Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/hQJTb--fI9l5ucFYGN463nypVlc.roa
File: hQJTb--fI9l5ucFYGN463nypVlc.roa (raw, json)
Hash identifier: 5y/cwFgQNDNnnnNDKq21rYsFWHWJfplcY55Pn86AeNo=
Subject key identifier: 85:02:53:6F:EF:9F:23:D9:79:B9:C1:58:18:DE:3A:DE:7C:A9:56:57
Certificate issuer: /CN=88796992df883be1bab2a52f45f5254ebb52b697
Certificate serial: 01E220E6
Authority key identifier: 88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/hQJTb--fI9l5ucFYGN463nypVlc.roa
Signing time: Tue 15 Feb 2022 18:57:26 +0000
ROA not before: Tue 15 Feb 2022 18:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 101
IP address blocks: 195.16.74.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31596774 (0x1e220e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88796992df883be1bab2a52f45f5254ebb52b697
Validity
Not Before: Feb 15 18:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8502536fef9f23d979b9c15818de3ade7ca95657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5c:64:be:86:77:9a:37:de:86:60:77:3e:1d:
ec:69:8f:d4:6d:9d:72:71:03:57:fd:92:9d:98:7a:
c1:10:74:e3:54:04:4f:25:f0:dc:f5:0c:8a:43:ba:
6b:7b:1e:46:3d:55:f9:77:51:bd:df:75:26:af:71:
1e:bb:20:e3:3f:e0:eb:34:c2:c6:0e:06:29:71:b7:
55:c0:f6:df:ba:93:61:f0:42:60:7b:a8:7d:5b:54:
a5:ee:32:22:8f:bd:8d:97:59:a3:e2:f4:a1:f2:32:
c0:70:7b:1b:9e:0f:e2:0c:0d:46:cb:6a:af:f3:6e:
21:9b:ca:78:66:6b:72:47:51:4e:53:f1:0f:ca:b3:
43:ef:56:bb:d6:5d:f2:bf:2b:0b:33:cc:3f:1b:9a:
d8:1c:b5:a2:39:98:a0:99:b7:c3:d3:01:14:7a:32:
86:df:40:5b:46:37:fe:72:ca:25:6a:23:fa:7c:39:
b4:81:78:2a:07:f5:40:5a:af:d6:2e:b9:f0:f7:cb:
99:89:5c:92:2b:66:62:98:68:f3:99:30:3e:3b:d6:
ac:56:0e:4a:68:c2:bc:65:5a:bb:cd:a9:58:46:44:
8b:0d:02:1e:cf:ed:8c:6d:58:9c:b5:a0:fa:bf:54:
28:a7:cb:5e:24:03:96:df:82:82:99:3b:bd:0d:53:
ee:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:02:53:6F:EF:9F:23:D9:79:B9:C1:58:18:DE:3A:DE:7C:A9:56:57
X509v3 Authority Key Identifier:
keyid:88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/hQJTb--fI9l5ucFYGN463nypVlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/iHlpkt-IO-G6sqUvRfUlTrtStpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
55:74:41:96:38:a5:d7:59:5f:bf:0c:8d:a7:dd:63:66:ca:bd:
bb:63:f2:de:15:66:1a:c7:f3:d6:29:1a:c9:16:26:25:2f:b2:
dc:1e:13:3b:61:65:f5:30:15:4a:d3:d2:d6:10:29:16:cc:6c:
8d:61:fe:0e:61:a6:7e:20:9e:cb:a1:fc:f2:e5:08:89:bf:79:
26:f8:f4:f5:5e:0f:f7:a5:ac:91:04:9e:43:97:c6:11:8d:8f:
ab:25:cb:45:de:43:27:29:7c:4a:e2:99:8a:09:a3:7e:fc:f3:
76:9c:bd:2a:c9:6b:86:e0:e4:51:c3:65:c0:2d:10:c1:a2:e6:
bb:66:5e:d7:a5:a7:00:6c:d3:0f:d6:83:47:45:22:e9:74:c1:
35:7f:c8:7e:20:43:5a:6a:8a:f5:a3:28:fa:63:fd:7f:0b:8f:
25:27:54:55:92:6d:8b:d9:37:19:16:91:9d:b2:39:d1:e7:19:
04:a3:99:80:9c:63:b4:26:53:84:39:2e:68:5f:f2:2a:31:d8:
60:87:ec:4d:e3:41:d3:fe:59:fe:f5:cf:e6:ad:8f:9f:61:a4:
e0:c9:bb:1d:cc:d0:dc:68:29:14:e6:b8:d2:0a:58:26:f5:27:
30:68:58:86:8d:e9:3b:58:f9:fb:8b:9c:30:e4:2e:b9:82:f4:
6b:f8:68:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAeIg5jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ODc5Njk5MmRmODgzYmUxYmFiMmE1MmY0NWY1MjU0ZWJiNTJiNjk3MB4XDTIyMDIx
NTE4NTcyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODUwMjUzNmZlZjlm
MjNkOTc5YjljMTU4MThkZTNhZGU3Y2E5NTY1NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANFcZL6Gd5o33oZgdz4d7GmP1G2dcnEDV/2SnZh6wRB041QE
TyXw3PUMikO6a3seRj1V+XdRvd91Jq9xHrsg4z/g6zTCxg4GKXG3VcD237qTYfBC
YHuofVtUpe4yIo+9jZdZo+L0ofIywHB7G54P4gwNRstqr/NuIZvKeGZrckdRTlPx
D8qzQ+9Wu9Zd8r8rCzPMPxua2By1ojmYoJm3w9MBFHoyht9AW0Y3/nLKJWoj+nw5
tIF4Kgf1QFqv1i658PfLmYlckitmYpho85kwPjvWrFYOSmjCvGVau82pWEZEiw0C
Hs/tjG1YnLWg+r9UKKfLXiQDlt+Cgpk7vQ1T7jMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSFAlNv758j2Xm5wVgY3jrefKlWVzAfBgNVHSMEGDAWgBSIeWmS34g74bqy
pS9F9SVOu1K2lzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lIbHBrdC1JTy1HNnNxVXZSZlVsVHJ0U3RwYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvN2UwNzBlLTc5MzAtNDNjOC1hNjZkLTIxNWMzZDhmODkxNC8x
L2hRSlRiLS1mSTlsNXVjRllHTjQ2M255cFZsYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
N2UwNzBlLTc5MzAtNDNjOC1hNjZkLTIxNWMzZDhmODkxNC8xL2lIbHBrdC1JTy1H
NnNxVXZSZlVsVHJ0U3RwYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMMQSjANBgkqhkiG9w0BAQsFAAOC
AQEAVXRBljil11lfvwyNp91jZsq9u2Py3hVmGsfz1ikayRYmJS+y3B4TO2Fl9TAV
StPS1hApFsxsjWH+DmGmfiCey6H88uUIib95Jvj09V4P96WskQSeQ5fGEY2PqyXL
Rd5DJyl8SuKZigmjfvzzdpy9KslrhuDkUcNlwC0QwaLmu2Ze16WnAGzTD9aDR0Ui
6XTBNX/IfiBDWmqK9aMo+mP9fwuPJSdUVZJti9k3GRaRnbI50ecZBKOZgJxjtCZT
hDkuaF/yKjHYYIfsTeNB0/5Z/vXP5q2Pn2Gk4Mm7HczQ3GgpFOa40gpYJvUnMGhY
ho3pO1j5+4ucMOQuuYL0a/hoQg==
-----END CERTIFICATE-----
Generated at Wed Mar 12 13:48:47 2025 by rpki-client