Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/E4h37GRP_WZ7bO8lgzi1tRrPK0c.roa
File: E4h37GRP_WZ7bO8lgzi1tRrPK0c.roa (raw, json)
Hash identifier: uLhBcmrTq6PQdv5DAkhj3cEx+mHXvJ2zcvd3pG51Utc=
Subject key identifier: 13:88:77:EC:64:4F:FD:66:7B:6C:EF:25:83:38:B5:B5:1A:CF:2B:47
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0194222006F721A18BD46E2D3F3B69DAC3C0
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/E4h37GRP_WZ7bO8lgzi1tRrPK0c.roa
Signing time: Wed 01 Jan 2025 13:48:31 +0000
ROA not before: Wed 01 Jan 2025 13:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213887
IP address blocks: 185.102.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:06:f7:21:a1:8b:d4:6e:2d:3f:3b:69:da:c3:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 1 13:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=138877ec644ffd667b6cef258338b5b51acf2b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c8:c7:b0:01:ff:67:ad:dd:2b:cd:02:60:a6:
b1:5e:25:e6:b9:86:dd:3a:a9:55:ea:6d:27:90:76:
b4:e5:86:34:ff:c3:06:45:85:b7:fe:29:fa:0a:5b:
81:0f:cb:02:cf:7d:b6:ff:8e:85:f5:cf:16:48:65:
ad:55:93:ba:ee:af:d9:d1:e5:a7:ab:fe:10:6c:97:
be:24:c8:d2:31:26:69:5c:37:6d:92:56:82:dd:96:
0b:f3:b6:f4:74:e3:cd:d0:1e:8c:d2:b7:31:05:63:
bf:4b:ec:db:78:3f:e1:66:18:9f:fa:ef:d3:b3:92:
42:51:a6:6c:89:84:13:5a:65:1d:df:20:d5:45:b5:
96:b4:09:4b:01:d1:f0:90:a6:60:96:7b:d4:af:1b:
f4:e0:b6:0a:ae:d1:cc:fc:62:06:7c:fa:2b:0b:44:
7f:95:79:f0:ec:eb:97:ab:54:36:94:e1:a2:98:0d:
9e:80:a0:ac:86:60:c8:d6:2f:00:c7:dc:81:47:da:
7e:90:c5:d1:0a:c4:db:2a:17:cf:e9:fe:31:83:e7:
e5:5a:22:f7:7c:b7:65:ca:e4:46:55:c3:8a:f5:5f:
1f:10:8b:7c:78:c8:f3:c3:99:a2:6c:c0:59:36:18:
f0:a4:8f:8c:6e:7f:25:7d:d5:13:54:7e:2f:dc:24:
88:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:88:77:EC:64:4F:FD:66:7B:6C:EF:25:83:38:B5:B5:1A:CF:2B:47
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/E4h37GRP_WZ7bO8lgzi1tRrPK0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.115.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:a8:0b:2f:11:37:06:c4:91:e3:b1:2c:e8:b3:9c:52:72:d9:
2d:e0:c5:01:6b:3d:d7:71:a1:3e:34:f9:e2:78:5c:c5:a0:a1:
f1:99:4f:d4:cf:d2:80:c0:e1:b2:51:1e:95:6c:c5:e9:7a:c9:
12:bc:b1:9b:2f:ad:6f:c1:20:a3:1a:ab:11:39:1a:a0:71:24:
af:e1:a8:8a:4b:56:92:b0:9c:81:4c:3f:df:4c:7d:4d:0a:ef:
6f:cf:c7:ca:94:65:13:4d:c0:87:1d:a8:76:12:37:ea:0e:02:
4f:19:34:79:46:34:92:63:df:b6:28:8b:73:d9:02:5b:8b:94:
bf:e5:ab:09:1d:88:11:eb:cd:57:2b:b8:7f:85:0c:03:a1:4f:
b4:10:88:74:28:78:11:01:f4:44:60:45:47:33:32:77:91:18:
e4:ce:b3:34:7d:fa:65:dc:93:7d:63:84:ab:80:c8:bc:a7:e1:
07:3d:0d:f3:28:e0:0a:c0:13:ab:4b:0c:bf:b5:8d:82:5b:e0:
92:11:5f:ae:c7:76:81:8a:54:a6:ef:1b:ab:a1:c3:2a:ab:36:
bb:a6:2f:bd:cf:22:76:ad:01:28:3b:28:05:7c:40:cd:1c:59:
ff:20:1c:9e:2f:06:1e:d6:f2:4f:d2:7d:37:f1:8d:70:68:76:
0f:94:53:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiIAb3IaGL1G4tPztp2sPAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjUwMTAxMTM0ODMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzg4NzdlYzY0NGZmZDY2N2I2Y2VmMjU4MzM4YjViNTFhY2YyYjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcjHsAH/Z63dK80CYKaxXiXmuYbd
OqlV6m0nkHa05YY0/8MGRYW3/in6CluBD8sCz322/46F9c8WSGWtVZO67q/Z0eWn
q/4QbJe+JMjSMSZpXDdtklaC3ZYL87b0dOPN0B6M0rcxBWO/S+zbeD/hZhif+u/T
s5JCUaZsiYQTWmUd3yDVRbWWtAlLAdHwkKZglnvUrxv04LYKrtHM/GIGfPorC0R/
lXnw7OuXq1Q2lOGimA2egKCshmDI1i8Ax9yBR9p+kMXRCsTbKhfP6f4xg+flWiL3
fLdlyuRGVcOK9V8fEIt8eMjzw5mibMBZNhjwpI+Mbn8lfdUTVH4v3CSIWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBOId+xkT/1me2zvJYM4tbUazytHMB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvRTRoMzdHUlBfV1o3Yk84bGd6aTF0UnJQSzBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWZzMA0G
CSqGSIb3DQEBCwUAA4IBAQAeqAsvETcGxJHjsSzos5xSctkt4MUBaz3XcaE+NPni
eFzFoKHxmU/Uz9KAwOGyUR6VbMXpeskSvLGbL61vwSCjGqsRORqgcSSv4aiKS1aS
sJyBTD/fTH1NCu9vz8fKlGUTTcCHHah2EjfqDgJPGTR5RjSSY9+2KItz2QJbi5S/
5asJHYgR681XK7h/hQwDoU+0EIh0KHgRAfREYEVHMzJ3kRjkzrM0ffpl3JN9Y4Sr
gMi8p+EHPQ3zKOAKwBOrSwy/tY2CW+CSEV+ux3aBilSm7xurocMqqza7pi+9zyJ2
rQEoOygFfEDNHFn/IByeLwYe1vJP0n038Y1waHYPlFNL
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:59:54 2025 by rpki-client