Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/suXcRzS6-_4AE_w0ZJlYPW8wMRM.roa
File: suXcRzS6-_4AE_w0ZJlYPW8wMRM.roa (raw, json)
Hash identifier: +PBYO+10etR0ZMMQ1FwMVF/GjPtirIZFSfWGb9cD2rU=
Subject key identifier: B2:E5:DC:47:34:BA:FB:FE:00:13:FC:34:64:99:58:3D:6F:30:31:13
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0194228E2CEE7EDA24EA10458D5EAEDEC174
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/suXcRzS6-_4AE_w0ZJlYPW8wMRM.roa
Signing time: Wed 01 Jan 2025 15:48:50 +0000
ROA not before: Wed 01 Jan 2025 15:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212335
IP address blocks: 109.105.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:2c:ee:7e:da:24:ea:10:45:8d:5e:ae:de:c1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jan 1 15:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b2e5dc4734bafbfe0013fc346499583d6f303113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:10:d6:98:f1:4b:05:4c:ed:24:f5:79:de:f0:
fe:3e:af:9d:50:98:b7:b5:20:e7:fe:40:34:f4:79:
f9:40:fc:2d:cd:6a:c5:15:44:ff:2b:ab:94:26:77:
94:d8:94:b8:23:94:a6:16:57:b8:60:77:68:f2:c7:
49:c0:03:92:5f:ef:7d:b4:29:4d:80:d3:57:ea:bf:
ca:ce:95:10:32:a3:81:b7:d1:51:33:3b:7d:91:48:
41:90:27:f8:ca:d3:a6:b7:ac:c0:88:8a:ef:a3:e2:
fb:39:92:49:06:4d:81:a1:eb:6e:61:64:e2:98:6a:
23:43:cb:51:c2:95:e8:e2:b5:19:2f:be:4f:e7:67:
21:f4:cb:8c:bb:6c:db:34:7d:65:9c:46:a7:df:08:
d3:20:08:7c:00:33:d1:22:7e:01:af:41:35:7c:95:
ff:32:d0:59:65:c9:a4:c9:80:a4:82:4c:2f:91:6d:
39:ed:fd:d9:c5:92:9b:f5:8c:b9:26:5e:3b:ea:b1:
88:0b:51:a7:46:21:d1:2a:53:45:71:0e:06:c5:fe:
e1:9b:39:74:77:5f:ae:16:e8:a8:80:6f:00:2b:e3:
ee:8d:1f:f2:6b:12:b3:28:25:89:ce:57:30:af:26:
6c:6d:dc:ed:c7:5e:4c:17:fc:db:03:98:97:a6:b5:
4f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E5:DC:47:34:BA:FB:FE:00:13:FC:34:64:99:58:3D:6F:30:31:13
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/suXcRzS6-_4AE_w0ZJlYPW8wMRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.192.0/24
Signature Algorithm: sha256WithRSAEncryption
81:9a:50:59:e4:84:16:91:6d:30:37:4e:9b:b5:0b:88:a5:37:
4f:f5:18:cf:a7:28:f8:f4:21:08:ab:ba:2f:55:53:cf:92:d3:
00:52:95:a2:31:f6:dd:84:9f:06:05:cd:6d:b4:57:0c:84:f8:
ca:b8:06:0a:e8:8d:4e:85:da:ec:f3:28:c9:6a:ef:15:da:66:
04:b6:c7:4c:a0:06:72:fc:61:31:9f:23:6b:15:c7:46:d6:1d:
2e:32:5c:73:4a:88:1e:5f:98:3b:12:ff:05:e0:d3:fc:09:f5:
19:d2:e8:ca:ff:b6:05:76:8c:f2:e2:ab:aa:8c:76:10:15:17:
f7:43:7b:58:9e:41:91:26:13:fc:ae:8f:12:c4:0b:5c:6c:fe:
5e:9f:98:43:ad:21:c6:de:62:b7:6a:81:a8:09:e6:93:b5:88:
b4:74:96:e9:8f:ef:45:6b:a7:2a:0a:44:45:a8:73:52:ba:7f:
6d:61:86:27:61:8b:ec:f1:69:7b:47:71:d2:8a:95:c1:eb:c9:
a6:9b:b8:9c:e5:59:e9:cd:01:a1:b4:c8:29:37:ea:95:5b:3d:
a9:7e:e1:9e:2d:1c:04:f4:ad:44:18:88:29:a0:40:1a:15:c5:
83:e5:1b:4a:c8:21:12:58:27:b3:88:9d:e5:b0:8d:30:e2:2b:
46:df:01:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijizuftok6hBFjV6u3sF0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm
NjljZGEwHhcNMjUwMTAxMTU0ODUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMmU1ZGM0NzM0YmFmYmZlMDAxM2ZjMzQ2NDk5NTgzZDZmMzAzMTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5hDWmPFLBUztJPV53vD+Pq+dUJi3
tSDn/kA09Hn5QPwtzWrFFUT/K6uUJneU2JS4I5SmFle4YHdo8sdJwAOSX+99tClN
gNNX6r/KzpUQMqOBt9FRMzt9kUhBkCf4ytOmt6zAiIrvo+L7OZJJBk2BoetuYWTi
mGojQ8tRwpXo4rUZL75P52ch9MuMu2zbNH1lnEan3wjTIAh8ADPRIn4Br0E1fJX/
MtBZZcmkyYCkgkwvkW057f3ZxZKb9Yy5Jl476rGIC1GnRiHRKlNFcQ4Gxf7hmzl0
d1+uFuiogG8AK+PujR/yaxKzKCWJzlcwryZsbdztx15MF/zbA5iXprVP2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLLl3Ec0uvv+ABP8NGSZWD1vMDETMB8GA1UdIwQY
MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt
ZGQyOTRjMzc4ZjZjLzEvc3VYY1J6UzYtXzRBRV93MFpKbFlQVzh3TVJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj
LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWnAMA0G
CSqGSIb3DQEBCwUAA4IBAQCBmlBZ5IQWkW0wN06btQuIpTdP9RjPpyj49CEIq7ov
VVPPktMAUpWiMfbdhJ8GBc1ttFcMhPjKuAYK6I1Ohdrs8yjJau8V2mYEtsdMoAZy
/GExnyNrFcdG1h0uMlxzSogeX5g7Ev8F4NP8CfUZ0ujK/7YFdozy4quqjHYQFRf3
Q3tYnkGRJhP8ro8SxAtcbP5en5hDrSHG3mK3aoGoCeaTtYi0dJbpj+9Fa6cqCkRF
qHNSun9tYYYnYYvs8Wl7R3HSipXB68mmm7ic5VnpzQGhtMgpN+qVWz2pfuGeLRwE
9K1EGIgpoEAaFcWD5RtKyCESWCeziJ3lsI0w4itG3wHY
-----END CERTIFICATE-----
Generated at Sat Apr 5 15:31:25 2025 by rpki-client