Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/ncxdVDQuxRSDzcnJEIajEx1o3QQ.roa
File: ncxdVDQuxRSDzcnJEIajEx1o3QQ.roa (raw, json)
Hash identifier: 9dmNFhsR22503ZvtMQONYAoW2FySW9FsTLR44YWhiCI=
Subject key identifier: 9D:CC:5D:54:34:2E:C5:14:83:CD:C9:C9:10:86:A3:13:1D:68:DD:04
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 038004CE
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/ncxdVDQuxRSDzcnJEIajEx1o3QQ.roa
Signing time: Tue 08 Feb 2022 11:58:28 +0000
ROA not before: Tue 08 Feb 2022 11:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 91.206.2.0/24 maxlen: 24
194.113.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58721486 (0x38004ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Feb 8 11:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dcc5d54342ec51483cdc9c91086a3131d68dd04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bc:47:26:c0:cd:7a:a7:8c:21:80:5a:79:f4:
13:31:78:41:94:a5:f9:bf:49:a1:3a:2c:e6:4b:43:
74:0b:3c:59:42:d2:68:e3:01:07:c7:8b:31:a8:0b:
9d:fd:e0:29:ae:44:46:6c:ae:59:6c:27:d4:f5:93:
32:31:08:80:c9:0e:2b:4b:18:66:c4:80:a9:db:02:
1a:21:48:7c:67:fd:4a:12:86:47:1e:20:68:e7:3b:
fa:9c:83:c8:92:81:a8:83:1b:08:8e:85:04:cf:a3:
0b:26:03:31:21:dc:2d:92:e1:8e:f1:28:bb:df:55:
30:14:55:e6:67:fb:ee:42:66:8b:94:0b:82:22:4a:
b7:80:0d:00:7b:be:93:e3:a8:74:87:72:e5:56:8a:
c1:7f:18:f2:51:9c:79:28:cb:02:b3:dc:8f:de:02:
54:12:68:67:17:f7:7d:6a:84:b8:7c:57:9f:d7:26:
af:43:47:99:99:2b:36:95:74:b7:8f:ee:8e:70:a1:
0d:d3:a4:d9:a5:60:cd:8c:e2:2d:87:13:01:fc:f5:
7e:c2:3e:f2:7d:76:f7:48:93:d6:42:d4:a3:e2:18:
39:9d:b3:b4:e2:44:27:b2:28:17:49:86:ee:2a:d3:
c5:c2:12:76:2e:61:3a:21:72:d0:2b:c9:94:5e:e4:
98:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:CC:5D:54:34:2E:C5:14:83:CD:C9:C9:10:86:A3:13:1D:68:DD:04
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/ncxdVDQuxRSDzcnJEIajEx1o3QQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.2.0/24
194.113.222.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:b0:fa:44:7c:bd:4c:5d:0d:96:8a:79:c9:03:9d:f4:50:45:
44:e9:53:92:39:ff:e3:08:28:f6:e7:ac:5f:7c:71:df:17:01:
e8:71:3d:33:af:33:6f:1a:b6:9c:b9:03:9a:e5:b6:36:23:94:
49:85:3a:b1:a2:df:76:f2:3c:45:30:4d:5a:7b:27:59:e4:2f:
ee:21:68:99:52:18:3a:38:72:83:30:fa:6c:81:7b:f2:6c:ed:
42:c3:fb:10:00:35:19:51:dc:2e:23:db:95:20:a9:7d:3d:0e:
21:e5:a0:84:0c:ad:a3:51:60:b7:eb:76:7f:8b:b6:a2:50:bd:
33:1b:89:f9:3b:79:98:19:fc:a3:51:33:3c:a6:d8:8b:e7:1e:
bb:63:18:40:b0:1f:e8:24:05:6a:85:49:0e:b7:82:3c:73:9d:
38:bc:fd:df:5d:4d:72:1a:9d:79:63:73:15:4e:2f:83:d7:67:
18:de:10:0d:2b:7a:8d:59:fe:af:d2:7b:be:c0:d5:0e:0f:e4:
fe:57:2f:2b:f0:48:6e:2a:ec:cb:a7:29:71:2e:1b:4c:d3:d9:
aa:57:ac:42:22:2f:e9:ee:12:0c:89:3a:3c:1d:a2:cd:ec:65:
10:45:8a:99:d3:15:cf:a6:5a:11:71:14:da:03:8e:19:38:a1:
e9:06:d8:be
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA4AEzjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MmVkNGEyZmIxODBkZjVmOTlkNGJmOGM3N2NjOWEwNmVmMjYwNThjMB4XDTIyMDIw
ODExNTgyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWRjYzVkNTQzNDJl
YzUxNDgzY2RjOWM5MTA4NmEzMTMxZDY4ZGQwNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKO8RybAzXqnjCGAWnn0EzF4QZSl+b9JoTos5ktDdAs8WULS
aOMBB8eLMagLnf3gKa5ERmyuWWwn1PWTMjEIgMkOK0sYZsSAqdsCGiFIfGf9ShKG
Rx4gaOc7+pyDyJKBqIMbCI6FBM+jCyYDMSHcLZLhjvEou99VMBRV5mf77kJmi5QL
giJKt4ANAHu+k+OodIdy5VaKwX8Y8lGceSjLArPcj94CVBJoZxf3fWqEuHxXn9cm
r0NHmZkrNpV0t4/ujnChDdOk2aVgzYziLYcTAfz1fsI+8n1290iT1kLUo+IYOZ2z
tOJEJ7IoF0mG7irTxcISdi5hOiFy0CvJlF7kmJcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSdzF1UNC7FFIPNyckQhqMTHWjdBDAfBgNVHSMEGDAWgBSC7UovsYDfX5nU
v4x3zJoG7yYFjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2d1MUtMN0dBMzEtWjFMLU1kOHlhQnU4bUJZdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvMDMwMWJjLWM3ZmUtNDZlOS1iN2EwLTQ1MjZmNjI2M2JjZS8x
L25jeGRWRFF1eFJTRHpjbkpFSWFqRXgxbzNRUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
MDMwMWJjLWM3ZmUtNDZlOS1iN2EwLTQ1MjZmNjI2M2JjZS8xL2d1MUtMN0dBMzEt
WjFMLU1kOHlhQnU4bUJZdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvOAgMEAMJx3jANBgkqhkiG9w0B
AQsFAAOCAQEAqrD6RHy9TF0Nlop5yQOd9FBFROlTkjn/4wgo9uesX3xx3xcB6HE9
M68zbxq2nLkDmuW2NiOUSYU6saLfdvI8RTBNWnsnWeQv7iFomVIYOjhygzD6bIF7
8mztQsP7EAA1GVHcLiPblSCpfT0OIeWghAyto1Fgt+t2f4u2olC9MxuJ+Tt5mBn8
o1EzPKbYi+ceu2MYQLAf6CQFaoVJDreCPHOdOLz9311NchqdeWNzFU4vg9dnGN4Q
DSt6jVn+r9J7vsDVDg/k/lcvK/BIbirsy6cpcS4bTNPZqlesQiIv6e4SDIk6PB2i
zexlEEWKmdMVz6ZaEXEU2gOOGTih6QbYvg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:17 2025 by rpki-client