Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/dJezX03zJ69IR3crsz1TwzwkaBg.roa
File: dJezX03zJ69IR3crsz1TwzwkaBg.roa (raw, json)
Hash identifier: z7h0NiKbUxQ5ftpsGZF0toLl/Es8XfGDvyA4qbKp/NU=
Subject key identifier: 74:97:B3:5F:4D:F3:27:AF:48:47:77:2B:B3:3D:53:C3:3C:24:68:18
Certificate issuer: /CN=9766354188ee68dd038f8b90a6574cce8e95add3
Certificate serial: 95B932
Authority key identifier: 97:66:35:41:88:EE:68:DD:03:8F:8B:90:A6:57:4C:CE:8E:95:AD:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l2Y1QYjuaN0Dj4uQpldMzo6VrdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/dJezX03zJ69IR3crsz1TwzwkaBg.roa
Signing time: Sat 01 Jan 2022 00:53:02 +0000
ROA not before: Sat 01 Jan 2022 00:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 195.96.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9812274 (0x95b932)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9766354188ee68dd038f8b90a6574cce8e95add3
Validity
Not Before: Jan 1 00:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7497b35f4df327af4847772bb33d53c33c246818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4d:5f:3b:50:2d:f2:f5:63:c5:47:80:19:ed:
f2:b7:be:fd:e1:62:1b:88:e5:5a:94:40:c3:7c:26:
d2:18:ef:0a:43:16:ec:36:d8:d1:04:f3:98:5a:a5:
b4:3e:b4:2c:76:ea:b0:81:1c:f4:3b:9a:51:2c:7d:
70:25:68:cd:0d:7b:93:96:d9:98:2e:ec:21:ba:ac:
f6:24:db:8a:74:d1:fb:0e:b5:96:92:86:1c:c7:20:
54:cd:bc:8e:8a:4c:f1:3b:e1:e9:87:c7:89:f5:85:
e4:58:01:5e:02:c3:17:f3:19:bc:d4:81:78:7b:aa:
dd:e8:18:4b:79:f8:e2:08:8d:93:a1:c0:cb:4d:a7:
de:35:36:bc:7c:09:3b:f5:86:2f:0a:7a:71:5f:c2:
10:64:94:e6:39:36:4d:36:c5:50:fe:0c:b2:ef:e3:
e1:73:1e:40:05:7b:06:81:30:73:05:32:93:33:24:
84:08:63:91:ce:77:25:11:28:61:dd:4b:ed:0a:91:
ff:dc:bc:25:83:f4:aa:86:2a:81:bc:df:10:fb:2a:
83:24:ba:00:c1:25:39:82:29:aa:e7:8b:c8:78:70:
c9:51:d5:80:7f:c1:ad:3f:62:dd:48:7c:f7:e1:2b:
bb:2c:78:ab:02:77:94:66:9b:22:6f:cd:f8:0f:43:
db:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:97:B3:5F:4D:F3:27:AF:48:47:77:2B:B3:3D:53:C3:3C:24:68:18
X509v3 Authority Key Identifier:
keyid:97:66:35:41:88:EE:68:DD:03:8F:8B:90:A6:57:4C:CE:8E:95:AD:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l2Y1QYjuaN0Dj4uQpldMzo6VrdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/dJezX03zJ69IR3crsz1TwzwkaBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/l2Y1QYjuaN0Dj4uQpldMzo6VrdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.129.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:fe:dd:d0:41:f5:23:b0:45:60:18:31:c0:03:03:36:26:27:
81:a9:42:f0:05:8c:70:de:bd:f2:53:f8:58:50:32:17:eb:d9:
83:c4:09:99:5f:0a:ec:ea:18:74:91:11:41:a1:24:eb:90:97:
69:de:ee:d8:f9:b4:75:d0:b1:b5:74:4b:c6:cd:60:7b:0e:98:
7a:9b:54:03:13:60:3a:69:76:9c:00:cf:9a:e9:81:ef:d6:1b:
a1:b1:99:58:6d:c1:6f:6a:08:a8:40:c5:80:40:4f:d2:8e:bf:
57:2e:69:70:1d:91:9d:89:ac:f5:69:94:c7:fa:6b:a3:fa:3e:
3e:3f:42:7b:f3:a0:cb:78:84:c5:98:25:dd:cb:90:84:39:40:
d3:8e:35:01:40:a1:65:c6:65:fd:10:4e:37:0e:2f:b9:90:a6:
b1:f8:b0:a6:cd:9a:6d:22:26:04:2e:ca:62:bc:01:42:f9:e3:
86:f4:27:08:a4:01:d3:61:db:04:d7:4a:ba:d9:86:51:d0:45:
e4:cd:40:9e:a4:79:b3:e3:ae:71:ea:44:60:2d:19:49:b6:d0:
2b:c4:cf:cb:ea:37:c5:4a:7f:7b:5c:3c:b9:78:a3:12:1b:f5:
96:8f:a5:9f:a2:ff:8b:7c:1d:16:a4:e2:b6:aa:44:8b:93:61:
35:7b:b4:0c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJW5MjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NzY2MzU0MTg4ZWU2OGRkMDM4ZjhiOTBhNjU3NGNjZThlOTVhZGQzMB4XDTIyMDEw
MTAwNTMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzQ5N2IzNWY0ZGYz
MjdhZjQ4NDc3NzJiYjMzZDUzYzMzYzI0NjgxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJlNXztQLfL1Y8VHgBnt8re+/eFiG4jlWpRAw3wm0hjvCkMW
7DbY0QTzmFqltD60LHbqsIEc9DuaUSx9cCVozQ17k5bZmC7sIbqs9iTbinTR+w61
lpKGHMcgVM28jopM8Tvh6YfHifWF5FgBXgLDF/MZvNSBeHuq3egYS3n44giNk6HA
y02n3jU2vHwJO/WGLwp6cV/CEGSU5jk2TTbFUP4Msu/j4XMeQAV7BoEwcwUykzMk
hAhjkc53JREoYd1L7QqR/9y8JYP0qoYqgbzfEPsqgyS6AMElOYIpqueLyHhwyVHV
gH/BrT9i3Uh89+Eruyx4qwJ3lGabIm/N+A9D27kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR0l7NfTfMnr0hHdyuzPVPDPCRoGDAfBgNVHSMEGDAWgBSXZjVBiO5o3QOP
i5CmV0zOjpWt0zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2wyWTFRWWp1YU4wRGo0dVFwbGRNem82VnJkTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvZjU4NjQ1LTAwYWUtNDNlMi1hNGRmLTAxNWNiMGI4MmQ0Yy8x
L2RKZXpYMDN6SjY5SVIzY3JzejFUd3p3a2FCZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
ZjU4NjQ1LTAwYWUtNDNlMi1hNGRmLTAxNWNiMGI4MmQ0Yy8xL2wyWTFRWWp1YU4w
RGo0dVFwbGRNem82VnJkTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNggTANBgkqhkiG9w0BAQsFAAOC
AQEAbP7d0EH1I7BFYBgxwAMDNiYngalC8AWMcN698lP4WFAyF+vZg8QJmV8K7OoY
dJERQaEk65CXad7u2Pm0ddCxtXRLxs1gew6YeptUAxNgOml2nADPmumB79YbobGZ
WG3Bb2oIqEDFgEBP0o6/Vy5pcB2RnYms9WmUx/pro/o+Pj9Ce/Ogy3iExZgl3cuQ
hDlA0441AUChZcZl/RBONw4vuZCmsfiwps2abSImBC7KYrwBQvnjhvQnCKQB02Hb
BNdKutmGUdBF5M1AnqR5s+OucepEYC0ZSbbQK8TPy+o3xUp/e1w8uXijEhv1lo+l
n6L/i3wdFqTitqpEi5NhNXu0DA==
-----END CERTIFICATE-----
Generated at Tue Apr 22 20:58:53 2025 by rpki-client