Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/V9THiIVArSnZ1H4kkTxosx3Tvz4.roa
File: V9THiIVArSnZ1H4kkTxosx3Tvz4.roa (raw, json)
Hash identifier: lUYBTWUgXaqtzw8eN2t3fS8dCvHHrGYo2Uz5MEjddRY=
Subject key identifier: 57:D4:C7:88:85:40:AD:29:D9:D4:7E:24:91:3C:68:B3:1D:D3:BF:3E
Certificate issuer: /CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Certificate serial: 019440B74152098B70BB24897451E6D8F0E6
Authority key identifier: A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/V9THiIVArSnZ1H4kkTxosx3Tvz4.roa
Signing time: Tue 07 Jan 2025 12:22:18 +0000
ROA not before: Tue 07 Jan 2025 12:22:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51765
IP address blocks: 217.9.10.0/24 maxlen: 24
217.9.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:40:b7:41:52:09:8b:70:bb:24:89:74:51:e6:d8:f0:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Validity
Not Before: Jan 7 12:22:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=57d4c7888540ad29d9d47e24913c68b31dd3bf3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4e:d4:44:6c:a6:36:13:62:77:e7:44:45:53:
97:84:b0:f8:3b:65:cc:3a:af:c2:7d:06:f4:25:97:
81:6e:4e:0c:13:9b:c7:4d:63:ca:a9:16:72:8a:5d:
1b:f9:43:e4:73:80:53:c4:4d:ec:3e:c4:9f:09:ca:
98:3e:74:25:ae:c3:7e:6b:37:64:30:24:fd:7c:a2:
96:4d:81:1f:be:51:08:6e:bd:1b:4a:d3:e3:d3:44:
1b:e4:c4:e6:38:3b:40:8d:48:62:1f:90:9f:5a:35:
90:37:a7:57:7b:dd:97:ef:32:e9:26:ef:96:ff:3d:
8f:58:ee:51:2d:a6:be:e2:14:ca:79:1d:0c:52:44:
8b:15:04:48:63:cc:21:42:90:a2:07:67:e3:2f:ec:
3a:57:04:c5:eb:26:26:d3:0a:b0:86:42:fa:db:1f:
3c:21:38:e8:47:a2:ca:e2:c7:59:fc:e4:51:b7:90:
3a:7e:e6:67:82:83:2a:eb:0b:91:ce:8e:68:d2:6a:
f8:a5:56:cd:86:a3:be:d6:28:cd:aa:56:73:8f:69:
99:e0:8c:f8:5d:85:cc:58:8a:d0:95:95:14:10:20:
24:df:b7:c7:87:3a:c8:b5:cf:62:27:3f:72:67:9f:
c0:43:5f:1f:e9:f2:45:ce:45:84:c2:f5:b1:59:56:
c1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D4:C7:88:85:40:AD:29:D9:D4:7E:24:91:3C:68:B3:1D:D3:BF:3E
X509v3 Authority Key Identifier:
keyid:A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/V9THiIVArSnZ1H4kkTxosx3Tvz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.9.10.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:f7:47:a6:54:4c:f1:79:a9:10:29:f0:29:5f:3a:78:2b:e9:
c6:bc:9d:0e:b0:19:cf:f3:a4:5c:65:b9:ab:3e:98:9b:98:44:
0a:9b:66:e5:3a:3e:7a:26:b7:5d:7a:1f:11:fa:a3:2f:17:50:
1c:15:fc:e9:1b:5b:11:8f:15:3f:59:6c:08:b5:b3:21:06:fd:
5b:c9:23:11:ef:f6:2c:cc:af:13:2d:f3:05:cb:8b:f3:68:81:
60:2f:2f:3b:44:1b:71:dc:7d:de:91:48:68:04:57:fb:61:8e:
db:44:50:e5:49:bc:94:6f:ed:2d:26:d5:64:01:f2:88:e2:c8:
4d:62:26:c9:4d:79:8c:f4:eb:5a:c6:68:b2:cf:84:b8:b2:e3:
63:2a:93:db:cf:bd:01:14:44:8f:e0:7b:10:57:50:46:f6:8e:
c3:a1:40:84:8c:c2:0a:d5:ce:c1:85:90:70:f4:98:95:2b:d4:
fd:e2:4b:30:09:85:9d:d5:ca:15:ed:6f:31:50:5c:26:b1:8a:
bb:38:34:10:e6:38:a8:d4:04:fe:b2:0c:d1:02:66:dd:9f:44:
01:13:a1:64:1d:f7:84:5d:7d:76:71:b5:72:70:20:23:49:a8:
ae:e9:b2:f4:6c:84:98:25:73:93:e1:42:27:22:7b:5f:27:d0:
eb:3c:16:11
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZRAt0FSCYtwuySJdFHm2PDmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3ZWUxODJkOWM0M2E1Y2U3MDY4ZGZkOWJhN2FhOGVkOTBl
NWUwYmEwHhcNMjUwMTA3MTIyMjE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1N2Q0Yzc4ODg1NDBhZDI5ZDlkNDdlMjQ5MTNjNjhiMzFkZDNiZjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2E7URGymNhNid+dERVOXhLD4O2XM
Oq/CfQb0JZeBbk4ME5vHTWPKqRZyil0b+UPkc4BTxE3sPsSfCcqYPnQlrsN+azdk
MCT9fKKWTYEfvlEIbr0bStPj00Qb5MTmODtAjUhiH5CfWjWQN6dXe92X7zLpJu+W
/z2PWO5RLaa+4hTKeR0MUkSLFQRIY8whQpCiB2fjL+w6VwTF6yYm0wqwhkL62x88
ITjoR6LK4sdZ/ORRt5A6fuZngoMq6wuRzo5o0mr4pVbNhqO+1ijNqlZzj2mZ4Iz4
XYXMWIrQlZUUECAk37fHhzrItc9iJz9yZ5/AQ18f6fJFzkWEwvWxWVbBdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFfUx4iFQK0p2dR+JJE8aLMd078+MB8GA1UdIwQY
MBaAFKfuGC2cQ6XOcGjf2bp6qO2Q5eC6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcC00WUxaeERwYzV3YU5fWnVucW83WkRsNExvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9kYWI0MjAtMGRlMy00MzIxLTljMDkt
NmI1ZjY4NTIyYTdkLzEvVjlUSGlJVkFyU25aMUg0a2tUeG9zeDNUdno0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9kYWI0MjAtMGRlMy00MzIxLTljMDktNmI1ZjY4NTIyYTdk
LzEvcC00WUxaeERwYzV3YU5fWnVucW83WkRsNExvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB2QkKMA0G
CSqGSIb3DQEBCwUAA4IBAQCy90emVEzxeakQKfApXzp4K+nGvJ0OsBnP86RcZbmr
PpibmEQKm2blOj56Jrddeh8R+qMvF1AcFfzpG1sRjxU/WWwItbMhBv1bySMR7/Ys
zK8TLfMFy4vzaIFgLy87RBtx3H3ekUhoBFf7YY7bRFDlSbyUb+0tJtVkAfKI4shN
YibJTXmM9Otaxmiyz4S4suNjKpPbz70BFESP4HsQV1BG9o7DoUCEjMIK1c7BhZBw
9JiVK9T94kswCYWd1coV7W8xUFwmsYq7ODQQ5jio1AT+sgzRAmbdn0QBE6FkHfeE
XX12cbVycCAjSaiu6bL0bISYJXOT4UInIntfJ9DrPBYR
-----END CERTIFICATE-----
Generated at Sun Apr 6 00:17:55 2025 by rpki-client