Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/tIRGV1d2T8vpZcEr5yhT7qzzmu8.roa
File: tIRGV1d2T8vpZcEr5yhT7qzzmu8.roa (raw, json)
Hash identifier: k7phpFXieBGnmSKu+QsLBAEm2dEA+/STqbnwyEif0CA=
Subject key identifier: B4:84:46:57:57:76:4F:CB:E9:65:C1:2B:E7:28:53:EE:AC:F3:9A:EF
Certificate issuer: /CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Certificate serial: 01941F8C2FE64ADB0278FEE31328B937C83F
Authority key identifier: 59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/tIRGV1d2T8vpZcEr5yhT7qzzmu8.roa
Signing time: Wed 01 Jan 2025 01:47:48 +0000
ROA not before: Wed 01 Jan 2025 01:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21190
IP address blocks: 194.56.100.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:2f:e6:4a:db:02:78:fe:e3:13:28:b9:37:c8:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Validity
Not Before: Jan 1 01:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b484465757764fcbe965c12be72853eeacf39aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:79:27:74:45:84:13:1a:ba:b7:e5:e7:2d:da:
98:c3:e8:d0:2b:58:73:0c:9f:f2:cc:0e:72:19:75:
8a:07:a9:59:08:d7:1f:f8:0c:1a:a7:5a:d8:71:ed:
1a:79:8a:3c:88:7c:d0:1a:b4:e1:07:c9:d8:db:11:
09:20:b8:03:93:41:e0:0e:2d:eb:78:0b:16:ad:53:
85:fb:7d:83:f2:14:80:72:7e:46:aa:a7:33:92:ab:
16:2b:52:7d:62:5c:e7:f2:25:aa:09:9c:df:b2:20:
98:5b:64:3e:6e:71:86:9e:66:e5:17:6f:57:04:ba:
d6:24:07:52:4f:72:39:7e:05:f7:fa:1f:79:44:34:
a6:a5:81:fc:5f:75:5e:a1:a4:3c:53:cc:74:b9:70:
da:aa:32:fb:f1:0d:1c:7b:d2:d1:e3:82:6d:9a:f0:
e0:b6:8d:b0:67:99:a5:9e:42:88:d7:12:63:96:88:
e5:c1:52:bd:30:4d:f1:01:1c:d0:c0:91:f1:a5:bb:
5e:6b:12:dc:d2:a6:fc:15:02:b1:b1:72:ba:28:2f:
f6:23:dc:f5:11:39:8f:51:23:c2:ce:53:ae:6e:dc:
dd:7c:fd:19:47:95:7f:5e:f5:a9:19:83:50:7e:10:
f2:a2:a4:6a:fd:16:ff:39:a1:ab:dc:b8:8b:79:a1:
59:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:84:46:57:57:76:4F:CB:E9:65:C1:2B:E7:28:53:EE:AC:F3:9A:EF
X509v3 Authority Key Identifier:
keyid:59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/tIRGV1d2T8vpZcEr5yhT7qzzmu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.100.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:7e:58:1b:6e:6f:ce:8b:e1:54:e6:2e:3b:15:c9:8c:4f:c9:
a0:03:1e:77:ed:e1:3e:54:b5:e6:cd:5a:ae:a8:06:e3:d6:4a:
02:a8:0f:9b:c0:35:8d:36:f3:90:3a:f0:fd:0d:62:68:9c:5d:
69:3b:fd:5b:02:ca:fd:91:a6:3f:66:df:f5:63:74:26:85:c0:
63:e6:63:81:8d:bd:d9:1d:71:cb:da:66:35:ed:54:74:c4:60:
1c:f4:ce:dc:01:d7:3a:cb:d4:9c:d6:2e:f1:29:a4:dd:8e:dc:
23:ba:ea:47:a4:76:a7:2b:a6:dd:51:85:45:5b:f1:e8:1f:3f:
9e:29:e7:4b:65:e1:66:e6:3b:29:41:11:53:4e:4c:26:35:0b:
bf:34:a1:fb:b5:02:e8:16:a1:6e:b2:da:b8:7b:f2:10:cf:90:
45:94:94:5d:e4:64:a0:a3:83:b3:3a:63:e3:a5:ec:81:43:15:
e0:9a:08:01:5a:ed:48:cf:20:98:71:11:d5:be:bc:63:be:56:
3d:5a:28:d8:04:7f:47:37:1d:8d:be:d2:c8:15:bb:f0:4c:96:
90:b6:89:cf:43:70:8b:54:ad:db:b7:68:ca:25:c9:34:8a:a9:
85:48:18:8c:1a:d0:62:c4:7d:6a:66:05:a9:22:c0:77:ef:6d:
7e:a0:db:75
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjC/mStsCeP7jEyi5N8g/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5ZjkxNWFlM2UyMjE2YmUzMzhmNjMzNDUzMmY5MzgwY2Zk
MmY0MGEwHhcNMjUwMTAxMDE0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDg0NDY1NzU3NzY0ZmNiZTk2NWMxMmJlNzI4NTNlZWFjZjM5YWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3kndEWEExq6t+XnLdqYw+jQK1hz
DJ/yzA5yGXWKB6lZCNcf+Awap1rYce0aeYo8iHzQGrThB8nY2xEJILgDk0HgDi3r
eAsWrVOF+32D8hSAcn5GqqczkqsWK1J9Ylzn8iWqCZzfsiCYW2Q+bnGGnmblF29X
BLrWJAdST3I5fgX3+h95RDSmpYH8X3VeoaQ8U8x0uXDaqjL78Q0ce9LR44JtmvDg
to2wZ5mlnkKI1xJjlojlwVK9ME3xARzQwJHxpbteaxLc0qb8FQKxsXK6KC/2I9z1
ETmPUSPCzlOubtzdfP0ZR5V/XvWpGYNQfhDyoqRq/Rb/OaGr3LiLeaFZswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLSERldXdk/L6WXBK+coU+6s85rvMB8GA1UdIwQY
MBaAFFn5Fa4+Iha+M49jNFMvk4DP0vQKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2ZrVnJqNGlGcjR6ajJNMFV5LVRnTV9TOUFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9hYTIzMTEtYjFjZC00ZDE4LWFlYmIt
YTNmMjMyNGY2ZDhjLzEvdElSR1YxZDJUOHZwWmNFcjV5aFQ3cXp6bXU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9hYTIzMTEtYjFjZC00ZDE4LWFlYmItYTNmMjMyNGY2ZDhj
LzEvV2ZrVnJqNGlGcjR6ajJNMFV5LVRnTV9TOUFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwjhkMA0G
CSqGSIb3DQEBCwUAA4IBAQBfflgbbm/Oi+FU5i47FcmMT8mgAx537eE+VLXmzVqu
qAbj1koCqA+bwDWNNvOQOvD9DWJonF1pO/1bAsr9kaY/Zt/1Y3QmhcBj5mOBjb3Z
HXHL2mY17VR0xGAc9M7cAdc6y9Sc1i7xKaTdjtwjuupHpHanK6bdUYVFW/HoHz+e
KedLZeFm5jspQRFTTkwmNQu/NKH7tQLoFqFustq4e/IQz5BFlJRd5GSgo4OzOmPj
peyBQxXgmggBWu1IzyCYcRHVvrxjvlY9WijYBH9HNx2NvtLIFbvwTJaQtonPQ3CL
VK3bt2jKJck0iqmFSBiMGtBixH1qZgWpIsB3721+oNt1
-----END CERTIFICATE-----
Generated at Fri Apr 11 21:21:22 2025 by rpki-client