Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d55ab0-b7ac-4a5e-bb33-330a737b5d5a/1/sIoc_-pWWA7Uqjnme55VsunpvMg.roa
File: sIoc_-pWWA7Uqjnme55VsunpvMg.roa (raw, json)
Hash identifier: erJICSKv6SSeV7CTjHvqGRT1XCgpJ9nuDEyy9oFe4bM=
Subject key identifier: B0:8A:1C:FF:EA:56:58:0E:D4:AA:39:E6:7B:9E:55:B2:E9:E9:BC:C8
Certificate issuer: /CN=31c1a1892372a75a34cbfe14530ace7195561d1a
Certificate serial: 018964C0548E5D27732E07C8FE2800904AFC
Authority key identifier: 31:C1:A1:89:23:72:A7:5A:34:CB:FE:14:53:0A:CE:71:95:56:1D:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/McGhiSNyp1o0y_4UUwrOcZVWHRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d55ab0-b7ac-4a5e-bb33-330a737b5d5a/1/sIoc_-pWWA7Uqjnme55VsunpvMg.roa
Signing time: Mon 17 Jul 2023 16:47:53 +0000
ROA not before: Mon 17 Jul 2023 16:47:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59729
IP address blocks: 5.42.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:54:8e:5d:27:73:2e:07:c8:fe:28:00:90:4a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31c1a1892372a75a34cbfe14530ace7195561d1a
Validity
Not Before: Jul 17 16:47:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b08a1cffea56580ed4aa39e67b9e55b2e9e9bcc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8d:09:b8:2f:ef:82:63:5c:06:7f:8f:88:74:
e1:7c:69:d3:2b:c5:a7:53:4c:e4:f5:42:87:27:76:
05:81:6e:43:24:aa:cf:ab:7b:e2:b1:c4:fd:7b:70:
37:e9:90:d0:e4:de:b4:bd:22:d5:9e:c5:2a:b5:4b:
d4:89:72:42:40:7b:e7:2d:d3:85:c2:31:7d:07:b4:
c7:74:96:9b:eb:d8:b1:56:d3:60:8b:29:d1:df:c8:
47:cf:cb:4e:14:00:cc:a6:6b:25:22:e1:90:e1:88:
31:f9:9a:44:d9:28:75:79:4b:30:e3:ba:c5:a6:d7:
64:e4:97:3e:35:d5:5d:39:82:f3:d7:22:aa:66:34:
35:cd:cf:d5:b6:ec:f6:73:ff:ec:76:c1:d3:a6:b9:
6a:0a:84:08:86:44:89:40:8d:df:c7:98:49:04:83:
f0:de:cf:81:be:ec:d9:da:16:c5:b2:ee:14:ac:9d:
6f:82:27:68:b0:44:ac:df:f1:f3:db:b6:59:36:bc:
34:e0:d8:e9:00:52:18:23:e8:08:2a:6c:f6:d8:48:
8b:46:72:6f:ac:fc:d4:4d:42:99:2a:ca:97:70:6b:
a6:23:4b:2c:06:33:72:31:30:6a:44:74:2d:3a:36:
e6:d1:fd:83:2b:71:4b:1f:79:50:9d:4c:79:0e:f8:
b5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8A:1C:FF:EA:56:58:0E:D4:AA:39:E6:7B:9E:55:B2:E9:E9:BC:C8
X509v3 Authority Key Identifier:
keyid:31:C1:A1:89:23:72:A7:5A:34:CB:FE:14:53:0A:CE:71:95:56:1D:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/McGhiSNyp1o0y_4UUwrOcZVWHRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d55ab0-b7ac-4a5e-bb33-330a737b5d5a/1/sIoc_-pWWA7Uqjnme55VsunpvMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d55ab0-b7ac-4a5e-bb33-330a737b5d5a/1/McGhiSNyp1o0y_4UUwrOcZVWHRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.210.0/24
Signature Algorithm: sha256WithRSAEncryption
84:28:00:5c:2e:5c:8a:9a:63:ed:d3:69:4f:f7:49:e8:c8:f4:
2b:c6:9e:90:ac:98:e4:17:e3:10:a2:69:ec:a1:c7:4a:e6:dc:
ef:57:90:b7:70:87:cb:94:aa:fc:16:85:a8:9a:5a:b8:c5:0c:
c9:95:62:5d:9e:88:0a:eb:39:74:22:cf:5f:b2:47:ef:2b:a1:
ec:4a:b4:1f:1b:c1:6b:3f:79:61:79:e3:48:30:43:8c:a7:69:
ad:18:56:40:f5:02:2c:64:ec:a5:cf:25:1e:1e:0b:b8:df:18:
44:49:ae:ad:e9:b3:4d:4c:c3:31:96:37:e3:f8:08:cb:ab:1d:
03:b3:0e:4a:0c:4e:cf:a4:c6:59:32:98:0b:8f:14:d5:b7:9b:
ef:a4:8f:6d:eb:7b:eb:08:62:b4:1d:47:70:1b:21:f4:bd:0d:
ce:bf:50:1b:e4:fc:95:ad:1a:b3:8d:1f:38:7a:ef:fc:08:9d:
fe:06:91:da:2f:2a:f8:2c:2f:83:42:1c:5e:72:8d:03:43:52:
9d:5e:fe:f8:76:fc:9c:67:ce:e7:fd:a0:a6:c1:6d:08:51:25:
46:76:f6:ec:2e:b8:42:33:0c:8c:6d:67:b2:ed:59:9f:f0:e5:
ca:29:0a:32:86:77:81:74:b1:6c:a9:eb:35:3f:41:60:a3:e9:
c2:ba:60:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlkwFSOXSdzLgfI/igAkEr8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxYzFhMTg5MjM3MmE3NWEzNGNiZmUxNDUzMGFjZTcxOTU1
NjFkMWEwHhcNMjMwNzE3MTY0NzUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDhhMWNmZmVhNTY1ODBlZDRhYTM5ZTY3YjllNTViMmU5ZTliY2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyY0JuC/vgmNcBn+PiHThfGnTK8Wn
U0zk9UKHJ3YFgW5DJKrPq3viscT9e3A36ZDQ5N60vSLVnsUqtUvUiXJCQHvnLdOF
wjF9B7THdJab69ixVtNgiynR38hHz8tOFADMpmslIuGQ4Ygx+ZpE2Sh1eUsw47rF
ptdk5Jc+NdVdOYLz1yKqZjQ1zc/Vtuz2c//sdsHTprlqCoQIhkSJQI3fx5hJBIPw
3s+BvuzZ2hbFsu4UrJ1vgidosESs3/Hz27ZZNrw04NjpAFIYI+gIKmz22EiLRnJv
rPzUTUKZKsqXcGumI0ssBjNyMTBqRHQtOjbm0f2DK3FLH3lQnUx5Dvi1xwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLCKHP/qVlgO1Ko55nueVbLp6bzIMB8GA1UdIwQY
MBaAFDHBoYkjcqdaNMv+FFMKznGVVh0aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWNHaGlTTnlwMW8weV80VVV3ck9jWlZXSFJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9kNTVhYjAtYjdhYy00YTVlLWJiMzMt
MzMwYTczN2I1ZDVhLzEvc0lvY18tcFdXQTdVcWpubWU1NVZzdW5wdk1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi9kNTVhYjAtYjdhYy00YTVlLWJiMzMtMzMwYTczN2I1ZDVh
LzEvTWNHaGlTTnlwMW8weV80VVV3ck9jWlZXSFJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABSrSMA0G
CSqGSIb3DQEBCwUAA4IBAQCEKABcLlyKmmPt02lP90noyPQrxp6QrJjkF+MQomns
ocdK5tzvV5C3cIfLlKr8FoWomlq4xQzJlWJdnogK6zl0Is9fskfvK6HsSrQfG8Fr
P3lheeNIMEOMp2mtGFZA9QIsZOylzyUeHgu43xhESa6t6bNNTMMxljfj+AjLqx0D
sw5KDE7PpMZZMpgLjxTVt5vvpI9t63vrCGK0HUdwGyH0vQ3Ov1Ab5PyVrRqzjR84
eu/8CJ3+BpHaLyr4LC+DQhxeco0DQ1KdXv74dvycZ87n/aCmwW0IUSVGdvbsLrhC
MwyMbWey7Vmf8OXKKQoyhneBdLFsqes1P0Fgo+nCumD6
-----END CERTIFICATE-----
Generated at Fri Apr 18 13:45:35 2025 by rpki-client