Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/EbkibLILSHjAv1JvYeoD8fCFGEE.roa
File: EbkibLILSHjAv1JvYeoD8fCFGEE.roa (raw, json)
Hash identifier: /Ofe9Y13cX6ULVD3fa4GKAU4rwOizM42Q9uH3zy41Wc=
Subject key identifier: 11:B9:22:6C:B2:0B:48:78:C0:BF:52:6F:61:EA:03:F1:F0:85:18:41
Certificate issuer: /CN=1d8b9323cd4c92c75d83d346f0d269e5c2d5a808
Certificate serial: 01950492C6F921A821D3D44FFA177185EF0D
Authority key identifier: 1D:8B:93:23:CD:4C:92:C7:5D:83:D3:46:F0:D2:69:E5:C2:D5:A8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYuTI81Mksddg9NG8NJp5cLVqAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/EbkibLILSHjAv1JvYeoD8fCFGEE.roa
Signing time: Fri 14 Feb 2025 13:08:02 +0000
ROA not before: Fri 14 Feb 2025 13:08:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213467
IP address blocks: 5.183.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:04:92:c6:f9:21:a8:21:d3:d4:4f:fa:17:71:85:ef:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8b9323cd4c92c75d83d346f0d269e5c2d5a808
Validity
Not Before: Feb 14 13:08:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=11b9226cb20b4878c0bf526f61ea03f1f0851841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:17:af:c7:bd:4a:69:7e:66:43:09:e7:a0:0f:
c4:d7:fd:4f:29:88:a8:68:f5:c6:e0:13:76:a5:9e:
5e:f8:ee:86:c8:ab:36:42:17:b2:05:2a:db:17:34:
8c:de:5b:ec:29:9a:0e:fd:66:b1:08:94:23:65:05:
f1:5c:c1:ea:0c:15:4f:b3:d8:cb:9f:45:34:b4:1a:
28:df:55:11:ea:c8:1f:3c:51:a0:4e:6c:dd:53:96:
99:bb:82:fe:ad:3e:c9:8d:69:d7:f1:c3:d7:ff:f7:
42:fa:ec:44:99:3b:27:b2:7d:0d:b8:7f:92:32:85:
cd:b2:e3:e0:e0:88:b8:5f:b7:58:1f:e4:d7:a3:6b:
3e:05:cb:82:4f:96:96:ba:64:76:c9:03:bc:a2:a8:
e1:71:5a:3b:e0:43:12:be:2f:11:15:90:a8:05:ab:
4f:4b:7a:11:a0:5d:6f:80:71:53:a2:54:a1:4a:d0:
b3:16:4e:ca:2c:3a:b7:c9:fc:64:d1:6b:61:c9:62:
9e:64:8d:53:ef:9e:46:e1:a7:ff:00:52:55:d1:54:
f6:00:d7:d8:81:8e:71:fa:4f:7d:b6:50:4c:fe:d4:
b3:b9:d0:8b:a7:35:3d:ef:40:d3:dc:4a:ab:3f:16:
4f:9e:64:8e:c3:a1:6a:e5:4c:cd:e7:d1:ae:78:69:
67:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B9:22:6C:B2:0B:48:78:C0:BF:52:6F:61:EA:03:F1:F0:85:18:41
X509v3 Authority Key Identifier:
keyid:1D:8B:93:23:CD:4C:92:C7:5D:83:D3:46:F0:D2:69:E5:C2:D5:A8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYuTI81Mksddg9NG8NJp5cLVqAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/EbkibLILSHjAv1JvYeoD8fCFGEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8c7a34-538d-4314-aaf4-04dd80d5b72d/1/HYuTI81Mksddg9NG8NJp5cLVqAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.195.0/24
Signature Algorithm: sha256WithRSAEncryption
71:28:66:b1:86:31:82:83:ed:24:f7:47:39:44:cd:da:16:aa:
df:e8:3b:31:8f:c7:ce:e1:d7:7a:ea:8e:df:5d:2a:ee:5c:cc:
38:cf:ae:b5:67:fe:92:c1:93:89:c0:ed:ef:60:12:cd:e1:35:
77:78:b1:d1:0b:eb:39:61:2e:33:7a:6a:df:93:74:7b:23:8a:
95:97:d6:4b:37:5c:ec:4f:95:82:3b:dc:b1:c0:71:2c:65:3d:
12:0d:c5:6d:0f:30:32:c8:8d:cf:10:4a:3e:77:66:bb:0f:b3:
ba:65:2c:69:ab:a8:9d:d9:0c:68:7d:e8:da:fe:22:94:ea:57:
3c:76:8a:ab:60:6e:8e:83:c7:9e:b6:06:31:ee:a1:54:75:fc:
79:8b:b4:a9:37:01:83:c4:bd:ec:ab:e3:7e:9c:80:f9:1d:0b:
10:41:c5:4b:45:3e:dd:ed:10:e4:bc:06:d0:ca:09:5c:10:4f:
6f:6c:c5:64:b2:bf:77:8c:08:23:c7:63:cc:0a:d0:08:a4:5d:
9b:5d:50:6a:86:4d:65:b1:0b:ea:27:34:ea:69:d7:1a:21:2c:
a9:85:e5:c9:c3:19:03:ec:2c:8a:ab:3b:70:23:44:36:8d:de:
97:45:36:28:85:27:9a:00:8d:2e:6f:9e:57:53:16:50:94:3e:
ae:5e:25:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUEksb5Iagh09RP+hdxhe8NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkOGI5MzIzY2Q0YzkyYzc1ZDgzZDM0NmYwZDI2OWU1YzJk
NWE4MDgwHhcNMjUwMjE0MTMwODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMWI5MjI2Y2IyMGI0ODc4YzBiZjUyNmY2MWVhMDNmMWYwODUxODQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hevx71KaX5mQwnnoA/E1/1PKYio
aPXG4BN2pZ5e+O6GyKs2QheyBSrbFzSM3lvsKZoO/WaxCJQjZQXxXMHqDBVPs9jL
n0U0tBoo31UR6sgfPFGgTmzdU5aZu4L+rT7JjWnX8cPX//dC+uxEmTsnsn0NuH+S
MoXNsuPg4Ii4X7dYH+TXo2s+BcuCT5aWumR2yQO8oqjhcVo74EMSvi8RFZCoBatP
S3oRoF1vgHFTolShStCzFk7KLDq3yfxk0WthyWKeZI1T755G4af/AFJV0VT2ANfY
gY5x+k99tlBM/tSzudCLpzU970DT3EqrPxZPnmSOw6Fq5UzN59GueGlnmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBG5ImyyC0h4wL9Sb2HqA/HwhRhBMB8GA1UdIwQY
MBaAFB2LkyPNTJLHXYPTRvDSaeXC1agIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFl1VEk4MU1rc2RkZzlORzhOSnA1Y0xWcUFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS84YzdhMzQtNTM4ZC00MzE0LWFhZjQt
MDRkZDgwZDViNzJkLzEvRWJraWJMSUxTSGpBdjFKdlllb0Q4ZkNGR0VFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS84YzdhMzQtNTM4ZC00MzE0LWFhZjQtMDRkZDgwZDViNzJk
LzEvSFl1VEk4MU1rc2RkZzlORzhOSnA1Y0xWcUFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbfDMA0G
CSqGSIb3DQEBCwUAA4IBAQBxKGaxhjGCg+0k90c5RM3aFqrf6Dsxj8fO4dd66o7f
XSruXMw4z661Z/6SwZOJwO3vYBLN4TV3eLHRC+s5YS4zemrfk3R7I4qVl9ZLN1zs
T5WCO9yxwHEsZT0SDcVtDzAyyI3PEEo+d2a7D7O6ZSxpq6id2Qxofeja/iKU6lc8
doqrYG6Og8eetgYx7qFUdfx5i7SpNwGDxL3sq+N+nID5HQsQQcVLRT7d7RDkvAbQ
yglcEE9vbMVksr93jAgjx2PMCtAIpF2bXVBqhk1lsQvqJzTqadcaISypheXJwxkD
7CyKqztwI0Q2jd6XRTYohSeaAI0ub55XUxZQlD6uXiUN
-----END CERTIFICATE-----
Generated at Tue Apr 8 09:55:41 2025 by rpki-client