Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/a4f6e4-12e7-421f-aa31-4115bd508284/1/bsvx6NPc5wE4z82KVeJlkoJxWms.roa
File: bsvx6NPc5wE4z82KVeJlkoJxWms.roa (raw, json)
Hash identifier: 6rlBzLZqcg/z+eAbxCr25c2freBfaX3gVlYhMsk4Kok=
Subject key identifier: 6E:CB:F1:E8:D3:DC:E7:01:38:CF:CD:8A:55:E2:65:92:82:71:5A:6B
Certificate issuer: /CN=7650634c4e4177b91844b6dc0aeb73298d8b43fa
Certificate serial: 01942823B8A3BA3A26B3461476216CF6AE3D
Authority key identifier: 76:50:63:4C:4E:41:77:B9:18:44:B6:DC:0A:EB:73:29:8D:8B:43:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlBjTE5Bd7kYRLbcCutzKY2LQ_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/a4f6e4-12e7-421f-aa31-4115bd508284/1/bsvx6NPc5wE4z82KVeJlkoJxWms.roa
Signing time: Thu 02 Jan 2025 17:50:17 +0000
ROA not before: Thu 02 Jan 2025 17:50:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51798
IP address blocks: 185.58.128.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:b8:a3:ba:3a:26:b3:46:14:76:21:6c:f6:ae:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7650634c4e4177b91844b6dc0aeb73298d8b43fa
Validity
Not Before: Jan 2 17:50:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6ecbf1e8d3dce70138cfcd8a55e2659282715a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b3:0d:77:c5:a6:40:63:b2:e8:e8:37:d7:bc:
db:91:29:21:55:cb:43:a1:c5:20:ac:de:fa:da:88:
e4:4f:4e:e8:ff:76:bc:f8:9e:3f:d1:ad:e7:c5:8e:
17:03:9d:68:5e:59:fc:ed:75:34:4f:18:43:24:2d:
76:04:61:96:bb:a0:d7:62:af:d4:fa:93:c0:90:5a:
7d:18:04:1e:03:78:df:8f:bf:8f:dd:55:bb:0a:54:
1b:dc:3f:ba:0c:a6:2b:f7:d8:b0:1d:a6:5b:5b:27:
6f:63:de:24:52:ff:26:55:6b:09:0f:73:68:55:2c:
d6:33:30:c0:c3:be:59:40:ae:65:a0:ad:b6:9f:34:
5c:57:96:52:cf:01:2e:88:ae:ba:e3:cb:46:62:bb:
8f:24:cc:65:41:ec:f2:12:5f:1d:3a:61:b7:13:15:
62:d0:0f:f2:af:e2:4a:ef:99:9c:76:df:e4:88:74:
94:64:9d:5f:e1:9e:3f:23:14:b6:d0:bb:df:f9:61:
e9:3e:b4:51:13:be:4a:16:31:c3:c1:1e:6d:ee:25:
a0:a2:c4:94:6b:20:54:37:c8:ff:a6:3f:3a:43:41:
a2:43:aa:03:5c:7a:75:5f:63:2e:83:29:e3:78:8f:
d6:69:ef:b7:52:e9:d4:64:27:4e:f5:33:f7:fe:48:
e0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:CB:F1:E8:D3:DC:E7:01:38:CF:CD:8A:55:E2:65:92:82:71:5A:6B
X509v3 Authority Key Identifier:
keyid:76:50:63:4C:4E:41:77:B9:18:44:B6:DC:0A:EB:73:29:8D:8B:43:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlBjTE5Bd7kYRLbcCutzKY2LQ_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a4f6e4-12e7-421f-aa31-4115bd508284/1/bsvx6NPc5wE4z82KVeJlkoJxWms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a4f6e4-12e7-421f-aa31-4115bd508284/1/dlBjTE5Bd7kYRLbcCutzKY2LQ_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.128.0/23
Signature Algorithm: sha256WithRSAEncryption
38:d1:93:22:40:9e:74:42:51:55:42:b6:fc:df:a6:ba:f0:6b:
c9:fe:ad:46:c0:5f:d4:23:0e:e3:59:2c:1c:6c:37:fa:71:8e:
39:1c:cf:c1:1d:99:2f:e0:22:6c:f6:e7:70:aa:f0:0e:75:51:
dc:9b:ce:c2:dc:15:99:af:53:6d:29:e8:fe:82:78:24:5b:38:
3f:bf:7b:1b:25:80:3e:9b:4d:6e:2e:d2:12:ee:53:84:ff:b3:
c5:e0:1c:af:7f:85:52:5d:73:ab:2e:73:7f:3d:7b:d2:24:cf:
da:78:e3:32:80:02:0a:93:60:93:ff:f9:f2:c6:31:ea:86:fd:
0d:62:a7:53:8e:31:b2:45:a8:83:ab:eb:23:33:ac:c8:63:58:
cb:13:dc:e7:0b:10:1e:92:ae:ff:ea:73:b9:ca:a6:f9:01:05:
98:1f:01:60:57:4e:ed:60:b8:e6:28:66:2a:76:25:b6:e6:37:
7e:77:25:87:ca:0a:bd:56:1f:b9:da:7c:79:61:c4:06:2c:0d:
aa:fd:58:eb:12:13:4f:2c:a6:f7:97:43:b3:1b:fb:23:0b:89:
96:04:6c:3f:3b:ce:16:35:94:db:cb:e7:55:3c:23:a4:b8:28:
df:ae:5e:fb:fd:da:c4:b4:4f:6a:34:d7:bf:77:6d:e1:2a:cb:
7d:20:db:7a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoI7ijujoms0YUdiFs9q49MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2NTA2MzRjNGU0MTc3YjkxODQ0YjZkYzBhZWI3MzI5OGQ4
YjQzZmEwHhcNMjUwMTAyMTc1MDE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZWNiZjFlOGQzZGNlNzAxMzhjZmNkOGE1NWUyNjU5MjgyNzE1YTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7MNd8WmQGOy6Og317zbkSkhVctD
ocUgrN762ojkT07o/3a8+J4/0a3nxY4XA51oXln87XU0TxhDJC12BGGWu6DXYq/U
+pPAkFp9GAQeA3jfj7+P3VW7ClQb3D+6DKYr99iwHaZbWydvY94kUv8mVWsJD3No
VSzWMzDAw75ZQK5loK22nzRcV5ZSzwEuiK6648tGYruPJMxlQezyEl8dOmG3ExVi
0A/yr+JK75mcdt/kiHSUZJ1f4Z4/IxS20Lvf+WHpPrRRE75KFjHDwR5t7iWgosSU
ayBUN8j/pj86Q0GiQ6oDXHp1X2MugynjeI/Wae+3UunUZCdO9TP3/kjghwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG7L8ejT3OcBOM/NilXiZZKCcVprMB8GA1UdIwQY
MBaAFHZQY0xOQXe5GES23ArrcymNi0P6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGxCalRFNUJkN2tZUkxiY0N1dHpLWTJMUV9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS9hNGY2ZTQtMTJlNy00MjFmLWFhMzEt
NDExNWJkNTA4Mjg0LzEvYnN2eDZOUGM1d0U0ejgyS1ZlSmxrb0p4V21zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS9hNGY2ZTQtMTJlNy00MjFmLWFhMzEtNDExNWJkNTA4Mjg0
LzEvZGxCalRFNUJkN2tZUkxiY0N1dHpLWTJMUV9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuTqAMA0G
CSqGSIb3DQEBCwUAA4IBAQA40ZMiQJ50QlFVQrb836a68GvJ/q1GwF/UIw7jWSwc
bDf6cY45HM/BHZkv4CJs9udwqvAOdVHcm87C3BWZr1NtKej+gngkWzg/v3sbJYA+
m01uLtIS7lOE/7PF4Byvf4VSXXOrLnN/PXvSJM/aeOMygAIKk2CT//nyxjHqhv0N
YqdTjjGyRaiDq+sjM6zIY1jLE9znCxAekq7/6nO5yqb5AQWYHwFgV07tYLjmKGYq
diW25jd+dyWHygq9Vh+52nx5YcQGLA2q/VjrEhNPLKb3l0OzG/sjC4mWBGw/O84W
NZTby+dVPCOkuCjfrl77/drEtE9qNNe/d23hKst9INt6
-----END CERTIFICATE-----
Generated at Thu Feb 20 03:16:47 2025 by rpki-client