Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/eIIy3gr4iW31K7Z0TDyYfiPIC20.roa
File: eIIy3gr4iW31K7Z0TDyYfiPIC20.roa (raw, json)
Hash identifier: 1OhLz2GkEhqW74cgO0W31kCn0nMoyh5rygPNaedp7uk=
Subject key identifier: 78:82:32:DE:0A:F8:89:6D:F5:2B:B6:74:4C:3C:98:7E:23:C8:0B:6D
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 019426D8633EE094761B6A520BF022AC89E1
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/eIIy3gr4iW31K7Z0TDyYfiPIC20.roa
Signing time: Thu 02 Jan 2025 11:48:22 +0000
ROA not before: Thu 02 Jan 2025 11:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5065
IP address blocks: 176.46.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:63:3e:e0:94:76:1b:6a:52:0b:f0:22:ac:89:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Jan 2 11:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=788232de0af8896df52bb6744c3c987e23c80b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:eb:b0:c7:5f:a5:1e:ab:95:e2:e8:df:b9:74:
c2:16:ed:3d:e4:5b:3c:20:cf:30:94:6f:f6:9b:21:
2e:b7:91:7c:fc:47:82:b1:ba:ba:aa:f3:37:16:dc:
a0:90:59:c8:52:74:ad:58:6d:c8:9d:9f:bd:82:25:
ac:40:b2:b7:40:f7:f0:3c:a5:be:f8:72:b4:6e:87:
fd:e3:be:03:fc:f2:5f:d3:71:cc:12:4e:02:28:1f:
5f:c0:0d:00:16:45:96:b3:5f:99:81:76:ce:68:47:
cd:a4:1d:50:0e:41:99:e4:43:ee:2d:64:d5:1d:9e:
cd:59:8b:1f:9a:1b:d5:a1:af:4d:75:94:12:ec:5d:
68:0b:b3:f4:5c:74:e9:9a:39:b4:2e:ec:ed:37:55:
fd:05:a2:1a:64:02:7d:e3:78:fd:0e:51:f2:b4:82:
55:03:99:4d:37:33:1a:43:6d:1b:82:d1:a1:da:81:
a7:94:24:77:84:d6:88:e6:ff:fb:fb:20:c9:98:5e:
7d:b4:02:2e:94:7d:89:3e:06:ff:9c:b3:ec:41:8d:
58:3a:95:18:15:b2:fb:2e:28:8f:b3:d6:2e:aa:4a:
03:6a:36:18:b0:7d:b2:ca:2b:86:02:77:85:19:1f:
58:2b:3b:a8:91:7d:cb:87:68:14:0c:fe:7b:a8:04:
55:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:82:32:DE:0A:F8:89:6D:F5:2B:B6:74:4C:3C:98:7E:23:C8:0B:6D
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/eIIy3gr4iW31K7Z0TDyYfiPIC20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.46.137.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:15:36:72:46:cd:5d:8f:2c:fd:31:a3:1b:47:ea:04:56:8b:
42:16:00:2e:f4:26:a7:3d:e0:f3:07:85:4f:79:84:2a:45:2c:
26:0e:88:6e:30:71:5c:f9:fb:93:ce:1a:ff:3e:61:19:ef:ef:
71:70:e4:ac:77:ca:25:fd:c1:3d:25:eb:67:3d:53:20:03:73:
8c:40:7f:d6:63:d1:57:82:20:a5:ec:0a:d3:cd:10:bd:c0:ab:
5b:25:8d:17:05:3d:0b:8c:07:57:97:c4:34:c9:02:f0:a3:f8:
46:89:2d:b2:7e:18:b2:80:99:44:95:48:30:37:53:e7:17:05:
18:d8:c5:2d:1f:6a:74:2a:3d:c0:1e:20:7a:5e:f7:93:98:07:
86:21:f0:10:50:c6:b5:1e:ca:5f:a9:c7:db:e2:e2:65:75:09:
f2:d6:12:a9:bc:72:f0:9a:7b:b9:f3:86:d9:45:e3:9a:0c:9d:
03:0c:85:00:35:75:e8:03:07:f5:10:3b:3e:f2:95:95:bb:9e:
0d:d4:e8:36:1f:7f:1d:5f:38:a8:7c:b8:66:c0:9b:37:e9:52:
1a:ba:c5:29:74:9e:03:bd:1b:a3:32:d4:a5:14:9b:95:e5:d2:
c0:72:f2:d7:1c:a4:bf:7a:c9:72:85:9c:81:1f:a6:0c:ba:88:
f4:87:ab:2e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2GM+4JR2G2pSC/AirInhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MDQ3NWViZTdmMDdkNzQxNTNjYjFjY2EzMzhjMTZkODAx
ZjQ1ZjcwHhcNMjUwMTAyMTE0ODIyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODgyMzJkZTBhZjg4OTZkZjUyYmI2NzQ0YzNjOTg3ZTIzYzgwYjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouuwx1+lHquV4ujfuXTCFu095Fs8
IM8wlG/2myEut5F8/EeCsbq6qvM3FtygkFnIUnStWG3InZ+9giWsQLK3QPfwPKW+
+HK0bof9474D/PJf03HMEk4CKB9fwA0AFkWWs1+ZgXbOaEfNpB1QDkGZ5EPuLWTV
HZ7NWYsfmhvVoa9NdZQS7F1oC7P0XHTpmjm0LuztN1X9BaIaZAJ943j9DlHytIJV
A5lNNzMaQ20bgtGh2oGnlCR3hNaI5v/7+yDJmF59tAIulH2JPgb/nLPsQY1YOpUY
FbL7LiiPs9YuqkoDajYYsH2yyiuGAneFGR9YKzuokX3Lh2gUDP57qARVAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHiCMt4K+Ilt9Su2dEw8mH4jyAttMB8GA1UdIwQY
MBaAFNYEdevn8H10FTyxzKM4wW2AH0X3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2Mt
NDk2ZjhlYmIyZDYxLzEvZUlJeTNncjRpVzMxSzdaMFREeVlmaVBJQzIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2MtNDk2ZjhlYmIyZDYx
LzEvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsC6JMA0G
CSqGSIb3DQEBCwUAA4IBAQBdFTZyRs1djyz9MaMbR+oEVotCFgAu9CanPeDzB4VP
eYQqRSwmDohuMHFc+fuTzhr/PmEZ7+9xcOSsd8ol/cE9JetnPVMgA3OMQH/WY9FX
giCl7ArTzRC9wKtbJY0XBT0LjAdXl8Q0yQLwo/hGiS2yfhiygJlElUgwN1PnFwUY
2MUtH2p0Kj3AHiB6XveTmAeGIfAQUMa1Hspfqcfb4uJldQny1hKpvHLwmnu584bZ
ReOaDJ0DDIUANXXoAwf1EDs+8pWVu54N1Og2H38dXziofLhmwJs36VIausUpdJ4D
vRujMtSlFJuV5dLAcvLXHKS/eslyhZyBH6YMuoj0h6su
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:39 2025 by rpki-client