Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/99cbcf-7d4f-4b12-a577-cc8054a51d66/1/ldqOvDLymZki6dBMo1ize2hYZFo.roa
File: ldqOvDLymZki6dBMo1ize2hYZFo.roa (raw, json)
Hash identifier: NJtas6gjIu9sffsqrAHoM3WPjK1c0jCFgE7Cr5EqxlU=
Subject key identifier: 95:DA:8E:BC:32:F2:99:99:22:E9:D0:4C:A3:58:B3:7B:68:58:64:5A
Certificate issuer: /CN=63be08da1ab31e3f98f554fa01373f94cc9011ed
Certificate serial: 019E4D1F
Authority key identifier: 63:BE:08:DA:1A:B3:1E:3F:98:F5:54:FA:01:37:3F:94:CC:90:11:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y74I2hqzHj-Y9VT6ATc_lMyQEe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/99cbcf-7d4f-4b12-a577-cc8054a51d66/1/ldqOvDLymZki6dBMo1ize2hYZFo.roa
Signing time: Sat 01 Jan 2022 15:06:02 +0000
ROA not before: Sat 01 Jan 2022 15:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 178.248.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27151647 (0x19e4d1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63be08da1ab31e3f98f554fa01373f94cc9011ed
Validity
Not Before: Jan 1 15:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95da8ebc32f2999922e9d04ca358b37b6858645a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:40:8c:99:5a:8c:3b:88:bb:4d:52:9c:fc:19:
88:ab:31:8c:8e:51:6f:94:c7:ec:c7:18:8f:39:08:
ce:66:e0:73:df:0a:0d:b5:d7:be:10:c9:71:55:92:
df:69:32:74:28:4c:1a:ff:90:4d:16:c4:1b:3d:0d:
4b:f9:75:02:89:6d:d7:8f:c6:2b:23:2a:56:1c:d0:
d0:0a:f2:5c:9e:6a:0a:ac:45:f9:7f:03:b7:24:89:
73:ff:f8:38:78:e8:95:e4:fd:4d:00:0e:db:47:df:
fb:cb:6f:09:90:1f:1c:f2:26:80:44:f5:52:ab:1f:
2d:71:87:fc:26:ed:5c:52:36:29:a2:6f:82:be:b0:
8d:86:66:27:8e:79:1e:f3:ff:93:91:c9:39:ee:e9:
24:22:e4:81:b5:e6:fd:44:fe:39:a1:9d:5b:4a:04:
45:a6:8a:bc:9a:5f:62:e4:8c:84:e3:db:a0:ff:62:
b8:60:62:d7:b4:61:95:36:bb:f1:82:65:a4:0d:62:
c7:14:f7:91:e0:d4:f6:b2:b0:21:60:be:5f:be:98:
2a:23:e8:8e:b2:0a:eb:95:d6:04:81:f2:d8:3b:5c:
73:7b:ec:d2:2b:bf:9c:22:9d:c8:4f:e3:89:30:60:
cb:cb:db:45:6d:fe:d9:f4:3a:2b:16:f7:97:b3:bd:
18:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DA:8E:BC:32:F2:99:99:22:E9:D0:4C:A3:58:B3:7B:68:58:64:5A
X509v3 Authority Key Identifier:
keyid:63:BE:08:DA:1A:B3:1E:3F:98:F5:54:FA:01:37:3F:94:CC:90:11:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y74I2hqzHj-Y9VT6ATc_lMyQEe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/99cbcf-7d4f-4b12-a577-cc8054a51d66/1/ldqOvDLymZki6dBMo1ize2hYZFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/99cbcf-7d4f-4b12-a577-cc8054a51d66/1/Y74I2hqzHj-Y9VT6ATc_lMyQEe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.155.0/24
Signature Algorithm: sha256WithRSAEncryption
71:04:6c:ff:cd:34:5a:e2:d1:ea:a4:f9:bd:bb:f9:37:e2:0e:
8c:b2:e9:7e:1d:7c:5a:97:cd:21:ba:a1:d3:32:0f:35:4c:84:
75:c0:05:74:ef:9d:81:2a:e5:1b:6f:59:14:b4:5c:7f:2a:f2:
30:3a:2e:63:8e:f5:92:e1:e4:d5:a5:09:9c:0c:da:48:f3:52:
6f:8e:09:ce:f2:c1:99:36:a1:5d:9e:ee:ba:01:01:67:01:9e:
74:50:e9:ff:cb:db:32:d9:9a:97:b9:b2:8e:72:f5:55:b5:5e:
8f:2b:3f:7c:28:a3:de:5e:16:8c:8f:9f:0e:b1:9a:12:b8:2a:
ff:a6:1b:c1:e1:fe:8a:55:ac:0e:21:41:63:66:53:d9:1d:e8:
d8:35:75:a2:e1:3b:28:f3:9a:9f:cd:92:41:06:00:13:72:88:
57:69:d2:57:7a:56:d3:a9:59:98:d6:99:ac:69:87:7a:4f:c8:
43:bc:5c:26:9f:f7:c9:a4:ff:b0:0c:98:6b:cf:23:5f:8c:72:
17:57:98:be:ab:b6:8c:02:ae:34:69:ee:03:11:50:51:9f:c9:
dd:12:29:77:f9:dc:9a:5d:25:03:b7:53:e8:6d:3a:d1:39:6a:
d7:66:4d:11:48:7b:87:d9:de:0d:a4:8d:a7:37:bb:b2:d0:4b:
28:9d:9b:01
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAZ5NHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2JlMDhkYTFhYjMxZTNmOThmNTU0ZmEwMTM3M2Y5NGNjOTAxMWVkMB4XDTIyMDEw
MTE1MDYwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTVkYThlYmMzMmYy
OTk5OTIyZTlkMDRjYTM1OGIzN2I2ODU4NjQ1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOZAjJlajDuIu01SnPwZiKsxjI5Rb5TH7McYjzkIzmbgc98K
DbXXvhDJcVWS32kydChMGv+QTRbEGz0NS/l1Aolt14/GKyMqVhzQ0AryXJ5qCqxF
+X8DtySJc//4OHjoleT9TQAO20ff+8tvCZAfHPImgET1UqsfLXGH/CbtXFI2KaJv
gr6wjYZmJ455HvP/k5HJOe7pJCLkgbXm/UT+OaGdW0oERaaKvJpfYuSMhOPboP9i
uGBi17RhlTa78YJlpA1ixxT3keDU9rKwIWC+X76YKiPojrIK65XWBIHy2Dtcc3vs
0iu/nCKdyE/jiTBgy8vbRW3+2fQ6Kxb3l7O9GJECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSV2o68MvKZmSLp0EyjWLN7aFhkWjAfBgNVHSMEGDAWgBRjvgjaGrMeP5j1
VPoBNz+UzJAR7TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1k3NEkyaHF6SGotWTlWVDZBVGNfbE15UUVlMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjQvOTljYmNmLTdkNGYtNGIxMi1hNTc3LWNjODA1NGE1MWQ2Ni8x
L2xkcU92REx5bVpraTZkQk1vMWl6ZTJoWVpGby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjQv
OTljYmNmLTdkNGYtNGIxMi1hNTc3LWNjODA1NGE1MWQ2Ni8xL1k3NEkyaHF6SGot
WTlWVDZBVGNfbE15UUVlMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALL4mzANBgkqhkiG9w0BAQsFAAOC
AQEAcQRs/800WuLR6qT5vbv5N+IOjLLpfh18WpfNIbqh0zIPNUyEdcAFdO+dgSrl
G29ZFLRcfyryMDouY471kuHk1aUJnAzaSPNSb44JzvLBmTahXZ7uugEBZwGedFDp
/8vbMtmal7myjnL1VbVejys/fCij3l4WjI+fDrGaErgq/6YbweH+ilWsDiFBY2ZT
2R3o2DV1ouE7KPOan82SQQYAE3KIV2nSV3pW06lZmNaZrGmHek/IQ7xcJp/3yaT/
sAyYa88jX4xyF1eYvqu2jAKuNGnuAxFQUZ/J3RIpd/ncml0lA7dT6G060Tlq12ZN
EUh7h9neDaSNpze7stBLKJ2bAQ==
-----END CERTIFICATE-----
Generated at Tue Apr 8 11:13:38 2025 by rpki-client