Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3d7874-2588-407f-acb9-13d9efbf5ccf/1/XAnSzgZ5BUcwqsWUt9rIDm4KxmQ.roa
File: XAnSzgZ5BUcwqsWUt9rIDm4KxmQ.roa (raw, json)
Hash identifier: YBgUSW3oIy7ElzRrHzU9VekRtWH8v82FjsvRrLFrqx0=
Subject key identifier: 5C:09:D2:CE:06:79:05:47:30:AA:C5:94:B7:DA:C8:0E:6E:0A:C6:64
Certificate issuer: /CN=cfa349e3b6ac2fa262413c20cbc41d6a53743193
Certificate serial: 070F7A3B
Authority key identifier: CF:A3:49:E3:B6:AC:2F:A2:62:41:3C:20:CB:C4:1D:6A:53:74:31:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z6NJ47asL6JiQTwgy8QdalN0MZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3d7874-2588-407f-acb9-13d9efbf5ccf/1/XAnSzgZ5BUcwqsWUt9rIDm4KxmQ.roa
Signing time: Sat 01 Jan 2022 14:02:41 +0000
ROA not before: Sat 01 Jan 2022 14:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 194.61.112.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118454843 (0x70f7a3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfa349e3b6ac2fa262413c20cbc41d6a53743193
Validity
Not Before: Jan 1 14:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c09d2ce0679054730aac594b7dac80e6e0ac664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:11:ad:0f:7f:f3:ab:fd:cc:8e:a2:e6:01:b8:
bb:ef:3d:96:a7:30:9d:e3:8e:84:77:36:74:b5:cf:
4e:a8:22:bf:4b:dc:ee:a2:7c:f2:58:5e:75:d3:c8:
8f:94:1f:b5:6c:92:bb:d3:5e:85:94:fa:c3:a6:d2:
74:3f:76:a6:3e:bb:ec:29:a4:fd:47:31:a5:09:ab:
69:f8:d5:f7:4c:cd:1c:0d:ff:87:76:d0:05:18:49:
eb:48:f9:a4:a2:f8:05:78:66:c7:9f:b4:04:36:25:
71:2a:64:3a:5d:38:b5:e2:a4:b8:3c:e9:dd:7e:fd:
df:7d:1c:0a:8d:fe:12:82:c2:a7:37:c8:ec:ad:9e:
7d:57:18:e8:c0:d4:73:bf:0e:3b:7f:cc:a7:16:20:
05:ec:85:95:0e:bf:7c:13:7f:0f:f6:a8:b3:90:a0:
f0:9c:8a:e5:ba:cd:96:02:be:45:21:80:d5:9a:b8:
59:0b:f2:79:ff:45:9b:68:14:e2:e8:c9:d4:bc:fe:
08:e2:b6:27:57:39:06:18:dc:3c:45:67:81:86:ab:
06:49:17:da:69:1f:7c:77:c8:c7:d2:96:36:43:6c:
3d:3d:c9:39:ad:b9:cb:70:e5:5d:f6:e8:9d:16:32:
52:39:cf:3b:54:d1:01:8d:70:12:64:ff:85:6b:a6:
05:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:09:D2:CE:06:79:05:47:30:AA:C5:94:B7:DA:C8:0E:6E:0A:C6:64
X509v3 Authority Key Identifier:
keyid:CF:A3:49:E3:B6:AC:2F:A2:62:41:3C:20:CB:C4:1D:6A:53:74:31:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z6NJ47asL6JiQTwgy8QdalN0MZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d7874-2588-407f-acb9-13d9efbf5ccf/1/XAnSzgZ5BUcwqsWUt9rIDm4KxmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d7874-2588-407f-acb9-13d9efbf5ccf/1/z6NJ47asL6JiQTwgy8QdalN0MZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.112.0/22
Signature Algorithm: sha256WithRSAEncryption
51:9e:ed:ff:54:bb:5e:02:cd:d3:16:66:28:d1:45:bf:26:b5:
16:5b:81:0b:3d:fc:82:1f:ce:37:94:c4:14:e5:6b:b8:9c:f5:
04:82:67:67:6f:b0:a4:be:64:e7:cc:a4:67:4b:b7:a8:05:d6:
dc:fc:7d:3e:35:84:15:c9:af:d7:14:b1:5e:35:16:e0:9a:d0:
5d:75:17:28:06:75:12:38:13:33:89:2c:9a:d8:86:1e:86:be:
cc:2e:96:44:8c:e5:5b:c6:a8:3f:15:57:1a:f5:20:57:31:9e:
ea:49:26:dc:f4:0a:54:59:64:47:dc:b8:81:19:70:c2:db:6b:
ac:26:38:da:b3:a9:01:3e:b3:82:14:97:d3:c1:82:cf:1f:3b:
4f:91:a2:08:a5:27:d4:91:4b:ed:ad:9b:ec:22:2d:f8:c5:08:
24:86:77:f9:b9:0d:7d:d0:7f:e0:75:63:28:da:84:78:37:e7:
41:58:c5:b6:5e:03:0b:31:7a:2f:2d:a5:8f:d9:e0:ac:0c:86:
ee:44:87:db:e7:8e:a8:ad:16:5f:1e:71:bb:d2:14:c1:30:31:
ae:15:8c:28:57:1d:f8:33:3a:ae:f7:eb:2f:4d:02:6f:9b:80:
9d:93:3e:99:60:6b:bd:e2:f6:95:e4:64:f6:19:bb:17:a9:72:
d8:e0:80:24
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBw96OzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZmEzNDllM2I2YWMyZmEyNjI0MTNjMjBjYmM0MWQ2YTUzNzQzMTkzMB4XDTIyMDEw
MTE0MDI0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWMwOWQyY2UwNjc5
MDU0NzMwYWFjNTk0YjdkYWM4MGU2ZTBhYzY2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJIRrQ9/86v9zI6i5gG4u+89lqcwneOOhHc2dLXPTqgiv0vc
7qJ88lheddPIj5QftWySu9NehZT6w6bSdD92pj677Cmk/UcxpQmrafjV90zNHA3/
h3bQBRhJ60j5pKL4BXhmx5+0BDYlcSpkOl04teKkuDzp3X79330cCo3+EoLCpzfI
7K2efVcY6MDUc78OO3/MpxYgBeyFlQ6/fBN/D/aos5Cg8JyK5brNlgK+RSGA1Zq4
WQvyef9Fm2gU4ujJ1Lz+COK2J1c5BhjcPEVngYarBkkX2mkffHfIx9KWNkNsPT3J
Oa25y3DlXfbonRYyUjnPO1TRAY1wEmT/hWumBZkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRcCdLOBnkFRzCqxZS32sgObgrGZDAfBgNVHSMEGDAWgBTPo0njtqwvomJB
PCDLxB1qU3QxkzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3o2Tko0N2FzTDZKaVFUd2d5OFFkYWxOME1aTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjAvM2Q3ODc0LTI1ODgtNDA3Zi1hY2I5LTEzZDllZmJmNWNjZi8x
L1hBblN6Z1o1QlVjd3FzV1V0OXJJRG00S3htUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjAv
M2Q3ODc0LTI1ODgtNDA3Zi1hY2I5LTEzZDllZmJmNWNjZi8xL3o2Tko0N2FzTDZK
aVFUd2d5OFFkYWxOME1aTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsI9cDANBgkqhkiG9w0BAQsFAAOC
AQEAUZ7t/1S7XgLN0xZmKNFFvya1FluBCz38gh/ON5TEFOVruJz1BIJnZ2+wpL5k
58ykZ0u3qAXW3Px9PjWEFcmv1xSxXjUW4JrQXXUXKAZ1EjgTM4ksmtiGHoa+zC6W
RIzlW8aoPxVXGvUgVzGe6kkm3PQKVFlkR9y4gRlwwttrrCY42rOpAT6zghSX08GC
zx87T5GiCKUn1JFL7a2b7CIt+MUIJIZ3+bkNfdB/4HVjKNqEeDfnQVjFtl4DCzF6
Ly2lj9ngrAyG7kSH2+eOqK0WXx5xu9IUwTAxrhWMKFcd+DM6rvfrL00Cb5uAnZM+
mWBrveL2leRk9hm7F6ly2OCAJA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:30 2025 by rpki-client