Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/lrEW4PIFvUOEbJAz-ErYOmFfxHg.roa
File: lrEW4PIFvUOEbJAz-ErYOmFfxHg.roa (raw, json)
Hash identifier: NFqqQWssitdYiB0tGmqCGbEYE79s6qDYyDO5cicOfBU=
Subject key identifier: 96:B1:16:E0:F2:05:BD:43:84:6C:90:33:F8:4A:D8:3A:61:5F:C4:78
Certificate issuer: /CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Certificate serial: 018CC3B741A827C92A2E001C7E4DE813A693
Authority key identifier: A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/lrEW4PIFvUOEbJAz-ErYOmFfxHg.roa
Signing time: Mon 01 Jan 2024 06:30:16 +0000
ROA not before: Mon 01 Jan 2024 06:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 193.53.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:41:a8:27:c9:2a:2e:00:1c:7e:4d:e8:13:a6:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Validity
Not Before: Jan 1 06:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96b116e0f205bd43846c9033f84ad83a615fc478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:c5:ed:fc:22:44:68:b6:2c:18:ff:b2:b8:a9:
f5:ce:8a:fb:cc:f9:f5:97:73:e8:0f:bd:ca:2b:32:
5b:3c:1a:4f:82:5e:da:78:00:18:f8:83:31:b9:dd:
3b:b0:2e:07:a8:f4:f7:ae:d7:3f:70:58:1a:ce:29:
99:2e:6e:77:fc:77:05:92:71:5f:72:01:c4:3b:b2:
62:8d:c2:ae:6a:16:ae:07:2f:4a:41:48:e2:7a:3f:
63:15:cc:24:5c:ae:36:b2:dd:02:70:d0:12:4d:b1:
29:95:58:5f:e4:6c:69:b2:14:47:3c:f5:8a:78:ec:
f1:34:e3:85:f8:4c:dd:80:56:16:77:78:1c:94:53:
a7:5e:5d:5e:25:03:f6:4c:cc:f7:4f:da:4c:98:71:
1c:79:69:c8:08:31:2b:d5:02:c9:02:43:f1:03:42:
57:6a:57:3f:3d:75:7d:3d:9f:30:f0:43:be:1d:cc:
a6:11:63:0f:37:4b:bd:6f:36:ad:4d:ba:d2:4f:03:
e0:dd:06:39:bd:9a:3e:2d:57:61:5d:1e:72:a6:d3:
e0:48:94:98:0e:3c:9b:04:b1:28:ae:23:4b:7d:f4:
52:37:dd:7a:4a:38:40:5b:63:96:44:a3:02:aa:ba:
06:a6:52:c3:f0:51:d8:96:91:9d:8a:51:e2:3b:b7:
42:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B1:16:E0:F2:05:BD:43:84:6C:90:33:F8:4A:D8:3A:61:5F:C4:78
X509v3 Authority Key Identifier:
keyid:A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/lrEW4PIFvUOEbJAz-ErYOmFfxHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.81.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:5a:a2:1f:84:75:e4:71:ef:28:2b:61:e6:32:78:b7:15:86:
37:d9:8f:d5:00:5f:d7:e3:3f:3c:ab:06:62:c9:83:5f:ed:80:
e4:2d:7a:76:6d:82:8f:83:a6:aa:98:9d:3a:55:74:d5:08:72:
2b:b9:b6:7c:5f:77:3f:46:f7:58:71:b7:90:4b:4b:3f:8b:9c:
3c:90:23:82:9b:8a:96:1e:67:4e:20:ae:53:c4:22:b3:7e:63:
0a:33:66:62:2b:6c:d7:ac:32:80:cc:97:e0:a5:03:91:eb:db:
07:67:6a:d4:a5:c4:6a:5e:96:40:5d:34:cc:4a:90:8c:e2:15:
f2:02:56:a9:48:08:c7:b8:30:9c:10:ce:4c:4f:44:c0:df:24:
bf:1e:db:13:a5:67:4e:b3:d6:a9:b3:25:9a:b8:b7:04:ca:80:
46:75:c1:c9:e4:cc:33:53:31:ee:dc:bd:4d:a1:11:35:1a:0a:
18:0a:2a:07:c0:36:32:1d:e0:d4:00:4a:ad:a4:2c:75:6b:82:
eb:01:08:51:05:73:61:a2:02:cf:7c:74:5e:be:f1:26:dd:25:
71:67:2d:0f:20:e0:30:59:40:eb:a9:a0:df:f8:2c:dd:ce:09:
e1:f0:ce:f1:31:08:cd:39:76:b3:88:5b:c6:11:be:17:9b:65:
fa:a1:9f:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDt0GoJ8kqLgAcfk3oE6aTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3ZmQzZjg5MzM1ZGNmODI4NjY2YjI4ZmFkOGFlOTkzYmQ0
NDg4NzgwHhcNMjQwMTAxMDYzMDE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NmIxMTZlMGYyMDViZDQzODQ2YzkwMzNmODRhZDgzYTYxNWZjNDc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA98Xt/CJEaLYsGP+yuKn1zor7zPn1
l3PoD73KKzJbPBpPgl7aeAAY+IMxud07sC4HqPT3rtc/cFgazimZLm53/HcFknFf
cgHEO7JijcKuahauBy9KQUjiej9jFcwkXK42st0CcNASTbEplVhf5GxpshRHPPWK
eOzxNOOF+EzdgFYWd3gclFOnXl1eJQP2TMz3T9pMmHEceWnICDEr1QLJAkPxA0JX
alc/PXV9PZ8w8EO+HcymEWMPN0u9bzatTbrSTwPg3QY5vZo+LVdhXR5yptPgSJSY
DjybBLEoriNLffRSN916SjhAW2OWRKMCqroGplLD8FHYlpGdilHiO7dCRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJaxFuDyBb1DhGyQM/hK2DphX8R4MB8GA1UdIwQY
MBaAFKf9P4kzXc+Chmayj62K6ZO9RIh4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcF8wX2lUTmR6NEtHWnJLUHJZcnBrNzFFaUhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8zODhmZDgtYzgxZi00ZTcxLWFmNTIt
YzBiMWFkNDM1Yjk1LzEvbHJFVzRQSUZ2VU9FYkpBei1FcllPbUZmeEhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC8zODhmZDgtYzgxZi00ZTcxLWFmNTItYzBiMWFkNDM1Yjk1
LzEvcF8wX2lUTmR6NEtHWnJLUHJZcnBrNzFFaUhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTVRMA0G
CSqGSIb3DQEBCwUAA4IBAQANWqIfhHXkce8oK2HmMni3FYY32Y/VAF/X4z88qwZi
yYNf7YDkLXp2bYKPg6aqmJ06VXTVCHIrubZ8X3c/RvdYcbeQS0s/i5w8kCOCm4qW
HmdOIK5TxCKzfmMKM2ZiK2zXrDKAzJfgpQOR69sHZ2rUpcRqXpZAXTTMSpCM4hXy
AlapSAjHuDCcEM5MT0TA3yS/HtsTpWdOs9apsyWauLcEyoBGdcHJ5MwzUzHu3L1N
oRE1GgoYCioHwDYyHeDUAEqtpCx1a4LrAQhRBXNhogLPfHRevvEm3SVxZy0PIOAw
WUDrqaDf+Czdzgnh8M7xMQjNOXaziFvGEb4Xm2X6oZ+g
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:26:04 2025 by rpki-client