Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/h0zBr8LC6cWViZT-PC2v46z0Nyo.roa
File: h0zBr8LC6cWViZT-PC2v46z0Nyo.roa (raw, json)
Hash identifier: BsLuQIYpUz5CAlFrnT0f5iZeOX54tu4iaOvV5uAbwWw=
Subject key identifier: 87:4C:C1:AF:C2:C2:E9:C5:95:89:94:FE:3C:2D:AF:E3:AC:F4:37:2A
Certificate issuer: /CN=3adeea3b6aac4d834b4fd7c2e5d3c397f61f43d6
Certificate serial: 018570708DBDD8DB2E7697AEE4B616551977
Authority key identifier: 3A:DE:EA:3B:6A:AC:4D:83:4B:4F:D7:C2:E5:D3:C3:97:F6:1F:43:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/h0zBr8LC6cWViZT-PC2v46z0Nyo.roa
Signing time: Mon 02 Jan 2023 03:05:02 +0000
ROA not before: Mon 02 Jan 2023 03:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212669
IP address blocks: 193.106.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:8d:bd:d8:db:2e:76:97:ae:e4:b6:16:55:19:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adeea3b6aac4d834b4fd7c2e5d3c397f61f43d6
Validity
Not Before: Jan 2 03:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=874cc1afc2c2e9c5958994fe3c2dafe3acf4372a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:04:bc:c2:ac:68:ed:82:cb:8b:0f:3c:63:25:
81:70:01:eb:91:4f:35:45:b7:2a:0a:c8:72:5b:6c:
15:c9:65:be:3d:65:ae:12:34:44:89:ae:e0:33:74:
2c:0d:f1:0d:4f:47:5a:fa:db:c0:38:1e:f8:01:40:
ac:76:96:44:e8:c6:04:e6:d4:90:13:aa:99:57:23:
74:6f:75:67:92:94:4e:79:9b:e0:95:de:fb:b8:80:
73:b2:6c:57:cf:73:e3:af:0b:c2:ad:4a:57:11:f3:
33:32:31:85:8b:62:cc:ef:d7:16:40:e0:84:b0:bd:
72:46:7a:7e:eb:e8:31:a8:8e:d4:31:1e:2d:7f:bf:
f6:b2:72:e1:0b:fa:0f:a8:df:43:87:6a:f3:e5:d6:
3a:09:d0:24:cb:c2:68:c9:a6:7b:cf:65:8e:ac:fa:
a0:9c:7c:c4:8e:b3:d6:00:39:28:dd:08:7d:e0:0f:
3a:fe:04:15:8b:db:c4:32:92:e4:de:64:04:b4:ca:
2f:b9:ed:02:64:5e:dc:af:fd:5b:f3:4b:fc:9c:b6:
ab:c9:e5:60:55:e9:20:ae:bb:73:d9:19:0f:f0:a2:
52:35:af:89:c7:f8:b1:4b:1a:24:08:4c:5d:b6:14:
a1:b0:2b:15:13:0d:2c:c9:43:d9:29:dd:ad:1f:ee:
14:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:4C:C1:AF:C2:C2:E9:C5:95:89:94:FE:3C:2D:AF:E3:AC:F4:37:2A
X509v3 Authority Key Identifier:
keyid:3A:DE:EA:3B:6A:AC:4D:83:4B:4F:D7:C2:E5:D3:C3:97:F6:1F:43:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/h0zBr8LC6cWViZT-PC2v46z0Nyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.198.0/24
Signature Algorithm: sha256WithRSAEncryption
80:78:36:ac:c4:c9:0b:3b:a2:f9:03:45:1e:73:7a:cf:5c:72:
e5:0e:18:90:11:db:50:39:57:68:62:ef:2a:d7:7c:37:00:9d:
45:7c:f8:dc:3e:60:18:ed:dd:6c:de:f2:fa:0d:87:3f:ee:ef:
90:23:b3:8a:52:fc:1a:7a:0c:61:62:17:ca:8f:73:03:a4:27:
b3:2a:7a:9e:a1:43:f6:67:ec:94:3e:46:01:9b:0d:ba:48:d0:
1e:4d:48:1e:1c:95:36:0b:59:3d:c6:7a:ed:86:98:18:32:81:
73:0b:16:1a:a2:63:f2:32:83:9e:4d:c5:c1:02:f6:5d:f0:60:
df:b8:54:e0:a3:53:81:23:0a:61:14:4d:a4:5b:ed:7a:1e:1c:
dd:27:e4:11:1b:2e:41:cb:96:45:cb:23:f9:07:07:c0:98:d7:
4f:2f:40:fa:93:7f:e4:f8:6c:07:25:26:3a:66:1a:a5:20:74:
ac:5b:42:90:38:52:5c:56:ec:c8:16:70:ba:0e:29:11:de:61:
a5:94:20:aa:4a:06:77:86:f8:4c:e3:ba:f7:89:ba:5c:98:df:
56:7d:ff:b7:f1:b1:ed:6c:06:ae:69:2f:ea:ea:d9:8e:3f:39:
d8:48:4b:2f:7d:e1:6d:f3:af:43:fe:00:65:58:68:39:00:d0:
41:1a:25:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwcI292Nsudpeu5LYWVRl3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZGVlYTNiNmFhYzRkODM0YjRmZDdjMmU1ZDNjMzk3ZjYx
ZjQzZDYwHhcNMjMwMTAyMDMwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NzRjYzFhZmMyYzJlOWM1OTU4OTk0ZmUzYzJkYWZlM2FjZjQzNzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngS8wqxo7YLLiw88YyWBcAHrkU81
RbcqCshyW2wVyWW+PWWuEjREia7gM3QsDfENT0da+tvAOB74AUCsdpZE6MYE5tSQ
E6qZVyN0b3VnkpROeZvgld77uIBzsmxXz3PjrwvCrUpXEfMzMjGFi2LM79cWQOCE
sL1yRnp+6+gxqI7UMR4tf7/2snLhC/oPqN9Dh2rz5dY6CdAky8JoyaZ7z2WOrPqg
nHzEjrPWADko3Qh94A86/gQVi9vEMpLk3mQEtMovue0CZF7cr/1b80v8nLaryeVg
Vekgrrtz2RkP8KJSNa+Jx/ixSxokCExdthShsCsVEw0syUPZKd2tH+4UbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIdMwa/CwunFlYmU/jwtr+Os9DcqMB8GA1UdIwQY
MBaAFDre6jtqrE2DS0/XwuXTw5f2H0PWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3Q3cU8ycXNUWU5MVDlmQzVkUERsX1lmUTlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8wMTVmNDQtMGY0Yy00NzE0LTg2MTUt
MjNiMDcyZjViMTg4LzEvaDB6QnI4TEM2Y1dWaVpULVBDMnY0NnowTnlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi8wMTVmNDQtMGY0Yy00NzE0LTg2MTUtMjNiMDcyZjViMTg4
LzEvT3Q3cU8ycXNUWU5MVDlmQzVkUERsX1lmUTlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWrGMA0G
CSqGSIb3DQEBCwUAA4IBAQCAeDasxMkLO6L5A0Uec3rPXHLlDhiQEdtQOVdoYu8q
13w3AJ1FfPjcPmAY7d1s3vL6DYc/7u+QI7OKUvwaegxhYhfKj3MDpCezKnqeoUP2
Z+yUPkYBmw26SNAeTUgeHJU2C1k9xnrthpgYMoFzCxYaomPyMoOeTcXBAvZd8GDf
uFTgo1OBIwphFE2kW+16HhzdJ+QRGy5By5ZFyyP5BwfAmNdPL0D6k3/k+GwHJSY6
ZhqlIHSsW0KQOFJcVuzIFnC6DikR3mGllCCqSgZ3hvhM47r3ibpcmN9Wff+38bHt
bAauaS/q6tmOPznYSEsvfeFt869D/gBlWGg5ANBBGiV4
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:33:32 2025 by rpki-client