Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e5a253-19cf-4ce8-9c5c-56c6d551a932/1/wHHMwXNW_N83G6X6FvCX0cxSHMc.roa
File: wHHMwXNW_N83G6X6FvCX0cxSHMc.roa (raw, json)
Hash identifier: EDHNa2I735GRLd+NXqVnh5LuTlV6xmWH1ELRRt1kANs=
Subject key identifier: C0:71:CC:C1:73:56:FC:DF:37:1B:A5:FA:16:F0:97:D1:CC:52:1C:C7
Certificate issuer: /CN=db8a0a3d6a44a58304e1b1dbf62e5d7a16b3887a
Certificate serial: 019425FC027338535962267B389E0E805298
Authority key identifier: DB:8A:0A:3D:6A:44:A5:83:04:E1:B1:DB:F6:2E:5D:7A:16:B3:88:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24oKPWpEpYME4bHb9i5dehaziHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e5a253-19cf-4ce8-9c5c-56c6d551a932/1/wHHMwXNW_N83G6X6FvCX0cxSHMc.roa
Signing time: Thu 02 Jan 2025 07:47:40 +0000
ROA not before: Thu 02 Jan 2025 07:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43185
IP address blocks: 77.95.208.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:02:73:38:53:59:62:26:7b:38:9e:0e:80:52:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db8a0a3d6a44a58304e1b1dbf62e5d7a16b3887a
Validity
Not Before: Jan 2 07:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c071ccc17356fcdf371ba5fa16f097d1cc521cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ba:92:95:7e:9b:6b:6e:10:1d:07:00:af:e3:
ef:8d:3c:b1:7c:e7:b4:3d:36:28:06:0b:39:13:0b:
3c:85:48:b5:b6:b3:93:9d:8f:9f:c4:4f:71:6e:e4:
b4:b9:15:12:e5:15:5c:ab:05:62:b9:52:cc:82:db:
2b:81:49:31:fb:7e:17:b5:f0:f0:3d:08:59:17:0a:
26:ce:92:45:28:59:46:0b:5e:fa:97:0f:8d:15:06:
2c:53:89:4f:fb:a5:0f:a1:83:f9:a4:c2:b3:f0:2e:
a0:a1:a8:41:85:3f:17:48:7a:40:3f:8e:d7:42:19:
bf:15:47:8c:4f:cc:dc:19:8a:1a:7e:f3:11:7b:6c:
f6:41:3c:43:7c:07:47:fb:26:ed:84:3a:fd:28:c6:
c3:6a:c2:db:d9:fd:f2:49:a4:72:66:9b:7e:95:9e:
10:31:26:23:ac:d0:cc:09:ad:6d:64:f1:77:8c:66:
68:05:d2:ff:15:1a:91:18:e2:c2:9f:79:9e:0b:43:
bd:18:bc:48:86:64:99:d2:5a:10:2d:2f:89:1f:1a:
b6:a7:a6:48:bf:5e:77:c0:a2:76:1e:d1:c4:a5:3b:
9d:3a:c6:2d:37:58:60:ed:a6:ba:ca:b0:91:df:a0:
a5:ca:a8:9a:b5:0a:64:19:9d:31:c5:95:62:0e:7d:
fe:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:71:CC:C1:73:56:FC:DF:37:1B:A5:FA:16:F0:97:D1:CC:52:1C:C7
X509v3 Authority Key Identifier:
keyid:DB:8A:0A:3D:6A:44:A5:83:04:E1:B1:DB:F6:2E:5D:7A:16:B3:88:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24oKPWpEpYME4bHb9i5dehaziHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e5a253-19cf-4ce8-9c5c-56c6d551a932/1/wHHMwXNW_N83G6X6FvCX0cxSHMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e5a253-19cf-4ce8-9c5c-56c6d551a932/1/24oKPWpEpYME4bHb9i5dehaziHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.208.0/21
Signature Algorithm: sha256WithRSAEncryption
89:d2:d2:73:0c:7d:64:34:2d:d6:48:3d:a8:94:8f:ec:b1:c6:
30:6a:d5:92:fa:86:a9:b8:11:10:6a:5c:49:e1:bb:66:62:43:
1c:f4:cf:03:78:4f:c2:fd:de:fd:38:69:e5:0a:c4:9b:c5:0b:
ac:06:fc:46:47:6d:20:65:8a:b4:6e:15:2b:d5:68:12:ee:63:
71:51:ca:cf:21:05:74:68:77:9e:cf:ff:39:81:b2:5b:66:d1:
2a:2f:9f:2c:d6:02:29:a5:fc:f3:38:ca:42:3a:dc:8e:48:6b:
43:05:de:4f:66:1d:3b:46:c6:f9:34:ef:07:af:a7:2a:cc:82:
e3:0d:c0:78:3a:9e:c0:c5:95:f8:2b:1f:3c:49:0b:7e:14:bc:
3e:61:41:53:86:84:22:e4:3c:30:43:eb:95:62:95:2a:d8:b9:
3b:78:8c:f7:90:71:2b:34:24:e9:6c:88:81:06:cf:65:a0:00:
ba:fb:59:29:8b:9f:41:4c:c0:8f:0b:4f:3e:f4:f4:17:61:1c:
63:06:8e:3b:59:23:3d:01:d8:ab:dd:5e:a9:e4:2c:77:9b:40:
b3:8b:88:da:c1:83:c9:aa:87:39:fb:34:b4:23:a1:82:d9:3a:
a7:bb:4d:1e:8c:9f:0d:00:e4:fd:a0:5a:1c:fe:47:9e:a3:05:
46:5f:f3:03
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/AJzOFNZYiZ7OJ4OgFKYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiOGEwYTNkNmE0NGE1ODMwNGUxYjFkYmY2MmU1ZDdhMTZi
Mzg4N2EwHhcNMjUwMTAyMDc0NzQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMDcxY2NjMTczNTZmY2RmMzcxYmE1ZmExNmYwOTdkMWNjNTIxY2M3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbqSlX6ba24QHQcAr+PvjTyxfOe0
PTYoBgs5Ews8hUi1trOTnY+fxE9xbuS0uRUS5RVcqwViuVLMgtsrgUkx+34XtfDw
PQhZFwomzpJFKFlGC176lw+NFQYsU4lP+6UPoYP5pMKz8C6goahBhT8XSHpAP47X
Qhm/FUeMT8zcGYoafvMRe2z2QTxDfAdH+ybthDr9KMbDasLb2f3ySaRyZpt+lZ4Q
MSYjrNDMCa1tZPF3jGZoBdL/FRqRGOLCn3meC0O9GLxIhmSZ0loQLS+JHxq2p6ZI
v153wKJ2HtHEpTudOsYtN1hg7aa6yrCR36ClyqiatQpkGZ0xxZViDn3+SQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMBxzMFzVvzfNxul+hbwl9HMUhzHMB8GA1UdIwQY
MBaAFNuKCj1qRKWDBOGx2/YuXXoWs4h6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjRvS1BXcEVwWU1FNGJIYjlpNWRlaGF6aUhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9lNWEyNTMtMTljZi00Y2U4LTljNWMt
NTZjNmQ1NTFhOTMyLzEvd0hITXdYTldfTjgzRzZYNkZ2Q1gwY3hTSE1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9lNWEyNTMtMTljZi00Y2U4LTljNWMtNTZjNmQ1NTFhOTMy
LzEvMjRvS1BXcEVwWU1FNGJIYjlpNWRlaGF6aUhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDTV/QMA0G
CSqGSIb3DQEBCwUAA4IBAQCJ0tJzDH1kNC3WSD2olI/sscYwatWS+oapuBEQalxJ
4btmYkMc9M8DeE/C/d79OGnlCsSbxQusBvxGR20gZYq0bhUr1WgS7mNxUcrPIQV0
aHeez/85gbJbZtEqL58s1gIppfzzOMpCOtyOSGtDBd5PZh07Rsb5NO8Hr6cqzILj
DcB4Op7AxZX4Kx88SQt+FLw+YUFThoQi5DwwQ+uVYpUq2Lk7eIz3kHErNCTpbIiB
Bs9loAC6+1kpi59BTMCPC08+9PQXYRxjBo47WSM9Adir3V6p5Cx3m0Czi4jawYPJ
qoc5+zS0I6GC2Tqnu00ejJ8NAOT9oFoc/keeowVGX/MD
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:42:21 2025 by rpki-client