Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/LpYe53eYkbigq8NCIL8pR76AYFA.roa
File: LpYe53eYkbigq8NCIL8pR76AYFA.roa (raw, json)
Hash identifier: kAIA5H78W26HX0dIW0VUIRbHc205x858iYRj8BKbxZU=
Subject key identifier: 2E:96:1E:E7:77:98:91:B8:A0:AB:C3:42:20:BF:29:47:BE:80:60:50
Certificate issuer: /CN=88796992df883be1bab2a52f45f5254ebb52b697
Certificate serial: 01ACFDEA
Authority key identifier: 88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/LpYe53eYkbigq8NCIL8pR76AYFA.roa
Signing time: Mon 31 Jan 2022 12:34:29 +0000
ROA not before: Mon 31 Jan 2022 12:34:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 195.16.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28114410 (0x1acfdea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88796992df883be1bab2a52f45f5254ebb52b697
Validity
Not Before: Jan 31 12:34:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e961ee7779891b8a0abc34220bf2947be806050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f2:88:b9:6d:f6:d6:bd:57:c8:60:5a:e9:b4:
66:66:97:22:48:84:70:7a:41:9a:2c:3d:ad:58:e8:
0e:98:f1:92:46:30:28:f4:c0:57:04:f0:60:7e:86:
e1:4f:59:56:80:42:92:6d:2c:b7:38:02:91:93:05:
0d:48:78:f7:be:d5:5d:fc:e6:39:5a:3f:87:2d:2f:
ad:43:24:b8:ac:7a:32:f8:12:6f:b0:e8:ef:47:1b:
1a:44:d6:07:6f:84:cd:0d:9c:68:63:29:41:0c:aa:
a0:9d:6f:4d:15:93:12:3a:46:0e:2b:77:26:ed:c0:
2e:d3:ce:ef:ea:57:32:c2:98:2e:a1:fc:02:0a:20:
55:07:e6:61:bb:02:1d:54:ef:99:35:71:a4:c4:9e:
f5:9a:cd:c8:bc:c7:40:0d:bb:c2:59:0a:ee:ec:5d:
5f:61:47:55:51:4b:e9:08:74:d0:43:3a:f3:26:f0:
a4:8f:e2:05:df:4e:ba:04:63:38:e9:a6:e4:1a:5a:
be:72:8e:ec:77:8e:53:28:20:32:8d:ad:8c:e2:ac:
89:60:8d:a3:f3:0b:d2:3c:80:72:fd:c1:f1:5c:70:
5a:32:d4:89:61:f0:92:51:d7:64:9c:fc:9d:65:28:
ae:b0:65:ba:4f:db:d8:a1:e3:44:b9:d8:b6:66:93:
bc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:96:1E:E7:77:98:91:B8:A0:AB:C3:42:20:BF:29:47:BE:80:60:50
X509v3 Authority Key Identifier:
keyid:88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/LpYe53eYkbigq8NCIL8pR76AYFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/iHlpkt-IO-G6sqUvRfUlTrtStpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:b5:b7:9a:5c:59:86:ba:e8:41:60:f1:11:3d:fa:5b:b1:c3:
68:be:31:1f:b3:d1:86:9c:92:a7:47:bc:3e:c5:50:80:bf:a0:
2f:eb:77:5f:8c:37:07:08:fc:8d:31:c7:9e:5a:58:64:84:18:
f6:c4:af:bc:d5:96:f2:29:ba:e6:9d:9a:10:dd:7a:c6:f7:7b:
37:b4:c5:3b:ab:93:32:ab:a1:26:c7:e4:73:72:cc:71:bf:e0:
b6:a8:6c:80:6c:2e:b6:ba:5d:97:41:d4:a0:b3:5c:3f:03:8e:
e1:35:2c:4a:8a:2d:7d:73:3b:80:79:83:83:be:02:e2:18:8c:
2c:72:9b:39:14:89:21:13:77:92:81:41:39:e9:bc:84:c3:29:
26:61:39:9a:78:d9:ae:c9:5b:cd:97:9a:93:b3:de:3a:c9:88:
4c:33:ad:59:9f:17:ff:56:fd:4c:0f:8f:bd:4f:78:be:2a:1e:
ae:02:38:ca:de:00:c2:4c:f2:ce:f9:fd:a9:04:a6:f8:d3:2b:
b8:49:83:56:56:46:41:00:2d:70:d4:c3:f4:c3:31:05:55:d4:
44:a5:df:1a:f5:a0:fe:83:e6:14:91:2b:a1:46:60:2f:6f:4b:
00:39:b0:b5:24:60:48:de:4d:c9:cb:df:ba:f6:e2:55:33:03:
94:ad:cd:e7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAaz96jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ODc5Njk5MmRmODgzYmUxYmFiMmE1MmY0NWY1MjU0ZWJiNTJiNjk3MB4XDTIyMDEz
MTEyMzQyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmU5NjFlZTc3Nzk4
OTFiOGEwYWJjMzQyMjBiZjI5NDdiZTgwNjA1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJDyiLlt9ta9V8hgWum0ZmaXIkiEcHpBmiw9rVjoDpjxkkYw
KPTAVwTwYH6G4U9ZVoBCkm0stzgCkZMFDUh4977VXfzmOVo/hy0vrUMkuKx6MvgS
b7Do70cbGkTWB2+EzQ2caGMpQQyqoJ1vTRWTEjpGDit3Ju3ALtPO7+pXMsKYLqH8
AgogVQfmYbsCHVTvmTVxpMSe9ZrNyLzHQA27wlkK7uxdX2FHVVFL6Qh00EM68ybw
pI/iBd9OugRjOOmm5BpavnKO7HeOUyggMo2tjOKsiWCNo/ML0jyAcv3B8VxwWjLU
iWHwklHXZJz8nWUorrBluk/b2KHjRLnYtmaTvP8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQulh7nd5iRuKCrw0IgvylHvoBgUDAfBgNVHSMEGDAWgBSIeWmS34g74bqy
pS9F9SVOu1K2lzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lIbHBrdC1JTy1HNnNxVXZSZlVsVHJ0U3RwYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvN2UwNzBlLTc5MzAtNDNjOC1hNjZkLTIxNWMzZDhmODkxNC8x
L0xwWWU1M2VZa2JpZ3E4TkNJTDhwUjc2QVlGQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
N2UwNzBlLTc5MzAtNDNjOC1hNjZkLTIxNWMzZDhmODkxNC8xL2lIbHBrdC1JTy1H
NnNxVXZSZlVsVHJ0U3RwYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMMQSjANBgkqhkiG9w0BAQsFAAOC
AQEAnLW3mlxZhrroQWDxET36W7HDaL4xH7PRhpySp0e8PsVQgL+gL+t3X4w3Bwj8
jTHHnlpYZIQY9sSvvNWW8im65p2aEN16xvd7N7TFO6uTMquhJsfkc3LMcb/gtqhs
gGwutrpdl0HUoLNcPwOO4TUsSootfXM7gHmDg74C4hiMLHKbORSJIRN3koFBOem8
hMMpJmE5mnjZrslbzZeak7PeOsmITDOtWZ8X/1b9TA+PvU94vioergI4yt4Awkzy
zvn9qQSm+NMruEmDVlZGQQAtcNTD9MMxBVXURKXfGvWg/oPmFJEroUZgL29LADmw
tSRgSN5NycvfuvbiVTMDlK3N5w==
-----END CERTIFICATE-----
Generated at Wed Mar 12 13:31:43 2025 by rpki-client