Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/60f037-9ddc-40aa-88c6-15b6f1dea37b/1/paqQI1h5rmCIEiruoF-yJCU4-wY.roa
File: paqQI1h5rmCIEiruoF-yJCU4-wY.roa (raw, json)
Hash identifier: ycch+maBl4pbMBI3Z+Y9C77eHw6S14zY9daPaz6Diw0=
Subject key identifier: A5:AA:90:23:58:79:AE:60:88:12:2A:EE:A0:5F:B2:24:25:38:FB:06
Certificate issuer: /CN=19dcc560daf3e2ac85b60b8661387f06c1fa1315
Certificate serial: 018D8432C3ED61767D4BBBBB95896A258001
Authority key identifier: 19:DC:C5:60:DA:F3:E2:AC:85:B6:0B:86:61:38:7F:06:C1:FA:13:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdzFYNrz4qyFtguGYTh_BsH6ExU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/60f037-9ddc-40aa-88c6-15b6f1dea37b/1/paqQI1h5rmCIEiruoF-yJCU4-wY.roa
Signing time: Wed 07 Feb 2024 15:32:15 +0000
ROA not before: Wed 07 Feb 2024 15:32:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57523
IP address blocks: 194.26.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:32:c3:ed:61:76:7d:4b:bb:bb:95:89:6a:25:80:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19dcc560daf3e2ac85b60b8661387f06c1fa1315
Validity
Not Before: Feb 7 15:32:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5aa90235879ae6088122aeea05fb2242538fb06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:49:ae:c5:9c:1f:0a:76:85:7f:38:ad:1f:96:
c5:5e:42:91:cd:96:d2:92:30:2e:b7:52:a9:38:44:
21:5d:60:8e:be:3a:27:e4:ea:9a:ca:b3:1b:74:e8:
0c:22:18:8d:43:da:be:f1:2c:8a:80:57:79:97:d7:
4b:8a:b6:c8:a6:a0:dd:f7:34:51:78:5b:49:a4:8e:
3e:86:26:0b:ec:0f:b9:07:e5:01:7e:13:c4:0b:bf:
73:90:1d:d2:78:dc:c6:bb:60:95:ad:ad:ce:d3:33:
79:25:a3:fa:60:df:1e:1d:14:17:0a:78:20:b0:94:
a3:c7:37:29:e2:7a:c0:d8:52:85:2a:63:6b:c0:6e:
41:76:35:27:36:01:56:5f:62:4a:c5:37:34:ca:ae:
f7:b2:8e:f7:19:97:1f:e9:74:08:15:26:06:58:11:
fe:7b:01:43:01:39:bb:16:96:5a:16:58:5a:59:c8:
11:88:ca:6f:26:ff:f0:cd:f6:2e:45:67:1f:71:0e:
b9:05:39:57:ec:7a:fe:f8:f2:01:46:33:42:e3:e8:
0b:8f:55:d3:8c:ad:38:a9:f7:c4:11:b1:e2:e2:8b:
fb:91:ed:4c:fd:2a:fe:e1:cf:d0:f3:0f:23:c8:1b:
80:c9:bf:0d:e0:17:60:88:95:88:dc:8d:1d:7c:e6:
a0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:AA:90:23:58:79:AE:60:88:12:2A:EE:A0:5F:B2:24:25:38:FB:06
X509v3 Authority Key Identifier:
keyid:19:DC:C5:60:DA:F3:E2:AC:85:B6:0B:86:61:38:7F:06:C1:FA:13:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdzFYNrz4qyFtguGYTh_BsH6ExU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/60f037-9ddc-40aa-88c6-15b6f1dea37b/1/paqQI1h5rmCIEiruoF-yJCU4-wY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/60f037-9ddc-40aa-88c6-15b6f1dea37b/1/GdzFYNrz4qyFtguGYTh_BsH6ExU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.135.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:9a:81:d2:d9:51:ad:67:cd:6b:8c:ff:db:57:d2:43:89:8c:
c2:ea:88:c4:4b:57:51:71:3d:cf:26:39:38:a7:75:d5:02:c9:
f2:43:aa:97:46:0f:b8:09:f7:6f:08:a3:a4:a8:3c:4c:71:3f:
c4:5b:a4:6c:6e:fd:5d:b2:53:d7:d9:15:da:76:8b:14:22:e2:
26:61:de:be:5f:0e:9b:09:87:a0:e8:5e:0f:c3:c7:54:b2:ce:
e7:7d:5a:6b:be:ef:28:d4:c8:9e:de:87:47:ef:17:2b:71:ac:
78:55:88:47:07:06:3e:39:4e:d6:30:8d:d7:2e:86:e2:4c:42:
31:71:b4:ef:a6:b2:23:9a:3e:f3:4e:c5:4e:9b:d0:dc:87:e1:
29:25:e8:d5:a7:17:b7:bb:67:36:46:ce:2e:6e:a1:bb:97:21:
07:03:8c:bd:8a:b2:97:5a:88:f8:e3:ed:69:0c:c8:0d:f2:2e:
c3:6a:77:10:fb:f6:2d:f2:33:db:08:9c:cc:40:94:64:64:7b:
2f:95:80:a6:73:a9:d7:f1:f0:7d:c3:9f:85:29:ec:64:ce:4a:
de:18:46:a5:5a:46:aa:b8:3c:8f:40:b0:49:3a:7c:db:39:dc:
d9:72:d1:83:60:89:f0:cd:cc:62:15:9f:c0:b5:91:6b:49:1d:
c9:a3:9a:ba
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2EMsPtYXZ9S7u7lYlqJYABMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZGNjNTYwZGFmM2UyYWM4NWI2MGI4NjYxMzg3ZjA2YzFm
YTEzMTUwHhcNMjQwMjA3MTUzMjE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNWFhOTAyMzU4NzlhZTYwODgxMjJhZWVhMDVmYjIyNDI1MzhmYjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEmuxZwfCnaFfzitH5bFXkKRzZbS
kjAut1KpOEQhXWCOvjon5OqayrMbdOgMIhiNQ9q+8SyKgFd5l9dLirbIpqDd9zRR
eFtJpI4+hiYL7A+5B+UBfhPEC79zkB3SeNzGu2CVra3O0zN5JaP6YN8eHRQXCngg
sJSjxzcp4nrA2FKFKmNrwG5BdjUnNgFWX2JKxTc0yq73so73GZcf6XQIFSYGWBH+
ewFDATm7FpZaFlhaWcgRiMpvJv/wzfYuRWcfcQ65BTlX7Hr++PIBRjNC4+gLj1XT
jK04qffEEbHi4ov7ke1M/Sr+4c/Q8w8jyBuAyb8N4BdgiJWI3I0dfOagGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKWqkCNYea5giBIq7qBfsiQlOPsGMB8GA1UdIwQY
MBaAFBncxWDa8+KshbYLhmE4fwbB+hMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2R6RllOcno0cXlGdGd1R1lUaF9Cc0g2RXhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS82MGYwMzctOWRkYy00MGFhLTg4YzYt
MTViNmYxZGVhMzdiLzEvcGFxUUkxaDVybUNJRWlydW9GLXlKQ1U0LXdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS82MGYwMzctOWRkYy00MGFhLTg4YzYtMTViNmYxZGVhMzdi
LzEvR2R6RllOcno0cXlGdGd1R1lUaF9Cc0g2RXhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwhqHMA0G
CSqGSIb3DQEBCwUAA4IBAQCmmoHS2VGtZ81rjP/bV9JDiYzC6ojES1dRcT3PJjk4
p3XVAsnyQ6qXRg+4CfdvCKOkqDxMcT/EW6Rsbv1dslPX2RXadosUIuImYd6+Xw6b
CYeg6F4Pw8dUss7nfVprvu8o1Mie3odH7xcrcax4VYhHBwY+OU7WMI3XLobiTEIx
cbTvprIjmj7zTsVOm9Dch+EpJejVpxe3u2c2Rs4ubqG7lyEHA4y9irKXWoj44+1p
DMgN8i7DancQ+/Yt8jPbCJzMQJRkZHsvlYCmc6nX8fB9w5+FKexkzkreGEalWkaq
uDyPQLBJOnzbOdzZctGDYInwzcxiFZ/AtZFrSR3Jo5q6
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:34 2025 by rpki-client