Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/8ba1a1-c861-4f9b-9f4f-e62f58c7c9f4/1/74tfs1G6cm2P4-sbShWc7peVhUg.roa
File: 74tfs1G6cm2P4-sbShWc7peVhUg.roa (raw, json)
Hash identifier: nnF8ZfiAodvN9xXJ1R0wQ7K5wcKoQcDJg3weeKi4GzE=
Subject key identifier: EF:8B:5F:B3:51:BA:72:6D:8F:E3:EB:1B:4A:15:9C:EE:97:95:85:48
Certificate issuer: /CN=922da8e9dc55505612080b379d1ee49068f0ffcd
Certificate serial: 01856E38C960FE9F194CA1DB0D02C2309C5F
Authority key identifier: 92:2D:A8:E9:DC:55:50:56:12:08:0B:37:9D:1E:E4:90:68:F0:FF:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ki2o6dxVUFYSCAs3nR7kkGjw_80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/8ba1a1-c861-4f9b-9f4f-e62f58c7c9f4/1/74tfs1G6cm2P4-sbShWc7peVhUg.roa
Signing time: Sun 01 Jan 2023 16:44:53 +0000
ROA not before: Sun 01 Jan 2023 16:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 185.76.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:c9:60:fe:9f:19:4c:a1:db:0d:02:c2:30:9c:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922da8e9dc55505612080b379d1ee49068f0ffcd
Validity
Not Before: Jan 1 16:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef8b5fb351ba726d8fe3eb1b4a159cee97958548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e5:98:ec:1b:da:8c:4e:2f:9d:bf:56:70:15:
ea:08:7d:6f:53:56:fc:75:e6:1d:a7:f5:46:5f:e8:
a2:a3:39:49:c9:84:03:3b:d2:a6:9f:a5:ce:55:28:
86:26:a2:e9:1a:64:39:5c:67:db:64:bb:b4:f4:66:
a6:04:d1:ec:8d:2c:01:3d:c7:8d:38:03:39:1c:f9:
4b:b0:fd:aa:46:33:54:d7:58:66:22:4b:11:d1:60:
6f:9b:64:05:09:ed:96:ef:df:f9:d1:65:2c:24:1d:
71:0f:73:2d:49:29:24:ba:3f:3d:43:5a:04:ef:a8:
25:99:1d:54:e8:08:12:96:16:cb:e1:4a:14:2e:62:
00:6c:57:85:31:5a:c4:64:ab:5c:25:22:7a:aa:53:
44:b7:cf:0b:a7:0c:19:bb:08:34:52:ca:d8:23:59:
f1:17:bc:ba:e7:e9:4c:d5:40:0a:99:20:be:e1:69:
22:11:4c:a8:a4:02:4d:89:29:39:9b:b5:da:0c:f5:
bf:df:d3:37:31:c0:7d:8b:2e:d2:66:33:6e:92:81:
55:e5:48:05:9b:17:d6:9f:71:37:d3:38:a2:56:03:
9e:77:3c:0f:1a:03:57:1a:b9:ae:81:16:81:f9:5d:
e7:d1:f7:d7:95:ee:93:96:ea:ef:38:fe:8e:66:43:
c9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8B:5F:B3:51:BA:72:6D:8F:E3:EB:1B:4A:15:9C:EE:97:95:85:48
X509v3 Authority Key Identifier:
keyid:92:2D:A8:E9:DC:55:50:56:12:08:0B:37:9D:1E:E4:90:68:F0:FF:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ki2o6dxVUFYSCAs3nR7kkGjw_80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/8ba1a1-c861-4f9b-9f4f-e62f58c7c9f4/1/74tfs1G6cm2P4-sbShWc7peVhUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/8ba1a1-c861-4f9b-9f4f-e62f58c7c9f4/1/ki2o6dxVUFYSCAs3nR7kkGjw_80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.148.0/24
Signature Algorithm: sha256WithRSAEncryption
e6:6e:83:36:e1:13:5c:f1:d6:55:b1:a3:84:b2:ed:27:a6:f5:
f8:c9:fa:bf:16:ce:bc:6a:dd:bc:04:62:6c:46:6b:c0:8a:dc:
d9:43:e0:7e:ed:d5:25:5b:ad:c2:1c:ae:24:7f:eb:ee:47:f1:
4b:44:e5:f0:41:e3:d7:dc:37:ee:a5:ce:b5:7f:6a:9e:a4:09:
99:60:de:f1:38:dd:27:0f:49:8e:a5:60:e0:a2:4f:0b:66:16:
bd:62:fe:e7:cb:3b:88:56:00:ab:07:f7:34:3a:1f:7e:50:41:
31:67:74:9d:b0:2d:75:0a:92:1f:e3:0c:2f:2a:80:26:de:92:
09:46:ef:da:a2:74:11:cd:58:31:5d:ba:cf:33:f1:f4:0b:84:
d7:d7:f6:08:71:d0:4f:14:dc:ef:d4:65:d6:06:c5:65:0a:2e:
86:df:39:25:d7:76:9b:c0:2d:3e:08:d5:f4:91:5f:34:28:c6:
60:91:9a:1e:e3:cf:e1:60:c6:e8:12:f8:93:22:9d:ed:a0:1e:
02:94:b1:c1:10:17:5a:4d:e0:12:b4:34:14:79:df:dc:c6:a2:
a5:a4:5a:e9:ab:48:b5:1b:d8:78:87:b1:6c:4d:ee:2d:bf:14:
48:ea:12:aa:15:9d:83:6f:c4:38:e5:71:b0:4e:22:56:d4:69:
86:85:18:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuOMlg/p8ZTKHbDQLCMJxfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMmRhOGU5ZGM1NTUwNTYxMjA4MGIzNzlkMWVlNDkwNjhm
MGZmY2QwHhcNMjMwMTAxMTY0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjhiNWZiMzUxYmE3MjZkOGZlM2ViMWI0YTE1OWNlZTk3OTU4NTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiuWY7BvajE4vnb9WcBXqCH1vU1b8
deYdp/VGX+iiozlJyYQDO9Kmn6XOVSiGJqLpGmQ5XGfbZLu09GamBNHsjSwBPceN
OAM5HPlLsP2qRjNU11hmIksR0WBvm2QFCe2W79/50WUsJB1xD3MtSSkkuj89Q1oE
76glmR1U6AgSlhbL4UoULmIAbFeFMVrEZKtcJSJ6qlNEt88LpwwZuwg0UsrYI1nx
F7y65+lM1UAKmSC+4WkiEUyopAJNiSk5m7XaDPW/39M3McB9iy7SZjNukoFV5UgF
mxfWn3E30ziiVgOedzwPGgNXGrmugRaB+V3n0ffXle6TlurvOP6OZkPJawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO+LX7NRunJtj+PrG0oVnO6XlYVIMB8GA1UdIwQY
MBaAFJItqOncVVBWEggLN50e5JBo8P/NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2kybzZkeFZVRllTQ0FzM25SN2trR2p3XzgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS84YmExYTEtYzg2MS00ZjliLTlmNGYt
ZTYyZjU4YzdjOWY0LzEvNzR0ZnMxRzZjbTJQNC1zYlNoV2M3cGVWaFVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS84YmExYTEtYzg2MS00ZjliLTlmNGYtZTYyZjU4YzdjOWY0
LzEva2kybzZkeFZVRllTQ0FzM25SN2trR2p3XzgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUyUMA0G
CSqGSIb3DQEBCwUAA4IBAQDmboM24RNc8dZVsaOEsu0npvX4yfq/Fs68at28BGJs
RmvAitzZQ+B+7dUlW63CHK4kf+vuR/FLROXwQePX3Dfupc61f2qepAmZYN7xON0n
D0mOpWDgok8LZha9Yv7nyzuIVgCrB/c0Oh9+UEExZ3SdsC11CpIf4wwvKoAm3pIJ
Ru/aonQRzVgxXbrPM/H0C4TX1/YIcdBPFNzv1GXWBsVlCi6G3zkl13abwC0+CNX0
kV80KMZgkZoe48/hYMboEviTIp3toB4ClLHBEBdaTeAStDQUed/cxqKlpFrpq0i1
G9h4h7FsTe4tvxRI6hKqFZ2Db8Q45XGwTiJW1GmGhRgw
-----END CERTIFICATE-----
Generated at Fri Apr 18 15:59:58 2025 by rpki-client