Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/FRO4uwByqKxauyS9gXAIPw-fjUY.roa
File: FRO4uwByqKxauyS9gXAIPw-fjUY.roa (raw, json)
Hash identifier: S7+hb35+hDpVRPSEr/9Dyjjwa4OmuFnKDBhwrckl+dA=
Subject key identifier: 15:13:B8:BB:00:72:A8:AC:5A:BB:24:BD:81:70:08:3F:0F:9F:8D:46
Certificate issuer: /CN=581ecc1a74cf92ab619c5f710123937ce50d9c43
Certificate serial: 019423D6C083438175B245C546A184AC066A
Authority key identifier: 58:1E:CC:1A:74:CF:92:AB:61:9C:5F:71:01:23:93:7C:E5:0D:9C:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WB7MGnTPkqthnF9xASOTfOUNnEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/FRO4uwByqKxauyS9gXAIPw-fjUY.roa
Signing time: Wed 01 Jan 2025 21:47:43 +0000
ROA not before: Wed 01 Jan 2025 21:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205296
IP address blocks: 185.222.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:c0:83:43:81:75:b2:45:c5:46:a1:84:ac:06:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=581ecc1a74cf92ab619c5f710123937ce50d9c43
Validity
Not Before: Jan 1 21:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1513b8bb0072a8ac5abb24bd8170083f0f9f8d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:30:d6:2b:74:0b:23:68:7e:d5:40:23:e6:5c:
99:e0:9c:10:d1:6a:58:95:9c:df:66:12:a9:38:9c:
09:66:25:94:ad:96:b5:b0:a5:d3:6a:37:ec:8c:9d:
46:17:5d:a1:ee:47:40:eb:7e:a1:94:ca:67:98:1d:
97:63:51:d1:97:d2:b7:d2:b5:d5:e9:36:53:53:1c:
8c:18:69:a6:69:36:47:2f:1f:b2:75:e8:b7:e4:fa:
5a:9d:8f:8d:a8:b9:ec:a4:eb:ba:df:f0:b9:e7:1a:
d3:e7:42:b3:d4:82:60:13:fc:c7:ce:8f:44:96:92:
83:99:54:2f:8b:de:3d:6e:9a:3b:a0:39:9a:e2:0d:
e7:75:39:68:17:ae:d8:4b:78:f6:c2:0d:b6:87:5c:
60:27:aa:f6:f7:13:ae:f3:c3:66:d1:32:16:c7:96:
0e:57:ac:c9:d4:6b:71:ff:ca:bb:fb:34:d5:11:83:
55:10:c1:84:61:54:01:44:ca:77:f1:e4:14:1a:ff:
68:7b:34:82:70:53:2f:34:41:39:54:58:59:f1:58:
a8:88:32:e6:90:e6:23:52:e7:3d:7a:fc:05:7b:2f:
c8:0e:e2:30:5e:fa:ce:ca:41:b0:51:cd:f8:3a:dd:
a0:de:81:c1:2b:9e:8e:21:5b:47:7b:be:1d:45:78:
82:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:13:B8:BB:00:72:A8:AC:5A:BB:24:BD:81:70:08:3F:0F:9F:8D:46
X509v3 Authority Key Identifier:
keyid:58:1E:CC:1A:74:CF:92:AB:61:9C:5F:71:01:23:93:7C:E5:0D:9C:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WB7MGnTPkqthnF9xASOTfOUNnEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/FRO4uwByqKxauyS9gXAIPw-fjUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/WB7MGnTPkqthnF9xASOTfOUNnEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.4.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:7f:3e:53:78:ee:bc:be:33:e2:fa:96:e6:a6:99:2f:45:a8:
a5:8e:37:12:0c:75:e2:32:29:04:07:e3:eb:5d:9e:b3:23:5a:
85:9c:c6:08:eb:71:15:3d:74:b9:61:49:16:6d:89:3a:c5:39:
bb:2e:43:f2:83:db:af:1a:27:d4:48:d3:cc:18:c2:46:21:a5:
0b:7d:ef:55:cd:c8:70:0b:3b:36:08:1a:1c:a1:d3:d8:1e:eb:
b6:7f:ae:4e:29:d1:ed:f7:50:86:c8:3c:fe:15:0b:9a:9e:76:
4b:17:98:3c:aa:24:6b:1c:4e:8a:b1:50:26:39:e5:cf:a2:88:
3d:7d:18:6b:6f:63:02:66:b0:7f:44:7d:47:d3:ad:a7:b4:0b:
3a:48:37:12:03:d7:fa:60:97:aa:18:ad:3c:a0:13:73:75:25:
31:ad:8a:58:e3:08:d2:53:70:1c:05:6a:e9:4a:8e:bf:9b:47:
16:14:b6:f6:97:00:8c:20:f5:ee:4a:9d:95:2f:3e:6f:34:2e:
b5:8b:36:2a:96:ca:af:ff:cb:f4:44:64:4b:68:86:06:63:eb:
cd:53:63:ef:eb:cb:4b:fb:7f:4e:78:7d:18:51:83:b7:7d:f4:
74:5f:56:34:32:98:2e:87:b2:1c:ef:0c:c8:4a:96:cb:c4:e8:
94:32:fd:92
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj1sCDQ4F1skXFRqGErAZqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4MWVjYzFhNzRjZjkyYWI2MTljNWY3MTAxMjM5MzdjZTUw
ZDljNDMwHhcNMjUwMTAxMjE0NzQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTEzYjhiYjAwNzJhOGFjNWFiYjI0YmQ4MTcwMDgzZjBmOWY4ZDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDDWK3QLI2h+1UAj5lyZ4JwQ0WpY
lZzfZhKpOJwJZiWUrZa1sKXTajfsjJ1GF12h7kdA636hlMpnmB2XY1HRl9K30rXV
6TZTUxyMGGmmaTZHLx+ydei35PpanY+NqLnspOu63/C55xrT50Kz1IJgE/zHzo9E
lpKDmVQvi949bpo7oDma4g3ndTloF67YS3j2wg22h1xgJ6r29xOu88Nm0TIWx5YO
V6zJ1Gtx/8q7+zTVEYNVEMGEYVQBRMp38eQUGv9oezSCcFMvNEE5VFhZ8VioiDLm
kOYjUuc9evwFey/IDuIwXvrOykGwUc34Ot2g3oHBK56OIVtHe74dRXiCvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBUTuLsAcqisWrskvYFwCD8Pn41GMB8GA1UdIwQY
MBaAFFgezBp0z5KrYZxfcQEjk3zlDZxDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0I3TUduVFBrcXRobkY5eEFTT1RmT1VObkVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9jNzFkYWYtZGQ2Ni00MWQ4LWIwNGYt
ZGE4OGI2YmRiMzE2LzEvRlJPNHV3QnlxS3hhdXlTOWdYQUlQdy1malVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9jNzFkYWYtZGQ2Ni00MWQ4LWIwNGYtZGE4OGI2YmRiMzE2
LzEvV0I3TUduVFBrcXRobkY5eEFTT1RmT1VObkVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud4EMA0G
CSqGSIb3DQEBCwUAA4IBAQANfz5TeO68vjPi+pbmppkvRailjjcSDHXiMikEB+Pr
XZ6zI1qFnMYI63EVPXS5YUkWbYk6xTm7LkPyg9uvGifUSNPMGMJGIaULfe9Vzchw
Czs2CBocodPYHuu2f65OKdHt91CGyDz+FQuannZLF5g8qiRrHE6KsVAmOeXPoog9
fRhrb2MCZrB/RH1H062ntAs6SDcSA9f6YJeqGK08oBNzdSUxrYpY4wjSU3AcBWrp
So6/m0cWFLb2lwCMIPXuSp2VLz5vNC61izYqlsqv/8v0RGRLaIYGY+vNU2Pv68tL
+39OeH0YUYO3ffR0X1Y0Mpguh7Ic7wzISpbLxOiUMv2S
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:49:07 2025 by rpki-client