Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ujezuAsccrK02rPsJOKOCI5M2V8.roa
File: ujezuAsccrK02rPsJOKOCI5M2V8.roa (raw, json)
Hash identifier: IjCXhbzwLucoc3VlbCnH4jxmgaTHIkJg4uz4aW5I8NY=
Subject key identifier: BA:37:B3:B8:0B:1C:72:B2:B4:DA:B3:EC:24:E2:8E:08:8E:4C:D9:5F
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01942826C2A7498DCAF613F9B3EE2C341086
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ujezuAsccrK02rPsJOKOCI5M2V8.roa
Signing time: Thu 02 Jan 2025 17:53:36 +0000
ROA not before: Thu 02 Jan 2025 17:53:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209371
IP address blocks: 88.216.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:c2:a7:49:8d:ca:f6:13:f9:b3:ee:2c:34:10:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 2 17:53:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba37b3b80b1c72b2b4dab3ec24e28e088e4cd95f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3a:3f:50:e8:ff:38:69:1a:91:30:20:18:27:
8d:0a:f5:b2:7b:92:f5:c0:bb:6d:8a:f5:89:5a:92:
09:e7:e6:ef:e3:27:68:b2:4d:8c:cd:dd:35:85:b6:
18:16:19:7c:51:6f:d1:de:77:51:f1:fe:09:17:92:
83:a1:96:71:07:56:39:0d:22:60:dd:9c:e8:cc:4b:
14:d6:8a:f6:5b:41:2f:36:1e:b9:3a:4e:f9:20:c9:
79:31:f0:4c:41:18:c9:b9:47:cd:92:c3:07:68:d7:
74:11:33:6f:9c:9b:8e:de:9b:bc:cc:a6:83:4b:5e:
58:a1:03:0d:07:18:10:45:ad:12:4b:26:74:da:ed:
97:76:27:5f:56:a2:00:08:c4:b0:1e:3d:19:7d:1b:
60:04:8a:8d:1b:79:62:7b:cd:51:21:57:2e:80:f2:
74:1c:ff:d9:df:86:47:69:93:60:9f:be:e3:13:50:
61:53:3f:f2:ec:04:e3:fb:2b:94:ee:11:81:ba:08:
e3:f3:71:7d:0b:0d:e9:54:15:09:02:47:04:e6:fd:
fc:75:45:6c:c2:d6:ed:ac:27:ac:ce:69:8c:42:43:
38:49:5a:d6:33:17:f8:76:59:d1:0a:35:5c:39:f0:
13:0f:88:a3:a8:23:33:35:b9:2c:a8:6c:00:be:8e:
32:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:37:B3:B8:0B:1C:72:B2:B4:DA:B3:EC:24:E2:8E:08:8E:4C:D9:5F
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ujezuAsccrK02rPsJOKOCI5M2V8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.96.0/24
Signature Algorithm: sha256WithRSAEncryption
38:5a:80:cb:23:2c:86:2b:82:0c:e1:3d:ab:96:c2:d0:4f:6b:
d8:a8:6a:91:7d:bc:16:b6:b6:fa:fb:33:00:c2:94:11:b3:56:
13:5a:5e:8f:ab:9e:00:e1:54:9b:3c:17:29:5e:1a:4c:2e:8a:
f1:de:6c:2a:93:62:2e:a3:e8:b6:3c:ff:93:f4:41:78:4a:1c:
f2:e0:d6:79:da:49:d8:54:3d:c3:c7:2f:f2:2d:97:28:c1:e0:
14:cf:9d:1f:f6:b0:38:ed:14:5e:bf:63:02:9d:ca:e4:45:20:
31:d2:c1:6a:0a:8f:15:3d:58:df:f4:93:fd:28:92:17:77:05:
bf:7f:fc:a6:2b:b4:ca:b2:e8:5a:42:83:3c:b8:28:a0:5b:9e:
8c:e1:d7:e1:15:29:2a:cb:33:2d:1a:66:d6:10:b3:b5:f7:8d:
8b:5c:0d:71:35:90:7f:77:ae:9e:ea:2f:8f:5c:07:5f:13:3a:
fa:77:81:b8:95:6b:e0:c0:9e:aa:f1:dc:2c:40:12:38:55:e6:
82:ab:0d:05:4e:0b:bf:91:a9:84:41:4e:6e:e0:5b:c4:95:fd:
8b:05:80:45:53:b6:fa:6a:23:f9:e4:5b:79:d2:67:f4:8c:95:
8b:7c:55:b4:0c:ba:cc:8c:ae:f1:0f:63:7a:55:ed:b0:c8:f5:
65:cf:1f:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJsKnSY3K9hP5s+4sNBCGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjUwMTAyMTc1MzM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTM3YjNiODBiMWM3MmIyYjRkYWIzZWMyNGUyOGUwODhlNGNkOTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjo/UOj/OGkakTAgGCeNCvWye5L1
wLttivWJWpIJ5+bv4ydosk2Mzd01hbYYFhl8UW/R3ndR8f4JF5KDoZZxB1Y5DSJg
3ZzozEsU1or2W0EvNh65Ok75IMl5MfBMQRjJuUfNksMHaNd0ETNvnJuO3pu8zKaD
S15YoQMNBxgQRa0SSyZ02u2XdidfVqIACMSwHj0ZfRtgBIqNG3lie81RIVcugPJ0
HP/Z34ZHaZNgn77jE1BhUz/y7ATj+yuU7hGBugjj83F9Cw3pVBUJAkcE5v38dUVs
wtbtrCeszmmMQkM4SVrWMxf4dlnRCjVcOfATD4ijqCMzNbksqGwAvo4yDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLo3s7gLHHKytNqz7CTijgiOTNlfMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvdWplenVBc2NjckswMnJQc0pPS09DSTVNMlY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNhgMA0G
CSqGSIb3DQEBCwUAA4IBAQA4WoDLIyyGK4IM4T2rlsLQT2vYqGqRfbwWtrb6+zMA
wpQRs1YTWl6Pq54A4VSbPBcpXhpMLorx3mwqk2Iuo+i2PP+T9EF4Shzy4NZ52knY
VD3Dxy/yLZcoweAUz50f9rA47RRev2MCncrkRSAx0sFqCo8VPVjf9JP9KJIXdwW/
f/ymK7TKsuhaQoM8uCigW56M4dfhFSkqyzMtGmbWELO1942LXA1xNZB/d66e6i+P
XAdfEzr6d4G4lWvgwJ6q8dwsQBI4VeaCqw0FTgu/kamEQU5u4FvElf2LBYBFU7b6
aiP55Ft50mf0jJWLfFW0DLrMjK7xD2N6Ve2wyPVlzx/i
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:41:50 2025 by rpki-client