Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/pNSgRY1fWiyg0JSbQJjdeMjPris.roa
File: pNSgRY1fWiyg0JSbQJjdeMjPris.roa (raw, json)
Hash identifier: y6nDxHI1IDv2EtH7KlbkCfSaqSECl/R/1hlaKZrR5jY=
Subject key identifier: A4:D4:A0:45:8D:5F:5A:2C:A0:D0:94:9B:40:98:DD:78:C8:CF:AE:2B
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 0182697442B644EF8332863D1925060542BD
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/pNSgRY1fWiyg0JSbQJjdeMjPris.roa
Signing time: Thu 04 Aug 2022 15:23:23 +0000
ROA not before: Thu 04 Aug 2022 15:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5483
IP address blocks: 178.238.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:69:74:42:b6:44:ef:83:32:86:3d:19:25:06:05:42:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Aug 4 15:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4d4a0458d5f5a2ca0d0949b4098dd78c8cfae2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:65:9c:2b:b6:53:de:cc:7f:1b:8a:e8:c1:a8:
12:32:14:01:3e:33:3a:ff:19:09:2a:25:3a:4f:be:
a0:f2:d6:a6:31:64:55:1c:d7:78:5f:b4:57:8a:ae:
22:84:e1:8e:5a:21:05:5f:97:5a:7e:5b:1c:9c:07:
48:29:33:78:be:c9:e7:ad:e4:30:33:de:ab:b9:9a:
56:d8:28:63:fa:dc:d0:5c:09:fa:17:e0:0c:3c:2f:
27:c8:47:6c:66:bc:6a:c3:f8:b3:e3:a5:52:49:e2:
73:d1:bf:a8:8b:53:b2:d0:3b:17:f0:4f:e3:e0:04:
1a:9d:20:1f:9f:07:5f:7d:61:d7:5c:ec:bc:91:d0:
83:ba:95:b8:b4:67:fb:2f:c2:7c:2f:bd:04:8a:94:
60:43:4e:8b:dc:8e:a2:77:54:4c:8f:71:06:32:97:
4e:ec:52:06:9a:19:99:30:1b:d1:6d:82:1e:0c:00:
c5:8a:cf:6c:5b:94:88:33:c6:4c:06:50:ad:ae:81:
9d:d1:85:6a:ad:a8:86:3a:0c:bf:78:24:93:96:84:
35:2c:d1:fe:f6:c7:c0:81:c7:82:2c:82:03:4e:cd:
38:c6:b9:3d:7d:9d:ec:0d:82:c9:3c:77:3e:65:21:
32:47:84:0a:4f:39:b2:37:b0:c6:ca:33:23:34:2b:
30:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D4:A0:45:8D:5F:5A:2C:A0:D0:94:9B:40:98:DD:78:C8:CF:AE:2B
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/pNSgRY1fWiyg0JSbQJjdeMjPris.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.238.221.0/24
Signature Algorithm: sha256WithRSAEncryption
11:3c:20:35:6a:47:93:a6:64:97:da:ad:71:fa:32:ce:f4:cc:
5f:37:92:ba:87:d9:7e:75:b9:1f:51:88:cb:5a:21:ea:19:ff:
c7:1b:81:9a:47:f8:ef:5b:9d:a4:7b:f1:fb:64:a7:f8:e2:75:
29:5f:61:40:04:e4:86:fc:34:63:be:ea:f2:18:c2:70:ba:c6:
b0:28:3d:08:ff:36:f9:a1:7b:82:1d:27:de:81:1c:84:7a:dd:
58:99:1d:cf:a5:d8:05:50:ae:41:e2:53:52:91:fe:62:89:eb:
b8:eb:43:26:a9:eb:50:b7:94:0c:84:6c:ac:b4:15:d6:57:c9:
9c:09:26:c7:03:64:0a:a0:26:69:d6:b0:f5:28:b6:e3:7d:04:
1c:f7:51:ef:ff:2d:2b:61:de:7f:01:7f:8a:ca:a2:0d:93:d0:
e2:c6:60:06:48:95:5a:51:38:61:af:ff:9a:47:d7:63:a1:cc:
55:72:31:eb:19:a1:d1:2b:c2:a1:da:29:0a:9f:8a:be:d5:7e:
e4:37:36:ff:05:21:c4:15:94:58:3d:94:de:12:04:fb:64:8a:
5f:74:4a:64:26:40:4a:11:23:85:6a:55:0d:5d:19:93:e9:51:
7e:d6:f4:bc:41:9b:97:31:2e:17:7b:05:b2:b0:f9:18:c1:c5:
c0:9c:13:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJpdEK2RO+DMoY9GSUGBUK9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2
NDI0OTcwHhcNMjIwODA0MTUyMzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGQ0YTA0NThkNWY1YTJjYTBkMDk0OWI0MDk4ZGQ3OGM4Y2ZhZTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGWcK7ZT3sx/G4rowagSMhQBPjM6
/xkJKiU6T76g8tamMWRVHNd4X7RXiq4ihOGOWiEFX5daflscnAdIKTN4vsnnreQw
M96ruZpW2Chj+tzQXAn6F+AMPC8nyEdsZrxqw/iz46VSSeJz0b+oi1Oy0DsX8E/j
4AQanSAfnwdffWHXXOy8kdCDupW4tGf7L8J8L70EipRgQ06L3I6id1RMj3EGMpdO
7FIGmhmZMBvRbYIeDADFis9sW5SIM8ZMBlCtroGd0YVqraiGOgy/eCSTloQ1LNH+
9sfAgceCLIIDTs04xrk9fZ3sDYLJPHc+ZSEyR4QKTzmyN7DGyjMjNCswrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKTUoEWNX1osoNCUm0CY3XjIz64rMB8GA1UdIwQY
MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt
OTU5M2E0ODhhZmNjLzEvcE5TZ1JZMWZXaXlnMEpTYlFKamRlTWpQcmlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj
LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsu7dMA0G
CSqGSIb3DQEBCwUAA4IBAQARPCA1akeTpmSX2q1x+jLO9MxfN5K6h9l+dbkfUYjL
WiHqGf/HG4GaR/jvW52ke/H7ZKf44nUpX2FABOSG/DRjvuryGMJwusawKD0I/zb5
oXuCHSfegRyEet1YmR3PpdgFUK5B4lNSkf5iieu460MmqetQt5QMhGystBXWV8mc
CSbHA2QKoCZp1rD1KLbjfQQc91Hv/y0rYd5/AX+KyqINk9DixmAGSJVaUThhr/+a
R9djocxVcjHrGaHRK8Kh2ikKn4q+1X7kNzb/BSHEFZRYPZTeEgT7ZIpfdEpkJkBK
ESOFalUNXRmT6VF+1vS8QZuXMS4XewWysPkYwcXAnBMT
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:29:36 2025 by rpki-client