Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/8ff963-3a0b-42a8-90b8-2eb015402a04/1/BQIHLDPMEfcXQ7obwAkpbnOlbGg.roa
File: BQIHLDPMEfcXQ7obwAkpbnOlbGg.roa (raw, json)
Hash identifier: wdUb9om56GNUtPUToLvv41esKn7nUsswu0+Ur49GOLQ=
Subject key identifier: 05:02:07:2C:33:CC:11:F7:17:43:BA:1B:C0:09:29:6E:73:A5:6C:68
Certificate issuer: /CN=f34ea42e1bc7580d44ae2b19ca8be723b6f90b25
Certificate serial: 129691
Authority key identifier: F3:4E:A4:2E:1B:C7:58:0D:44:AE:2B:19:CA:8B:E7:23:B6:F9:0B:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/806kLhvHWA1ErisZyovnI7b5CyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/8ff963-3a0b-42a8-90b8-2eb015402a04/1/BQIHLDPMEfcXQ7obwAkpbnOlbGg.roa
Signing time: Sun 06 Feb 2022 20:43:12 +0000
ROA not before: Sun 06 Feb 2022 20:43:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 195.64.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1218193 (0x129691)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f34ea42e1bc7580d44ae2b19ca8be723b6f90b25
Validity
Not Before: Feb 6 20:43:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0502072c33cc11f71743ba1bc009296e73a56c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:34:72:7d:7a:fa:75:e0:60:bd:e1:ae:68:30:
92:eb:16:62:05:c3:9b:f9:3a:f3:f4:8f:27:b0:d8:
98:95:5c:4d:2a:db:42:b1:b5:6b:21:d4:a5:bb:72:
cf:d2:1c:7d:bd:68:85:a0:b9:6d:c1:f8:3e:57:12:
1b:1a:ae:00:93:33:24:ee:4a:dc:d1:f2:03:a4:0a:
ab:68:75:df:17:0f:a9:9b:2b:96:f1:bc:fc:86:ba:
37:75:00:90:63:a1:a0:eb:34:84:e3:ed:ea:d7:23:
3b:2f:2a:3c:dc:8d:c0:14:ac:63:41:10:01:72:77:
e8:e4:38:ab:f7:a4:1e:c3:f8:ed:3f:ed:55:8f:14:
d1:66:90:c0:48:23:72:08:17:7a:0f:54:53:db:3d:
d9:eb:8b:64:2d:87:85:75:3d:cc:14:12:be:12:1b:
03:db:73:3f:f3:14:4c:bf:97:c8:a7:64:71:67:45:
8b:be:88:44:8a:c3:cb:c5:47:cc:59:52:33:07:74:
d5:8b:74:fe:9a:9a:2d:d2:17:dc:94:35:d2:f5:5b:
29:b4:e6:0a:68:20:ad:99:e2:c8:79:fd:22:29:0d:
67:b4:e4:c2:49:85:dc:9a:1d:66:7b:95:96:62:c7:
b5:29:9f:1e:7a:79:a4:d0:42:d2:ca:0e:5e:ab:95:
24:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:02:07:2C:33:CC:11:F7:17:43:BA:1B:C0:09:29:6E:73:A5:6C:68
X509v3 Authority Key Identifier:
keyid:F3:4E:A4:2E:1B:C7:58:0D:44:AE:2B:19:CA:8B:E7:23:B6:F9:0B:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/806kLhvHWA1ErisZyovnI7b5CyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ff963-3a0b-42a8-90b8-2eb015402a04/1/BQIHLDPMEfcXQ7obwAkpbnOlbGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ff963-3a0b-42a8-90b8-2eb015402a04/1/806kLhvHWA1ErisZyovnI7b5CyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.127.0/24
Signature Algorithm: sha256WithRSAEncryption
16:cf:1f:72:5f:22:90:5b:f2:ac:cc:c3:1c:ff:80:f8:f4:d5:
93:c4:85:e0:1b:49:1b:e4:1e:d2:c5:db:fc:a9:27:54:92:82:
c5:85:a6:8c:ff:bc:d5:31:e2:2a:82:2b:cf:97:6b:76:2a:70:
49:7b:8b:77:69:6b:79:cc:88:62:a5:0a:9c:7e:24:cc:ea:2a:
49:d5:3d:35:d5:b4:52:54:81:23:a9:ac:f8:29:12:45:9d:d6:
9a:20:e1:1e:99:f6:ba:ca:7a:cd:e4:3f:12:ff:6b:f4:31:9a:
0b:9f:1f:09:1d:d7:f7:87:f7:49:35:23:31:e9:cb:86:28:10:
ad:ee:56:08:be:ce:7e:bf:07:eb:54:a4:bf:64:f1:5b:18:29:
24:4f:c8:5c:46:0f:0d:a4:9f:9e:6f:48:9c:cd:d5:97:34:27:
e2:61:31:31:0b:e7:ee:76:66:5e:03:1b:c7:38:8e:56:9d:07:
60:86:9a:c3:38:c1:84:e6:7d:8a:86:f7:fc:e8:a6:05:8a:2d:
b7:6c:16:29:e7:80:3e:d2:28:e2:86:9d:aa:da:19:4d:c5:b2:
a0:d0:dc:61:d0:74:66:64:0e:66:06:4b:6d:ed:2b:0f:9e:d2:
77:39:1c:41:eb:ce:0e:7d:14:5c:44:97:6f:b2:c8:93:60:95:
64:8c:80:9b
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDEpaRMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGYz
NGVhNDJlMWJjNzU4MGQ0NGFlMmIxOWNhOGJlNzIzYjZmOTBiMjUwHhcNMjIwMjA2
MjA0MzEyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwNTAyMDcyYzMzY2Mx
MWY3MTc0M2JhMWJjMDA5Mjk2ZTczYTU2YzY4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApDRyfXr6deBgveGuaDCS6xZiBcOb+Trz9I8nsNiYlVxNKttC
sbVrIdSlu3LP0hx9vWiFoLltwfg+VxIbGq4AkzMk7krc0fIDpAqraHXfFw+pmyuW
8bz8hro3dQCQY6Gg6zSE4+3q1yM7Lyo83I3AFKxjQRABcnfo5Dir96Qew/jtP+1V
jxTRZpDASCNyCBd6D1RT2z3Z64tkLYeFdT3MFBK+EhsD23M/8xRMv5fIp2RxZ0WL
vohEisPLxUfMWVIzB3TVi3T+mpot0hfclDXS9VsptOYKaCCtmeLIef0iKQ1ntOTC
SYXcmh1me5WWYse1KZ8eenmk0ELSyg5eq5UkgQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFAUCBywzzBH3F0O6G8AJKW5zpWxoMB8GA1UdIwQYMBaAFPNOpC4bx1gNRK4r
GcqL5yO2+QslMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ODA2a0xodkhXQTFFcmlzWnlvdm5JN2I1Q3lVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zNC84ZmY5NjMtM2EwYi00MmE4LTkwYjgtMmViMDE1NDAyYTA0LzEv
QlFJSExEUE1FZmNYUTdvYndBa3Bibk9sYkdnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC84
ZmY5NjMtM2EwYi00MmE4LTkwYjgtMmViMDE1NDAyYTA0LzEvODA2a0xodkhXQTFF
cmlzWnlvdm5JN2I1Q3lVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0B/MA0GCSqGSIb3DQEBCwUAA4IB
AQAWzx9yXyKQW/KszMMc/4D49NWTxIXgG0kb5B7Sxdv8qSdUkoLFhaaM/7zVMeIq
givPl2t2KnBJe4t3aWt5zIhipQqcfiTM6ipJ1T011bRSVIEjqaz4KRJFndaaIOEe
mfa6ynrN5D8S/2v0MZoLnx8JHdf3h/dJNSMx6cuGKBCt7lYIvs5+vwfrVKS/ZPFb
GCkkT8hcRg8NpJ+eb0iczdWXNCfiYTExC+fudmZeAxvHOI5WnQdghprDOMGE5n2K
hvf86KYFii23bBYp54A+0ijihp2q2hlNxbKg0Nxh0HRmZA5mBktt7SsPntJ3ORxB
684OfRRcRJdvssiTYJVkjICb
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:20:00 2025 by rpki-client