Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/8ff963-3a0b-42a8-90b8-2eb015402a04/1/sH8d7RsCrlwNQbmSB3ks_diljtg.roa
File: sH8d7RsCrlwNQbmSB3ks_diljtg.roa (raw, json)
Hash identifier: TzzbjgytelEM+MCsWPCSEcD8qMWuSUDafBfkMII85kw=
Subject key identifier: B0:7F:1D:ED:1B:02:AE:5C:0D:41:B9:92:07:79:2C:FD:D8:A5:8E:D8
Certificate issuer: /CN=f34ea42e1bc7580d44ae2b19ca8be723b6f90b25
Certificate serial: C8ECF8
Authority key identifier: F3:4E:A4:2E:1B:C7:58:0D:44:AE:2B:19:CA:8B:E7:23:B6:F9:0B:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/806kLhvHWA1ErisZyovnI7b5CyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/8ff963-3a0b-42a8-90b8-2eb015402a04/1/sH8d7RsCrlwNQbmSB3ks_diljtg.roa
Signing time: Tue 26 Apr 2022 14:45:33 +0000
ROA not before: Tue 26 Apr 2022 14:45:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 195.64.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13167864 (0xc8ecf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f34ea42e1bc7580d44ae2b19ca8be723b6f90b25
Validity
Not Before: Apr 26 14:45:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b07f1ded1b02ae5c0d41b99207792cfdd8a58ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:df:8a:4b:c2:1e:aa:1c:45:1b:5d:64:c5:2e:
6c:af:a3:b1:b4:2e:6c:77:94:2b:ed:15:18:46:d0:
75:bc:1d:33:21:69:c2:e7:83:4f:a0:c6:1f:5d:43:
04:54:4f:35:b9:fe:fa:19:c6:7c:22:ee:a3:52:7f:
45:9b:fe:c9:be:a9:b4:73:27:cb:24:9e:8d:2a:b3:
1f:b5:d2:89:84:67:ac:ff:3b:24:27:db:9d:e4:bb:
c4:93:46:6a:86:88:f5:61:c9:ad:20:6a:c2:cb:ab:
9d:99:8e:93:b0:80:29:91:28:f6:ee:97:90:6d:8b:
1b:bd:53:24:7f:5f:1d:9b:f6:34:14:e5:cd:9f:01:
b4:de:57:17:df:25:41:bc:cd:31:22:27:a7:15:30:
4f:7b:7d:1d:59:a9:5e:cd:49:b1:c9:58:09:68:9c:
6d:d8:67:68:e6:91:6d:f9:7b:23:00:ad:6b:90:66:
fb:54:0e:40:5f:50:b3:e0:17:1e:21:db:35:f9:1c:
15:f2:a3:76:97:bd:ec:77:ef:d8:7a:42:4a:7d:a6:
6b:5b:ec:82:95:40:e9:f6:67:b0:a5:24:d4:64:b5:
c7:88:3c:b7:f6:a1:2a:f7:ee:82:f7:aa:85:b3:d4:
5a:a9:b0:21:34:d8:cc:9d:07:35:a4:fb:94:fe:f0:
3e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:7F:1D:ED:1B:02:AE:5C:0D:41:B9:92:07:79:2C:FD:D8:A5:8E:D8
X509v3 Authority Key Identifier:
keyid:F3:4E:A4:2E:1B:C7:58:0D:44:AE:2B:19:CA:8B:E7:23:B6:F9:0B:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/806kLhvHWA1ErisZyovnI7b5CyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ff963-3a0b-42a8-90b8-2eb015402a04/1/sH8d7RsCrlwNQbmSB3ks_diljtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ff963-3a0b-42a8-90b8-2eb015402a04/1/806kLhvHWA1ErisZyovnI7b5CyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.127.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:0d:5b:82:7e:1b:46:a1:49:e2:c5:10:21:93:7a:fe:74:5b:
fa:a0:d8:8d:6f:c5:38:37:44:33:1a:39:e3:6f:03:6d:51:3d:
44:a3:88:0f:89:95:b7:19:db:12:95:e1:c4:3d:5c:17:31:9a:
6c:93:4f:2a:17:64:92:47:d1:9c:9b:17:6d:80:22:1b:eb:c0:
42:8b:68:ca:8d:35:25:50:85:26:fd:9c:cb:0f:b8:9e:72:db:
63:fa:32:6f:9e:ae:46:63:14:e4:ce:f1:bb:94:9a:cf:d1:4f:
48:fe:36:e4:5c:15:43:da:a7:80:cc:08:66:ae:10:dc:6c:e4:
db:e0:d0:f6:cf:95:75:40:e3:8c:94:2e:35:83:a8:99:5b:c9:
77:6c:bf:12:44:58:4e:15:58:a7:87:e5:14:6b:e9:32:cd:30:
a6:1d:f8:50:e0:3f:5c:06:83:fe:34:b5:eb:72:0e:7a:b0:f6:
40:94:33:ed:3b:fb:69:a3:d6:6b:44:bb:9f:8a:e7:67:5c:89:
fc:bf:72:cb:90:2f:7f:4d:d0:4e:6e:13:9a:f8:b4:24:ab:bf:
dc:20:e8:66:a1:91:6b:19:ea:b9:c8:c4:f3:35:9e:b6:b0:f3:
84:4c:42:ff:90:df:66:ad:2c:be:53:75:96:f9:be:10:0b:40:
8c:46:86:78
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAMjs+DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MzRlYTQyZTFiYzc1ODBkNDRhZTJiMTljYThiZTcyM2I2ZjkwYjI1MB4XDTIyMDQy
NjE0NDUzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjA3ZjFkZWQxYjAy
YWU1YzBkNDFiOTkyMDc3OTJjZmRkOGE1OGVkODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKTfikvCHqocRRtdZMUubK+jsbQubHeUK+0VGEbQdbwdMyFp
wueDT6DGH11DBFRPNbn++hnGfCLuo1J/RZv+yb6ptHMnyySejSqzH7XSiYRnrP87
JCfbneS7xJNGaoaI9WHJrSBqwsurnZmOk7CAKZEo9u6XkG2LG71TJH9fHZv2NBTl
zZ8BtN5XF98lQbzNMSInpxUwT3t9HVmpXs1JsclYCWicbdhnaOaRbfl7IwCta5Bm
+1QOQF9Qs+AXHiHbNfkcFfKjdpe97Hfv2HpCSn2ma1vsgpVA6fZnsKUk1GS1x4g8
t/ahKvfugveqhbPUWqmwITTYzJ0HNaT7lP7wPs0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSwfx3tGwKuXA1BuZIHeSz92KWO2DAfBgNVHSMEGDAWgBTzTqQuG8dYDUSu
KxnKi+cjtvkLJTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzgwNmtMaHZIV0ExRXJpc1p5b3ZuSTdiNUN5VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvOGZmOTYzLTNhMGItNDJhOC05MGI4LTJlYjAxNTQwMmEwNC8x
L3NIOGQ3UnNDcmx3TlFibVNCM2tzX2RpbGp0Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
OGZmOTYzLTNhMGItNDJhOC05MGI4LTJlYjAxNTQwMmEwNC8xLzgwNmtMaHZIV0Ex
RXJpc1p5b3ZuSTdiNUN5VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNAfzANBgkqhkiG9w0BAQsFAAOC
AQEADA1bgn4bRqFJ4sUQIZN6/nRb+qDYjW/FODdEMxo5428DbVE9RKOID4mVtxnb
EpXhxD1cFzGabJNPKhdkkkfRnJsXbYAiG+vAQotoyo01JVCFJv2cyw+4nnLbY/oy
b56uRmMU5M7xu5Saz9FPSP425FwVQ9qngMwIZq4Q3Gzk2+DQ9s+VdUDjjJQuNYOo
mVvJd2y/EkRYThVYp4flFGvpMs0wph34UOA/XAaD/jS163IOerD2QJQz7Tv7aaPW
a0S7n4rnZ1yJ/L9yy5Avf03QTm4Tmvi0JKu/3CDoZqGRaxnqucjE8zWetrDzhExC
/5DfZq0svlN1lvm+EAtAjEaGeA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:07:23 2025 by rpki-client