Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/StsIBWXPkUmDPSa1M3nyv0UDUR4.roa
File: StsIBWXPkUmDPSa1M3nyv0UDUR4.roa (raw, json)
Hash identifier: rqGYqeTGV9tyOvnudhslVeQEEchE0GwN6rysMNZqs1k=
Subject key identifier: 4A:DB:08:05:65:CF:91:49:83:3D:26:B5:33:79:F2:BF:45:03:51:1E
Certificate issuer: /CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Certificate serial: 019425FD0AD659B16C65582F7F1FDBD618FE
Authority key identifier: 1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/StsIBWXPkUmDPSa1M3nyv0UDUR4.roa
Signing time: Thu 02 Jan 2025 07:48:47 +0000
ROA not before: Thu 02 Jan 2025 07:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60893
IP address blocks: 130.255.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:0a:d6:59:b1:6c:65:58:2f:7f:1f:db:d6:18:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Validity
Not Before: Jan 2 07:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4adb080565cf9149833d26b53379f2bf4503511e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b9:71:d3:41:ef:e9:c9:08:ad:3a:3b:6c:b1:
76:4e:81:16:6f:22:57:5c:bd:cc:b9:fe:ed:43:7b:
f0:4d:de:62:fb:07:e9:1f:30:96:cd:77:37:ed:f2:
2b:e1:2b:39:36:02:8e:ae:3f:af:e7:c0:ac:04:9f:
68:15:70:cf:51:6e:b4:9c:c8:d4:89:8a:5d:b1:5f:
52:b6:38:7b:d1:d2:a4:1c:55:2f:71:0a:4a:0f:35:
9d:37:79:f0:aa:2a:5a:e8:74:0d:c7:e3:64:48:fc:
e7:8f:45:9d:49:25:0e:76:4a:dd:49:bd:29:23:13:
29:a0:9a:41:0b:b3:71:70:3e:39:a2:cf:bd:2d:9b:
01:60:c7:08:6f:de:10:ba:b7:5c:44:24:0f:d4:d9:
74:59:16:f2:81:71:df:c3:26:2a:eb:1f:ca:29:34:
c5:83:84:58:d6:21:65:eb:c3:ce:a0:ce:96:56:c6:
3f:4f:73:5e:49:b9:c2:b4:bf:97:74:1b:76:c8:08:
40:62:61:d1:0c:ee:ac:fc:6f:bc:d6:50:c7:57:cb:
01:d4:76:03:b2:07:24:cc:2f:86:b3:27:3c:9e:cc:
63:b0:3c:22:ec:97:97:f8:a2:b2:38:19:95:f5:15:
f4:0d:84:9f:cc:c4:fe:ad:bb:ae:08:a9:65:de:04:
db:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:DB:08:05:65:CF:91:49:83:3D:26:B5:33:79:F2:BF:45:03:51:1E
X509v3 Authority Key Identifier:
keyid:1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/StsIBWXPkUmDPSa1M3nyv0UDUR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.171.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:21:93:ca:f4:e7:69:20:4a:23:d9:22:75:f4:c5:d7:70:c0:
90:8c:82:1c:0a:71:49:ba:2f:ff:96:a7:ef:d3:7d:f5:ff:f2:
46:81:49:0a:c6:72:85:95:5f:99:cc:7b:e9:f0:eb:d2:56:0e:
0f:e8:26:07:11:95:ec:24:70:f8:96:6e:f2:41:d4:a8:a9:4c:
06:15:01:21:4c:df:09:21:a8:61:20:30:ae:ae:19:a3:c6:43:
d2:e7:a8:ec:fe:8d:9e:ac:b3:e9:be:1a:09:73:c6:02:2b:86:
23:09:f3:a1:53:fc:aa:a6:be:07:e8:e9:d7:73:be:86:83:d2:
ed:bc:59:7b:35:22:2d:d6:17:b6:39:f0:91:7b:18:23:b5:ca:
1e:2e:50:95:b4:41:24:3f:38:d9:75:6e:69:a8:2f:8e:c9:1d:
a0:b3:17:86:da:c4:86:aa:8f:de:ec:16:ad:44:b8:28:f7:13:
12:06:72:ac:b0:46:3b:ff:f1:62:6e:c7:c0:e9:43:86:45:05:
1c:5a:bf:d8:56:98:61:d6:b6:8b:2a:24:ee:bc:b3:bd:fd:39:
cb:1e:4e:3a:a7:92:4c:f0:98:b5:ed:81:46:1a:cf:cf:b1:db:
3f:1c:23:3e:3b:af:b7:53:de:a6:9c:d0:62:4f:52:94:ff:26:
bb:a9:36:ba
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/QrWWbFsZVgvfx/b1hj+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNDgyZTVlNDEyYzFkZWJiNzc2ZGVkZmFmNDVjMzMxNzRl
NzY0MmUwHhcNMjUwMTAyMDc0ODQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YWRiMDgwNTY1Y2Y5MTQ5ODMzZDI2YjUzMzc5ZjJiZjQ1MDM1MTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17lx00Hv6ckIrTo7bLF2ToEWbyJX
XL3Muf7tQ3vwTd5i+wfpHzCWzXc37fIr4Ss5NgKOrj+v58CsBJ9oFXDPUW60nMjU
iYpdsV9Stjh70dKkHFUvcQpKDzWdN3nwqipa6HQNx+NkSPznj0WdSSUOdkrdSb0p
IxMpoJpBC7NxcD45os+9LZsBYMcIb94QurdcRCQP1Nl0WRbygXHfwyYq6x/KKTTF
g4RY1iFl68POoM6WVsY/T3NeSbnCtL+XdBt2yAhAYmHRDO6s/G+81lDHV8sB1HYD
sgckzC+Gsyc8nsxjsDwi7JeX+KKyOBmV9RX0DYSfzMT+rbuuCKll3gTbIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFErbCAVlz5FJgz0mtTN58r9FA1EeMB8GA1UdIwQY
MBaAFB9ILl5BLB3rt3be369FwzF052QuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDBndVhrRXNIZXUzZHQ3ZnIwWERNWFRuWkM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83ZGRlOTYtMTBkZC00MzIzLTgxZDIt
ZDJlMzM3MmFjMjljLzEvU3RzSUJXWFBrVW1EUFNhMU0zbnl2MFVEVVI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS83ZGRlOTYtMTBkZC00MzIzLTgxZDItZDJlMzM3MmFjMjlj
LzEvSDBndVhrRXNIZXUzZHQ3ZnIwWERNWFRuWkM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAgv+rMA0G
CSqGSIb3DQEBCwUAA4IBAQBdIZPK9OdpIEoj2SJ19MXXcMCQjIIcCnFJui//lqfv
0331//JGgUkKxnKFlV+ZzHvp8OvSVg4P6CYHEZXsJHD4lm7yQdSoqUwGFQEhTN8J
IahhIDCurhmjxkPS56js/o2erLPpvhoJc8YCK4YjCfOhU/yqpr4H6OnXc76Gg9Lt
vFl7NSIt1he2OfCRexgjtcoeLlCVtEEkPzjZdW5pqC+OyR2gsxeG2sSGqo/e7Bat
RLgo9xMSBnKssEY7//FibsfA6UOGRQUcWr/YVphh1raLKiTuvLO9/TnLHk46p5JM
8Ji17YFGGs/Psds/HCM+O6+3U96mnNBiT1KU/ya7qTa6
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:53:22 2025 by rpki-client