Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/bef9e1-1345-4f75-9ccd-ea8ddaa1fbe4/1/IGkwZoh_RPLR6unX268V2TMZ32c.roa
File: IGkwZoh_RPLR6unX268V2TMZ32c.roa (raw, json)
Hash identifier: DC5FxmO8IxNcP5KnnStbtnqjwbTgJDSubLelGmhDh2g=
Subject key identifier: 20:69:30:66:88:7F:44:F2:D1:EA:E9:D7:DB:AF:15:D9:33:19:DF:67
Certificate issuer: /CN=c2b3022b514697b607b67b6ec0a44813f0f21218
Certificate serial: 018FCE01C1224EF7CA31B44773BEF402D098
Authority key identifier: C2:B3:02:2B:51:46:97:B6:07:B6:7B:6E:C0:A4:48:13:F0:F2:12:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wrMCK1FGl7YHtntuwKRIE_DyEhg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/bef9e1-1345-4f75-9ccd-ea8ddaa1fbe4/1/IGkwZoh_RPLR6unX268V2TMZ32c.roa
Signing time: Fri 31 May 2024 09:36:12 +0000
ROA not before: Fri 31 May 2024 09:36:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51960
IP address blocks: 194.106.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ce:01:c1:22:4e:f7:ca:31:b4:47:73:be:f4:02:d0:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2b3022b514697b607b67b6ec0a44813f0f21218
Validity
Not Before: May 31 09:36:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20693066887f44f2d1eae9d7dbaf15d93319df67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:55:c0:5e:f9:87:45:16:84:13:ea:a4:80:f5:
a4:37:a7:e1:a1:0f:a5:f3:09:e7:68:91:89:69:2b:
eb:d2:71:6f:3f:77:ce:e5:2e:06:28:af:a7:72:7c:
cc:aa:9f:36:41:84:17:c6:c9:c5:cf:ef:08:25:1d:
e2:87:9a:cf:25:0e:c6:e0:80:52:e9:20:09:87:39:
d4:40:e0:10:a1:b1:86:ad:71:7b:8b:99:c7:07:54:
05:b2:c8:da:17:97:e8:d8:a9:64:58:84:39:6d:6d:
b3:05:a4:d6:85:04:01:08:07:25:b5:ce:71:ce:65:
d6:33:98:6c:d9:16:e7:ed:83:66:30:52:8f:92:8a:
e9:78:5d:74:fb:b2:8f:19:ea:c8:68:c1:fe:db:43:
e1:16:cc:30:b2:23:10:34:96:3e:24:29:02:f3:c8:
69:cd:0f:78:7d:e1:fa:19:2e:b0:5f:35:b1:70:e6:
ae:3d:64:03:76:43:73:58:f6:64:06:ea:d4:35:5f:
c9:15:0f:95:11:13:3d:b6:c3:cd:c0:29:fa:47:3b:
dc:30:5f:7a:2d:ce:bb:32:05:e4:89:44:75:c2:34:
2b:aa:e3:15:db:5e:18:77:ba:03:c7:c4:17:61:36:
8a:71:c8:5e:77:25:59:4a:42:ee:b6:08:0d:d4:c9:
3c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:69:30:66:88:7F:44:F2:D1:EA:E9:D7:DB:AF:15:D9:33:19:DF:67
X509v3 Authority Key Identifier:
keyid:C2:B3:02:2B:51:46:97:B6:07:B6:7B:6E:C0:A4:48:13:F0:F2:12:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wrMCK1FGl7YHtntuwKRIE_DyEhg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bef9e1-1345-4f75-9ccd-ea8ddaa1fbe4/1/IGkwZoh_RPLR6unX268V2TMZ32c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bef9e1-1345-4f75-9ccd-ea8ddaa1fbe4/1/wrMCK1FGl7YHtntuwKRIE_DyEhg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.106.198.0/24
Signature Algorithm: sha256WithRSAEncryption
49:71:82:7a:ca:ff:0a:4e:e5:28:77:a4:94:2e:39:f6:ec:74:
ba:b6:b4:00:f7:b8:a4:34:2d:9a:6a:90:b7:ec:92:1b:f9:6b:
b1:8e:f5:db:69:78:16:a9:bb:b2:88:6e:c1:95:43:e3:cf:81:
45:32:54:2e:ec:d6:90:aa:f0:4f:1a:32:f5:24:08:8f:b8:b0:
5d:bf:e7:ed:7d:54:ca:49:2e:5c:47:6c:56:29:30:46:63:07:
5d:b4:ac:86:bf:61:56:ee:96:18:b4:2d:60:65:90:ac:23:fd:
23:1a:38:c9:c2:db:64:6e:fa:8b:e9:00:8f:3f:0b:cc:b7:b9:
6b:da:31:82:07:c9:87:98:72:d4:15:61:84:cf:81:51:d7:42:
13:b1:ea:60:a9:1c:16:d9:b3:90:40:05:ee:40:85:05:59:52:
53:ee:59:b3:0b:71:d5:1e:71:09:1d:f2:f9:3e:cf:82:73:db:
70:16:fc:98:c8:18:e2:4e:11:9f:66:d6:91:ba:a9:9d:4a:fa:
46:ac:8a:3f:85:da:aa:6e:a8:b8:54:3b:e7:02:15:18:bc:53:
a8:85:7e:2a:16:ee:96:df:80:74:4d:db:2b:76:af:43:f2:bf:
f1:1a:42:a7:b2:f8:9a:e7:14:36:71:9a:df:f7:d0:da:2b:f5:
a8:28:03:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY/OAcEiTvfKMbRHc770AtCYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyYjMwMjJiNTE0Njk3YjYwN2I2N2I2ZWMwYTQ0ODEzZjBm
MjEyMTgwHhcNMjQwNTMxMDkzNjEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDY5MzA2Njg4N2Y0NGYyZDFlYWU5ZDdkYmFmMTVkOTMzMTlkZjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1XAXvmHRRaEE+qkgPWkN6fhoQ+l
8wnnaJGJaSvr0nFvP3fO5S4GKK+ncnzMqp82QYQXxsnFz+8IJR3ih5rPJQ7G4IBS
6SAJhznUQOAQobGGrXF7i5nHB1QFssjaF5fo2KlkWIQ5bW2zBaTWhQQBCAcltc5x
zmXWM5hs2Rbn7YNmMFKPkorpeF10+7KPGerIaMH+20PhFswwsiMQNJY+JCkC88hp
zQ94feH6GS6wXzWxcOauPWQDdkNzWPZkBurUNV/JFQ+VERM9tsPNwCn6RzvcMF96
Lc67MgXkiUR1wjQrquMV214Yd7oDx8QXYTaKcchedyVZSkLutggN1Mk8lwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCBpMGaIf0Ty0erp19uvFdkzGd9nMB8GA1UdIwQY
MBaAFMKzAitRRpe2B7Z7bsCkSBPw8hIYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3JNQ0sxRkdsN1lIdG50dXdLUklFX0R5RWhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iZWY5ZTEtMTM0NS00Zjc1LTljY2Qt
ZWE4ZGRhYTFmYmU0LzEvSUdrd1pvaF9SUExSNnVuWDI2OFYyVE1aMzJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9iZWY5ZTEtMTM0NS00Zjc1LTljY2QtZWE4ZGRhYTFmYmU0
LzEvd3JNQ0sxRkdsN1lIdG50dXdLUklFX0R5RWhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmrGMA0G
CSqGSIb3DQEBCwUAA4IBAQBJcYJ6yv8KTuUod6SULjn27HS6trQA97ikNC2aapC3
7JIb+WuxjvXbaXgWqbuyiG7BlUPjz4FFMlQu7NaQqvBPGjL1JAiPuLBdv+ftfVTK
SS5cR2xWKTBGYwddtKyGv2FW7pYYtC1gZZCsI/0jGjjJwttkbvqL6QCPPwvMt7lr
2jGCB8mHmHLUFWGEz4FR10ITsepgqRwW2bOQQAXuQIUFWVJT7lmzC3HVHnEJHfL5
Ps+Cc9twFvyYyBjiThGfZtaRuqmdSvpGrIo/hdqqbqi4VDvnAhUYvFOohX4qFu6W
34B0Tdsrdq9D8r/xGkKnsvia5xQ2cZrf99DaK/WoKAOH
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:27 2025 by rpki-client