Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/7f2ba9-b94c-402e-8ecc-23bfb271d598/1/WGZ4eUsiEmOzVKvebY0a3GVAQBU.roa
File: WGZ4eUsiEmOzVKvebY0a3GVAQBU.roa (raw, json)
Hash identifier: YyiZzd2d9dUePtdj3xTMyz9K7MshRkXE58mZGi5Xpk8=
Subject key identifier: 58:66:78:79:4B:22:12:63:B3:54:AB:DE:6D:8D:1A:DC:65:40:40:15
Certificate issuer: /CN=4345d73e82f3ffd715e62f506bfb8f3c1ed45fc9
Certificate serial: 09D1557C
Authority key identifier: 43:45:D7:3E:82:F3:FF:D7:15:E6:2F:50:6B:FB:8F:3C:1E:D4:5F:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0XXPoLz_9cV5i9Qa_uPPB7UX8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/7f2ba9-b94c-402e-8ecc-23bfb271d598/1/WGZ4eUsiEmOzVKvebY0a3GVAQBU.roa
Signing time: Sat 01 Jan 2022 11:03:22 +0000
ROA not before: Sat 01 Jan 2022 11:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17012
IP address blocks: 185.177.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164713852 (0x9d1557c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4345d73e82f3ffd715e62f506bfb8f3c1ed45fc9
Validity
Not Before: Jan 1 11:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=586678794b221263b354abde6d8d1adc65404015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:53:a5:4c:2b:4b:e8:bb:12:f2:2a:41:c3:f7:
c2:e3:0f:06:b6:37:ab:78:a1:a4:71:ae:dd:28:60:
9e:8a:bf:ef:27:d4:ac:b2:80:15:3b:d6:36:a9:55:
32:4f:f3:a3:e9:09:3e:ac:e3:69:65:3b:71:f4:79:
0d:79:5e:36:cd:90:75:e7:cd:64:bd:f3:58:63:40:
47:06:7a:09:75:f1:23:9a:25:3c:d4:cc:af:f7:12:
a3:7e:9e:71:ce:e6:42:52:72:81:7a:f0:0d:c5:02:
ea:03:89:04:f5:6b:09:fc:2c:ec:e4:b4:cd:d3:cd:
88:6d:28:ab:f6:90:ab:a3:29:50:0a:04:ec:ad:46:
4d:8e:e4:55:72:07:cb:a4:c0:b7:b8:ac:00:ab:8c:
8f:9b:73:2d:a7:a7:f8:d0:5c:f3:ec:df:cf:b0:fa:
3b:70:43:48:16:2e:37:a1:3f:73:94:13:71:fb:01:
77:55:43:0e:9d:33:9e:c7:3d:c4:47:7f:85:55:9a:
b1:cc:80:fc:15:ba:05:cc:89:1b:fb:13:0b:88:99:
bd:2e:42:c1:b0:21:7d:f0:2f:f3:9b:af:af:72:3e:
34:7d:79:bb:59:3a:1f:70:6c:47:80:45:8c:e2:a8:
7d:4f:ff:20:38:51:40:64:a9:ca:70:e1:23:34:c6:
2a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:66:78:79:4B:22:12:63:B3:54:AB:DE:6D:8D:1A:DC:65:40:40:15
X509v3 Authority Key Identifier:
keyid:43:45:D7:3E:82:F3:FF:D7:15:E6:2F:50:6B:FB:8F:3C:1E:D4:5F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0XXPoLz_9cV5i9Qa_uPPB7UX8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/7f2ba9-b94c-402e-8ecc-23bfb271d598/1/WGZ4eUsiEmOzVKvebY0a3GVAQBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/7f2ba9-b94c-402e-8ecc-23bfb271d598/1/Q0XXPoLz_9cV5i9Qa_uPPB7UX8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.52.0/22
Signature Algorithm: sha256WithRSAEncryption
48:53:7a:08:82:3b:5e:08:bb:0a:34:72:09:57:68:13:60:30:
75:48:f9:59:6a:b0:f4:4b:5b:96:20:2a:99:34:e2:39:e9:a1:
64:b3:62:21:1d:09:6b:f5:5d:3f:1b:21:43:e8:3d:a1:17:c7:
eb:bf:95:ad:9a:2d:23:f3:9c:3e:f1:90:88:ad:12:6a:a2:4d:
46:38:8d:e1:ea:18:41:34:6e:81:0f:7d:7d:a9:95:ff:91:07:
30:f6:82:d8:a8:42:78:2a:22:86:3b:b6:76:46:7f:3a:e9:e5:
cc:25:9c:b2:3c:57:e8:d0:b4:8c:b4:97:17:85:ef:04:c7:37:
37:64:cd:8e:07:3c:24:5a:5e:62:f8:db:8f:73:59:5a:0c:9d:
76:53:e2:e2:19:d9:58:a2:7b:51:ab:f9:ef:71:83:b4:96:f0:
4f:70:bb:33:0c:dc:90:bf:1e:1b:d5:04:85:13:08:37:f5:fd:
63:f2:59:9e:da:63:81:e0:47:e2:05:21:23:7c:65:c5:b5:7e:
2e:10:28:62:d9:be:4f:6f:2f:e3:e9:a7:38:c0:eb:b3:72:13:
a0:96:99:85:6f:dd:4a:65:36:7a:4c:f8:00:21:f5:04:67:bf:
fe:58:fb:8f:dd:15:78:3e:be:bf:31:f4:1f:71:c3:8d:78:d9:
73:a4:e6:3d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECdFVfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MzQ1ZDczZTgyZjNmZmQ3MTVlNjJmNTA2YmZiOGYzYzFlZDQ1ZmM5MB4XDTIyMDEw
MTExMDMyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTg2Njc4Nzk0YjIy
MTI2M2IzNTRhYmRlNmQ4ZDFhZGM2NTQwNDAxNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALlTpUwrS+i7EvIqQcP3wuMPBrY3q3ihpHGu3Shgnoq/7yfU
rLKAFTvWNqlVMk/zo+kJPqzjaWU7cfR5DXleNs2QdefNZL3zWGNARwZ6CXXxI5ol
PNTMr/cSo36ecc7mQlJygXrwDcUC6gOJBPVrCfws7OS0zdPNiG0oq/aQq6MpUAoE
7K1GTY7kVXIHy6TAt7isAKuMj5tzLaen+NBc8+zfz7D6O3BDSBYuN6E/c5QTcfsB
d1VDDp0znsc9xEd/hVWascyA/BW6BcyJG/sTC4iZvS5CwbAhffAv85uvr3I+NH15
u1k6H3BsR4BFjOKofU//IDhRQGSpynDhIzTGKk0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRYZnh5SyISY7NUq95tjRrcZUBAFTAfBgNVHSMEGDAWgBRDRdc+gvP/1xXm
L1Br+488HtRfyTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1EwWFhQb0x6XzljVjVpOVFhX3VQUEI3VVg4ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDMvN2YyYmE5LWI5NGMtNDAyZS04ZWNjLTIzYmZiMjcxZDU5OC8x
L1dHWjRlVXNpRW1PelZLdmViWTBhM0dWQVFCVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMv
N2YyYmE5LWI5NGMtNDAyZS04ZWNjLTIzYmZiMjcxZDU5OC8xL1EwWFhQb0x6Xzlj
VjVpOVFhX3VQUEI3VVg4ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmxNDANBgkqhkiG9w0BAQsFAAOC
AQEASFN6CII7Xgi7CjRyCVdoE2AwdUj5WWqw9EtbliAqmTTiOemhZLNiIR0Ja/Vd
PxshQ+g9oRfH67+VrZotI/OcPvGQiK0SaqJNRjiN4eoYQTRugQ99famV/5EHMPaC
2KhCeCoihju2dkZ/OunlzCWcsjxX6NC0jLSXF4XvBMc3N2TNjgc8JFpeYvjbj3NZ
WgyddlPi4hnZWKJ7Uav573GDtJbwT3C7MwzckL8eG9UEhRMIN/X9Y/JZntpjgeBH
4gUhI3xlxbV+LhAoYtm+T28v4+mnOMDrs3IToJaZhW/dSmU2ekz4ACH1BGe//lj7
j90VeD6+vzH0H3HDjXjZc6TmPQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:59:40 2025 by rpki-client