Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/GZ1DOUg0cHs7hE_CfkWKh8ASITU.roa
File: GZ1DOUg0cHs7hE_CfkWKh8ASITU.roa (raw, json)
Hash identifier: D04TAEd3heivabv12gVUVUx2wWDdkcWWgzoaBZX+bfM=
Subject key identifier: 19:9D:43:39:48:34:70:7B:3B:84:4F:C2:7E:45:8A:87:C0:12:21:35
Certificate issuer: /CN=88796992df883be1bab2a52f45f5254ebb52b697
Certificate serial: 01C89B5E
Authority key identifier: 88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/GZ1DOUg0cHs7hE_CfkWKh8ASITU.roa
Signing time: Fri 11 Feb 2022 13:47:50 +0000
ROA not before: Fri 11 Feb 2022 13:47:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61087
IP address blocks: 195.16.74.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29924190 (0x1c89b5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88796992df883be1bab2a52f45f5254ebb52b697
Validity
Not Before: Feb 11 13:47:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=199d43394834707b3b844fc27e458a87c0122135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f2:8c:92:63:b6:0a:5d:1a:21:52:fd:53:e6:
3c:f2:63:55:02:b8:77:39:db:e9:ab:6d:fa:7b:db:
bc:80:10:23:37:9b:93:af:74:fd:96:34:6c:0e:13:
f0:dd:f5:ea:52:17:9f:0a:6e:4d:9d:0e:69:2c:e4:
49:6a:37:d2:22:2a:77:a1:c3:3c:d0:fd:f4:5e:fa:
bd:06:77:79:53:3c:37:2b:9a:2f:bc:b0:75:af:04:
7e:e5:3c:12:b9:60:45:7b:89:3c:4a:a6:a6:fa:8d:
bf:84:33:89:99:0c:ed:bf:ba:39:d5:af:29:2d:7a:
3e:66:9d:3f:6c:a5:20:6f:48:9d:27:50:b7:59:73:
4b:da:b6:c6:61:0b:71:61:71:ee:b8:f0:32:52:ee:
29:51:7e:63:29:3a:15:80:79:09:1b:7f:ae:57:e5:
90:59:c6:eb:6d:41:94:18:d5:76:82:6c:9c:33:da:
5a:e1:e7:ef:37:ae:47:ac:a9:71:1f:7d:2b:b2:81:
6b:ba:ae:ac:ea:67:b7:5d:75:07:d9:ab:7e:04:2e:
1d:95:13:39:86:5b:5d:a6:b5:ec:71:6e:4f:f5:f7:
98:1a:c2:53:2c:e2:19:e4:43:4b:22:37:2d:4d:1c:
97:96:59:d3:e2:8e:b0:f0:b4:17:26:c0:79:85:c5:
94:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9D:43:39:48:34:70:7B:3B:84:4F:C2:7E:45:8A:87:C0:12:21:35
X509v3 Authority Key Identifier:
keyid:88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/GZ1DOUg0cHs7hE_CfkWKh8ASITU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/iHlpkt-IO-G6sqUvRfUlTrtStpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:68:b5:09:dd:f8:5b:a1:1a:c8:fd:75:6f:e6:a1:42:10:65:
4a:ef:0f:25:5c:3c:5f:d6:fd:59:55:53:d3:bd:71:ad:91:ed:
6b:a8:ce:0d:ed:75:f2:58:cd:2c:9d:a4:35:6f:b1:3e:22:47:
88:87:2a:7b:9b:6a:50:8f:91:01:49:a9:cc:b9:7f:4f:d7:27:
22:a3:cc:2f:88:91:d8:37:c1:64:28:59:2c:4e:a2:bd:5b:2f:
35:7b:69:9d:d8:7b:2e:8e:b4:4b:53:33:f2:9f:9b:12:37:50:
f8:7b:95:bf:4b:b6:f7:53:46:4d:5b:cb:71:e1:55:1b:fe:5f:
e7:54:1d:10:35:3d:a2:d1:22:78:0b:75:5f:16:3d:ee:d5:fd:
0d:6d:2a:08:b1:67:fe:23:5d:2c:ab:d7:73:8e:9b:2b:46:e3:
8e:d8:af:fa:7b:49:8a:41:d2:ab:8d:3e:ce:f9:91:9d:3b:81:
c4:d8:3d:dd:ce:b5:c9:99:82:1a:4e:f3:5b:46:06:f5:f4:c9:
02:bb:73:be:31:d8:c0:c2:53:5b:a1:ce:bf:4f:96:e4:ca:ae:
b9:c0:4a:b4:33:38:d5:d2:93:ee:2b:92:77:98:4e:13:c6:4f:
08:1b:40:b5:86:a3:c9:f6:be:a2:4e:b7:f5:75:41:ad:28:69:
72:b0:69:f6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAcibXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ODc5Njk5MmRmODgzYmUxYmFiMmE1MmY0NWY1MjU0ZWJiNTJiNjk3MB4XDTIyMDIx
MTEzNDc1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTk5ZDQzMzk0ODM0
NzA3YjNiODQ0ZmMyN2U0NThhODdjMDEyMjEzNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMvyjJJjtgpdGiFS/VPmPPJjVQK4dznb6att+nvbvIAQIzeb
k690/ZY0bA4T8N316lIXnwpuTZ0OaSzkSWo30iIqd6HDPND99F76vQZ3eVM8Nyua
L7ywda8EfuU8ErlgRXuJPEqmpvqNv4QziZkM7b+6OdWvKS16PmadP2ylIG9InSdQ
t1lzS9q2xmELcWFx7rjwMlLuKVF+Yyk6FYB5CRt/rlflkFnG621BlBjVdoJsnDPa
WuHn7zeuR6ypcR99K7KBa7qurOpnt111B9mrfgQuHZUTOYZbXaa17HFuT/X3mBrC
UyziGeRDSyI3LU0cl5ZZ0+KOsPC0FybAeYXFlN8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQZnUM5SDRwezuET8J+RYqHwBIhNTAfBgNVHSMEGDAWgBSIeWmS34g74bqy
pS9F9SVOu1K2lzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lIbHBrdC1JTy1HNnNxVXZSZlVsVHJ0U3RwYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvN2UwNzBlLTc5MzAtNDNjOC1hNjZkLTIxNWMzZDhmODkxNC8x
L0daMURPVWcwY0hzN2hFX0Nma1dLaDhBU0lUVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
N2UwNzBlLTc5MzAtNDNjOC1hNjZkLTIxNWMzZDhmODkxNC8xL2lIbHBrdC1JTy1H
NnNxVXZSZlVsVHJ0U3RwYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMMQSjANBgkqhkiG9w0BAQsFAAOC
AQEAvWi1Cd34W6EayP11b+ahQhBlSu8PJVw8X9b9WVVT071xrZHta6jODe118ljN
LJ2kNW+xPiJHiIcqe5tqUI+RAUmpzLl/T9cnIqPML4iR2DfBZChZLE6ivVsvNXtp
ndh7Lo60S1Mz8p+bEjdQ+HuVv0u291NGTVvLceFVG/5f51QdEDU9otEieAt1XxY9
7tX9DW0qCLFn/iNdLKvXc46bK0bjjtiv+ntJikHSq40+zvmRnTuBxNg93c61yZmC
Gk7zW0YG9fTJArtzvjHYwMJTW6HOv0+W5MquucBKtDM41dKT7iuSd5hOE8ZPCBtA
tYajyfa+ok639XVBrShpcrBp9g==
-----END CERTIFICATE-----
Generated at Wed Mar 12 13:29:16 2025 by rpki-client