Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/6d8470-4861-416d-a72a-28aded8ddfab/1/5qlyqHqHN9fm7YIJbWQAFC8mvBE.roa
File: 5qlyqHqHN9fm7YIJbWQAFC8mvBE.roa (raw, json)
Hash identifier: i7ncddTAht6A90LZTtfDRpJSDX/ZI6t1vgckOHtmIjg=
Subject key identifier: E6:A9:72:A8:7A:87:37:D7:E6:ED:82:09:6D:64:00:14:2F:26:BC:11
Certificate issuer: /CN=690bdb18899afb27fe1ff780516fcc0b93c8b80d
Certificate serial: 019425FCA682933D588E64A2FE34D0BE8ABC
Authority key identifier: 69:0B:DB:18:89:9A:FB:27:FE:1F:F7:80:51:6F:CC:0B:93:C8:B8:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQvbGIma-yf-H_eAUW_MC5PIuA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/6d8470-4861-416d-a72a-28aded8ddfab/1/5qlyqHqHN9fm7YIJbWQAFC8mvBE.roa
Signing time: Thu 02 Jan 2025 07:48:22 +0000
ROA not before: Thu 02 Jan 2025 07:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204457
IP address blocks: 194.4.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:a6:82:93:3d:58:8e:64:a2:fe:34:d0:be:8a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690bdb18899afb27fe1ff780516fcc0b93c8b80d
Validity
Not Before: Jan 2 07:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6a972a87a8737d7e6ed82096d6400142f26bc11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:53:dc:6f:2c:36:4a:80:31:21:a4:4b:b1:30:
4b:be:76:5d:db:db:9d:7e:41:ff:e5:d4:58:2b:ea:
b5:1d:7e:3f:0e:36:58:e6:1f:f6:23:1d:95:76:db:
e4:c4:e0:3b:10:74:29:db:24:78:0e:51:21:3a:31:
07:8b:e9:cf:e0:5c:a6:f5:42:b9:b9:0b:06:2e:6b:
31:56:b9:be:b6:14:87:93:76:2f:09:bc:26:78:b8:
b7:4d:54:70:72:6a:ce:ec:cf:5c:8f:90:76:81:15:
78:a4:f7:8e:36:ea:04:77:cb:66:67:06:82:e3:f6:
37:fb:88:85:4d:32:db:90:02:78:66:c1:10:18:6a:
e7:85:4a:3b:a6:7d:91:09:f7:f6:b5:98:f1:37:7a:
4b:cd:9a:4b:f0:01:3e:c4:07:59:52:cf:f2:fe:0c:
87:86:35:e2:0c:10:45:45:58:58:bc:71:32:f7:af:
1b:27:17:6a:87:ee:46:99:e7:bf:f5:6d:94:e9:8d:
72:7b:ec:d7:ab:33:13:75:c9:cf:c2:9f:94:4b:78:
aa:8f:55:d0:04:ab:62:0e:10:4e:78:2c:b5:7f:0c:
6a:c2:23:71:b8:86:ec:d5:bd:c2:7b:72:4c:21:f1:
01:da:e5:31:bb:6e:9c:14:27:3e:3f:e0:44:81:19:
f5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A9:72:A8:7A:87:37:D7:E6:ED:82:09:6D:64:00:14:2F:26:BC:11
X509v3 Authority Key Identifier:
keyid:69:0B:DB:18:89:9A:FB:27:FE:1F:F7:80:51:6F:CC:0B:93:C8:B8:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQvbGIma-yf-H_eAUW_MC5PIuA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6d8470-4861-416d-a72a-28aded8ddfab/1/5qlyqHqHN9fm7YIJbWQAFC8mvBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6d8470-4861-416d-a72a-28aded8ddfab/1/aQvbGIma-yf-H_eAUW_MC5PIuA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.4.153.0/24
Signature Algorithm: sha256WithRSAEncryption
18:5d:9c:93:41:0a:d7:c4:26:a6:4c:46:66:fa:55:5d:32:21:
7c:7f:a6:a1:20:33:7d:35:1d:4b:a2:7f:03:20:ba:c0:61:26:
8e:d2:4f:e8:22:36:94:aa:97:39:6e:ab:f8:bc:27:ad:d4:79:
9b:e9:ae:97:ab:a7:7d:5d:c2:65:c3:b4:70:f3:7a:38:dd:70:
51:6f:05:ab:af:c3:30:fe:76:d5:a0:43:9f:7d:bc:c4:2c:9f:
e4:74:38:7c:d1:10:ef:6d:22:fd:fa:81:ed:e1:4f:ea:92:c3:
52:96:70:d3:b3:d5:50:c9:c2:00:18:5a:d3:35:9b:32:8f:cc:
62:fe:00:67:22:32:c3:53:b1:13:bc:3f:5e:0c:aa:14:12:9a:
59:88:e7:86:a4:f0:75:92:60:7a:7d:c1:92:f0:f9:b1:71:a3:
ae:9b:a3:33:df:e7:cc:c4:e3:c1:fd:6f:82:7e:6f:f0:ca:be:
09:d5:06:f8:f6:51:1a:e3:c0:c5:85:2a:e9:6a:f7:e8:c8:eb:
c4:17:ab:00:99:e4:c8:d5:35:39:f2:8b:62:ae:b8:82:dd:a9:
dc:12:73:33:5e:de:6d:59:d8:08:03:de:8c:89:09:b1:08:f1:
42:63:ce:ae:45:12:f9:1e:75:0a:e6:35:51:94:03:d5:d1:c8:
a7:a7:a6:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/KaCkz1YjmSi/jTQvoq8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MGJkYjE4ODk5YWZiMjdmZTFmZjc4MDUxNmZjYzBiOTNj
OGI4MGQwHhcNMjUwMTAyMDc0ODIyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmE5NzJhODdhODczN2Q3ZTZlZDgyMDk2ZDY0MDAxNDJmMjZiYzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVPcbyw2SoAxIaRLsTBLvnZd29ud
fkH/5dRYK+q1HX4/DjZY5h/2Ix2VdtvkxOA7EHQp2yR4DlEhOjEHi+nP4Fym9UK5
uQsGLmsxVrm+thSHk3YvCbwmeLi3TVRwcmrO7M9cj5B2gRV4pPeONuoEd8tmZwaC
4/Y3+4iFTTLbkAJ4ZsEQGGrnhUo7pn2RCff2tZjxN3pLzZpL8AE+xAdZUs/y/gyH
hjXiDBBFRVhYvHEy968bJxdqh+5Gmee/9W2U6Y1ye+zXqzMTdcnPwp+US3iqj1XQ
BKtiDhBOeCy1fwxqwiNxuIbs1b3Ce3JMIfEB2uUxu26cFCc+P+BEgRn1YQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOapcqh6hzfX5u2CCW1kABQvJrwRMB8GA1UdIwQY
MBaAFGkL2xiJmvsn/h/3gFFvzAuTyLgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVF2YkdJbWEteWYtSF9lQVVXX01DNVBJdUEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS82ZDg0NzAtNDg2MS00MTZkLWE3MmEt
MjhhZGVkOGRkZmFiLzEvNXFseXFIcUhOOWZtN1lJSmJXUUFGQzhtdkJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS82ZDg0NzAtNDg2MS00MTZkLWE3MmEtMjhhZGVkOGRkZmFi
LzEvYVF2YkdJbWEteWYtSF9lQVVXX01DNVBJdUEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgSZMA0G
CSqGSIb3DQEBCwUAA4IBAQAYXZyTQQrXxCamTEZm+lVdMiF8f6ahIDN9NR1Lon8D
ILrAYSaO0k/oIjaUqpc5bqv4vCet1Hmb6a6Xq6d9XcJlw7Rw83o43XBRbwWrr8Mw
/nbVoEOffbzELJ/kdDh80RDvbSL9+oHt4U/qksNSlnDTs9VQycIAGFrTNZsyj8xi
/gBnIjLDU7ETvD9eDKoUEppZiOeGpPB1kmB6fcGS8PmxcaOum6Mz3+fMxOPB/W+C
fm/wyr4J1Qb49lEa48DFhSrpavfoyOvEF6sAmeTI1TU58otirriC3ancEnMzXt5t
WdgIA96MiQmxCPFCY86uRRL5HnUK5jVRlAPV0cinp6Y/
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:49:52 2025 by rpki-client