Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/1l5hKsscQfaRMP-MBwa1xHaVVtg.roa
File: 1l5hKsscQfaRMP-MBwa1xHaVVtg.roa (raw, json)
Hash identifier: 56+ZRF6Iuvdg4xWQ7iWfmOEuKiqZTTV3DrYYFnaNpns=
Subject key identifier: D6:5E:61:2A:CB:1C:41:F6:91:30:FF:8C:07:06:B5:C4:76:95:56:D8
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B23575BD806C15B0046B0DDEAA412C
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/1l5hKsscQfaRMP-MBwa1xHaVVtg.roa
Signing time: Wed 01 Jan 2025 11:48:34 +0000
ROA not before: Wed 01 Jan 2025 11:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206526
IP address blocks: 82.177.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:35:75:bd:80:6c:15:b0:04:6b:0d:de:aa:41:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d65e612acb1c41f69130ff8c0706b5c4769556d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ec:c9:ac:d0:26:e0:b3:fd:bc:b0:66:38:0b:
c4:09:39:11:33:f8:ad:51:d0:ba:f5:87:1e:ad:16:
b2:11:f2:10:3c:71:74:4f:79:e3:12:57:aa:87:c5:
a4:1f:9e:ca:07:4e:63:c8:81:c9:15:19:5e:25:aa:
10:49:99:22:a5:66:13:87:4a:3d:8b:12:28:51:4d:
b2:f5:05:f4:8f:c9:65:de:d9:02:2f:a7:1c:98:d5:
cd:40:14:b9:2f:e8:d1:d9:36:28:c7:75:17:80:95:
40:12:f9:57:11:8a:6e:be:21:52:01:98:e6:dd:8c:
ce:68:ce:d1:88:7e:dd:7e:14:84:23:a2:74:b4:91:
38:d2:ac:44:c0:9c:a0:03:0a:68:4d:f7:b9:5c:1b:
23:08:cb:cc:79:d9:bb:1a:5b:85:8a:ef:0b:39:02:
78:c9:65:59:21:0f:ce:52:75:dd:dd:ec:db:98:75:
3d:d4:8d:72:6c:13:ab:da:18:08:5f:98:8a:b0:53:
0a:5a:70:4c:79:0b:6f:0e:12:ee:12:d8:69:19:a2:
2c:7a:c3:48:8a:56:44:16:66:f4:9a:a6:5d:14:15:
b2:50:4f:59:56:5e:ff:2f:de:fb:16:67:62:ed:74:
a3:4a:d1:8a:e9:5c:57:ca:4e:ed:72:d6:29:4c:b1:
0b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:5E:61:2A:CB:1C:41:F6:91:30:FF:8C:07:06:B5:C4:76:95:56:D8
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/1l5hKsscQfaRMP-MBwa1xHaVVtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.251.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:db:ae:80:bc:f1:85:59:6c:3e:d2:ac:17:ac:0e:22:00:fe:
40:88:f0:5b:c1:74:27:f1:8f:64:83:2e:97:28:79:ed:8c:50:
c1:31:6b:ad:6f:35:1d:32:e9:23:23:64:12:86:b8:47:2f:a4:
d5:20:30:93:68:30:e3:09:b0:87:50:73:0f:4a:b0:d1:d6:f5:
fa:e3:57:d0:8d:d2:85:ba:df:e2:f3:3f:67:64:27:d6:3a:03:
1c:c0:48:06:a3:b9:53:91:19:10:7e:99:84:d8:e8:64:62:c6:
79:aa:fb:4e:92:fa:10:f2:e1:96:b2:61:5d:db:f6:20:9e:b7:
08:97:c4:c4:85:61:cf:d2:cd:86:41:ff:29:fa:e4:80:84:6a:
e3:ae:77:17:a0:f6:30:33:72:dd:c4:2b:1d:e4:65:eb:66:e4:
a8:4e:67:6e:33:fd:81:aa:11:d8:02:0d:a4:74:98:42:89:c6:
8f:78:88:a5:ff:ae:23:c2:5c:79:c9:6a:38:86:98:54:a1:d7:
99:bc:25:2d:ea:93:bf:fc:96:db:f4:6b:05:15:ca:fd:38:2c:
cf:20:ed:ff:c9:de:d8:81:55:64:bc:34:9a:03:0a:7e:41:61:
1b:5b:2a:23:b1:60:46:58:25:bc:7b:cb:89:a3:0c:25:b6:8b:
2d:b1:4a:8b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsjV1vYBsFbAEaw3eqkEsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NjgzNGU2ODg5MGYzOTg2YTFiMDQ1N2NlMGY1NGFlMDNj
MmQ3NmIwHhcNMjUwMTAxMTE0ODM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNjVlNjEyYWNiMWM0MWY2OTEzMGZmOGMwNzA2YjVjNDc2OTU1NmQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOzJrNAm4LP9vLBmOAvECTkRM/it
UdC69YcerRayEfIQPHF0T3njEleqh8WkH57KB05jyIHJFRleJaoQSZkipWYTh0o9
ixIoUU2y9QX0j8ll3tkCL6ccmNXNQBS5L+jR2TYox3UXgJVAEvlXEYpuviFSAZjm
3YzOaM7RiH7dfhSEI6J0tJE40qxEwJygAwpoTfe5XBsjCMvMedm7GluFiu8LOQJ4
yWVZIQ/OUnXd3ezbmHU91I1ybBOr2hgIX5iKsFMKWnBMeQtvDhLuEthpGaIsesNI
ilZEFmb0mqZdFBWyUE9ZVl7/L977Fmdi7XSjStGK6VxXyk7tctYpTLELPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNZeYSrLHEH2kTD/jAcGtcR2lVbYMB8GA1UdIwQY
MBaAFFRoNOaIkPOYahsEV84PVK4DwtdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQt
NTI3NjZiMjRiYWE0LzEvMWw1aEtzc2NRZmFSTVAtTUJ3YTF4SGFWVnRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQtNTI3NjZiMjRiYWE0
LzEvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUrH7MA0G
CSqGSIb3DQEBCwUAA4IBAQB/266AvPGFWWw+0qwXrA4iAP5AiPBbwXQn8Y9kgy6X
KHntjFDBMWutbzUdMukjI2QShrhHL6TVIDCTaDDjCbCHUHMPSrDR1vX641fQjdKF
ut/i8z9nZCfWOgMcwEgGo7lTkRkQfpmE2OhkYsZ5qvtOkvoQ8uGWsmFd2/YgnrcI
l8TEhWHP0s2GQf8p+uSAhGrjrncXoPYwM3LdxCsd5GXrZuSoTmduM/2BqhHYAg2k
dJhCicaPeIil/64jwlx5yWo4hphUodeZvCUt6pO//Jbb9GsFFcr9OCzPIO3/yd7Y
gVVkvDSaAwp+QWEbWyojsWBGWCW8e8uJowwltostsUqL
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:19 2025 by rpki-client