Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/b281ce-0e59-4911-82aa-0a08e47f27d1/1/XS7oa-IR-0wWr_0wSEKv3Mk-d4E.roa
File: XS7oa-IR-0wWr_0wSEKv3Mk-d4E.roa (raw, json)
Hash identifier: pF8xSNfeLsWiMphZBQN9Xp0ONZoXGQEFbnn9VEbrfYc=
Subject key identifier: 5D:2E:E8:6B:E2:11:FB:4C:16:AF:FD:30:48:42:AF:DC:C9:3E:77:81
Certificate issuer: /CN=bd2aac0640e07c735e13488ae87035bd083b5a21
Certificate serial: 03124783
Authority key identifier: BD:2A:AC:06:40:E0:7C:73:5E:13:48:8A:E8:70:35:BD:08:3B:5A:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSqsBkDgfHNeE0iK6HA1vQg7WiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/b281ce-0e59-4911-82aa-0a08e47f27d1/1/XS7oa-IR-0wWr_0wSEKv3Mk-d4E.roa
Signing time: Sat 01 Jan 2022 11:04:03 +0000
ROA not before: Sat 01 Jan 2022 11:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16177
IP address blocks: 193.41.176.0/22 maxlen: 24
194.9.220.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51529603 (0x3124783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2aac0640e07c735e13488ae87035bd083b5a21
Validity
Not Before: Jan 1 11:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d2ee86be211fb4c16affd304842afdcc93e7781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:55:b5:61:24:b7:80:85:5b:df:6b:c2:fb:3b:
82:b7:d6:30:7e:8f:56:f1:83:48:0c:5b:e6:17:fa:
88:68:e7:f0:6c:f3:26:9c:ba:6b:36:53:8e:b5:0a:
2d:f9:78:ae:12:a6:cc:54:d0:b5:bc:77:b4:8f:7e:
5d:d0:d7:e6:90:14:dd:04:83:15:63:11:1b:cb:e0:
60:21:d7:5b:d8:04:84:7d:e4:8d:bd:64:51:b4:a4:
87:a1:ee:ee:51:63:86:ec:f4:9e:91:37:b1:c2:64:
a7:1f:39:f0:be:44:6d:c4:cf:b8:5d:82:97:5f:ec:
8c:c1:40:d0:52:24:67:f8:e3:31:aa:80:b6:a3:65:
c4:9d:39:25:30:f9:42:1f:9b:5a:42:14:a7:1d:7f:
39:7b:55:b5:70:3d:ac:0b:05:4b:fd:8f:02:b0:2f:
cb:82:6f:97:e5:cc:58:30:6e:9c:76:06:4c:78:d4:
ba:f1:85:77:08:22:f0:37:ce:90:e0:17:d8:d1:7f:
1b:da:0e:44:91:b3:c8:49:36:a1:b1:8d:00:01:97:
56:c2:19:30:33:8a:5a:e7:5e:56:b5:df:d1:e0:38:
92:b4:c4:21:bf:6a:6a:28:3a:6f:ae:17:f1:d9:5a:
ed:48:59:0b:56:5c:7f:56:b6:07:0c:8f:d1:20:1c:
41:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:2E:E8:6B:E2:11:FB:4C:16:AF:FD:30:48:42:AF:DC:C9:3E:77:81
X509v3 Authority Key Identifier:
keyid:BD:2A:AC:06:40:E0:7C:73:5E:13:48:8A:E8:70:35:BD:08:3B:5A:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSqsBkDgfHNeE0iK6HA1vQg7WiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b281ce-0e59-4911-82aa-0a08e47f27d1/1/XS7oa-IR-0wWr_0wSEKv3Mk-d4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b281ce-0e59-4911-82aa-0a08e47f27d1/1/vSqsBkDgfHNeE0iK6HA1vQg7WiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.176.0/22
194.9.220.0/23
Signature Algorithm: sha256WithRSAEncryption
55:80:04:6d:b1:7d:49:08:97:24:85:c9:05:de:55:48:af:05:
7e:32:f6:ce:8d:2a:22:57:52:23:59:46:1d:86:1f:09:55:49:
f2:ca:4a:4d:7b:49:4b:95:97:d2:c8:a0:f9:7b:92:63:3f:b7:
00:9c:52:a7:2b:74:5b:12:e6:9f:9b:2d:cd:b3:f8:d4:ed:ef:
87:de:28:8e:dc:7d:2b:6c:d4:54:ff:ce:83:9a:1f:b9:22:49:
b7:70:37:0a:3c:66:63:5b:1d:b7:01:64:01:d2:da:48:f0:80:
c8:32:d0:0f:23:a8:f5:0a:c9:9d:0e:ed:df:01:98:93:e4:e3:
a0:94:f5:eb:f3:6e:11:e2:c9:dd:00:07:36:47:2e:2a:41:e1:
16:6e:cb:08:79:9c:80:9a:c2:f9:d3:e9:c5:2e:c6:4c:57:cd:
76:df:c8:ff:42:5b:92:88:95:66:fb:27:17:91:19:d8:eb:3b:
75:ec:23:fe:3d:40:ec:56:23:68:bd:c1:d3:ce:02:98:a2:74:
cb:83:56:9d:cf:f5:e0:24:78:cb:28:9d:eb:2d:23:ee:fb:f9:
46:57:f3:76:5a:02:a3:6f:40:fb:5d:9a:d2:ab:0e:ff:57:e6:
93:77:75:d2:94:c9:e4:1e:6a:04:56:3b:aa:18:47:76:5d:82:
05:1f:c7:ca
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAxJHgzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZDJhYWMwNjQwZTA3YzczNWUxMzQ4OGFlODcwMzViZDA4M2I1YTIxMB4XDTIyMDEw
MTExMDQwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWQyZWU4NmJlMjEx
ZmI0YzE2YWZmZDMwNDg0MmFmZGNjOTNlNzc4MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJxVtWEkt4CFW99rwvs7grfWMH6PVvGDSAxb5hf6iGjn8Gzz
Jpy6azZTjrUKLfl4rhKmzFTQtbx3tI9+XdDX5pAU3QSDFWMRG8vgYCHXW9gEhH3k
jb1kUbSkh6Hu7lFjhuz0npE3scJkpx858L5EbcTPuF2Cl1/sjMFA0FIkZ/jjMaqA
tqNlxJ05JTD5Qh+bWkIUpx1/OXtVtXA9rAsFS/2PArAvy4Jvl+XMWDBunHYGTHjU
uvGFdwgi8DfOkOAX2NF/G9oORJGzyEk2obGNAAGXVsIZMDOKWudeVrXf0eA4krTE
Ib9qaig6b64X8dla7UhZC1Zcf1a2BwyP0SAcQWkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRdLuhr4hH7TBav/TBIQq/cyT53gTAfBgNVHSMEGDAWgBS9KqwGQOB8c14T
SIrocDW9CDtaITAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZTcXNCa0RnZkhOZUUwaUs2SEExdlFnN1dpRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGMvYjI4MWNlLTBlNTktNDkxMS04MmFhLTBhMDhlNDdmMjdkMS8x
L1hTN29hLUlSLTB3V3JfMHdTRUt2M01rLWQ0RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGMv
YjI4MWNlLTBlNTktNDkxMS04MmFhLTBhMDhlNDdmMjdkMS8xL3ZTcXNCa0RnZkhO
ZUUwaUs2SEExdlFnN1dpRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAsEpsAMEAcIJ3DANBgkqhkiG9w0B
AQsFAAOCAQEAVYAEbbF9SQiXJIXJBd5VSK8FfjL2zo0qIldSI1lGHYYfCVVJ8spK
TXtJS5WX0sig+XuSYz+3AJxSpyt0WxLmn5stzbP41O3vh94ojtx9K2zUVP/Og5of
uSJJt3A3CjxmY1sdtwFkAdLaSPCAyDLQDyOo9QrJnQ7t3wGYk+TjoJT16/NuEeLJ
3QAHNkcuKkHhFm7LCHmcgJrC+dPpxS7GTFfNdt/I/0JbkoiVZvsnF5EZ2Os7dewj
/j1A7FYjaL3B084CmKJ0y4NWnc/14CR4yyid6y0j7vv5RlfzdloCo29A+12a0qsO
/1fmk3d10pTJ5B5qBFY7qhhHdl2CBR/Hyg==
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:32:47 2025 by rpki-client