Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/2fcc92-c967-4a65-a434-5e36d1b0825e/1/PrynGxhd3fBYSysYytSLlNvgiPU.roa
File: PrynGxhd3fBYSysYytSLlNvgiPU.roa (raw, json)
Hash identifier: c1xBK/MstkcP/5fvaGRoD60yvfbDsZTSPuvQcmy7U14=
Subject key identifier: 3E:BC:A7:1B:18:5D:DD:F0:58:4B:2B:18:CA:D4:8B:94:DB:E0:88:F5
Certificate issuer: /CN=5380cd8ad2f84e14e9b5b64238937b6d4207e221
Certificate serial: 0194214418E26FCB9D7623691416EFC2B440
Authority key identifier: 53:80:CD:8A:D2:F8:4E:14:E9:B5:B6:42:38:93:7B:6D:42:07:E2:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4DNitL4ThTptbZCOJN7bUIH4iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/2fcc92-c967-4a65-a434-5e36d1b0825e/1/PrynGxhd3fBYSysYytSLlNvgiPU.roa
Signing time: Wed 01 Jan 2025 09:48:18 +0000
ROA not before: Wed 01 Jan 2025 09:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198381
IP address blocks: 185.12.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:18:e2:6f:cb:9d:76:23:69:14:16:ef:c2:b4:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5380cd8ad2f84e14e9b5b64238937b6d4207e221
Validity
Not Before: Jan 1 09:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3ebca71b185dddf0584b2b18cad48b94dbe088f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ec:eb:d6:66:e9:e9:94:b1:5f:27:ea:5c:f5:
1a:72:77:8d:19:6f:56:ec:07:de:48:ea:c2:0f:00:
e1:5a:8f:33:32:94:15:ef:c0:bb:98:3c:37:1a:53:
9b:41:98:5f:c6:57:59:98:4c:a7:d4:a3:34:db:30:
e3:97:79:aa:79:3e:4c:1f:2f:f4:c3:95:2f:ab:09:
53:3c:6e:3c:8d:d8:0c:25:6b:be:bc:b3:8b:2d:cc:
2c:af:86:be:e3:75:95:1e:5e:40:91:15:b8:25:37:
84:2d:18:87:98:8c:df:08:54:0f:d0:0a:b1:fd:c5:
ed:f5:2e:c5:ae:f0:59:f7:ad:60:03:27:86:97:ec:
51:13:9f:18:f2:51:9e:b3:4d:ff:19:a3:4c:97:ed:
5c:7a:fe:21:78:ec:f9:60:f8:8c:22:96:14:e6:af:
dd:97:66:7a:a1:33:25:a5:60:bb:e2:44:4d:b1:30:
55:98:0f:43:ad:69:63:c9:a9:62:0b:97:90:4d:fa:
d8:14:7a:1d:03:67:a0:18:90:0e:61:e2:da:f8:ec:
5f:ea:a9:f8:e4:07:6f:2c:7e:7c:4b:be:50:0f:28:
c6:ff:54:d5:d1:62:7c:2f:8d:76:3d:9a:dd:ba:3d:
88:72:61:5b:08:b8:b9:ac:3c:05:81:51:52:d3:bb:
bd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BC:A7:1B:18:5D:DD:F0:58:4B:2B:18:CA:D4:8B:94:DB:E0:88:F5
X509v3 Authority Key Identifier:
keyid:53:80:CD:8A:D2:F8:4E:14:E9:B5:B6:42:38:93:7B:6D:42:07:E2:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4DNitL4ThTptbZCOJN7bUIH4iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2fcc92-c967-4a65-a434-5e36d1b0825e/1/PrynGxhd3fBYSysYytSLlNvgiPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2fcc92-c967-4a65-a434-5e36d1b0825e/1/U4DNitL4ThTptbZCOJN7bUIH4iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.27.0/24
Signature Algorithm: sha256WithRSAEncryption
92:43:c2:6e:63:04:4c:b9:18:0c:90:96:7d:46:d5:f0:5e:a9:
49:4b:b7:11:96:3c:b3:25:46:cb:e9:e3:8d:36:41:ff:0a:15:
9b:d3:f8:bf:5a:1d:a4:4d:b7:e8:6f:d1:f8:30:be:aa:72:2c:
3f:10:76:8c:a9:82:b6:69:74:f3:9b:a1:ce:51:d3:3a:af:1c:
6f:08:cf:c4:86:20:1b:66:ea:5b:18:58:25:e0:a4:60:24:6f:
32:16:59:b6:14:76:db:57:a3:e0:1a:cd:13:95:ec:cf:8a:c3:
80:f3:3b:53:d7:14:be:aa:aa:4b:a1:46:39:7f:d0:a6:c1:96:
a6:86:62:4f:cb:0b:3d:cb:ff:e8:34:b3:88:4b:e6:23:ad:5e:
f5:27:19:e1:20:9e:87:cc:95:28:d4:82:65:75:07:f9:a2:f0:
2c:0d:54:50:70:11:c6:2c:94:30:4a:d1:27:06:c0:1d:7f:bd:
7a:9f:94:3f:8e:2d:33:db:5e:a8:93:29:d6:07:9a:b6:35:af:
1c:5e:8e:e1:9e:e3:a3:c6:22:bb:b9:b3:8f:ca:06:87:08:0e:
b6:f1:88:95:8f:e1:00:dc:7b:b2:b2:4e:23:f0:9e:ab:b6:b3:
49:75:aa:53:51:18:f1:61:54:a9:b9:f2:18:cf:5e:53:cc:ed:
98:f5:87:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhRBjib8uddiNpFBbvwrRAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzODBjZDhhZDJmODRlMTRlOWI1YjY0MjM4OTM3YjZkNDIw
N2UyMjEwHhcNMjUwMTAxMDk0ODE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWJjYTcxYjE4NWRkZGYwNTg0YjJiMThjYWQ0OGI5NGRiZTA4OGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+zr1mbp6ZSxXyfqXPUacneNGW9W
7AfeSOrCDwDhWo8zMpQV78C7mDw3GlObQZhfxldZmEyn1KM02zDjl3mqeT5MHy/0
w5UvqwlTPG48jdgMJWu+vLOLLcwsr4a+43WVHl5AkRW4JTeELRiHmIzfCFQP0Aqx
/cXt9S7FrvBZ961gAyeGl+xRE58Y8lGes03/GaNMl+1cev4heOz5YPiMIpYU5q/d
l2Z6oTMlpWC74kRNsTBVmA9DrWljyaliC5eQTfrYFHodA2egGJAOYeLa+Oxf6qn4
5AdvLH58S75QDyjG/1TV0WJ8L412PZrduj2IcmFbCLi5rDwFgVFS07u99wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD68pxsYXd3wWEsrGMrUi5Tb4Ij1MB8GA1UdIwQY
MBaAFFOAzYrS+E4U6bW2QjiTe21CB+IhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTRETml0TDRUaFRwdGJaQ09KTjdiVUlINGlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8yZmNjOTItYzk2Ny00YTY1LWE0MzQt
NWUzNmQxYjA4MjVlLzEvUHJ5bkd4aGQzZkJZU3lzWXl0U0xsTnZnaVBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8yZmNjOTItYzk2Ny00YTY1LWE0MzQtNWUzNmQxYjA4MjVl
LzEvVTRETml0TDRUaFRwdGJaQ09KTjdiVUlINGlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQwbMA0G
CSqGSIb3DQEBCwUAA4IBAQCSQ8JuYwRMuRgMkJZ9RtXwXqlJS7cRljyzJUbL6eON
NkH/ChWb0/i/Wh2kTbfob9H4ML6qciw/EHaMqYK2aXTzm6HOUdM6rxxvCM/EhiAb
ZupbGFgl4KRgJG8yFlm2FHbbV6PgGs0TlezPisOA8ztT1xS+qqpLoUY5f9CmwZam
hmJPyws9y//oNLOIS+YjrV71JxnhIJ6HzJUo1IJldQf5ovAsDVRQcBHGLJQwStEn
BsAdf716n5Q/ji0z216okynWB5q2Na8cXo7hnuOjxiK7ubOPygaHCA628YiVj+EA
3Huysk4j8J6rtrNJdapTURjxYVSpufIYz15TzO2Y9Yfa
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:44:58 2025 by rpki-client