Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/94d485-5d19-46bc-b336-faafe478bdce/1/hoKUli4aEbPshio3YAyMPjWDD2I.roa
File: hoKUli4aEbPshio3YAyMPjWDD2I.roa (raw, json)
Hash identifier: LNDSOjwwI6zC2MtTLAkS/ZIKuOM2hHGHi/FcaWDSdts=
Subject key identifier: 86:82:94:96:2E:1A:11:B3:EC:86:2A:37:60:0C:8C:3E:35:83:0F:62
Certificate issuer: /CN=5151824c12bd3e2af7a987524a7a33a8f19d81e7
Certificate serial: 01942522173F527F69F75FFF8FE6781BE510
Authority key identifier: 51:51:82:4C:12:BD:3E:2A:F7:A9:87:52:4A:7A:33:A8:F1:9D:81:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UVGCTBK9Pir3qYdSSnozqPGdgec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/94d485-5d19-46bc-b336-faafe478bdce/1/hoKUli4aEbPshio3YAyMPjWDD2I.roa
Signing time: Thu 02 Jan 2025 03:49:38 +0000
ROA not before: Thu 02 Jan 2025 03:49:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 195.226.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:17:3f:52:7f:69:f7:5f:ff:8f:e6:78:1b:e5:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5151824c12bd3e2af7a987524a7a33a8f19d81e7
Validity
Not Before: Jan 2 03:49:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=868294962e1a11b3ec862a37600c8c3e35830f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4b:cb:d1:88:82:9f:18:0e:01:d9:44:f3:10:
c6:8f:c5:41:28:a2:d9:f9:b5:2c:79:71:10:dc:15:
b8:66:72:f7:17:41:86:ff:3e:ee:09:98:9d:1b:9c:
18:04:0a:3f:9b:86:bc:28:b9:be:fb:0b:74:dc:62:
98:d3:f5:6b:ef:58:8d:a2:fb:ee:67:05:01:bf:21:
6c:38:cb:d1:02:1d:cb:b2:77:b2:3d:08:bf:b9:7a:
bf:75:3c:8c:95:f1:7b:ee:ab:7c:2c:63:b6:ce:5d:
8c:62:7c:22:a1:a1:c3:fb:c0:90:a9:87:26:46:1a:
b5:37:a8:f6:5a:34:8c:3e:72:65:05:c3:2e:4b:6e:
1f:4c:83:82:11:dd:13:04:be:a6:d4:6f:c0:59:49:
ec:45:ce:b6:f3:e3:90:ae:fe:77:33:f8:0a:07:de:
e8:02:9f:67:d2:0c:1a:49:98:aa:2a:82:56:79:96:
2c:78:ac:e4:98:0c:b1:04:88:62:fb:18:b4:ab:5c:
6e:fa:49:11:ad:41:22:5d:1f:c6:4d:68:71:fc:d8:
da:1d:7c:5e:18:c4:1d:d4:27:26:56:86:e0:b5:78:
e9:d8:41:be:f3:94:71:b5:9b:d9:91:b0:d3:47:dc:
05:1a:0d:40:43:48:b0:2a:17:75:5b:6a:e0:a9:30:
a5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:82:94:96:2E:1A:11:B3:EC:86:2A:37:60:0C:8C:3E:35:83:0F:62
X509v3 Authority Key Identifier:
keyid:51:51:82:4C:12:BD:3E:2A:F7:A9:87:52:4A:7A:33:A8:F1:9D:81:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UVGCTBK9Pir3qYdSSnozqPGdgec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/94d485-5d19-46bc-b336-faafe478bdce/1/hoKUli4aEbPshio3YAyMPjWDD2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/94d485-5d19-46bc-b336-faafe478bdce/1/UVGCTBK9Pir3qYdSSnozqPGdgec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.211.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ea:c7:9c:d4:53:39:5e:2e:82:ec:c6:06:5a:97:17:31:ab:
cc:a2:e3:34:4d:25:d8:0b:b0:39:3c:39:c2:e1:cc:1e:3f:2d:
79:25:88:9a:c2:7e:cd:58:ce:1f:d8:24:85:73:15:b2:14:74:
9e:a8:fc:c8:77:6e:9f:38:78:06:7e:68:12:cf:75:83:d5:8e:
ea:50:ca:53:61:8b:32:a1:ff:13:58:a1:70:6b:84:ec:3d:03:
1f:31:41:01:cb:dd:6b:08:58:d3:e8:c9:08:72:6c:9b:10:08:
2b:cd:3a:77:1b:c8:17:0c:c5:4d:a6:dd:5a:fb:93:b6:bd:e8:
cd:f4:65:66:99:12:98:da:2f:2c:cc:e5:cc:53:84:2e:af:3e:
9e:79:77:ef:4a:89:27:6d:0b:42:8d:70:df:3c:2c:b1:b5:32:
2c:be:98:93:38:a4:ba:d1:ca:82:3e:e4:2e:96:cd:36:93:93:
a4:37:11:f6:13:d3:14:4c:1a:6b:35:1a:47:c1:66:e3:68:28:
a0:46:18:e2:e3:db:cd:96:6e:76:b8:32:60:b3:63:e8:68:31:
84:82:b2:08:7d:a4:62:a9:8a:ea:e2:01:cf:44:8a:d7:a3:aa:
ef:da:c4:29:32:ff:1d:57:ea:e6:d3:aa:a2:e4:82:e9:56:c9:
50:0d:9f:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIhc/Un9p91//j+Z4G+UQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNTE4MjRjMTJiZDNlMmFmN2E5ODc1MjRhN2EzM2E4ZjE5
ZDgxZTcwHhcNMjUwMTAyMDM0OTM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjgyOTQ5NjJlMWExMWIzZWM4NjJhMzc2MDBjOGMzZTM1ODMwZjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EvL0YiCnxgOAdlE8xDGj8VBKKLZ
+bUseXEQ3BW4ZnL3F0GG/z7uCZidG5wYBAo/m4a8KLm++wt03GKY0/Vr71iNovvu
ZwUBvyFsOMvRAh3LsneyPQi/uXq/dTyMlfF77qt8LGO2zl2MYnwioaHD+8CQqYcm
Rhq1N6j2WjSMPnJlBcMuS24fTIOCEd0TBL6m1G/AWUnsRc628+OQrv53M/gKB97o
Ap9n0gwaSZiqKoJWeZYseKzkmAyxBIhi+xi0q1xu+kkRrUEiXR/GTWhx/NjaHXxe
GMQd1CcmVobgtXjp2EG+85RxtZvZkbDTR9wFGg1AQ0iwKhd1W2rgqTClOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIaClJYuGhGz7IYqN2AMjD41gw9iMB8GA1UdIwQY
MBaAFFFRgkwSvT4q96mHUkp6M6jxnYHnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVZHQ1RCSzlQaXIzcVlkU1Nub3pxUEdkZ2VjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC85NGQ0ODUtNWQxOS00NmJjLWIzMzYt
ZmFhZmU0NzhiZGNlLzEvaG9LVWxpNGFFYlBzaGlvM1lBeU1QaldERDJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC85NGQ0ODUtNWQxOS00NmJjLWIzMzYtZmFhZmU0NzhiZGNl
LzEvVVZHQ1RCSzlQaXIzcVlkU1Nub3pxUEdkZ2VjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+LTMA0G
CSqGSIb3DQEBCwUAA4IBAQBS6sec1FM5Xi6C7MYGWpcXMavMouM0TSXYC7A5PDnC
4cwePy15JYiawn7NWM4f2CSFcxWyFHSeqPzId26fOHgGfmgSz3WD1Y7qUMpTYYsy
of8TWKFwa4TsPQMfMUEBy91rCFjT6MkIcmybEAgrzTp3G8gXDMVNpt1a+5O2vejN
9GVmmRKY2i8szOXMU4Qurz6eeXfvSoknbQtCjXDfPCyxtTIsvpiTOKS60cqCPuQu
ls02k5OkNxH2E9MUTBprNRpHwWbjaCigRhji49vNlm52uDJgs2PoaDGEgrIIfaRi
qYrq4gHPRIrXo6rv2sQpMv8dV+rm06qi5ILpVslQDZ9T
-----END CERTIFICATE-----
Generated at Fri Apr 4 23:47:51 2025 by rpki-client