Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/efbed8-9ff0-4455-a07e-3cad37067405/1/IuTQXsiVUQCbItAWa4hKUGX8zLE.roa
File: IuTQXsiVUQCbItAWa4hKUGX8zLE.roa (raw, json)
Hash identifier: N9ora2/QdWyD5o0j+P8NFLf+HvZGu4NiUEqySX42e8o=
Subject key identifier: 22:E4:D0:5E:C8:95:51:00:9B:22:D0:16:6B:88:4A:50:65:FC:CC:B1
Certificate issuer: /CN=da0ffdbc933178d7a1bbf99608e3a95d4dee8ae6
Certificate serial: 0189B6030419054DF08FC6623113ABECCB49
Authority key identifier: DA:0F:FD:BC:93:31:78:D7:A1:BB:F9:96:08:E3:A9:5D:4D:EE:8A:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2g_9vJMxeNehu_mWCOOpXU3uiuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/efbed8-9ff0-4455-a07e-3cad37067405/1/IuTQXsiVUQCbItAWa4hKUGX8zLE.roa
Signing time: Wed 02 Aug 2023 11:29:58 +0000
ROA not before: Wed 02 Aug 2023 11:29:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47803
IP address blocks: 185.130.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b6:03:04:19:05:4d:f0:8f:c6:62:31:13:ab:ec:cb:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0ffdbc933178d7a1bbf99608e3a95d4dee8ae6
Validity
Not Before: Aug 2 11:29:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22e4d05ec89551009b22d0166b884a5065fcccb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:87:61:93:4f:91:96:22:cc:21:2a:42:a7:08:
19:f5:5f:86:b3:41:34:c9:5b:af:e4:66:00:79:ff:
a1:4c:49:64:48:5e:e5:86:6c:93:3b:9f:b4:08:9a:
60:63:2d:65:f5:dc:49:d6:d0:20:8c:01:c2:9f:8e:
09:38:7c:4e:41:ae:97:18:94:62:ad:27:de:c8:03:
81:a7:40:63:ac:3e:80:5f:a8:a3:74:d3:39:1c:66:
38:c7:17:12:f8:05:2c:33:46:b9:2e:c1:43:5a:fe:
83:43:09:92:f4:7b:fa:fc:29:33:54:22:7f:bd:eb:
93:85:9c:f8:39:63:fa:eb:ed:b8:18:ec:ae:cb:66:
26:6c:8e:1a:1b:0e:64:93:04:da:d7:71:ad:69:c2:
5a:2e:78:a6:91:85:53:f5:90:26:ab:ee:af:ae:3e:
96:11:b2:f2:4b:cd:92:bb:c5:aa:4d:87:77:77:32:
eb:10:10:b8:41:ba:52:fc:53:e8:ea:7e:c7:55:69:
22:58:db:4d:d8:5a:0b:6c:c3:33:6f:cf:f7:b9:24:
1b:2a:4e:45:29:67:00:e3:61:51:a1:38:89:ff:9d:
03:fb:61:30:35:e4:c9:38:d9:d2:7f:97:e1:6e:fe:
65:92:62:09:4e:39:6d:71:c4:db:f5:c2:3d:a0:ed:
00:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E4:D0:5E:C8:95:51:00:9B:22:D0:16:6B:88:4A:50:65:FC:CC:B1
X509v3 Authority Key Identifier:
keyid:DA:0F:FD:BC:93:31:78:D7:A1:BB:F9:96:08:E3:A9:5D:4D:EE:8A:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2g_9vJMxeNehu_mWCOOpXU3uiuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/efbed8-9ff0-4455-a07e-3cad37067405/1/IuTQXsiVUQCbItAWa4hKUGX8zLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/efbed8-9ff0-4455-a07e-3cad37067405/1/2g_9vJMxeNehu_mWCOOpXU3uiuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.192.0/24
Signature Algorithm: sha256WithRSAEncryption
39:70:55:a2:07:eb:1a:79:f7:ae:7d:ae:60:0b:3a:d0:93:e0:
de:b4:a1:d7:be:e5:5a:bf:8a:21:5c:2d:31:8e:81:17:58:ae:
43:f3:6c:1d:cb:31:29:5a:61:7a:91:05:4c:b7:0e:22:b1:d0:
e9:59:98:55:0f:5b:11:66:da:a3:84:6b:5f:86:26:9e:05:ae:
b6:69:8b:d7:34:84:e0:b8:0b:82:8c:1c:90:ae:ac:95:16:4b:
3f:54:ab:3b:4c:32:41:6c:7d:78:b4:f5:cf:97:80:9a:f5:95:
f8:77:3a:19:47:bf:34:89:4e:b2:b5:3c:e9:33:0d:20:18:b1:
7d:ae:c6:46:e5:2c:f6:86:58:5b:b5:b1:e5:70:13:78:2e:72:
81:be:91:a6:a2:97:02:c6:2c:75:c7:61:bd:12:65:39:c3:e3:
b2:f8:03:98:bd:fa:88:73:cc:17:04:06:52:22:9c:24:ad:66:
34:e3:d4:78:c0:56:98:e4:fe:df:ca:be:34:71:89:db:c1:1c:
4c:a4:8a:1d:94:00:a0:24:16:bc:51:ea:64:d1:32:50:f8:ef:
34:5e:80:35:b5:5d:c7:ed:92:22:89:f1:8a:70:63:fd:ce:3d:
67:bb:26:37:6c:d7:9c:4c:c7:05:70:40:79:e8:ce:f9:f7:e6:
9c:67:1e:8c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYm2AwQZBU3wj8ZiMROr7MtJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMGZmZGJjOTMzMTc4ZDdhMWJiZjk5NjA4ZTNhOTVkNGRl
ZThhZTYwHhcNMjMwODAyMTEyOTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmU0ZDA1ZWM4OTU1MTAwOWIyMmQwMTY2Yjg4NGE1MDY1ZmNjY2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIdhk0+RliLMISpCpwgZ9V+Gs0E0
yVuv5GYAef+hTElkSF7lhmyTO5+0CJpgYy1l9dxJ1tAgjAHCn44JOHxOQa6XGJRi
rSfeyAOBp0BjrD6AX6ijdNM5HGY4xxcS+AUsM0a5LsFDWv6DQwmS9Hv6/CkzVCJ/
veuThZz4OWP66+24GOyuy2YmbI4aGw5kkwTa13GtacJaLnimkYVT9ZAmq+6vrj6W
EbLyS82Su8WqTYd3dzLrEBC4QbpS/FPo6n7HVWkiWNtN2FoLbMMzb8/3uSQbKk5F
KWcA42FRoTiJ/50D+2EwNeTJONnSf5fhbv5lkmIJTjltccTb9cI9oO0A5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCLk0F7IlVEAmyLQFmuISlBl/MyxMB8GA1UdIwQY
MBaAFNoP/byTMXjXobv5lgjjqV1N7ormMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdfOXZKTXhlTmVodV9tV0NPT3BYVTN1aXVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9lZmJlZDgtOWZmMC00NDU1LWEwN2Ut
M2NhZDM3MDY3NDA1LzEvSXVUUVhzaVZVUUNiSXRBV2E0aEtVR1g4ekxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9lZmJlZDgtOWZmMC00NDU1LWEwN2UtM2NhZDM3MDY3NDA1
LzEvMmdfOXZKTXhlTmVodV9tV0NPT3BYVTN1aXVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYLAMA0G
CSqGSIb3DQEBCwUAA4IBAQA5cFWiB+saefeufa5gCzrQk+DetKHXvuVav4ohXC0x
joEXWK5D82wdyzEpWmF6kQVMtw4isdDpWZhVD1sRZtqjhGtfhiaeBa62aYvXNITg
uAuCjByQrqyVFks/VKs7TDJBbH14tPXPl4Ca9ZX4dzoZR780iU6ytTzpMw0gGLF9
rsZG5Sz2hlhbtbHlcBN4LnKBvpGmopcCxix1x2G9EmU5w+Oy+AOYvfqIc8wXBAZS
IpwkrWY049R4wFaY5P7fyr40cYnbwRxMpIodlACgJBa8Uepk0TJQ+O80XoA1tV3H
7ZIiifGKcGP9zj1nuyY3bNecTMcFcEB56M759+acZx6M
-----END CERTIFICATE-----
Generated at Tue Apr 8 05:56:52 2025 by rpki-client