Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/FetsHfbdUifY1TU89hnwoFpg5QI.roa
File: FetsHfbdUifY1TU89hnwoFpg5QI.roa (raw, json)
Hash identifier: ZHBz8QvXKu/jKruoZfTsft4ugiggH0hcJsS7NZeRumw=
Subject key identifier: 15:EB:6C:1D:F6:DD:52:27:D8:D5:35:3C:F6:19:F0:A0:5A:60:E5:02
Certificate issuer: /CN=4c7844abef711c232c84f83c807a420af3804728
Certificate serial: 0194236A03A159A8D9E16E78871192B123A2
Authority key identifier: 4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/FetsHfbdUifY1TU89hnwoFpg5QI.roa
Signing time: Wed 01 Jan 2025 19:48:57 +0000
ROA not before: Wed 01 Jan 2025 19:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203193
IP address blocks: 185.143.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:03:a1:59:a8:d9:e1:6e:78:87:11:92:b1:23:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c7844abef711c232c84f83c807a420af3804728
Validity
Not Before: Jan 1 19:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=15eb6c1df6dd5227d8d5353cf619f0a05a60e502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b0:6f:74:24:dd:02:b9:a0:a7:ac:14:ec:7d:
2f:f0:38:9f:ed:b1:1f:33:1b:f9:db:ec:e8:41:6a:
05:66:ce:33:b3:37:b6:77:05:47:db:f3:15:af:b9:
b4:98:e7:d6:b6:c5:d8:7b:0a:c7:d8:76:f8:ea:82:
6b:85:b7:a9:28:86:29:86:d9:e4:74:b6:93:3f:a2:
8d:b2:24:23:16:6f:96:e2:50:12:bb:ca:19:02:d2:
4c:04:8e:da:f9:ca:8c:f6:97:ec:88:d5:1b:c3:ec:
d8:9d:2e:60:54:b6:e6:2d:97:34:65:dd:3d:20:5d:
69:dc:0c:43:43:7a:94:dc:89:90:91:1c:70:11:3a:
2e:77:e9:7b:b5:db:38:6b:bd:41:5a:d3:d0:33:00:
3b:89:d7:df:a3:a5:c5:8d:00:50:0c:92:d8:42:ef:
12:58:1d:7e:a2:35:28:bc:56:e8:95:1a:12:f4:16:
00:6c:11:c5:61:04:44:d7:2e:5c:41:d9:e0:17:2a:
eb:d1:8f:26:eb:16:84:2c:fc:ba:22:0c:ca:ae:cf:
02:cf:c8:e6:0d:30:31:fb:8d:3e:33:5b:57:59:a7:
50:9c:51:b1:c7:42:ed:a8:19:17:41:10:ec:18:d3:
0c:15:cc:f1:7a:0f:87:2e:be:01:25:98:ec:f4:0c:
c2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:EB:6C:1D:F6:DD:52:27:D8:D5:35:3C:F6:19:F0:A0:5A:60:E5:02
X509v3 Authority Key Identifier:
keyid:4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/FetsHfbdUifY1TU89hnwoFpg5QI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.4.0/22
Signature Algorithm: sha256WithRSAEncryption
d4:a2:4d:e5:97:f2:aa:f2:ea:a6:ec:af:cf:5d:ce:b8:09:e8:
0d:ff:60:55:b5:10:ab:fa:50:7f:6a:ff:de:a1:de:4e:88:7b:
d0:4d:69:a9:f9:b0:03:b1:47:ab:a2:db:78:32:4b:b7:c3:11:
a4:0b:cb:29:7c:59:1e:b5:7d:dd:d0:b6:2d:ed:de:3a:a3:a0:
1a:66:4f:70:6f:51:33:af:71:62:bd:23:10:20:33:e8:5a:b7:
72:7a:c6:d5:07:f7:7a:f8:96:a3:7f:f2:3e:7a:9b:f5:03:3e:
38:aa:78:6a:c5:28:aa:f5:ad:1d:fa:e4:21:e5:d1:6c:3b:df:
c9:00:35:78:b8:ec:78:b5:81:9e:46:53:21:a1:57:b9:c5:08:
06:22:16:c6:81:af:a6:db:dd:3a:86:b7:e6:6a:d5:af:62:e7:
9d:ab:8b:4c:52:96:dc:2e:c2:a0:9c:9a:b4:40:9f:7e:80:7b:
6f:54:97:48:21:f5:43:5a:85:de:a6:7a:43:89:86:78:8d:13:
73:96:a6:c9:39:07:17:e9:ed:56:18:bb:84:30:35:57:1b:e4:
2f:98:da:d9:d8:04:24:c5:6a:e9:66:50:05:88:aa:ea:09:57:
70:5f:ec:47:6a:01:e2:27:e1:57:1d:43:9a:33:25:a7:17:52:
5e:e1:ed:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQjagOhWajZ4W54hxGSsSOiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjNzg0NGFiZWY3MTFjMjMyYzg0ZjgzYzgwN2E0MjBhZjM4
MDQ3MjgwHhcNMjUwMTAxMTk0ODU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNWViNmMxZGY2ZGQ1MjI3ZDhkNTM1M2NmNjE5ZjBhMDVhNjBlNTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibBvdCTdArmgp6wU7H0v8Dif7bEf
Mxv52+zoQWoFZs4zsze2dwVH2/MVr7m0mOfWtsXYewrH2Hb46oJrhbepKIYphtnk
dLaTP6KNsiQjFm+W4lASu8oZAtJMBI7a+cqM9pfsiNUbw+zYnS5gVLbmLZc0Zd09
IF1p3AxDQ3qU3ImQkRxwEToud+l7tds4a71BWtPQMwA7idffo6XFjQBQDJLYQu8S
WB1+ojUovFbolRoS9BYAbBHFYQRE1y5cQdngFyrr0Y8m6xaELPy6IgzKrs8Cz8jm
DTAx+40+M1tXWadQnFGxx0LtqBkXQRDsGNMMFczxeg+HLr4BJZjs9AzCuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBXrbB323VIn2NU1PPYZ8KBaYOUCMB8GA1UdIwQY
MBaAFEx4RKvvcRwjLIT4PIB6QgrzgEcoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEhoRXEtOXhIQ01zaFBnOGdIcENDdk9BUnlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi84ZDU1YzAtOWFhMC00YmU3LTgyYTgt
ZGFiNmI4M2NmN2VjLzEvRmV0c0hmYmRVaWZZMVRVODlobndvRnBnNVFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi84ZDU1YzAtOWFhMC00YmU3LTgyYTgtZGFiNmI4M2NmN2Vj
LzEvVEhoRXEtOXhIQ01zaFBnOGdIcENDdk9BUnlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuY8EMA0G
CSqGSIb3DQEBCwUAA4IBAQDUok3ll/Kq8uqm7K/PXc64CegN/2BVtRCr+lB/av/e
od5OiHvQTWmp+bADsUerott4Mku3wxGkC8spfFketX3d0LYt7d46o6AaZk9wb1Ez
r3FivSMQIDPoWrdyesbVB/d6+Jajf/I+epv1Az44qnhqxSiq9a0d+uQh5dFsO9/J
ADV4uOx4tYGeRlMhoVe5xQgGIhbGga+m2906hrfmatWvYuedq4tMUpbcLsKgnJq0
QJ9+gHtvVJdIIfVDWoXepnpDiYZ4jRNzlqbJOQcX6e1WGLuEMDVXG+QvmNrZ2AQk
xWrpZlAFiKrqCVdwX+xHagHiJ+FXHUOaMyWnF1Je4e2b
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:41:45 2025 by rpki-client