Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ea8eb7-f6a5-4927-b266-d28e70e75587/1/_7621sLTW2faK9MxK2MIoctw3OQ.roa
File: _7621sLTW2faK9MxK2MIoctw3OQ.roa (raw, json)
Hash identifier: Pp+xxsWhGS4vm1QToyft9iXb35w9QmISeEI+tiYxHmw=
Subject key identifier: FF:BE:B6:D6:C2:D3:5B:67:DA:2B:D3:31:2B:63:08:A1:CB:70:DC:E4
Certificate issuer: /CN=977d549a86531540fff031f5865fcc0db9f841c2
Certificate serial: 29B81B39
Authority key identifier: 97:7D:54:9A:86:53:15:40:FF:F0:31:F5:86:5F:CC:0D:B9:F8:41:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l31UmoZTFUD_8DH1hl_MDbn4QcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ea8eb7-f6a5-4927-b266-d28e70e75587/1/_7621sLTW2faK9MxK2MIoctw3OQ.roa
Signing time: Sat 01 Jan 2022 16:04:04 +0000
ROA not before: Sat 01 Jan 2022 16:04:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61044
IP address blocks: 185.40.92.0/22 maxlen: 22
37.148.192.0/21 maxlen: 21
2a03:10c0::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 699931449 (0x29b81b39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977d549a86531540fff031f5865fcc0db9f841c2
Validity
Not Before: Jan 1 16:04:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffbeb6d6c2d35b67da2bd3312b6308a1cb70dce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f6:9e:0d:ae:4f:27:c6:d5:ec:8f:7c:c3:56:
d9:01:35:ac:55:45:8d:87:6d:84:ed:05:16:0e:8b:
75:e9:4f:8b:c0:6b:93:42:f9:3d:97:a1:43:da:aa:
6e:38:8c:ca:3a:f2:e6:88:cb:d0:dc:58:17:ae:5c:
57:b8:9b:da:80:2b:91:11:10:ee:89:79:05:ab:8e:
32:d1:69:7a:e2:e1:96:bb:21:77:83:0c:6e:53:41:
35:33:76:50:73:f8:94:5a:9e:f1:48:68:02:4e:39:
ab:ca:fe:f4:db:69:a4:92:a0:b8:38:6b:36:ce:7e:
73:7c:10:1a:90:d1:93:ef:59:da:dd:c1:71:1e:71:
1d:e5:9e:80:22:80:09:ca:16:ca:cd:31:e0:b3:c4:
89:25:18:dc:ea:78:aa:79:dd:21:ab:da:7b:45:9d:
36:1f:7b:d9:94:29:13:d6:a3:2b:ff:a2:5e:0d:7b:
34:35:27:e6:75:65:74:7d:c3:a9:b4:8f:16:6d:58:
3a:90:2f:06:0f:7b:57:cc:6d:e6:81:ff:d7:0f:d0:
c5:56:a0:ed:7a:2d:81:7c:fa:ca:67:c5:dd:df:ca:
79:36:52:57:b9:93:aa:28:bf:a0:9c:74:0c:71:8f:
2e:a8:f7:a3:ab:77:6a:35:45:8c:9b:ed:4b:0e:98:
79:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BE:B6:D6:C2:D3:5B:67:DA:2B:D3:31:2B:63:08:A1:CB:70:DC:E4
X509v3 Authority Key Identifier:
keyid:97:7D:54:9A:86:53:15:40:FF:F0:31:F5:86:5F:CC:0D:B9:F8:41:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l31UmoZTFUD_8DH1hl_MDbn4QcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ea8eb7-f6a5-4927-b266-d28e70e75587/1/_7621sLTW2faK9MxK2MIoctw3OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ea8eb7-f6a5-4927-b266-d28e70e75587/1/l31UmoZTFUD_8DH1hl_MDbn4QcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.192.0/21
185.40.92.0/22
IPv6:
2a03:10c0::/30
Signature Algorithm: sha256WithRSAEncryption
85:ea:4c:0d:ea:ae:fd:7a:9a:6b:b5:03:51:93:ca:71:2d:28:
4c:2e:9c:92:dc:48:b8:fb:ef:89:5e:ff:52:8e:aa:26:41:c0:
64:87:10:06:26:a3:17:80:02:69:16:a1:b7:c1:54:82:4e:cc:
20:c5:86:eb:63:c5:03:c2:f7:93:f2:21:08:b9:52:8d:5d:16:
28:3a:b7:2c:be:fc:f6:c9:b9:e6:c9:80:ba:2b:02:21:3d:d8:
bb:47:d1:f2:12:69:a1:13:70:75:d2:65:60:b3:b0:7a:8b:f3:
fe:c4:da:b1:45:04:d3:3b:4f:d0:6e:44:60:ab:a5:b9:1d:aa:
1a:ca:ea:76:10:7b:17:c8:40:40:2d:fc:b4:2f:5c:08:cb:f1:
e0:d9:41:5b:c8:a2:bf:b3:ac:23:92:e3:ad:be:6e:f7:b3:b8:
f6:08:25:36:ea:d2:f2:a4:a3:12:4e:43:fa:60:05:69:35:44:
cd:f3:76:61:0e:03:b1:21:93:3a:63:e9:1f:c0:62:92:07:ff:
3b:a4:69:82:db:c0:63:cf:55:29:b8:05:8c:e3:db:2c:c3:0d:
c8:68:9d:51:d8:aa:a5:4e:c5:3b:76:83:89:e8:9e:0a:0c:34:
0d:b6:30:1b:95:f9:70:fb:eb:63:94:84:7d:59:24:3b:f8:96:
eb:9d:bd:ae
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEKbgbOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NzdkNTQ5YTg2NTMxNTQwZmZmMDMxZjU4NjVmY2MwZGI5Zjg0MWMyMB4XDTIyMDEw
MTE2MDQwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmZiZWI2ZDZjMmQz
NWI2N2RhMmJkMzMxMmI2MzA4YTFjYjcwZGNlNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJz2ng2uTyfG1eyPfMNW2QE1rFVFjYdthO0FFg6LdelPi8Br
k0L5PZehQ9qqbjiMyjry5ojL0NxYF65cV7ib2oArkREQ7ol5BauOMtFpeuLhlrsh
d4MMblNBNTN2UHP4lFqe8UhoAk45q8r+9NtppJKguDhrNs5+c3wQGpDRk+9Z2t3B
cR5xHeWegCKACcoWys0x4LPEiSUY3Op4qnndIavae0WdNh972ZQpE9ajK/+iXg17
NDUn5nVldH3DqbSPFm1YOpAvBg97V8xt5oH/1w/QxVag7XotgXz6ymfF3d/KeTZS
V7mTqii/oJx0DHGPLqj3o6t3ajVFjJvtSw6YeR0CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBT/vrbWwtNbZ9or0zErYwihy3Dc5DAfBgNVHSMEGDAWgBSXfVSahlMVQP/w
MfWGX8wNufhBwjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2wzMVVtb1pURlVEXzhESDFobF9NRGJuNFFjSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjIvZWE4ZWI3LWY2YTUtNDkyNy1iMjY2LWQyOGU3MGU3NTU4Ny8x
L183NjIxc0xUVzJmYUs5TXhLMk1Jb2N0dzNPUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIv
ZWE4ZWI3LWY2YTUtNDkyNy1iMjY2LWQyOGU3MGU3NTU4Ny8xL2wzMVVtb1pURlVE
XzhESDFobF9NRGJuNFFjSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAyWUwAMEArkoXDANBAIAAjAHAwUC
KgMQwDANBgkqhkiG9w0BAQsFAAOCAQEAhepMDequ/Xqaa7UDUZPKcS0oTC6cktxI
uPvviV7/Uo6qJkHAZIcQBiajF4ACaRaht8FUgk7MIMWG62PFA8L3k/IhCLlSjV0W
KDq3LL789sm55smAuisCIT3Yu0fR8hJpoRNwddJlYLOweovz/sTasUUE0ztP0G5E
YKuluR2qGsrqdhB7F8hAQC38tC9cCMvx4NlBW8iiv7OsI5Ljrb5u97O49gglNurS
8qSjEk5D+mAFaTVEzfN2YQ4DsSGTOmPpH8Bikgf/O6RpgtvAY89VKbgFjOPbLMMN
yGidUdiqpU7FO3aDieieCgw0DbYwG5X5cPvrY5SEfVkkO/iW6529rg==
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:28:10 2025 by rpki-client