Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/dSFUsvHF9kcEHRViONMxqPLbR_0.roa
File: dSFUsvHF9kcEHRViONMxqPLbR_0.roa (raw, json)
Hash identifier: yuey3QA4QLOZQqutd/aubrcd38P5UaLfr5HhQZbdQGs=
Subject key identifier: 75:21:54:B2:F1:C5:F6:47:04:1D:15:62:38:D3:31:A8:F2:DB:47:FD
Certificate issuer: /CN=833e0e480411b9c88e916def90fc3a901026394a
Certificate serial: 018570CBD651A54190B6ED507A19AB2FDB77
Authority key identifier: 83:3E:0E:48:04:11:B9:C8:8E:91:6D:EF:90:FC:3A:90:10:26:39:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4OSAQRuciOkW3vkPw6kBAmOUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/dSFUsvHF9kcEHRViONMxqPLbR_0.roa
Signing time: Mon 02 Jan 2023 04:44:44 +0000
ROA not before: Mon 02 Jan 2023 04:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.7.73.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:d6:51:a5:41:90:b6:ed:50:7a:19:ab:2f:db:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e0e480411b9c88e916def90fc3a901026394a
Validity
Not Before: Jan 2 04:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=752154b2f1c5f647041d156238d331a8f2db47fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ca:63:a4:6c:c4:49:c0:ce:97:5a:52:77:82:
e6:10:91:e8:42:43:73:b3:66:af:5a:08:c0:ab:83:
29:b8:2a:e7:9f:04:3c:bf:ff:f8:75:f3:2a:b8:95:
a5:23:0c:d1:29:f0:5d:e7:ad:4e:c4:b2:57:d5:ed:
14:c1:1b:3a:e4:3c:2b:66:3d:a6:b7:0c:72:ad:01:
41:c6:e3:35:02:c5:ef:ce:8f:d5:54:39:f2:5d:24:
4a:19:9d:70:a8:cb:dc:55:56:ec:a7:a4:a6:e2:cc:
50:53:e0:77:48:c4:1e:35:fe:da:d5:bc:7a:6a:2e:
b3:6c:50:cb:b1:f7:f6:de:64:57:ef:80:11:2f:e9:
62:56:67:8a:13:a1:fa:56:5d:b2:da:52:1d:38:b1:
b0:dc:b3:bf:78:d6:ef:a2:83:6a:0e:f9:ac:a3:db:
4c:da:f7:9f:1b:21:39:9e:04:3d:53:7b:96:45:79:
ad:3d:81:ec:d6:23:ad:91:95:39:ca:52:3b:8b:62:
c0:40:02:4e:1e:55:52:97:de:b3:87:ab:11:58:70:
90:88:b1:bd:dd:64:3f:60:16:90:39:b6:32:60:f8:
a8:a0:69:72:7c:9c:ec:7b:d4:5b:78:61:68:a9:03:
bf:38:d6:fd:41:27:7d:30:78:80:3b:d3:51:b8:52:
72:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:21:54:B2:F1:C5:F6:47:04:1D:15:62:38:D3:31:A8:F2:DB:47:FD
X509v3 Authority Key Identifier:
keyid:83:3E:0E:48:04:11:B9:C8:8E:91:6D:EF:90:FC:3A:90:10:26:39:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4OSAQRuciOkW3vkPw6kBAmOUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/dSFUsvHF9kcEHRViONMxqPLbR_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/gz4OSAQRuciOkW3vkPw6kBAmOUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.73.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:e3:af:ae:09:5b:f6:a1:39:13:67:85:0b:10:12:f9:80:14:
83:71:c4:59:b8:3b:b5:b2:f2:ff:16:1c:10:d2:76:84:20:c4:
8e:71:44:74:49:bb:0f:d4:15:08:36:09:15:3f:b5:dd:79:66:
f2:2b:ec:7f:8c:ae:e5:ce:94:6d:8e:90:68:dc:d2:60:47:85:
48:55:4d:b8:2b:6d:27:42:b3:09:d3:ca:5b:60:24:2d:80:34:
68:ab:03:78:c8:34:88:2a:4d:be:fd:80:75:8a:04:e8:0c:f6:
f0:6f:d2:e0:8d:17:d5:51:f0:42:ca:9b:71:4a:3a:93:30:82:
2c:14:4a:19:4a:b9:43:dc:e8:1d:bf:94:27:0c:83:f2:7a:e5:
e0:cc:41:90:c9:2f:44:2d:13:67:3e:22:eb:27:b3:26:91:d8:
33:e3:30:70:a3:a8:04:be:ba:65:1f:40:64:5e:13:a7:61:8e:
c1:b8:13:71:22:ab:fc:e7:2b:45:79:41:2d:46:e2:01:0d:cc:
1b:1f:e0:57:77:44:83:3a:b5:df:ce:b9:ae:3e:50:00:01:f3:
32:7d:d3:54:da:b0:8e:7b:ba:b2:f3:66:46:4f:9b:93:ea:1e:
e5:9a:e7:16:b5:22:3f:96:9b:57:b3:62:3c:a3:5e:ab:38:e8:
bf:75:43:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwy9ZRpUGQtu1QehmrL9t3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UwZTQ4MDQxMWI5Yzg4ZTkxNmRlZjkwZmMzYTkwMTAy
NjM5NGEwHhcNMjMwMTAyMDQ0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTIxNTRiMmYxYzVmNjQ3MDQxZDE1NjIzOGQzMzFhOGYyZGI0N2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8pjpGzEScDOl1pSd4LmEJHoQkNz
s2avWgjAq4MpuCrnnwQ8v//4dfMquJWlIwzRKfBd561OxLJX1e0UwRs65DwrZj2m
twxyrQFBxuM1AsXvzo/VVDnyXSRKGZ1wqMvcVVbsp6Sm4sxQU+B3SMQeNf7a1bx6
ai6zbFDLsff23mRX74ARL+liVmeKE6H6Vl2y2lIdOLGw3LO/eNbvooNqDvmso9tM
2vefGyE5ngQ9U3uWRXmtPYHs1iOtkZU5ylI7i2LAQAJOHlVSl96zh6sRWHCQiLG9
3WQ/YBaQObYyYPiooGlyfJzse9RbeGFoqQO/ONb9QSd9MHiAO9NRuFJyewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHUhVLLxxfZHBB0VYjjTMajy20f9MB8GA1UdIwQY
MBaAFIM+DkgEEbnIjpFt75D8OpAQJjlKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0T1NBUVJ1Y2lPa1czdmtQdzZrQkFtT1VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9hNzgyY2MtMWUwOS00NDgwLWE2ZGMt
NmMyMGViYWYzMGE5LzEvZFNGVXN2SEY5a2NFSFJWaU9OTXhxUExiUl8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9hNzgyY2MtMWUwOS00NDgwLWE2ZGMtNmMyMGViYWYzMGE5
LzEvZ3o0T1NBUVJ1Y2lPa1czdmtQdzZrQkFtT1VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQdJMA0G
CSqGSIb3DQEBCwUAA4IBAQDB46+uCVv2oTkTZ4ULEBL5gBSDccRZuDu1svL/FhwQ
0naEIMSOcUR0SbsP1BUINgkVP7XdeWbyK+x/jK7lzpRtjpBo3NJgR4VIVU24K20n
QrMJ08pbYCQtgDRoqwN4yDSIKk2+/YB1igToDPbwb9LgjRfVUfBCyptxSjqTMIIs
FEoZSrlD3Ogdv5QnDIPyeuXgzEGQyS9ELRNnPiLrJ7Mmkdgz4zBwo6gEvrplH0Bk
XhOnYY7BuBNxIqv85ytFeUEtRuIBDcwbH+BXd0SDOrXfzrmuPlAAAfMyfdNU2rCO
e7qy82ZGT5uT6h7lmucWtSI/lptXs2I8o16rOOi/dUOr
-----END CERTIFICATE-----
Generated at Tue Apr 8 14:31:51 2025 by rpki-client