Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/h7Ip1-GOoP2UlIvtPGpk3n_t9q8.roa
File: h7Ip1-GOoP2UlIvtPGpk3n_t9q8.roa (raw, json)
Hash identifier: mBFtmsBN93MWHQZC91tpvVUNCfZn7awJMopvqYbSfnA=
Subject key identifier: 87:B2:29:D7:E1:8E:A0:FD:94:94:8B:ED:3C:6A:64:DE:7F:ED:F6:AF
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50C5A63D
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/h7Ip1-GOoP2UlIvtPGpk3n_t9q8.roa
Signing time: Sat 01 Jan 2022 16:01:41 +0000
ROA not before: Sat 01 Jan 2022 16:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12651
IP address blocks: 193.246.0.128/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1355130429 (0x50c5a63d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87b229d7e18ea0fd94948bed3c6a64de7fedf6af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d5:1b:f2:54:be:49:5e:d6:e9:dd:cf:71:bf:
27:86:33:1f:d9:5e:f1:b0:dd:60:2f:2b:09:be:f6:
b2:49:aa:4d:34:a6:7d:3f:e1:0b:0a:ba:80:dc:d8:
2d:f2:9a:5b:61:b5:c4:16:9f:1a:c9:25:ac:b5:23:
cf:9c:79:fe:0c:43:cc:59:fa:6b:e6:a9:82:88:9d:
95:ad:36:1d:9f:07:7b:fc:14:7e:48:bd:d9:23:f5:
85:de:b5:c5:ab:34:9d:ac:4d:b1:56:d0:1f:3a:29:
31:1a:3b:ea:12:76:3c:38:e4:a1:15:26:3e:3a:f4:
c5:70:b4:63:64:31:31:b6:c2:93:ef:88:ee:4c:75:
2a:8b:3a:fc:ba:6c:11:52:ac:fa:db:51:25:ae:32:
27:48:6d:6f:18:3d:88:fb:b9:a6:1a:d2:e8:d0:bb:
24:60:31:f7:84:e8:f7:49:28:8b:89:fc:fe:06:eb:
ff:28:1a:12:f5:6a:11:65:d7:0d:fc:db:7c:2b:fe:
80:41:49:9a:9e:b1:73:e2:cd:af:1b:13:7b:4e:06:
8c:ac:e7:8b:2a:18:5a:27:9a:3b:86:d0:be:b5:20:
7f:54:16:84:0f:8d:e9:4d:51:d9:72:6f:20:66:39:
88:70:01:16:47:72:da:a1:3d:41:66:47:60:52:f6:
41:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B2:29:D7:E1:8E:A0:FD:94:94:8B:ED:3C:6A:64:DE:7F:ED:F6:AF
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/h7Ip1-GOoP2UlIvtPGpk3n_t9q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.0.128/29
Signature Algorithm: sha256WithRSAEncryption
b6:ff:67:4e:44:3a:25:d9:20:bb:bc:78:dd:03:fd:4d:07:5d:
bf:c2:a5:e1:b4:79:d0:21:f2:a0:a2:df:3e:e8:44:38:68:40:
9b:b2:50:53:e6:71:b5:a6:ec:a8:5e:ce:38:d1:ed:e7:88:81:
e2:65:05:17:a0:09:6a:59:fb:89:3f:90:65:ba:b6:0b:c0:87:
c1:27:e0:23:4f:b5:82:05:dd:3d:da:5c:f4:4e:8f:c6:93:77:
9d:e1:9a:a5:e1:36:aa:fd:19:98:c6:17:fd:80:eb:06:ac:83:
e1:bd:0b:89:a8:8a:d2:4b:23:cd:85:a6:58:c9:4e:cc:b2:28:
9c:5e:d0:20:70:78:4b:fe:4d:3b:8b:3c:ea:a0:02:25:94:20:
d3:a1:05:fb:19:85:62:29:e4:6f:72:d7:07:18:bc:fe:1f:8a:
e3:9a:68:77:48:71:80:d2:f7:78:48:c1:90:7a:3c:4e:48:c1:
54:74:d3:85:b1:83:c6:d4:c2:2c:9b:39:8a:d9:bc:2e:5f:62:
bb:22:46:39:3c:e0:32:b2:60:33:ce:0a:75:a4:4f:db:0a:b2:
33:c2:94:dc:46:38:03:15:63:13:fc:91:ce:01:5a:89:39:0b:
5a:42:d9:98:6f:3c:18:e6:e2:a8:56:4c:10:a4:9f:21:23:d4:
f1:e9:cb:3f
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEUMWmPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NjYzZjNkYjE1MmUwNTVhYzE0NWJkYmI0MjllMDE4NjU0MjA0YzhkMB4XDTIyMDEw
MTE2MDE0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODdiMjI5ZDdlMThl
YTBmZDk0OTQ4YmVkM2M2YTY0ZGU3ZmVkZjZhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANXVG/JUvkle1undz3G/J4YzH9le8bDdYC8rCb72skmqTTSm
fT/hCwq6gNzYLfKaW2G1xBafGsklrLUjz5x5/gxDzFn6a+apgoidla02HZ8He/wU
fki92SP1hd61xas0naxNsVbQHzopMRo76hJ2PDjkoRUmPjr0xXC0Y2QxMbbCk++I
7kx1Kos6/LpsEVKs+ttRJa4yJ0htbxg9iPu5phrS6NC7JGAx94To90koi4n8/gbr
/ygaEvVqEWXXDfzbfCv+gEFJmp6xc+LNrxsTe04GjKzniyoYWieaO4bQvrUgf1QW
hA+N6U1R2XJvIGY5iHABFkdy2qE9QWZHYFL2QZ8CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSHsinX4Y6g/ZSUi+08amTef+32rzAfBgNVHSMEGDAWgBQmY/PbFS4FWsFF
vbtCngGGVCBMjTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ptUHoyeFV1QlZyQlJiMjdRcDRCaGxRZ1RJMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvYzhjNmY2LTU5NWMtNDViMS1hNzZlLWJkMTkyNjc2YzliYi8x
L2g3SXAxLUdPb1AyVWxJdnRQR3BrM25fdDlxOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
YzhjNmY2LTU5NWMtNDViMS1hNzZlLWJkMTkyNjc2YzliYi8xL0ptUHoyeFV1QlZy
QlJiMjdRcDRCaGxRZ1RJMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFA8H2AIAwDQYJKoZIhvcNAQELBQAD
ggEBALb/Z05EOiXZILu8eN0D/U0HXb/CpeG0edAh8qCi3z7oRDhoQJuyUFPmcbWm
7KhezjjR7eeIgeJlBRegCWpZ+4k/kGW6tgvAh8En4CNPtYIF3T3aXPROj8aTd53h
mqXhNqr9GZjGF/2A6wasg+G9C4moitJLI82FpljJTsyyKJxe0CBweEv+TTuLPOqg
AiWUINOhBfsZhWIp5G9y1wcYvP4fiuOaaHdIcYDS93hIwZB6PE5IwVR004Wxg8bU
wiybOYrZvC5fYrsiRjk84DKyYDPOCnWkT9sKsjPClNxGOAMVYxP8kc4BWok5C1pC
2ZhvPBjm4qhWTBCknyEj1PHpyz8=
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:55:26 2025 by rpki-client