Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/SpTXo1fwWeGOWpTg6Zsx5tHHgL8.roa
File: SpTXo1fwWeGOWpTg6Zsx5tHHgL8.roa (raw, json)
Hash identifier: pd+04X0269GarNL7eAEgGDcIT45S+rvIYMVZpLeD2m8=
Subject key identifier: 4A:94:D7:A3:57:F0:59:E1:8E:5A:94:E0:E9:9B:31:E6:D1:C7:80:BF
Certificate issuer: /CN=946733318c62c47920fe375ad99cb729ee90a1ad
Certificate serial: 01942067F6D4BFD0112249C8548F91CD1883
Authority key identifier: 94:67:33:31:8C:62:C4:79:20:FE:37:5A:D9:9C:B7:29:EE:90:A1:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lGczMYxixHkg_jda2Zy3Ke6Qoa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/SpTXo1fwWeGOWpTg6Zsx5tHHgL8.roa
Signing time: Wed 01 Jan 2025 05:47:51 +0000
ROA not before: Wed 01 Jan 2025 05:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207894
IP address blocks: 185.114.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:f6:d4:bf:d0:11:22:49:c8:54:8f:91:cd:18:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=946733318c62c47920fe375ad99cb729ee90a1ad
Validity
Not Before: Jan 1 05:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a94d7a357f059e18e5a94e0e99b31e6d1c780bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3c:7f:80:91:fc:d4:71:c9:d5:cc:77:cf:87:
57:1d:3c:c0:ac:84:40:59:d9:3a:b3:61:c6:7a:e5:
c7:86:0f:25:3d:4b:65:d7:e9:46:5f:fd:f2:46:44:
5b:19:bb:88:ae:85:e6:21:7b:e6:5a:a0:02:c1:50:
ae:02:4c:fd:9e:c2:6d:62:54:8b:9d:2e:a4:02:94:
a8:d4:3f:db:39:c1:78:a4:5e:78:1a:83:6c:73:c0:
b1:3d:d7:ac:67:97:ab:8b:d8:bb:f8:09:e4:c1:e7:
5f:26:a5:15:d2:fe:23:1b:88:22:b2:bb:56:0f:59:
f8:72:40:2b:64:f0:81:ff:28:a6:87:5c:dc:9c:4f:
cb:58:5a:9c:08:e8:59:fb:c8:92:d0:c8:e1:57:1b:
00:7d:3f:b4:5a:f2:bf:60:b5:9e:14:db:58:30:0e:
cc:59:99:5c:0c:df:cb:5d:91:f9:0a:90:78:df:f1:
0d:2c:5e:fc:fa:ad:09:1f:e3:4d:55:91:0b:e4:a7:
d4:59:d9:86:6b:09:0f:c6:d5:c8:36:cd:78:a4:e4:
41:b2:d6:dc:b1:35:8e:f3:85:4c:32:b1:b0:fa:2d:
28:ff:1c:e7:90:28:8e:99:18:7b:4a:1b:90:3e:42:
50:cc:e7:9b:73:ee:77:2f:c8:0b:6d:50:3e:45:b3:
01:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:94:D7:A3:57:F0:59:E1:8E:5A:94:E0:E9:9B:31:E6:D1:C7:80:BF
X509v3 Authority Key Identifier:
keyid:94:67:33:31:8C:62:C4:79:20:FE:37:5A:D9:9C:B7:29:EE:90:A1:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lGczMYxixHkg_jda2Zy3Ke6Qoa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/SpTXo1fwWeGOWpTg6Zsx5tHHgL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/lGczMYxixHkg_jda2Zy3Ke6Qoa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.197.0/24
Signature Algorithm: sha256WithRSAEncryption
83:56:ad:13:ca:ff:0b:df:65:32:80:ef:29:f2:f3:c6:4c:07:
87:fe:63:7f:88:2a:c4:82:99:10:4a:e7:f5:94:66:0d:07:53:
f4:a2:20:2c:cf:5f:02:ee:93:96:55:df:fe:7c:9c:7a:18:5b:
48:c4:7b:fc:d7:d7:25:a8:2d:a4:78:7d:cf:a7:ca:87:e9:88:
88:74:d1:98:bd:de:20:3c:ec:52:23:55:55:af:b0:51:e6:ce:
9e:dc:2b:07:41:96:e7:5a:7a:17:e0:6c:b4:ce:91:8a:46:28:
e4:e1:d7:6a:a7:0b:3f:87:48:2c:ad:24:7f:b7:73:fb:a9:2d:
a2:54:2d:b8:54:f6:be:39:c7:e1:95:28:99:ad:97:83:b7:65:
52:fb:1c:57:b2:6a:05:2a:67:a7:58:f8:dd:7f:7a:ff:f4:ea:
ae:94:ba:33:d5:ba:f1:22:d6:2f:6e:9c:80:52:2d:72:11:b9:
d4:e4:b6:72:1e:e0:36:4b:7e:58:4a:40:da:4a:9e:1e:cf:e7:
5b:7b:41:91:cd:b7:ba:2b:5c:74:aa:60:b5:4a:d0:9e:f3:cd:
73:a3:83:c9:90:5c:cf:33:ad:99:c2:82:94:88:5f:32:30:76:
65:ac:5a:ac:ff:70:30:ac:7d:1e:7c:9f:4e:0b:38:ea:0c:3a:
19:5f:d0:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQgZ/bUv9ARIknIVI+RzRiDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0NjczMzMxOGM2MmM0NzkyMGZlMzc1YWQ5OWNiNzI5ZWU5
MGExYWQwHhcNMjUwMTAxMDU0NzUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTk0ZDdhMzU3ZjA1OWUxOGU1YTk0ZTBlOTliMzFlNmQxYzc4MGJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjx/gJH81HHJ1cx3z4dXHTzArIRA
Wdk6s2HGeuXHhg8lPUtl1+lGX/3yRkRbGbuIroXmIXvmWqACwVCuAkz9nsJtYlSL
nS6kApSo1D/bOcF4pF54GoNsc8CxPdesZ5eri9i7+AnkwedfJqUV0v4jG4gisrtW
D1n4ckArZPCB/yimh1zcnE/LWFqcCOhZ+8iS0MjhVxsAfT+0WvK/YLWeFNtYMA7M
WZlcDN/LXZH5CpB43/ENLF78+q0JH+NNVZEL5KfUWdmGawkPxtXINs14pORBstbc
sTWO84VMMrGw+i0o/xznkCiOmRh7ShuQPkJQzOebc+53L8gLbVA+RbMBHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEqU16NX8FnhjlqU4OmbMebRx4C/MB8GA1UdIwQY
MBaAFJRnMzGMYsR5IP43WtmctynukKGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEdjek1ZeGl4SGtnX2pkYTJaeTNLZTZRb2EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9kNzYwOWUtNjM5Ni00MTU1LWFkMzUt
Yjc0MDg5ZDhlNTllLzEvU3BUWG8xZndXZUdPV3BUZzZac3g1dEhIZ0w4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9kNzYwOWUtNjM5Ni00MTU1LWFkMzUtYjc0MDg5ZDhlNTll
LzEvbEdjek1ZeGl4SGtnX2pkYTJaeTNLZTZRb2EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXLFMA0G
CSqGSIb3DQEBCwUAA4IBAQCDVq0Tyv8L32UygO8p8vPGTAeH/mN/iCrEgpkQSuf1
lGYNB1P0oiAsz18C7pOWVd/+fJx6GFtIxHv819clqC2keH3Pp8qH6YiIdNGYvd4g
POxSI1VVr7BR5s6e3CsHQZbnWnoX4Gy0zpGKRijk4ddqpws/h0gsrSR/t3P7qS2i
VC24VPa+OcfhlSiZrZeDt2VS+xxXsmoFKmenWPjdf3r/9OqulLoz1brxItYvbpyA
Ui1yEbnU5LZyHuA2S35YSkDaSp4ez+dbe0GRzbe6K1x0qmC1StCe881zo4PJkFzP
M62ZwoKUiF8yMHZlrFqs/3AwrH0efJ9OCzjqDDoZX9Aw
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:52:51 2025 by rpki-client