Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/1MHoZE7IRpCISttyBCS4qOzckwA.roa
File: 1MHoZE7IRpCISttyBCS4qOzckwA.roa (raw, json)
Hash identifier: nRI9lbkktDH8C4ZFHigwww/EBWn8hb4OYvXm3453YsQ=
Subject key identifier: D4:C1:E8:64:4E:C8:46:90:88:4A:DB:72:04:24:B8:A8:EC:DC:93:00
Certificate issuer: /CN=951c8b406e8299a7294dd7224570fc32b629dc6b
Certificate serial: 075A216F
Authority key identifier: 95:1C:8B:40:6E:82:99:A7:29:4D:D7:22:45:70:FC:32:B6:29:DC:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRyLQG6CmacpTdciRXD8MrYp3Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/1MHoZE7IRpCISttyBCS4qOzckwA.roa
Signing time: Thu 13 Jan 2022 12:00:56 +0000
ROA not before: Thu 13 Jan 2022 12:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 193.56.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123347311 (0x75a216f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951c8b406e8299a7294dd7224570fc32b629dc6b
Validity
Not Before: Jan 13 12:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4c1e8644ec84690884adb720424b8a8ecdc9300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:31:d2:92:3f:bf:13:47:bf:86:f1:7e:8f:cd:
e5:1e:4e:c7:68:60:db:5f:b6:5c:b6:2d:8c:00:50:
87:0f:01:a9:d8:0c:f7:e9:53:7d:78:1a:a8:d7:3b:
72:ac:a3:d2:49:46:49:bc:aa:58:6d:cd:95:9b:9d:
41:4b:e8:18:28:5c:30:cc:bb:6d:56:c8:8b:37:80:
46:68:e8:7e:5e:3e:19:25:90:b5:ee:29:2c:3b:c7:
15:75:aa:10:a4:51:3d:05:9e:31:4c:4b:2b:db:bd:
e1:21:80:0b:70:af:60:1f:98:f0:19:cf:0d:ac:d7:
f3:f6:7a:b4:61:0f:bf:ae:d8:33:c9:2f:01:4d:f7:
9c:3b:db:74:cf:14:96:b4:a2:a2:b8:92:7c:6a:ec:
4b:51:b5:af:6d:73:47:16:78:73:36:47:a0:d1:3b:
5c:ed:45:6b:d9:1c:59:88:69:2f:64:dc:c2:58:f4:
76:1b:9d:dc:e9:41:89:76:6c:bc:2e:0e:67:cc:9f:
8f:47:5e:5a:07:97:a7:ba:6b:a2:72:10:31:a4:b2:
f1:37:e6:79:ab:62:a5:8c:8d:1f:d3:c2:e5:5c:ca:
a0:08:1a:11:56:4c:88:a1:ba:f4:b3:b8:77:fc:ec:
18:22:a5:1c:9f:00:ce:61:86:46:9b:91:54:02:d9:
0e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C1:E8:64:4E:C8:46:90:88:4A:DB:72:04:24:B8:A8:EC:DC:93:00
X509v3 Authority Key Identifier:
keyid:95:1C:8B:40:6E:82:99:A7:29:4D:D7:22:45:70:FC:32:B6:29:DC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRyLQG6CmacpTdciRXD8MrYp3Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/1MHoZE7IRpCISttyBCS4qOzckwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/lRyLQG6CmacpTdciRXD8MrYp3Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.116.0/24
Signature Algorithm: sha256WithRSAEncryption
af:ee:0f:a6:5b:79:9d:3b:e1:f2:ca:80:12:b9:4b:f5:e1:56:
c8:cb:8f:e5:9e:d4:ed:2c:79:e3:fe:c0:6f:27:db:22:63:3f:
51:bb:af:99:50:ce:a5:ff:f8:98:34:0a:06:d9:e3:bd:fd:49:
a7:67:2d:6e:2e:18:f6:4f:ae:b7:24:f6:3a:47:7e:b9:f9:f2:
30:1d:44:9c:f9:46:64:44:4b:f4:f8:8d:a6:88:da:fe:0f:c2:
f6:40:70:41:96:0d:c0:bb:37:fe:f9:5f:95:e7:f1:a9:5d:2b:
30:b6:5f:44:22:fb:e2:65:9c:ba:8d:71:1d:a4:07:d4:e6:44:
8e:53:ed:06:98:a5:94:cf:31:4a:31:db:2e:df:eb:99:ea:cc:
ec:b3:1f:63:07:cc:55:4c:3e:74:e0:5f:58:58:50:b8:58:c9:
dd:6e:60:cc:92:a3:3c:7a:8d:01:5f:fc:b0:ac:1e:ce:3a:8b:
66:f5:81:82:b3:1e:c9:93:a0:75:04:14:92:23:51:a2:91:76:
b9:55:da:3e:f3:e9:07:b2:71:65:0f:4d:b8:62:50:a3:1e:b3:
e6:4c:89:2a:7e:a1:9e:32:dc:7f:e7:c6:ec:cc:1e:32:9a:b0:
73:d1:0f:e7:eb:96:70:2a:a7:51:f6:db:ae:da:e9:26:5a:40:
24:8c:07:a4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB1ohbzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NTFjOGI0MDZlODI5OWE3Mjk0ZGQ3MjI0NTcwZmMzMmI2MjlkYzZiMB4XDTIyMDEx
MzEyMDA1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDRjMWU4NjQ0ZWM4
NDY5MDg4NGFkYjcyMDQyNGI4YThlY2RjOTMwMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOox0pI/vxNHv4bxfo/N5R5Ox2hg21+2XLYtjABQhw8BqdgM
9+lTfXgaqNc7cqyj0klGSbyqWG3NlZudQUvoGChcMMy7bVbIizeARmjofl4+GSWQ
te4pLDvHFXWqEKRRPQWeMUxLK9u94SGAC3CvYB+Y8BnPDazX8/Z6tGEPv67YM8kv
AU33nDvbdM8UlrSioriSfGrsS1G1r21zRxZ4czZHoNE7XO1Fa9kcWYhpL2Tcwlj0
dhud3OlBiXZsvC4OZ8yfj0deWgeXp7pronIQMaSy8TfmeatipYyNH9PC5VzKoAga
EVZMiKG69LO4d/zsGCKlHJ8AzmGGRpuRVALZDscCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTUwehkTshGkIhK23IEJLio7NyTADAfBgNVHSMEGDAWgBSVHItAboKZpylN
1yJFcPwytincazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xSeUxRRzZDbWFjcFRkY2lSWEQ4TXJZcDNHcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDMvZDIyNmJiLTcyMTAtNGM5Mi05MzEyLTMzYjM2MjI0ZDZkNy8x
LzFNSG9aRTdJUnBDSVN0dHlCQ1M0cU96Y2t3QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMv
ZDIyNmJiLTcyMTAtNGM5Mi05MzEyLTMzYjM2MjI0ZDZkNy8xL2xSeUxRRzZDbWFj
cFRkY2lSWEQ4TXJZcDNHcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAME4dDANBgkqhkiG9w0BAQsFAAOC
AQEAr+4Pplt5nTvh8sqAErlL9eFWyMuP5Z7U7Sx54/7AbyfbImM/UbuvmVDOpf/4
mDQKBtnjvf1Jp2ctbi4Y9k+utyT2Okd+ufnyMB1EnPlGZERL9PiNpoja/g/C9kBw
QZYNwLs3/vlflefxqV0rMLZfRCL74mWcuo1xHaQH1OZEjlPtBpillM8xSjHbLt/r
merM7LMfYwfMVUw+dOBfWFhQuFjJ3W5gzJKjPHqNAV/8sKwezjqLZvWBgrMeyZOg
dQQUkiNRopF2uVXaPvPpB7JxZQ9NuGJQox6z5kyJKn6hnjLcf+fG7MweMpqwc9EP
5+uWcCqnUfbbrtrpJlpAJIwHpA==
-----END CERTIFICATE-----
Generated at Wed Apr 23 04:01:49 2025 by rpki-client