Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/5Vhz8Hr2lBYBGx-5xRqwWzl2doo.roa
File: 5Vhz8Hr2lBYBGx-5xRqwWzl2doo.roa (raw, json)
Hash identifier: t0i4w8F7H9vzITADhlgAGe8YBFiHERH7LVLNbvHN3EA=
Subject key identifier: E5:58:73:F0:7A:F6:94:16:01:1B:1F:B9:C5:1A:B0:5B:39:76:76:8A
Certificate issuer: /CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Certificate serial: 01896D552FB0FFE91EEEAC4179E381C622E6
Authority key identifier: 5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/5Vhz8Hr2lBYBGx-5xRqwWzl2doo.roa
Signing time: Wed 19 Jul 2023 08:47:26 +0000
ROA not before: Wed 19 Jul 2023 08:47:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197927
IP address blocks: 130.255.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:55:2f:b0:ff:e9:1e:ee:ac:41:79:e3:81:c6:22:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Validity
Not Before: Jul 19 08:47:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e55873f07af69416011b1fb9c51ab05b3976768a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5b:83:3a:71:36:49:c8:48:c8:5c:81:72:e4:
cb:7d:5e:a8:32:79:63:8e:e5:82:07:13:7e:fc:2b:
f5:bc:90:a0:52:5b:fd:a0:27:79:66:40:d1:2f:35:
cd:aa:fa:ed:10:5d:ff:9c:f8:41:00:ed:9b:d9:bb:
88:ac:ad:f5:12:bb:15:9c:b0:2c:9f:d4:1b:24:17:
20:fd:02:22:1d:5b:ac:6d:5f:6e:f2:00:fa:f7:ea:
ac:ac:7c:12:6d:8e:8c:7c:e0:7b:b5:c9:42:03:45:
7b:8a:bb:21:a6:9f:b4:88:9b:32:d4:1d:3c:48:8b:
7d:e3:fb:73:41:59:8e:c4:45:69:39:c5:f3:a5:59:
d7:0d:d4:4c:7f:a1:ab:eb:bd:98:66:6d:f1:a7:8b:
db:9c:f9:64:aa:76:85:ff:3f:ac:69:74:e8:80:ae:
26:ba:b6:52:b1:37:e4:f9:5c:5c:29:cc:e4:fd:8a:
80:dd:94:57:74:8a:b5:fe:2d:0d:dd:8f:3b:db:f2:
f3:74:cf:9f:b4:c9:8e:ab:21:f6:49:b5:0d:64:05:
af:b8:72:53:99:84:5f:39:75:30:be:ef:be:80:9f:
4b:a3:90:89:df:01:7c:fe:5c:ea:3f:9d:7d:1d:b3:
9e:09:af:a8:f0:d8:34:db:ae:09:c9:39:f5:c0:74:
54:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:58:73:F0:7A:F6:94:16:01:1B:1F:B9:C5:1A:B0:5B:39:76:76:8A
X509v3 Authority Key Identifier:
keyid:5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/5Vhz8Hr2lBYBGx-5xRqwWzl2doo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/XvEE_EsLXAgnLjrng7jNd3uiqpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.174.0/24
Signature Algorithm: sha256WithRSAEncryption
27:fc:a2:ce:27:60:2c:e1:e7:7c:80:ea:cf:9f:74:05:e1:8d:
42:45:19:1a:64:41:2b:05:a2:bc:07:f4:77:23:99:9c:ee:34:
30:41:6e:c7:97:0e:53:76:e1:9d:0c:83:9d:ba:c6:17:1f:f5:
46:c0:92:30:5e:f2:15:92:7d:f3:91:99:d4:9b:73:c5:cd:ac:
46:b0:3b:88:8a:ec:90:3b:16:e2:9a:6e:33:23:10:55:d2:74:
75:51:1b:7f:97:3c:f2:00:fa:9a:e9:90:22:bf:0a:69:33:f7:
f7:9f:4a:5a:fe:85:1b:bd:bc:30:8a:9f:f4:1d:8a:3f:bb:f3:
a3:83:2d:07:bd:88:25:e8:04:28:32:21:87:ee:7b:94:4b:12:
bd:27:56:08:b9:d8:1e:51:6c:5a:46:8a:d0:e9:76:95:43:fc:
d5:dc:76:6a:1c:3f:22:b3:cd:2c:04:d1:a6:bf:31:78:f9:c6:
42:82:c8:1b:03:01:0d:9b:90:85:8c:f7:9d:2f:75:b4:f1:13:
75:a4:dc:f7:60:fe:19:3f:50:ac:83:fe:f0:d8:45:4a:c2:86:
1a:23:fc:da:6a:94:46:a5:9c:d6:73:de:c5:4e:28:9b:01:70:
9c:53:c8:5d:d1:7b:31:2f:f3:37:5c:88:3b:c9:91:12:54:8e:
eb:7b:ed:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYltVS+w/+ke7qxBeeOBxiLmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZjEwNGZjNGIwYjVjMDgyNzJlM2FlNzgzYjhjZDc3N2Jh
MmFhOTAwHhcNMjMwNzE5MDg0NzI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTU4NzNmMDdhZjY5NDE2MDExYjFmYjljNTFhYjA1YjM5NzY3NjhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiFuDOnE2SchIyFyBcuTLfV6oMnlj
juWCBxN+/Cv1vJCgUlv9oCd5ZkDRLzXNqvrtEF3/nPhBAO2b2buIrK31ErsVnLAs
n9QbJBcg/QIiHVusbV9u8gD69+qsrHwSbY6MfOB7tclCA0V7irshpp+0iJsy1B08
SIt94/tzQVmOxEVpOcXzpVnXDdRMf6Gr672YZm3xp4vbnPlkqnaF/z+saXTogK4m
urZSsTfk+VxcKczk/YqA3ZRXdIq1/i0N3Y872/LzdM+ftMmOqyH2SbUNZAWvuHJT
mYRfOXUwvu++gJ9Lo5CJ3wF8/lzqP519HbOeCa+o8Ng0264JyTn1wHRUAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOVYc/B69pQWARsfucUasFs5dnaKMB8GA1UdIwQY
MBaAFF7xBPxLC1wIJy4654O4zXd7oqqQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHZFRV9Fc0xYQWduTGpybmc3ak5kM3VpcXBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8zNTNiZmEtYWJkYi00NDRhLTgxNTQt
NGZjNTRiMGJhYTc4LzEvNVZoejhIcjJsQllCR3gtNXhScXdXemwyZG9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC8zNTNiZmEtYWJkYi00NDRhLTgxNTQtNGZjNTRiMGJhYTc4
LzEvWHZFRV9Fc0xYQWduTGpybmc3ak5kM3VpcXBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAgv+uMA0G
CSqGSIb3DQEBCwUAA4IBAQAn/KLOJ2As4ed8gOrPn3QF4Y1CRRkaZEErBaK8B/R3
I5mc7jQwQW7Hlw5TduGdDIOdusYXH/VGwJIwXvIVkn3zkZnUm3PFzaxGsDuIiuyQ
Oxbimm4zIxBV0nR1URt/lzzyAPqa6ZAivwppM/f3n0pa/oUbvbwwip/0HYo/u/Oj
gy0HvYgl6AQoMiGH7nuUSxK9J1YIudgeUWxaRorQ6XaVQ/zV3HZqHD8is80sBNGm
vzF4+cZCgsgbAwENm5CFjPedL3W08RN1pNz3YP4ZP1Csg/7w2EVKwoYaI/zaapRG
pZzWc97FTiibAXCcU8hd0XsxL/M3XIg7yZESVI7re+0r
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:17 2025 by rpki-client