Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/AmKfksQiq8gUiRVHtHIlpgg70G4.roa
File: AmKfksQiq8gUiRVHtHIlpgg70G4.roa (raw, json)
Hash identifier: fBS/1zEm+97wyee7YoB6riXw+v5fxGVKE6joqoYihEw=
Subject key identifier: 02:62:9F:92:C4:22:AB:C8:14:89:15:47:B4:72:25:A6:08:3B:D0:6E
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 01935F9C2A95E4001377E5A17B4A2ABB2303
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/AmKfksQiq8gUiRVHtHIlpgg70G4.roa
Signing time: Sun 24 Nov 2024 19:18:10 +0000
ROA not before: Sun 24 Nov 2024 19:18:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214382
IP address blocks: 85.235.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5f:9c:2a:95:e4:00:13:77:e5:a1:7b:4a:2a:bb:23:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Nov 24 19:18:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02629f92c422abc814891547b47225a6083bd06e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:36:5f:e7:a7:87:bf:b7:2f:c7:8b:c2:33:d0:
30:c1:bc:83:5c:e0:74:18:54:93:00:5d:f4:a4:8d:
c5:e7:fd:50:9b:f9:7f:3e:df:01:cc:3f:bc:ff:57:
c8:fd:b0:be:86:a4:90:14:fc:f8:e6:72:92:af:60:
cd:c8:10:53:2e:ec:72:3b:14:30:1d:d6:d7:67:ab:
30:da:2f:51:32:11:ae:e0:54:1f:81:c6:1d:9a:c1:
db:b8:d6:db:94:f6:b3:3e:38:31:f8:4c:90:a6:c4:
17:b0:f0:45:ce:75:b2:20:9c:bd:54:fc:40:bd:07:
97:d1:cf:04:dc:7b:2b:ca:82:23:a8:83:13:09:63:
42:65:d9:03:82:c2:60:8d:33:bf:9f:e2:95:20:37:
3e:23:be:46:64:52:d5:1a:1e:75:40:ab:ed:57:7a:
97:f1:e9:cd:fb:d8:d6:07:56:95:1f:e4:4b:b3:8c:
16:6c:27:a9:15:2c:da:9e:fc:4c:be:0d:38:f8:de:
dd:43:e7:d2:92:63:a9:56:c7:ff:99:e0:e0:7f:f2:
72:66:22:a4:df:33:87:61:13:84:5d:a6:a1:fb:2d:
57:b8:fd:94:32:2f:7c:3f:ce:61:eb:26:ef:fa:53:
5a:06:aa:76:40:ce:b4:73:a2:af:e8:68:df:19:e0:
95:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:62:9F:92:C4:22:AB:C8:14:89:15:47:B4:72:25:A6:08:3B:D0:6E
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/AmKfksQiq8gUiRVHtHIlpgg70G4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.235.75.0/24
Signature Algorithm: sha256WithRSAEncryption
64:5c:e4:eb:97:5e:fb:92:2e:8d:61:64:e7:d7:a7:1f:3a:e4:
0d:a8:21:4e:6f:0c:56:b9:d6:45:be:ae:8c:c3:7b:68:95:29:
16:9c:09:d2:07:fc:f4:d2:e3:f7:1c:60:a7:2e:b2:b8:dc:a6:
51:35:8a:41:43:bf:8e:1f:fb:f8:a6:7c:3f:80:9f:6d:ad:1a:
64:69:69:f1:c0:e1:14:bb:a1:b3:ef:ff:3d:ea:0a:cb:3a:b9:
12:01:a6:7f:a3:c2:d1:23:da:80:19:b6:1f:5d:3f:6c:40:9f:
b5:ff:86:7f:b6:c4:0c:e7:09:8c:73:23:7d:a1:c5:79:56:11:
c0:84:1e:2b:d0:94:33:8d:0e:0a:ce:95:2f:43:5a:9b:16:34:
ef:d8:8b:f0:96:fd:69:3e:19:42:11:f3:04:a3:4f:6e:22:c9:
51:50:8b:6a:f2:37:5b:9b:5e:50:92:c2:f0:47:d7:fa:35:ba:
e1:1f:0f:2c:56:9a:cb:c0:25:0c:64:ec:d1:a3:86:03:97:61:
de:3f:c5:a6:aa:2a:63:94:bf:0b:68:92:4e:04:2a:dc:33:20:
c7:68:89:ad:6d:c2:26:af:b6:0c:5f:f5:0a:8b:ae:3b:78:51:
7e:cc:9d:83:18:de:a0:fc:8d:34:5f:ff:98:22:70:d6:22:f7:
80:a6:7a:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNfnCqV5AATd+Whe0oquyMDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOTUwOWIzM2RhNTVmM2U1ZDUyODNlYjYyMWQwZDM1ZDdh
ZWVkNWMwHhcNMjQxMTI0MTkxODEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjYyOWY5MmM0MjJhYmM4MTQ4OTE1NDdiNDcyMjVhNjA4M2JkMDZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDZf56eHv7cvx4vCM9AwwbyDXOB0
GFSTAF30pI3F5/1Qm/l/Pt8BzD+8/1fI/bC+hqSQFPz45nKSr2DNyBBTLuxyOxQw
HdbXZ6sw2i9RMhGu4FQfgcYdmsHbuNbblPazPjgx+EyQpsQXsPBFznWyIJy9VPxA
vQeX0c8E3HsryoIjqIMTCWNCZdkDgsJgjTO/n+KVIDc+I75GZFLVGh51QKvtV3qX
8enN+9jWB1aVH+RLs4wWbCepFSzanvxMvg04+N7dQ+fSkmOpVsf/meDgf/JyZiKk
3zOHYROEXaah+y1XuP2UMi98P85h6ybv+lNaBqp2QM60c6Kv6GjfGeCV7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJin5LEIqvIFIkVR7RyJaYIO9BuMB8GA1UdIwQY
MBaAFE+VCbM9pV8+XVKD62IdDTXXru1cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDVVSnN6MmxYejVkVW9QclloME5OZGV1N1Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi82ZmMxYmMtYTVmOC00MmE4LTk1ZTQt
NjAxMDdlMmI1MTA5LzEvQW1LZmtzUWlxOGdVaVJWSHRISWxwZ2c3MEc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi82ZmMxYmMtYTVmOC00MmE4LTk1ZTQtNjAxMDdlMmI1MTA5
LzEvVDVVSnN6MmxYejVkVW9QclloME5OZGV1N1Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVetLMA0G
CSqGSIb3DQEBCwUAA4IBAQBkXOTrl177ki6NYWTn16cfOuQNqCFObwxWudZFvq6M
w3tolSkWnAnSB/z00uP3HGCnLrK43KZRNYpBQ7+OH/v4pnw/gJ9trRpkaWnxwOEU
u6Gz7/896grLOrkSAaZ/o8LRI9qAGbYfXT9sQJ+1/4Z/tsQM5wmMcyN9ocV5VhHA
hB4r0JQzjQ4KzpUvQ1qbFjTv2Ivwlv1pPhlCEfMEo09uIslRUItq8jdbm15QksLw
R9f6NbrhHw8sVprLwCUMZOzRo4YDl2HeP8WmqipjlL8LaJJOBCrcMyDHaImtbcIm
r7YMX/UKi647eFF+zJ2DGN6g/I00X/+YInDWIveApnor
-----END CERTIFICATE-----
Generated at Fri Apr 18 12:31:41 2025 by rpki-client