Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/f9a4be-d79c-4192-a6b3-3b988f188d91/1/2E9kWgPtYN0WAc6RCe6lEkD5GGc.roa
File: 2E9kWgPtYN0WAc6RCe6lEkD5GGc.roa (raw, json)
Hash identifier: WZKZ1nRj/095D4tmKUIjIrN2QssyrW7JaucRn5aUuQo=
Subject key identifier: D8:4F:64:5A:03:ED:60:DD:16:01:CE:91:09:EE:A5:12:40:F9:18:67
Certificate issuer: /CN=cad794ac601ce2505b65f975a7d516a2f00a5b31
Certificate serial: 0194258F781D9362D875ADC568169DC9175C
Authority key identifier: CA:D7:94:AC:60:1C:E2:50:5B:65:F9:75:A7:D5:16:A2:F0:0A:5B:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yteUrGAc4lBbZfl1p9UWovAKWzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/f9a4be-d79c-4192-a6b3-3b988f188d91/1/2E9kWgPtYN0WAc6RCe6lEkD5GGc.roa
Signing time: Thu 02 Jan 2025 05:49:06 +0000
ROA not before: Thu 02 Jan 2025 05:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202725
IP address blocks: 77.90.99.0/24 maxlen: 24
185.168.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:78:1d:93:62:d8:75:ad:c5:68:16:9d:c9:17:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cad794ac601ce2505b65f975a7d516a2f00a5b31
Validity
Not Before: Jan 2 05:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d84f645a03ed60dd1601ce9109eea51240f91867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:df:c0:1e:81:ec:f1:da:77:32:39:52:8c:1c:
9c:b4:22:e7:01:1c:39:c0:c4:85:34:0d:f2:d0:1c:
79:b8:fe:5a:c1:92:1f:02:42:a1:78:a3:fa:9c:0a:
01:56:0b:c5:d4:c7:78:83:d0:2c:6f:78:91:9a:86:
10:43:ee:ea:ea:6f:56:52:f8:d1:ba:5a:62:05:11:
b2:e1:e7:97:6f:16:98:7e:63:c7:51:5d:e7:f7:0c:
31:01:7e:e4:2c:2d:64:93:6e:e8:a7:cb:df:ef:85:
d4:de:41:bf:76:d4:57:c9:fa:48:1c:91:d6:4d:12:
8d:cf:a4:6a:27:de:93:4a:dd:4f:44:6a:52:d2:72:
a9:77:06:d5:8d:8f:80:09:d1:67:62:0a:f5:b3:3c:
4a:15:26:f5:1a:82:7d:fe:2e:bc:01:3d:af:ea:83:
84:2a:7c:75:c8:f1:71:57:e1:b2:66:6c:15:c2:09:
53:e8:f6:52:98:e0:5e:ad:e2:4d:85:7d:14:45:e0:
a2:bd:72:00:47:40:81:e2:3f:70:69:0a:c7:d1:2a:
d9:b9:ba:f4:6d:94:55:45:72:6f:86:bd:70:7a:da:
b6:32:5f:89:b0:5f:0a:78:04:7c:cc:b1:8a:c7:ae:
04:85:c6:d0:4c:0b:60:d0:a3:64:4e:fa:63:c0:41:
83:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4F:64:5A:03:ED:60:DD:16:01:CE:91:09:EE:A5:12:40:F9:18:67
X509v3 Authority Key Identifier:
keyid:CA:D7:94:AC:60:1C:E2:50:5B:65:F9:75:A7:D5:16:A2:F0:0A:5B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yteUrGAc4lBbZfl1p9UWovAKWzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/f9a4be-d79c-4192-a6b3-3b988f188d91/1/2E9kWgPtYN0WAc6RCe6lEkD5GGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/f9a4be-d79c-4192-a6b3-3b988f188d91/1/yteUrGAc4lBbZfl1p9UWovAKWzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.99.0/24
185.168.12.0/22
Signature Algorithm: sha256WithRSAEncryption
12:f5:d9:35:63:cc:85:d4:1d:e8:dc:fd:dc:cb:4e:85:75:15:
94:a3:e9:21:58:c9:db:90:c0:43:2d:b5:92:94:25:eb:08:16:
6c:2a:0f:d2:90:9a:a0:e0:7c:d9:fe:3c:b4:d9:c4:2d:b0:33:
c8:ad:66:0e:28:6c:c5:66:03:b9:96:05:ce:a8:81:2c:48:e8:
34:c9:a2:3e:b2:9e:20:7f:66:70:82:39:8a:ab:18:01:17:16:
14:1f:58:5a:8a:59:c5:7d:19:99:aa:a1:9c:6e:91:96:a0:5c:
39:6b:7a:3a:43:28:9c:b8:a1:7d:20:34:85:71:08:44:89:f1:
d1:59:d3:e4:5e:ff:97:cd:95:2f:8d:5b:9d:b1:75:41:a6:58:
0d:68:33:0c:88:8f:8e:49:6d:77:fe:34:10:8e:ac:83:0f:a1:
a9:b7:d0:41:8e:5a:0c:7f:24:53:0c:08:87:d4:dc:86:e2:20:
a6:97:4f:2c:d1:11:a6:59:68:bd:5f:69:3a:c1:89:1b:e3:99:
d5:fe:8d:b9:43:c7:01:cd:04:38:7b:a5:6e:1e:4a:37:d6:18:
51:04:4e:03:4d:1c:19:6c:34:59:aa:6a:c8:de:4a:ff:1e:20:
ec:c3:a9:5e:1a:b8:16:50:98:4c:41:fe:ca:92:c7:ab:b1:72:
af:fe:62:bb
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQlj3gdk2LYda3FaBadyRdcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhZDc5NGFjNjAxY2UyNTA1YjY1Zjk3NWE3ZDUxNmEyZjAw
YTViMzEwHhcNMjUwMTAyMDU0OTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODRmNjQ1YTAzZWQ2MGRkMTYwMWNlOTEwOWVlYTUxMjQwZjkxODY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9/AHoHs8dp3MjlSjByctCLnARw5
wMSFNA3y0Bx5uP5awZIfAkKheKP6nAoBVgvF1Md4g9Asb3iRmoYQQ+7q6m9WUvjR
ulpiBRGy4eeXbxaYfmPHUV3n9wwxAX7kLC1kk27op8vf74XU3kG/dtRXyfpIHJHW
TRKNz6RqJ96TSt1PRGpS0nKpdwbVjY+ACdFnYgr1szxKFSb1GoJ9/i68AT2v6oOE
Knx1yPFxV+GyZmwVwglT6PZSmOBereJNhX0UReCivXIAR0CB4j9waQrH0SrZubr0
bZRVRXJvhr1wetq2Ml+JsF8KeAR8zLGKx64EhcbQTAtg0KNkTvpjwEGDjwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNhPZFoD7WDdFgHOkQnupRJA+RhnMB8GA1UdIwQY
MBaAFMrXlKxgHOJQW2X5dafVFqLwClsxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXRlVXJHQWM0bEJiWmZsMXA5VVdvdkFLV3pFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9mOWE0YmUtZDc5Yy00MTkyLWE2YjMt
M2I5ODhmMTg4ZDkxLzEvMkU5a1dnUHRZTjBXQWM2UkNlNmxFa0Q1R0djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi9mOWE0YmUtZDc5Yy00MTkyLWE2YjMtM2I5ODhmMTg4ZDkx
LzEveXRlVXJHQWM0bEJiWmZsMXA5VVdvdkFLV3pFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVpjAwQC
uagMMA0GCSqGSIb3DQEBCwUAA4IBAQAS9dk1Y8yF1B3o3P3cy06FdRWUo+khWMnb
kMBDLbWSlCXrCBZsKg/SkJqg4HzZ/jy02cQtsDPIrWYOKGzFZgO5lgXOqIEsSOg0
yaI+sp4gf2ZwgjmKqxgBFxYUH1hailnFfRmZqqGcbpGWoFw5a3o6QyicuKF9IDSF
cQhEifHRWdPkXv+XzZUvjVudsXVBplgNaDMMiI+OSW13/jQQjqyDD6Gpt9BBjloM
fyRTDAiH1NyG4iCml08s0RGmWWi9X2k6wYkb45nV/o25Q8cBzQQ4e6VuHko31hhR
BE4DTRwZbDRZqmrI3kr/HiDsw6leGrgWUJhMQf7KksersXKv/mK7
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:03:07 2025 by rpki-client