0C:BE:91:EB:63:A4:4F:1E:9F:1A:83:ED:D2:18:A1:EC:75:C2:5E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DL6R62OkTx6fGoPt0hih7HXCXpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7e51b4-0ab4-4719-b330-bdc5ae8abdb1/1/rub7QgF_m8ViZ2zh8TifmWsv33k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7e51b4-0ab4-4719-b330-bdc5ae8abdb1/1/DL6R62OkTx6fGoPt0hih7HXCXpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.199.0/24
Signature Algorithm: sha256WithRSAEncryption
74:a5:9a:08:01:01:a8:9e:4e:16:b8:a4:e3:34:7d:9b:60:4c:
0c:91:f8:54:7c:e0:e9:39:e3:07:c9:15:3f:bf:54:c9:04:b1:
93:2d:e8:af:ff:16:82:0e:e3:14:f8:c3:ed:49:fa:92:a8:39:
6b:12:0a:fc:c6:c0:53:0f:47:38:9f:24:43:e5:f9:e3:c5:f1:
e3:bd:58:71:42:f2:5e:f1:82:7c:f5:44:32:91:43:d5:87:cc:
a2:b9:b2:2a:cf:26:74:16:9b:90:ec:b4:dd:19:82:df:d8:d6:
9e:6a:78:0a:f1:8f:f1:98:3f:d4:5f:76:36:0b:df:fd:b6:64:
6f:26:20:31:e8:25:33:87:b1:0d:34:72:42:60:9f:49:17:e5:
99:37:fb:9e:39:18:5c:ce:14:44:6b:69:24:ac:9e:82:ac:af:
42:d7:5b:e9:94:12:1b:9a:51:d7:91:e8:a0:d7:dd:9f:10:93:
98:d5:59:81:b9:42:62:d8:4d:08:dd:1b:69:cd:e9:56:9b:f9:
7b:a3:65:3b:01:8d:cc:40:03:68:5e:bf:61:a3:fa:01:99:5e:
3f:b9:37:83:21:71:a8:dc:0f:71:ce:33:29:fa:cd:48:78:15:
8a:f9:d1:6f:a8:50:ec:20:20:fe:4c:50:c1:c4:5b:59:e3:19:
cb:24:9f:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhRDWKXNAXpFi/Agp2JvJ1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjYmU5MWViNjNhNDRmMWU5ZjFhODNlZGQyMThhMWVjNzVj
MjVlOTEwHhcNMjUwMTAxMDk0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWU2ZmI0MjAxN2Y5YmM1NjI2NzZjZTFmMTM4OWY5OTZiMmZkZjc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0svtIPOuRL5HJlHgd/s7odmm7Jt+
JZ7XPxOP7AJuwVjdydVcPF8Stq9HTmy0ajAmLSQcAIYezg2otvdCVWZs+WCM3bPI
URA7ULcxoCdBEVNt3EERnmeBX6M/l6qI33b4AH6mKTEWaO8HHGAH2RMCSJNtp3zi
NU2HowYVFoxKcqW7dTI8EE8QqTUKNSgURT4+xVDs71S+TFrzcQjrYtjrKZ7BCSwJ
WYKwzMWreJeG1hj8EYVKgAj54MxEAVNQ1wYjHafLzDY+szcTUct7Pmlyn3TiOB0W
1/NU29mV26SERm4OPnT8t7qaW1VTwL92m7n8/Tl+cQwxADri75hJC27e5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK7m+0IBf5vFYmds4fE4n5lrL995MB8GA1UdIwQY
MBaAFAy+ketjpE8enxqD7dIYoex1wl6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREw2UjYyT2tUeDZmR29QdDBoaWg3SFhDWHBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi83ZTUxYjQtMGFiNC00NzE5LWIzMzAt
YmRjNWFlOGFiZGIxLzEvcnViN1FnRl9tOFZpWjJ6aDhUaWZtV3N2MzNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi83ZTUxYjQtMGFiNC00NzE5LWIzMzAtYmRjNWFlOGFiZGIx
LzEvREw2UjYyT2tUeDZmR29QdDBoaWg3SFhDWHBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuevHMA0G
CSqGSIb3DQEBCwUAA4IBAQB0pZoIAQGonk4WuKTjNH2bYEwMkfhUfODpOeMHyRU/
v1TJBLGTLeiv/xaCDuMU+MPtSfqSqDlrEgr8xsBTD0c4nyRD5fnjxfHjvVhxQvJe
8YJ89UQykUPVh8yiubIqzyZ0FpuQ7LTdGYLf2NaeangK8Y/xmD/UX3Y2C9/9tmRv
JiAx6CUzh7ENNHJCYJ9JF+WZN/ueORhczhREa2kkrJ6CrK9C11vplBIbmlHXkeig
192fEJOY1VmBuUJi2E0I3RtpzelWm/l7o2U7AY3MQANoXr9ho/oBmV4/uTeDIXGo
3A9xzjMp+s1IeBWK+dFvqFDsICD+TFDBxFtZ4xnLJJ/+
-----END CERTIFICATE-----
Generated at Fri Apr 4 23:42:03 2025 by rpki-client