Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/T7TBRzeJX6tbdWoccYUlzQavEvE.roa
File: T7TBRzeJX6tbdWoccYUlzQavEvE.roa (raw, json)
Hash identifier: GbQhCrhDJnuTs6aD5dp/vwgXjm1RN1g0gqgdS90d0Rg=
Subject key identifier: 4F:B4:C1:47:37:89:5F:AB:5B:75:6A:1C:71:85:25:CD:06:AF:12:F1
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 019422FC3701396B58DAC89EE0497EB324E1
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/T7TBRzeJX6tbdWoccYUlzQavEvE.roa
Signing time: Wed 01 Jan 2025 17:49:02 +0000
ROA not before: Wed 01 Jan 2025 17:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61185
IP address blocks: 185.146.18.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:37:01:39:6b:58:da:c8:9e:e0:49:7e:b3:24:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jan 1 17:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4fb4c14737895fab5b756a1c718525cd06af12f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:27:e6:34:09:87:c2:28:e0:a8:52:cc:fe:1a:
97:85:41:ad:b2:62:8e:54:b4:d2:7b:55:e4:cc:1f:
62:a8:98:4c:27:eb:14:38:5f:33:7f:5e:9c:2a:30:
bf:6f:b3:95:76:12:da:24:67:ec:54:c7:e9:82:e6:
cd:b2:dd:9c:1d:ab:ef:97:7b:37:14:16:d8:0b:58:
85:57:93:57:fd:8e:21:03:ef:df:62:a8:74:4c:70:
6d:b0:cf:08:ef:18:e4:b5:81:c3:e5:ab:a9:53:a0:
59:1e:32:7b:fb:95:aa:87:97:eb:eb:b5:3d:44:c1:
48:b0:25:57:88:3f:0c:ff:ba:dd:8e:fd:bc:01:73:
56:54:a9:dd:44:f1:66:b3:b6:7f:ac:c1:ee:d4:3c:
74:c6:82:c6:a5:3c:e0:59:ca:1a:fb:6e:62:f4:6d:
2d:7b:86:7a:62:94:5d:cd:76:e7:30:41:52:8e:0f:
59:49:ea:b9:1f:75:f9:36:01:03:ae:ae:5d:09:55:
f5:02:76:71:e5:77:b8:4a:6f:4b:10:ba:73:ff:7b:
0f:8c:1e:1c:3f:77:a2:c2:c7:d4:e5:ef:3a:92:87:
cc:f1:98:3e:3b:ff:e6:7a:5a:8c:27:ce:10:fa:1a:
86:9f:ef:c2:e8:72:fc:2f:ea:3e:44:38:a8:e9:da:
74:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B4:C1:47:37:89:5F:AB:5B:75:6A:1C:71:85:25:CD:06:AF:12:F1
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/T7TBRzeJX6tbdWoccYUlzQavEvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.18.0/23
Signature Algorithm: sha256WithRSAEncryption
99:a1:ce:1d:b0:a8:44:d6:d0:78:a1:e6:ee:e4:f9:c5:c1:9c:
53:ab:61:e6:b2:25:c9:1b:a0:aa:2b:d0:fd:29:53:1d:17:8d:
ba:ae:96:7a:f4:a7:7e:e0:d3:59:d6:c0:0e:2e:6f:91:cb:2f:
a2:d6:c9:71:d2:a6:a0:1a:f8:9a:c1:40:ec:59:da:94:df:99:
45:a0:65:4a:5c:c1:b9:85:93:9e:76:95:f6:e2:69:d0:e2:0f:
f2:91:0d:18:ce:ae:9a:62:97:c4:37:f2:ff:4e:fe:61:1c:77:
9b:87:4f:b3:e7:17:6e:42:bb:c8:fd:7a:ae:4c:70:a3:cb:28:
8c:cf:d1:3e:3e:d2:9d:11:f4:cc:20:b3:34:6c:2d:b0:b0:42:
2f:4c:63:3a:b5:76:d5:3f:00:c8:ba:1d:b8:1b:02:c7:a5:29:
3a:94:b7:53:12:c0:d3:e5:b7:8f:20:72:6a:1c:fd:6b:76:8c:
2a:2b:d2:d1:75:04:91:0e:d0:1a:c9:2b:04:29:c0:3d:d2:96:
ad:4e:ef:9c:f3:6d:c7:70:bb:0b:c2:8e:28:70:fd:47:18:98:
a8:14:5c:07:b6:49:aa:e6:33:1b:07:1f:27:a4:e2:b9:16:41:
be:0c:7c:63:08:2d:ea:23:a4:98:1b:b6:91:47:67:70:35:68:
6b:7c:18:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi/DcBOWtY2sie4El+syThMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MjUzNzYwMWEzMTY5NzQwNDkyMmQ5NTdlNzQ0NTBmNWE5
Y2JlNzMwHhcNMjUwMTAxMTc0OTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZmI0YzE0NzM3ODk1ZmFiNWI3NTZhMWM3MTg1MjVjZDA2YWYxMmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkyfmNAmHwijgqFLM/hqXhUGtsmKO
VLTSe1XkzB9iqJhMJ+sUOF8zf16cKjC/b7OVdhLaJGfsVMfpgubNst2cHavvl3s3
FBbYC1iFV5NX/Y4hA+/fYqh0THBtsM8I7xjktYHD5aupU6BZHjJ7+5Wqh5fr67U9
RMFIsCVXiD8M/7rdjv28AXNWVKndRPFms7Z/rMHu1Dx0xoLGpTzgWcoa+25i9G0t
e4Z6YpRdzXbnMEFSjg9ZSeq5H3X5NgEDrq5dCVX1AnZx5Xe4Sm9LELpz/3sPjB4c
P3eiwsfU5e86kofM8Zg+O//melqMJ84Q+hqGn+/C6HL8L+o+RDio6dp0pQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE+0wUc3iV+rW3VqHHGFJc0GrxLxMB8GA1UdIwQY
MBaAFBclN2AaMWl0BJItlX50RQ9anL5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQt
ZTYwNGI2MWJlMGVhLzEvVDdUQlJ6ZUpYNnRiZFdvY2NZVWx6UWF2RXZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQtZTYwNGI2MWJlMGVh
LzEvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuZISMA0G
CSqGSIb3DQEBCwUAA4IBAQCZoc4dsKhE1tB4oebu5PnFwZxTq2HmsiXJG6CqK9D9
KVMdF426rpZ69Kd+4NNZ1sAOLm+Ryy+i1slx0qagGviawUDsWdqU35lFoGVKXMG5
hZOedpX24mnQ4g/ykQ0Yzq6aYpfEN/L/Tv5hHHebh0+z5xduQrvI/XquTHCjyyiM
z9E+PtKdEfTMILM0bC2wsEIvTGM6tXbVPwDIuh24GwLHpSk6lLdTEsDT5bePIHJq
HP1rdowqK9LRdQSRDtAaySsEKcA90patTu+c823HcLsLwo4ocP1HGJioFFwHtkmq
5jMbBx8npOK5FkG+DHxjCC3qI6SYG7aRR2dwNWhrfBir
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:15:29 2025 by rpki-client