Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/47Lsjeq5DX4wkpatXUE_-iIQY9Q.roa
File: 47Lsjeq5DX4wkpatXUE_-iIQY9Q.roa (raw, json)
Hash identifier: 4K/nWKrcsaLST8bPt6ayJw8vMIxal4U4+r8J15AVgP8=
Subject key identifier: E3:B2:EC:8D:EA:B9:0D:7E:30:92:96:AD:5D:41:3F:FA:22:10:63:D4
Certificate issuer: /CN=60325c21d2fafe743398dc1e5574433280110469
Certificate serial: 019426D98728C0744DB5B0E597D0032A1DC9
Authority key identifier: 60:32:5C:21:D2:FA:FE:74:33:98:DC:1E:55:74:43:32:80:11:04:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDJcIdL6_nQzmNweVXRDMoARBGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/47Lsjeq5DX4wkpatXUE_-iIQY9Q.roa
Signing time: Thu 02 Jan 2025 11:49:37 +0000
ROA not before: Thu 02 Jan 2025 11:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47856
IP address blocks: 195.10.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:87:28:c0:74:4d:b5:b0:e5:97:d0:03:2a:1d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60325c21d2fafe743398dc1e5574433280110469
Validity
Not Before: Jan 2 11:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e3b2ec8deab90d7e309296ad5d413ffa221063d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:86:16:ac:6a:52:dd:9b:85:8f:b4:bb:32:3a:
f8:61:fb:7b:dd:d1:fb:4b:f1:0e:0b:36:53:48:20:
5f:b8:a2:1e:a6:2e:9e:fa:12:09:19:22:b6:51:7a:
77:d9:10:c0:5f:43:5d:aa:f1:85:13:83:a3:56:7c:
82:56:2c:20:eb:c8:1c:6f:cc:77:ab:5f:b7:ae:31:
01:02:63:7f:cd:5d:68:2e:20:16:be:b4:2c:39:89:
6a:68:a6:3c:2c:84:ba:09:79:5d:12:95:31:a2:60:
24:44:8e:68:31:5b:ee:34:af:95:bc:e9:89:d3:bf:
c5:a9:46:e9:b4:a7:ed:ab:44:c1:2a:3f:66:ce:c1:
30:92:d0:37:ce:b3:56:4a:81:1a:79:47:ce:75:3f:
73:1e:d2:b5:33:00:65:ff:c4:7d:6e:b1:59:71:a7:
2b:a6:45:55:8d:09:78:31:03:f6:32:4f:76:c0:6d:
62:14:a0:43:9c:37:f0:c2:5b:22:ce:a6:8e:85:07:
95:8b:3d:5c:b1:5d:10:56:a7:d2:77:41:1c:0c:45:
b2:89:67:ba:ae:33:f3:a9:d0:e2:dd:a1:7c:a4:dc:
e7:b2:6e:5b:07:a2:17:c4:0a:57:53:46:ed:b9:07:
67:70:b1:6d:25:9a:35:b0:3d:8a:b9:c7:27:5e:94:
1a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B2:EC:8D:EA:B9:0D:7E:30:92:96:AD:5D:41:3F:FA:22:10:63:D4
X509v3 Authority Key Identifier:
keyid:60:32:5C:21:D2:FA:FE:74:33:98:DC:1E:55:74:43:32:80:11:04:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDJcIdL6_nQzmNweVXRDMoARBGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/47Lsjeq5DX4wkpatXUE_-iIQY9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/YDJcIdL6_nQzmNweVXRDMoARBGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.10.217.0/24
Signature Algorithm: sha256WithRSAEncryption
25:c4:4b:d1:0d:a4:26:c1:67:c0:89:df:68:8e:dc:03:72:a5:
d6:74:c3:eb:b0:8d:c9:bc:53:3b:33:01:ce:59:6c:08:20:24:
e5:48:d3:54:a2:e6:63:54:1a:42:5d:50:f1:80:92:8c:d8:b7:
8f:0b:2d:42:5b:92:96:25:ca:ac:6a:8d:bc:4e:d3:62:91:08:
e5:32:50:f3:ef:18:a1:e4:6d:ea:4e:fc:60:3e:c3:f0:f6:94:
00:58:db:c5:20:f1:ba:24:4f:85:87:2b:1d:a9:f2:b9:55:07:
6c:21:a6:cc:35:46:ab:84:d6:29:8b:ff:05:b6:bf:b8:fe:61:
15:a1:08:57:27:fe:9e:eb:3b:cc:86:27:36:1f:73:73:f2:e7:
bf:7c:be:b5:2f:88:1b:9b:71:12:98:4a:7a:fa:a1:b9:1d:9d:
ff:4c:92:87:71:00:ff:cb:9a:20:91:69:8c:99:19:a1:41:e3:
ba:11:61:f1:10:56:69:e5:f2:21:31:6a:9f:ee:71:bb:47:1c:
97:2e:18:4c:d3:e3:ab:99:64:a3:8b:cd:dd:27:53:a9:2b:72:
e8:99:07:ab:10:2e:37:92:f7:ec:b3:72:5c:0b:ae:41:d1:5e:
19:26:dd:72:43:b9:26:37:91:b5:c8:8c:c1:89:fa:1b:4e:4d:
fa:17:1e:7b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2YcowHRNtbDll9ADKh3JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMzI1YzIxZDJmYWZlNzQzMzk4ZGMxZTU1NzQ0MzMyODAx
MTA0NjkwHhcNMjUwMTAyMTE0OTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlM2IyZWM4ZGVhYjkwZDdlMzA5Mjk2YWQ1ZDQxM2ZmYTIyMTA2M2Q0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIYWrGpS3ZuFj7S7Mjr4Yft73dH7
S/EOCzZTSCBfuKIepi6e+hIJGSK2UXp32RDAX0NdqvGFE4OjVnyCViwg68gcb8x3
q1+3rjEBAmN/zV1oLiAWvrQsOYlqaKY8LIS6CXldEpUxomAkRI5oMVvuNK+VvOmJ
07/FqUbptKftq0TBKj9mzsEwktA3zrNWSoEaeUfOdT9zHtK1MwBl/8R9brFZcacr
pkVVjQl4MQP2Mk92wG1iFKBDnDfwwlsizqaOhQeViz1csV0QVqfSd0EcDEWyiWe6
rjPzqdDi3aF8pNznsm5bB6IXxApXU0btuQdncLFtJZo1sD2KuccnXpQavwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOOy7I3quQ1+MJKWrV1BP/oiEGPUMB8GA1UdIwQY
MBaAFGAyXCHS+v50M5jcHlV0QzKAEQRpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWURKY0lkTDZfblF6bU53ZVZYUkRNb0FSQkdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mMjc3MGItZGExOS00NzkwLWE0OTQt
YzU4ZTk1Y2Q0Mjc3LzEvNDdMc2plcTVEWDR3a3BhdFhVRV8taUlRWTlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9mMjc3MGItZGExOS00NzkwLWE0OTQtYzU4ZTk1Y2Q0Mjc3
LzEvWURKY0lkTDZfblF6bU53ZVZYUkRNb0FSQkdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwwrZMA0G
CSqGSIb3DQEBCwUAA4IBAQAlxEvRDaQmwWfAid9ojtwDcqXWdMPrsI3JvFM7MwHO
WWwIICTlSNNUouZjVBpCXVDxgJKM2LePCy1CW5KWJcqsao28TtNikQjlMlDz7xih
5G3qTvxgPsPw9pQAWNvFIPG6JE+FhysdqfK5VQdsIabMNUarhNYpi/8Ftr+4/mEV
oQhXJ/6e6zvMhic2H3Nz8ue/fL61L4gbm3ESmEp6+qG5HZ3/TJKHcQD/y5ogkWmM
mRmhQeO6EWHxEFZp5fIhMWqf7nG7RxyXLhhM0+OrmWSji83dJ1OpK3LomQerEC43
kvfss3JcC65B0V4ZJt1yQ7kmN5G1yIzBifobTk36Fx57
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:13:20 2025 by rpki-client