Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/vciQzkSrD6uNrSpsS_MZdT103NE.roa
File: vciQzkSrD6uNrSpsS_MZdT103NE.roa (raw, json)
Hash identifier: 0uyd3sG4zpNKy7/heqpkII6ap/e9dq94MzX+GYiHXS4=
Subject key identifier: BD:C8:90:CE:44:AB:0F:AB:8D:AD:2A:6C:4B:F3:19:75:3D:74:DC:D1
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8B1709D170744B327EB81ACC417B76
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/vciQzkSrD6uNrSpsS_MZdT103NE.roa
Signing time: Sun 01 Jan 2023 13:35:09 +0000
ROA not before: Sun 01 Jan 2023 13:35:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208813
IP address blocks: 194.209.6.0/24 maxlen: 24
2001:918:fff2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8b:17:09:d1:70:74:4b:32:7e:b8:1a:cc:41:7b:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdc890ce44ab0fab8dad2a6c4bf319753d74dcd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5e:7b:05:49:e6:38:61:63:03:a5:0e:ab:90:
d6:31:3d:ed:b0:9f:01:2c:4e:23:24:c0:e7:b4:90:
af:43:76:3c:3f:a4:35:69:35:12:26:02:cd:e0:df:
47:a1:06:1c:a9:ff:ef:38:15:64:ab:3f:ee:80:61:
b5:3c:da:ae:fb:0a:c1:65:0e:d5:bd:29:a1:72:6c:
7f:35:47:3e:7f:5c:b5:92:9a:e5:54:24:da:d7:d3:
31:a3:67:9f:27:62:44:5e:b7:17:5b:ee:41:25:09:
4e:3f:92:1e:1b:04:b7:e9:78:6c:d3:5b:b9:fc:ee:
52:6c:e7:0e:94:0b:98:14:7e:6b:89:b0:50:ac:c8:
d5:0f:ec:c8:8a:73:03:03:31:48:ce:8a:be:56:70:
0a:d7:54:67:58:62:af:a8:d4:a9:60:67:96:67:79:
25:fb:eb:d1:42:86:08:02:32:7a:02:e6:27:dd:62:
49:40:8c:80:03:7c:ad:90:ff:57:d4:97:14:82:d2:
33:2f:92:b2:0e:c9:fd:f7:59:08:cf:0a:60:b3:1c:
7a:2b:a1:e2:b4:64:c7:8c:20:d6:f1:ae:25:7a:4a:
d8:f7:3a:2d:90:1f:54:f8:da:6c:ba:9f:37:42:ab:
b7:9e:3d:13:a6:ad:38:7b:06:a8:42:0a:ce:df:db:
84:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C8:90:CE:44:AB:0F:AB:8D:AD:2A:6C:4B:F3:19:75:3D:74:DC:D1
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/vciQzkSrD6uNrSpsS_MZdT103NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.209.6.0/24
IPv6:
2001:918:fff2::/48
Signature Algorithm: sha256WithRSAEncryption
9d:7d:29:af:35:6b:02:b9:59:2f:6d:fd:5e:e5:df:6b:fd:4c:
0b:2f:4a:7f:18:66:10:fe:96:34:95:8f:48:f4:9a:fc:5e:d9:
56:9b:8f:22:48:5d:0f:7b:4e:12:a7:76:d8:25:06:68:a1:2d:
26:0d:40:ec:24:0f:0a:b9:8d:1f:46:eb:fa:28:ac:81:93:5c:
5d:78:47:3b:c9:af:dd:08:28:16:25:d6:88:79:49:e0:e6:21:
34:9f:35:e4:29:6d:f3:30:a7:75:1d:6b:86:47:f9:d9:d7:6c:
20:cf:ad:87:83:05:eb:42:9d:9a:5c:52:80:11:6f:c5:29:00:
87:44:80:79:7e:3c:70:74:56:74:3b:0f:f0:b2:78:35:91:eb:
aa:21:2e:7d:b9:3d:57:bc:b0:16:cf:2d:df:cd:db:09:d4:86:
12:ee:b2:1c:a7:40:36:21:b1:56:bb:ab:d1:ff:a3:60:f9:a3:
37:06:b1:e6:11:5b:c9:57:69:18:38:15:87:83:47:0a:03:7c:
f1:ea:31:b7:ae:9b:b6:51:5d:a5:e2:22:03:4b:57:3f:d4:87:
96:78:a2:4a:f3:b3:5c:73:22:f0:dd:c3:6b:9d:53:03:42:2e:
8a:d9:b6:8f:3b:21:96:98:8f:5e:5a:bb:f0:08:17:fc:13:72:
bd:ba:b2:61
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVtixcJ0XB0SzJ+uBrMQXt2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy
MDRjOGQwHhcNMjMwMTAxMTMzNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZGM4OTBjZTQ0YWIwZmFiOGRhZDJhNmM0YmYzMTk3NTNkNzRkY2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAll57BUnmOGFjA6UOq5DWMT3tsJ8B
LE4jJMDntJCvQ3Y8P6Q1aTUSJgLN4N9HoQYcqf/vOBVkqz/ugGG1PNqu+wrBZQ7V
vSmhcmx/NUc+f1y1kprlVCTa19Mxo2efJ2JEXrcXW+5BJQlOP5IeGwS36Xhs01u5
/O5SbOcOlAuYFH5ribBQrMjVD+zIinMDAzFIzoq+VnAK11RnWGKvqNSpYGeWZ3kl
++vRQoYIAjJ6AuYn3WJJQIyAA3ytkP9X1JcUgtIzL5KyDsn991kIzwpgsxx6K6Hi
tGTHjCDW8a4lekrY9zotkB9U+Npsup83Qqu3nj0Tpq04ewaoQgrO39uEPwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFL3IkM5Eqw+rja0qbEvzGXU9dNzRMB8GA1UdIwQY
MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt
YmQxOTI2NzZjOWJiLzEvdmNpUXprU3JENnVOclNwc1NfTVpkVDEwM05FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi
LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwtEGMA8E
AgACMAkDBwAgAQkY//IwDQYJKoZIhvcNAQELBQADggEBAJ19Ka81awK5WS9t/V7l
32v9TAsvSn8YZhD+ljSVj0j0mvxe2VabjyJIXQ97ThKndtglBmihLSYNQOwkDwq5
jR9G6/oorIGTXF14RzvJr90IKBYl1oh5SeDmITSfNeQpbfMwp3Uda4ZH+dnXbCDP
rYeDBetCnZpcUoARb8UpAIdEgHl+PHB0VnQ7D/CyeDWR66ohLn25PVe8sBbPLd/N
2wnUhhLushynQDYhsVa7q9H/o2D5ozcGseYRW8lXaRg4FYeDRwoDfPHqMbeum7ZR
XaXiIgNLVz/Uh5Z4okrzs1xzIvDdw2udUwNCLorZto87IZaYj15au/AIF/wTcr26
smE=
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:19 2025 by rpki-client