Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/67da32-8c4e-4fa0-a6e2-e73c8f618dc2/1/T3ucy4pDpLkR7VJ_eyiGPmc6pJE.roa
File: T3ucy4pDpLkR7VJ_eyiGPmc6pJE.roa (raw, json)
Hash identifier: nPA36LP0kjIV/4n37zYQGzAVbMFtHzxoKzqpJmXZMuA=
Subject key identifier: 4F:7B:9C:CB:8A:43:A4:B9:11:ED:52:7F:7B:28:86:3E:67:3A:A4:91
Certificate issuer: /CN=e23ac80baba11dba2fb8bf10383f5761ed915a0a
Certificate serial: 1575F6DC
Authority key identifier: E2:3A:C8:0B:AB:A1:1D:BA:2F:B8:BF:10:38:3F:57:61:ED:91:5A:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4jrIC6uhHbovuL8QOD9XYe2RWgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/67da32-8c4e-4fa0-a6e2-e73c8f618dc2/1/T3ucy4pDpLkR7VJ_eyiGPmc6pJE.roa
Signing time: Wed 02 Feb 2022 13:40:46 +0000
ROA not before: Wed 02 Feb 2022 13:40:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198668
IP address blocks: 185.97.24.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360052444 (0x1575f6dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e23ac80baba11dba2fb8bf10383f5761ed915a0a
Validity
Not Before: Feb 2 13:40:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f7b9ccb8a43a4b911ed527f7b28863e673aa491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c6:7f:e7:b6:c7:2e:36:90:37:5e:ae:e6:8b:
1d:d4:cc:22:e9:83:28:38:c2:27:e8:7e:46:4c:aa:
3a:c5:39:a8:64:bf:37:57:9d:22:15:5b:11:75:cd:
46:bd:25:93:b5:ea:12:f7:e2:da:19:35:72:d6:28:
98:7a:da:98:44:62:6d:88:36:01:74:7d:9f:66:c6:
59:66:0e:74:d9:fa:dd:ad:c8:c6:89:54:d5:58:72:
0b:bd:2f:45:1f:13:bf:81:55:00:9a:44:05:ef:91:
ad:3a:30:60:56:ec:d5:25:82:bd:05:ff:91:ab:31:
d6:bc:87:d7:df:37:80:33:28:e1:37:0d:a5:98:7f:
48:ab:95:ea:5d:80:64:e8:bd:51:1d:b5:36:ba:41:
81:02:00:73:82:b1:12:95:da:a8:07:63:08:78:58:
24:83:eb:e0:c1:d8:51:a2:bc:8a:63:3f:ca:60:d1:
3b:d1:7c:4c:ac:f7:c2:5b:13:4b:e7:7d:34:9e:f9:
4f:58:15:11:49:b2:91:cd:68:c1:bd:de:a4:bc:9e:
7a:84:90:e2:c5:68:a2:75:34:4c:f4:12:52:98:73:
bd:c2:e1:b3:0d:96:24:cf:c5:68:4f:2b:f2:f5:08:
2b:ff:ca:2a:da:0d:62:90:a3:63:3c:c4:75:b3:20:
20:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:7B:9C:CB:8A:43:A4:B9:11:ED:52:7F:7B:28:86:3E:67:3A:A4:91
X509v3 Authority Key Identifier:
keyid:E2:3A:C8:0B:AB:A1:1D:BA:2F:B8:BF:10:38:3F:57:61:ED:91:5A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4jrIC6uhHbovuL8QOD9XYe2RWgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/67da32-8c4e-4fa0-a6e2-e73c8f618dc2/1/T3ucy4pDpLkR7VJ_eyiGPmc6pJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/67da32-8c4e-4fa0-a6e2-e73c8f618dc2/1/4jrIC6uhHbovuL8QOD9XYe2RWgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.24.0/22
Signature Algorithm: sha256WithRSAEncryption
20:1c:b0:df:aa:35:10:71:ec:07:49:30:9c:85:f8:32:ff:46:
1e:8a:0a:18:a0:c4:48:a2:dc:99:0e:2e:de:39:46:bc:c0:b5:
95:46:a5:ff:24:88:d1:4f:7d:08:08:3b:16:ec:a6:eb:02:32:
35:12:c1:77:d7:86:3f:65:d6:a4:64:d3:9a:b7:10:e4:c6:19:
38:45:cc:0c:c9:98:6c:5d:ae:a4:d2:02:81:21:af:08:17:0f:
6a:5c:f7:01:73:38:a4:d8:c2:22:c7:d9:4f:0c:73:07:e3:1a:
aa:b8:fa:e1:3c:d7:f1:df:7c:38:2a:25:48:fd:22:23:b4:04:
d0:8d:7b:a6:70:ba:7a:c4:9b:af:42:60:8c:81:0e:aa:7a:15:
54:c1:25:87:c1:be:71:a8:0d:29:12:94:00:6c:6b:08:9c:5d:
69:62:e9:38:9a:ae:91:da:00:4c:3e:3d:e5:a2:cd:18:01:a6:
f0:b0:eb:2c:2f:6a:6a:d1:82:d1:81:82:06:5d:91:5b:79:94:
16:be:3b:33:90:2a:c2:ee:79:0d:ba:f6:db:ad:ea:25:eb:05:
ec:fb:4a:b1:6b:d0:a0:23:ef:99:06:aa:fc:49:ac:ae:bc:95:
60:5f:2f:73:cb:f1:61:4f:2e:9d:d9:cd:84:4c:52:10:e3:9b:
f9:ea:7d:75
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFXX23DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MjNhYzgwYmFiYTExZGJhMmZiOGJmMTAzODNmNTc2MWVkOTE1YTBhMB4XDTIyMDIw
MjEzNDA0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGY3YjljY2I4YTQz
YTRiOTExZWQ1MjdmN2IyODg2M2U2NzNhYTQ5MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM/Gf+e2xy42kDderuaLHdTMIumDKDjCJ+h+RkyqOsU5qGS/
N1edIhVbEXXNRr0lk7XqEvfi2hk1ctYomHramERibYg2AXR9n2bGWWYOdNn63a3I
xolU1VhyC70vRR8Tv4FVAJpEBe+RrTowYFbs1SWCvQX/kasx1ryH1983gDMo4TcN
pZh/SKuV6l2AZOi9UR21NrpBgQIAc4KxEpXaqAdjCHhYJIPr4MHYUaK8imM/ymDR
O9F8TKz3wlsTS+d9NJ75T1gVEUmykc1owb3epLyeeoSQ4sVoonU0TPQSUphzvcLh
sw2WJM/FaE8r8vUIK//KKtoNYpCjYzzEdbMgIHMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRPe5zLikOkuRHtUn97KIY+ZzqkkTAfBgNVHSMEGDAWgBTiOsgLq6Edui+4
vxA4P1dh7ZFaCjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRqcklDNnVoSGJvdnVMOFFPRDlYWWUyUldnby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvNjdkYTMyLThjNGUtNGZhMC1hNmUyLWU3M2M4ZjYxOGRjMi8x
L1QzdWN5NHBEcExrUjdWSl9leWlHUG1jNnBKRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
NjdkYTMyLThjNGUtNGZhMC1hNmUyLWU3M2M4ZjYxOGRjMi8xLzRqcklDNnVoSGJv
dnVMOFFPRDlYWWUyUldnby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlhGDANBgkqhkiG9w0BAQsFAAOC
AQEAIByw36o1EHHsB0kwnIX4Mv9GHooKGKDESKLcmQ4u3jlGvMC1lUal/ySI0U99
CAg7Fuym6wIyNRLBd9eGP2XWpGTTmrcQ5MYZOEXMDMmYbF2upNICgSGvCBcPalz3
AXM4pNjCIsfZTwxzB+Maqrj64TzX8d98OColSP0iI7QE0I17pnC6esSbr0JgjIEO
qnoVVMElh8G+cagNKRKUAGxrCJxdaWLpOJqukdoATD495aLNGAGm8LDrLC9qatGC
0YGCBl2RW3mUFr47M5Aqwu55Dbr2263qJesF7PtKsWvQoCPvmQaq/EmsrryVYF8v
c8vxYU8undnNhExSEOOb+ep9dQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:00 2025 by rpki-client