Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/1WUnRPC7TQDCpNLBGqvpavEUfIY.roa
File: 1WUnRPC7TQDCpNLBGqvpavEUfIY.roa (raw, json)
Hash identifier: 9QvvOYrRTeWxJPVmSD6bFU7GJTKQU/1G/slvGit4Jc8=
Subject key identifier: D5:65:27:44:F0:BB:4D:00:C2:A4:D2:C1:1A:AB:E9:6A:F1:14:7C:86
Certificate issuer: /CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Certificate serial: 019422FBAF479F53E6EE13029E00F320BFFE
Authority key identifier: 86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/1WUnRPC7TQDCpNLBGqvpavEUfIY.roa
Signing time: Wed 01 Jan 2025 17:48:27 +0000
ROA not before: Wed 01 Jan 2025 17:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209181
IP address blocks: 2.58.192.0/22 maxlen: 22
2.58.192.0/24 maxlen: 24
2.58.193.0/24 maxlen: 24
2.58.194.0/24 maxlen: 24
2.58.195.0/24 maxlen: 24
79.143.16.0/24 maxlen: 24
79.143.17.0/24 maxlen: 24
79.143.18.0/24 maxlen: 24
185.252.0.0/24 maxlen: 24
185.252.1.0/24 maxlen: 24
185.252.2.0/24 maxlen: 24
185.252.3.0/24 maxlen: 24
2a09:e9c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:af:47:9f:53:e6:ee:13:02:9e:00:f3:20:bf:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Validity
Not Before: Jan 1 17:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d5652744f0bb4d00c2a4d2c11aabe96af1147c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:eb:8b:88:ee:26:22:e1:53:15:13:15:09:2a:
d7:22:82:cb:e4:54:64:13:6c:f4:f0:90:3d:cf:47:
c1:8a:3d:65:ef:7d:e6:f6:dd:d5:0a:c3:74:77:0a:
06:31:72:c7:4c:d8:36:1a:9b:ef:5c:f4:4e:c2:0b:
f2:90:f4:97:c4:95:af:f7:c3:67:c1:c3:aa:74:94:
df:ed:1b:d2:a4:fd:a4:40:8a:b2:11:3e:5f:c2:13:
6c:8d:d3:50:fd:1e:fc:bd:bf:af:27:20:04:fd:88:
ca:57:4e:ed:87:16:5c:19:d0:12:fc:1e:ee:7b:66:
1e:3a:b5:55:68:34:02:ef:59:76:6e:30:ea:49:78:
c0:3a:da:1c:0c:ec:13:da:35:ad:6b:fe:a4:b7:24:
0d:3f:a8:43:3a:72:2b:21:42:c7:86:f8:3a:9c:ad:
bb:4b:af:66:d3:8a:0e:f5:b9:9f:bd:b6:de:d9:c1:
4c:bf:c2:c5:5c:3c:ad:d0:4e:44:47:1e:08:8e:62:
12:c3:a5:8c:84:70:f8:db:fb:36:4c:7d:04:30:b4:
90:bc:00:ef:bd:4b:85:63:fe:82:7a:02:8a:38:ec:
3e:db:9e:a7:b9:d6:f1:f2:0f:21:54:21:72:e9:cc:
eb:dd:3f:38:94:72:f2:49:bf:1f:b3:e0:78:02:9a:
63:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:65:27:44:F0:BB:4D:00:C2:A4:D2:C1:1A:AB:E9:6A:F1:14:7C:86
X509v3 Authority Key Identifier:
keyid:86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/1WUnRPC7TQDCpNLBGqvpavEUfIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.192.0/22
79.143.16.0-79.143.18.255
185.252.0.0/22
IPv6:
2a09:e9c0::/29
Signature Algorithm: sha256WithRSAEncryption
b5:64:d9:24:94:88:7f:a2:ab:e3:de:2b:e9:da:b4:3a:39:14:
d7:69:ec:b6:2b:d1:32:ad:b5:4e:0e:f5:68:ee:c5:25:5e:8d:
3a:1f:ac:6f:b3:7c:19:1f:f8:c3:52:f0:fa:c2:2c:9c:22:62:
e1:58:d9:56:b8:4b:a7:03:d1:f0:b0:ca:5d:79:2a:57:73:20:
dd:d2:01:cd:16:fb:8c:b5:16:a3:96:93:ea:af:04:bf:23:59:
de:72:68:b8:5b:8d:39:70:61:45:eb:16:c4:b1:1d:4e:f9:f8:
1f:b0:1d:f0:16:41:9a:40:0e:7b:0a:1d:10:10:5b:a9:04:e0:
ac:b2:20:4a:87:40:0d:f9:f2:33:b3:88:d2:6a:29:1f:c0:dc:
2c:c0:e7:68:28:82:11:ab:05:6c:52:d7:39:7d:69:0f:0d:39:
3c:97:57:19:c4:42:23:98:4b:62:95:52:04:cb:d7:3f:e3:22:
1b:82:24:6b:14:65:69:13:b4:38:e0:c8:40:25:f6:54:b4:9f:
3e:c6:fd:00:fd:92:92:13:ca:fd:6a:04:6a:4f:4d:f3:48:05:
70:01:d1:b2:ec:79:45:2c:b5:e3:d6:db:6e:38:ae:35:53:7a:
59:1b:f0:55:bd:1b:4d:74:50:ed:0e:6e:a8:43:68:c9:20:9c:
c0:ff:f0:c2
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAZQi+69Hn1Pm7hMCngDzIL/+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YThmZjRjOWM1NjY2N2Q5OTAyNWQ3ZjAxNTkxY2JmNzdh
ZDJmMDkwHhcNMjUwMTAxMTc0ODI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTY1Mjc0NGYwYmI0ZDAwYzJhNGQyYzExYWFiZTk2YWYxMTQ3Yzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOuLiO4mIuFTFRMVCSrXIoLL5FRk
E2z08JA9z0fBij1l733m9t3VCsN0dwoGMXLHTNg2GpvvXPROwgvykPSXxJWv98Nn
wcOqdJTf7RvSpP2kQIqyET5fwhNsjdNQ/R78vb+vJyAE/YjKV07thxZcGdAS/B7u
e2YeOrVVaDQC71l2bjDqSXjAOtocDOwT2jWta/6ktyQNP6hDOnIrIULHhvg6nK27
S69m04oO9bmfvbbe2cFMv8LFXDyt0E5ERx4IjmISw6WMhHD42/s2TH0EMLSQvADv
vUuFY/6CegKKOOw+256nudbx8g8hVCFy6czr3T84lHLySb8fs+B4AppjyQIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFNVlJ0Twu00AwqTSwRqr6WrxFHyGMB8GA1UdIwQY
MBaAFIao/0ycVmZ9mQJdfwFZHL93rS8JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHFqX1RKeFdabjJaQWwxX0FWa2N2M2V0THdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9jOTIxZTgtNmM5NC00Y2MyLWI5ZmQt
MDZhNDk5NjhjMmQzLzEvMVdVblJQQzdUUURDcE5MQkdxdnBhdkVVZklZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9jOTIxZTgtNmM5NC00Y2MyLWI5ZmQtMDZhNDk5NjhjMmQz
LzEvaHFqX1RKeFdabjJaQWwxX0FWa2N2M2V0THdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAgBAIAATAaAwQCAjrAMAwD
BARPjxADBABPjxIDBAK5/AAwDQQCAAIwBwMFAyoJ6cAwDQYJKoZIhvcNAQELBQAD
ggEBALVk2SSUiH+iq+PeK+natDo5FNdp7LYr0TKttU4O9WjuxSVejTofrG+zfBkf
+MNS8PrCLJwiYuFY2Va4S6cD0fCwyl15KldzIN3SAc0W+4y1FqOWk+qvBL8jWd5y
aLhbjTlwYUXrFsSxHU75+B+wHfAWQZpADnsKHRAQW6kE4KyyIEqHQA358jOziNJq
KR/A3CzA52goghGrBWxS1zl9aQ8NOTyXVxnEQiOYS2KVUgTL1z/jIhuCJGsUZWkT
tDjgyEAl9lS0nz7G/QD9kpITyv1qBGpPTfNIBXAB0bLseUUstePW2244rjVTelkb
8FW9G010UO0ObqhDaMkgnMD/8MI=
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:11:36 2025 by rpki-client