Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/7hM4kKR9GTFxKq7zR4PVfXiT4QM.roa
File: 7hM4kKR9GTFxKq7zR4PVfXiT4QM.roa (raw, json)
Hash identifier: E57XpSx/iGsV2VFX/hJWB3ZgXnlvu6Wgn+Ts2PlW+uo=
Subject key identifier: EE:13:38:90:A4:7D:19:31:71:2A:AE:F3:47:83:D5:7D:78:93:E1:03
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 01885FDCDED62B7E187D3B6C4B5223FF9B75
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/7hM4kKR9GTFxKq7zR4PVfXiT4QM.roa
Signing time: Sun 28 May 2023 00:58:10 +0000
ROA not before: Sun 28 May 2023 00:58:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14445
IP address blocks: 85.237.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:5f:dc:de:d6:2b:7e:18:7d:3b:6c:4b:52:23:ff:9b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: May 28 00:58:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee133890a47d1931712aaef34783d57d7893e103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:66:65:32:c0:b6:bb:c4:11:68:95:8e:51:a4:
36:78:cd:d9:a9:84:87:8f:da:85:2f:d2:cb:15:e0:
85:60:a6:6c:42:05:c4:84:0e:f3:b1:1a:0c:04:82:
6e:9a:80:ee:82:7a:ef:fb:47:d7:b2:4c:c7:b1:60:
8e:ca:cc:79:8c:3a:38:a5:2f:36:fc:69:bc:55:0d:
bd:45:d9:e8:3a:91:9c:85:f0:cc:18:db:c2:f6:90:
a0:49:88:f9:b6:db:6d:db:2f:fe:37:17:97:3c:9d:
68:2b:8a:31:6e:a0:f6:35:00:97:0a:81:a3:10:0c:
c0:62:eb:9e:23:41:8e:7a:fe:7f:81:08:51:ea:9e:
4e:e4:09:bb:0f:d9:63:46:64:fa:06:cf:4c:be:96:
60:2b:e6:50:be:4a:38:4b:8a:c2:6c:b3:f8:ba:75:
f4:01:49:73:95:45:95:34:59:e8:f7:68:c8:82:7d:
26:68:33:a9:34:9b:2d:0f:a0:c9:4e:7e:ec:8e:bb:
a6:15:82:7d:3a:93:eb:9a:f6:a1:82:e5:e9:92:11:
e5:ab:59:ad:c8:8a:1c:fd:60:19:be:08:42:f9:83:
c7:77:41:29:46:39:41:a7:37:37:2e:fc:4c:3f:f6:
5a:31:5e:a0:0a:42:c8:62:11:07:c6:e2:63:20:b0:
bf:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:13:38:90:A4:7D:19:31:71:2A:AE:F3:47:83:D5:7D:78:93:E1:03
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/7hM4kKR9GTFxKq7zR4PVfXiT4QM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.201.0/24
Signature Algorithm: sha256WithRSAEncryption
45:1e:4a:23:bf:3f:d5:12:be:83:ae:43:79:75:67:06:04:d1:
79:45:b9:9a:7d:d3:70:c2:43:17:b9:84:17:43:75:82:99:2c:
2c:c3:38:d9:96:1d:cd:08:5f:0b:58:21:65:e6:61:b4:88:cb:
50:ff:c5:9a:7a:d4:4f:70:93:1a:e8:d4:63:76:d5:58:eb:5a:
e7:f8:fe:ca:2b:c4:58:58:3e:e9:c6:54:d2:66:e9:cd:e1:a4:
9f:21:29:b0:da:b4:ac:3a:58:50:08:ef:f6:2a:7b:98:af:ab:
90:67:6c:de:aa:15:1d:db:6a:27:f2:81:f3:24:eb:95:74:c6:
48:e0:8e:73:8a:4d:c7:05:71:4a:48:9b:98:3f:3e:49:3c:70:
2b:d1:81:5d:d5:53:a7:c6:02:b0:72:3e:bc:d1:91:bb:d7:38:
b7:8a:95:9d:6d:f8:7d:5b:90:6f:ca:94:74:b7:f7:64:d0:cf:
f9:79:a0:86:0a:8b:70:c2:33:ec:53:a5:21:1d:d6:06:66:d2:
b0:9d:b3:42:e9:15:69:72:15:0c:92:ff:45:3e:19:f3:7c:77:
bc:fa:d2:51:63:ab:bb:46:32:46:ec:63:db:bd:47:c2:83:65:
95:8a:97:4d:f0:b1:d5:f2:68:c9:6a:57:c8:9e:d5:8f:08:e3:
91:4c:db:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhf3N7WK34YfTtsS1Ij/5t1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MGI2NzM2OGM5MWI4NWU4NDg4OGM1ZWQyZTgyNGQxMzkw
ODEwYmIwHhcNMjMwNTI4MDA1ODEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTEzMzg5MGE0N2QxOTMxNzEyYWFlZjM0NzgzZDU3ZDc4OTNlMTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWZlMsC2u8QRaJWOUaQ2eM3ZqYSH
j9qFL9LLFeCFYKZsQgXEhA7zsRoMBIJumoDugnrv+0fXskzHsWCOysx5jDo4pS82
/Gm8VQ29RdnoOpGchfDMGNvC9pCgSYj5tttt2y/+NxeXPJ1oK4oxbqD2NQCXCoGj
EAzAYuueI0GOev5/gQhR6p5O5Am7D9ljRmT6Bs9MvpZgK+ZQvko4S4rCbLP4unX0
AUlzlUWVNFno92jIgn0maDOpNJstD6DJTn7sjrumFYJ9OpPrmvahguXpkhHlq1mt
yIoc/WAZvghC+YPHd0EpRjlBpzc3LvxMP/ZaMV6gCkLIYhEHxuJjILC//wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO4TOJCkfRkxcSqu80eD1X14k+EDMB8GA1UdIwQY
MBaAFDkLZzaMkbhehIiMXtLoJNE5CBC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYt
NWM5ZDYyNjI5Yzg2LzEvN2hNNGtLUjlHVEZ4S3E3elI0UFZmWGlUNFFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYtNWM5ZDYyNjI5Yzg2
LzEvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVe3JMA0G
CSqGSIb3DQEBCwUAA4IBAQBFHkojvz/VEr6DrkN5dWcGBNF5RbmafdNwwkMXuYQX
Q3WCmSwswzjZlh3NCF8LWCFl5mG0iMtQ/8WaetRPcJMa6NRjdtVY61rn+P7KK8RY
WD7pxlTSZunN4aSfISmw2rSsOlhQCO/2KnuYr6uQZ2zeqhUd22on8oHzJOuVdMZI
4I5zik3HBXFKSJuYPz5JPHAr0YFd1VOnxgKwcj680ZG71zi3ipWdbfh9W5BvypR0
t/dk0M/5eaCGCotwwjPsU6UhHdYGZtKwnbNC6RVpchUMkv9FPhnzfHe8+tJRY6u7
RjJG7GPbvUfCg2WVipdN8LHV8mjJalfIntWPCOORTNvU
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:55:58 2025 by rpki-client