Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/FguRz0zA5etvzxWwMxGIJgd6k9Q.roa
File: FguRz0zA5etvzxWwMxGIJgd6k9Q.roa (raw, json)
Hash identifier: bUHFCLBTCucLtw2+JrZ57cEqNMKllYDmKc3mR95hRPw=
Subject key identifier: 16:0B:91:CF:4C:C0:E5:EB:6F:CF:15:B0:33:11:88:26:07:7A:93:D4
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 019426D8ED938DCC7674EDBC3F3C5C0BE1D8
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/FguRz0zA5etvzxWwMxGIJgd6k9Q.roa
Signing time: Thu 02 Jan 2025 11:48:58 +0000
ROA not before: Thu 02 Jan 2025 11:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200943
IP address blocks: 129.233.200.0/23 maxlen: 23
129.233.202.0/24 maxlen: 24
153.96.62.0/23 maxlen: 23
153.96.64.0/22 maxlen: 22
153.96.142.0/24 maxlen: 24
153.96.160.0/21 maxlen: 21
153.96.186.0/23 maxlen: 23
192.44.9.0/24 maxlen: 24
192.88.97.0/24 maxlen: 24
192.102.146.0/23 maxlen: 23
192.102.149.0/24 maxlen: 24
192.102.154.0/23 maxlen: 23
192.102.157.0/24 maxlen: 24
192.102.166.0/24 maxlen: 24
192.102.173.0/24 maxlen: 24
2001:67c:61c::/48 maxlen: 48
2a03:db80:5460::/48 maxlen: 48
2a03:db80:5464::/48 maxlen: 48
2a03:db80:5470::/48 maxlen: 48
2a03:db80:5474::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:ed:93:8d:cc:76:74:ed:bc:3f:3c:5c:0b:e1:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 2 11:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=160b91cf4cc0e5eb6fcf15b033118826077a93d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2e:24:fb:27:8b:27:f4:d5:33:a9:38:6f:4f:
4d:f6:a6:da:e1:b5:3a:17:16:0b:56:2c:a2:54:3e:
ab:1e:b0:a9:27:5d:ac:c0:ad:9f:d9:7e:23:c7:38:
af:83:e5:75:8a:ea:ea:9f:56:94:ec:52:5d:f9:fe:
22:4f:39:ac:c9:7e:85:7d:d2:39:29:d9:bb:2a:99:
23:3d:a9:4b:de:50:5a:87:b1:19:73:a1:55:fd:63:
b8:b6:bc:5f:7b:63:46:8d:fe:b5:90:cb:a2:2d:23:
2f:a7:db:f1:14:58:33:c6:67:f8:4e:97:2f:50:ac:
ff:94:65:56:ec:6f:8e:2c:c7:83:b0:82:98:5e:6c:
70:5c:e0:ed:2d:b4:a2:64:ef:bb:d8:41:4e:63:4a:
25:1f:b3:13:3d:d9:32:91:38:28:58:74:61:5e:cc:
b0:9b:b9:43:a5:03:ef:2b:02:d2:6a:18:90:67:5b:
03:7d:7d:18:ec:a4:1e:20:7b:35:30:f1:ce:b4:59:
85:9c:44:af:94:32:73:2c:c9:6d:be:2a:73:43:9b:
b8:c9:4e:a7:37:0b:00:28:7a:fa:9c:6c:81:21:37:
fd:87:55:91:d6:93:96:f1:c7:2c:06:8e:95:9f:6a:
b6:72:2d:c9:88:31:9e:71:7a:6b:7a:24:5f:a0:dc:
60:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0B:91:CF:4C:C0:E5:EB:6F:CF:15:B0:33:11:88:26:07:7A:93:D4
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/FguRz0zA5etvzxWwMxGIJgd6k9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.233.200.0-129.233.202.255
153.96.62.0-153.96.67.255
153.96.142.0/24
153.96.160.0/21
153.96.186.0/23
192.44.9.0/24
192.88.97.0/24
192.102.146.0/23
192.102.149.0/24
192.102.154.0/23
192.102.157.0/24
192.102.166.0/24
192.102.173.0/24
IPv6:
2001:67c:61c::/48
2a03:db80:5460::/48
2a03:db80:5464::/48
2a03:db80:5470::/48
2a03:db80:5474::/48
Signature Algorithm: sha256WithRSAEncryption
af:9e:c4:18:4c:32:42:97:62:7e:9c:a8:4e:a1:4a:6a:d8:17:
61:f8:fa:00:9a:f7:90:c7:58:b0:88:c8:aa:9d:5c:21:c8:7d:
e7:fb:29:35:66:c5:94:12:b0:4e:b8:32:b2:35:f6:5f:d8:22:
c7:5c:42:8a:ad:dc:40:4b:8b:7c:e3:64:ac:77:63:7d:70:22:
50:dc:56:ae:a2:40:10:d9:ef:74:b9:11:37:86:84:e8:61:f2:
0e:5f:78:34:8a:d8:4f:36:7c:36:9a:ff:e4:96:96:84:c2:4b:
7c:0c:2b:b6:5f:1a:22:1a:0e:f8:0f:52:4b:f2:2d:11:61:bf:
33:59:8f:6c:d2:b2:4a:73:f4:7d:ee:bc:cc:c5:e8:9a:0b:78:
55:0e:e0:df:66:2d:e9:51:5e:c1:bc:7e:7d:0b:aa:b8:67:25:
97:ea:c5:f3:f6:0a:cf:03:79:33:46:ba:7d:8f:ad:29:ce:61:
44:8c:1b:81:3b:c3:8a:49:d7:3e:d8:c4:ff:fe:be:fb:e5:c1:
b3:55:65:ff:c7:d8:cc:d7:77:14:3d:8a:4d:b8:f0:02:65:8a:
21:81:9f:8e:46:32:f7:8d:50:f5:d1:41:87:e8:a8:7e:25:0a:
e7:e7:ed:f3:86:ae:ba:31:3e:12:c5:ea:7c:21:b4:5f:12:61:
09:14:f0:86
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgISAZQm2O2Tjcx2dO28PzxcC+HYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2YTc1ODI2ZTk5MTIyNWE0MjlmZjhhMWU3ZmZkYzgwNDY2
NDIwZGYwHhcNMjUwMTAyMTE0ODU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjBiOTFjZjRjYzBlNWViNmZjZjE1YjAzMzExODgyNjA3N2E5M2Q0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsy4k+yeLJ/TVM6k4b09N9qba4bU6
FxYLViyiVD6rHrCpJ12swK2f2X4jxzivg+V1iurqn1aU7FJd+f4iTzmsyX6FfdI5
Kdm7KpkjPalL3lBah7EZc6FV/WO4trxfe2NGjf61kMuiLSMvp9vxFFgzxmf4Tpcv
UKz/lGVW7G+OLMeDsIKYXmxwXODtLbSiZO+72EFOY0olH7MTPdkykTgoWHRhXsyw
m7lDpQPvKwLSahiQZ1sDfX0Y7KQeIHs1MPHOtFmFnESvlDJzLMltvipzQ5u4yU6n
NwsAKHr6nGyBITf9h1WR1pOW8ccsBo6Vn2q2ci3JiDGecXpreiRfoNxgMQIDAQAB
o4ICmTCCApUwHQYDVR0OBBYEFBYLkc9MwOXrb88VsDMRiCYHepPUMB8GA1UdIwQY
MBaAFHanWCbpkSJaQp/4oef/3IBGZCDfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTct
YWQ4ZmJlYWE4ZGQ5LzEvRmd1UnowekE1ZXR2enhXd014R0lKZ2Q2azlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTctYWQ4ZmJlYWE4ZGQ5
LzEvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGuBggrBgEFBQcBBwEB/wSBnjCBmzBkBAIAATBeMAwDBAOB
6cgDBACB6cowDAMEAZlgPgMEAplgQAMEAJlgjgMEA5lgoAMEAZlgugMEAMAsCQME
AMBYYQMEAcBmkgMEAMBmlQMEAcBmmgMEAMBmnQMEAMBmpgMEAMBmrTAzBAIAAjAt
AwcAIAEGfAYcAwcAKgPbgFRgAwcAKgPbgFRkAwcAKgPbgFRwAwcAKgPbgFR0MA0G
CSqGSIb3DQEBCwUAA4IBAQCvnsQYTDJCl2J+nKhOoUpq2Bdh+PoAmveQx1iwiMiq
nVwhyH3n+yk1ZsWUErBOuDKyNfZf2CLHXEKKrdxAS4t842Ssd2N9cCJQ3FauokAQ
2e90uRE3hoToYfIOX3g0ithPNnw2mv/klpaEwkt8DCu2XxoiGg74D1JL8i0RYb8z
WY9s0rJKc/R97rzMxeiaC3hVDuDfZi3pUV7BvH59C6q4ZyWX6sXz9grPA3kzRrp9
j60pzmFEjBuBO8OKSdc+2MT//r775cGzVWX/x9jM13cUPYpNuPACZYohgZ+ORjL3
jVD10UGH6Kh+JQrn5+3zhq66MT4Sxep8IbRfEmEJFPCG
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:52 2025 by rpki-client