Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/C03oYsQeKmNqstjprcrpWU_C_FA.roa
File: C03oYsQeKmNqstjprcrpWU_C_FA.roa (raw, json)
Hash identifier: XjHgFgaeV7edOP+rVRUhxH/PoL1vk7vdaF1YjoWE+DE=
Subject key identifier: 0B:4D:E8:62:C4:1E:2A:63:6A:B2:D8:E9:AD:CA:E9:59:4F:C2:FC:50
Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635
Certificate serial: 019421B2524E058506BB0B7147D9959B37FB
Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/C03oYsQeKmNqstjprcrpWU_C_FA.roa
Signing time: Wed 01 Jan 2025 11:48:42 +0000
ROA not before: Wed 01 Jan 2025 11:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 185.172.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:52:4e:05:85:06:bb:0b:71:47:d9:95:9b:37:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635
Validity
Not Before: Jan 1 11:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0b4de862c41e2a636ab2d8e9adcae9594fc2fc50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c6:91:5a:30:71:1b:af:22:2e:e6:a6:2b:58:
af:43:93:26:e5:78:f7:53:f9:56:1d:6d:38:ad:01:
bd:75:7e:ee:b9:17:c3:dd:a6:e4:33:6e:22:f2:c8:
e1:cb:f2:f2:56:e5:2c:cc:59:36:b6:cf:1f:a2:23:
6b:29:ba:36:c5:c1:94:3b:57:ce:53:2c:91:10:12:
c8:19:70:56:0f:7e:dc:0b:9d:ad:8b:05:07:68:ee:
2a:e3:98:08:6c:34:40:60:62:b0:da:8c:92:b8:74:
d0:d5:68:d3:38:a9:69:46:c0:e0:64:65:22:bd:dd:
9e:e5:87:31:cc:9d:53:56:13:48:8f:27:2d:cd:71:
9f:95:b2:ae:f4:51:45:43:ac:36:8e:1e:2a:03:5c:
be:00:24:28:e3:80:3d:a2:cf:02:6c:7b:4b:8d:68:
ea:f8:09:79:1c:91:3e:a4:4b:54:e9:ad:10:83:91:
c6:ff:45:b9:47:2e:66:70:48:31:d1:29:e1:fe:1f:
3d:5e:b3:33:e5:23:ee:f1:90:3a:1b:00:2b:b2:67:
b5:f1:7e:4b:55:26:76:38:7b:47:5e:70:1d:00:0c:
22:df:1a:bd:b4:93:d6:7c:ea:ee:37:81:c5:19:96:
b0:ff:e3:25:8b:1e:6e:b7:c3:99:5b:71:04:e8:8e:
bf:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:4D:E8:62:C4:1E:2A:63:6A:B2:D8:E9:AD:CA:E9:59:4F:C2:FC:50
X509v3 Authority Key Identifier:
keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/C03oYsQeKmNqstjprcrpWU_C_FA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.152.0/22
Signature Algorithm: sha256WithRSAEncryption
19:c1:1e:23:5c:5e:28:41:c1:af:bc:17:7f:80:4e:54:49:7e:
7a:05:32:57:c7:cf:10:cb:c4:fd:6c:62:76:ce:69:bf:60:6f:
1a:2a:86:82:09:d5:7a:d1:17:09:a5:76:59:4f:f8:8f:26:99:
aa:d8:d6:9a:16:57:af:f0:b5:7b:c4:9e:c9:96:af:1f:b1:c3:
54:8e:4a:df:47:cb:4d:d2:6c:9d:e5:1c:e9:fe:15:c4:fe:30:
4a:14:f2:e9:88:dc:2c:5d:c8:f3:95:eb:a3:ac:9c:4a:4f:12:
5b:98:f6:04:b0:93:a2:bd:ae:94:3d:2e:d3:71:27:c3:55:5b:
1c:47:6e:82:59:11:8d:4a:7d:87:65:53:33:34:20:e2:f6:ed:
f7:fc:10:9a:95:25:5a:74:dd:48:fa:89:4f:d4:c8:45:e4:e5:
39:f9:37:c7:6f:17:a9:1e:6a:54:34:83:57:7d:1b:8a:fe:16:
2a:24:82:c9:76:8a:b5:2e:ba:01:2d:b8:b6:d5:8c:3f:80:df:
16:b5:b3:ff:6c:a3:db:25:a5:43:ee:e6:3b:ce:61:f7:66:28:
09:d9:42:66:28:95:7e:c9:16:28:53:77:d8:c2:e0:e3:ad:01:
b9:55:05:9c:ed:32:5b:dc:76:55:ed:87:a5:fa:fc:4e:c6:c5:
07:e4:13:85
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhslJOBYUGuwtxR9mVmzf7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2MWI5NDFkYmU1OTY1MWZhZmJiYTk3MjRhMTI3NzVlMDdl
ZGI2MzUwHhcNMjUwMTAxMTE0ODQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjRkZTg2MmM0MWUyYTYzNmFiMmQ4ZTlhZGNhZTk1OTRmYzJmYzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MaRWjBxG68iLuamK1ivQ5Mm5Xj3
U/lWHW04rQG9dX7uuRfD3abkM24i8sjhy/LyVuUszFk2ts8foiNrKbo2xcGUO1fO
UyyREBLIGXBWD37cC52tiwUHaO4q45gIbDRAYGKw2oySuHTQ1WjTOKlpRsDgZGUi
vd2e5YcxzJ1TVhNIjyctzXGflbKu9FFFQ6w2jh4qA1y+ACQo44A9os8CbHtLjWjq
+Al5HJE+pEtU6a0Qg5HG/0W5Ry5mcEgx0Snh/h89XrMz5SPu8ZA6GwArsme18X5L
VSZ2OHtHXnAdAAwi3xq9tJPWfOruN4HFGZaw/+Mlix5ut8OZW3EE6I6/UwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAtN6GLEHipjarLY6a3K6VlPwvxQMB8GA1UdIwQY
MBaAFCYblB2+WWUfr7upckoSd14H7bY1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmh1VUhiNVpaUi12dTZseVNoSjNYZ2Z0dGpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8yZjgzMGYtYWY0ZC00ZDMzLWEzMDAt
Yjk4ZGY1NDRiYzIwLzEvQzAzb1lzUWVLbU5xc3RqcHJjcnBXVV9DX0ZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My8yZjgzMGYtYWY0ZC00ZDMzLWEzMDAtYjk4ZGY1NDRiYzIw
LzEvSmh1VUhiNVpaUi12dTZseVNoSjNYZ2Z0dGpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuayYMA0G
CSqGSIb3DQEBCwUAA4IBAQAZwR4jXF4oQcGvvBd/gE5USX56BTJXx88Qy8T9bGJ2
zmm/YG8aKoaCCdV60RcJpXZZT/iPJpmq2NaaFlev8LV7xJ7Jlq8fscNUjkrfR8tN
0myd5Rzp/hXE/jBKFPLpiNwsXcjzleujrJxKTxJbmPYEsJOiva6UPS7TcSfDVVsc
R26CWRGNSn2HZVMzNCDi9u33/BCalSVadN1I+olP1MhF5OU5+TfHbxepHmpUNINX
fRuK/hYqJILJdoq1LroBLbi21Yw/gN8WtbP/bKPbJaVD7uY7zmH3ZigJ2UJmKJV+
yRYoU3fYwuDjrQG5VQWc7TJb3HZV7Yel+vxOxsUH5BOF
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:33:20 2025 by rpki-client