Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/RvRA4-oaXDpOw1qaRNUyr64rSbI.roa
File: RvRA4-oaXDpOw1qaRNUyr64rSbI.roa (raw, json)
Hash identifier: iwWNh9uafjt09eG7G9KbCBCnU+rrzEEcqV61GUUGiUk=
Subject key identifier: 46:F4:40:E3:EA:1A:5C:3A:4E:C3:5A:9A:44:D5:32:AF:AE:2B:49:B2
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 01856F94B21DE351E474D92FD347600410B6
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/RvRA4-oaXDpOw1qaRNUyr64rSbI.roa
Signing time: Sun 01 Jan 2023 23:04:53 +0000
ROA not before: Sun 01 Jan 2023 23:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398704
IP address blocks: 188.130.224.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:b2:1d:e3:51:e4:74:d9:2f:d3:47:60:04:10:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Jan 1 23:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46f440e3ea1a5c3a4ec35a9a44d532afae2b49b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4d:4d:16:fe:01:b0:7e:95:22:05:7e:d9:a2:
31:8e:a9:4b:96:bc:55:dc:20:7c:f9:0b:a7:5f:73:
bb:53:2d:6e:cb:6b:4b:0c:eb:6a:ff:36:bf:86:09:
37:99:a4:a1:ab:85:e7:a0:66:ae:26:4a:11:6c:4c:
8a:03:23:43:f0:fa:ba:c6:a0:d5:1e:c1:83:62:08:
ea:02:68:37:fe:87:f8:7a:8b:4d:0e:ea:7d:ad:22:
d6:92:00:f6:58:ff:6d:40:13:f1:c4:73:b7:72:aa:
d9:b3:50:f4:12:b9:85:36:17:2d:f5:4f:80:28:e2:
fe:7f:8b:d4:78:e4:58:1c:3f:fc:7d:4a:36:e3:4f:
cc:c6:0e:4c:54:77:21:8d:ce:43:75:f4:cf:96:b3:
45:5e:90:b6:79:5b:2f:63:41:52:81:98:b5:20:7b:
7b:26:47:7d:4e:99:b8:ef:0c:f7:e4:eb:45:37:e5:
9f:f2:17:f3:33:12:fd:de:b2:f7:37:c8:ac:13:41:
de:63:13:de:b4:51:a5:80:45:06:7c:bb:fb:5e:8f:
85:13:82:5c:7e:c2:17:f8:e5:2b:6e:81:c2:a1:bf:
15:d9:b9:94:c6:21:21:bf:f4:89:77:6f:33:35:32:
a5:62:bc:85:65:c8:65:56:79:cc:40:3c:48:52:13:
5d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:F4:40:E3:EA:1A:5C:3A:4E:C3:5A:9A:44:D5:32:AF:AE:2B:49:B2
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/RvRA4-oaXDpOw1qaRNUyr64rSbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.130.224.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:fb:e4:71:a6:bb:65:de:27:8a:54:c1:5f:92:0a:43:eb:4f:
86:af:2b:d5:86:82:b1:40:d6:0d:28:bf:c6:de:d1:c5:93:49:
e4:02:cc:9f:bd:73:88:b2:58:9f:e0:a1:6d:16:4a:38:14:6f:
6b:bd:79:ce:12:38:d8:b1:1e:ed:90:b0:67:5d:d3:4f:31:88:
bf:1b:b0:62:af:30:ba:19:8c:96:42:38:be:91:17:ed:e6:8f:
62:85:c3:e3:c4:1c:93:e3:65:15:12:bd:d9:3d:a0:95:a2:6c:
d4:26:39:19:39:0d:d3:ed:dc:20:87:ab:dd:18:79:89:f2:ee:
f6:26:78:0f:1a:74:33:68:21:9f:ae:90:19:20:a2:61:9a:65:
73:c1:f5:85:4a:8b:62:c1:e8:fd:ae:f9:fd:37:87:f0:bd:cb:
25:68:c1:45:cf:ca:ad:01:b8:49:c0:75:9a:a5:76:d6:6b:c2:
d5:2d:04:4e:e6:ad:a1:53:5e:8d:46:95:9c:89:72:20:50:a6:
b5:f4:71:1b:33:69:64:f6:3b:a8:be:0a:a0:c2:87:7d:4c:de:
54:df:0f:d7:78:06:19:c5:15:d8:51:c7:36:4c:76:15:2e:6b:
c9:7c:0d:ba:26:62:5e:e1:30:90:26:d1:3d:19:7a:19:35:6e:
1b:2e:da:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvlLId41HkdNkv00dgBBC2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0Mzc1ODE0MzQ0ZGYwYmY2ZDAxNzczM2FjZGM0ODhmMDAy
NjMxYjIwHhcNMjMwMTAxMjMwNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NmY0NDBlM2VhMWE1YzNhNGVjMzVhOWE0NGQ1MzJhZmFlMmI0OWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnk1NFv4BsH6VIgV+2aIxjqlLlrxV
3CB8+QunX3O7Uy1uy2tLDOtq/za/hgk3maShq4XnoGauJkoRbEyKAyND8Pq6xqDV
HsGDYgjqAmg3/of4eotNDup9rSLWkgD2WP9tQBPxxHO3cqrZs1D0ErmFNhct9U+A
KOL+f4vUeORYHD/8fUo240/Mxg5MVHchjc5DdfTPlrNFXpC2eVsvY0FSgZi1IHt7
Jkd9Tpm47wz35OtFN+Wf8hfzMxL93rL3N8isE0HeYxPetFGlgEUGfLv7Xo+FE4Jc
fsIX+OUrboHCob8V2bmUxiEhv/SJd28zNTKlYryFZchlVnnMQDxIUhNdBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEb0QOPqGlw6TsNamkTVMq+uK0myMB8GA1UdIwQY
MBaAFNQ3WBQ0TfC/bQF3M6zcSI8AJjGyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2Yt
MzY3MWQ2N2ViOWY4LzEvUnZSQTQtb2FYRHBPdzFxYVJOVXlyNjRyU2JJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2YtMzY3MWQ2N2ViOWY4
LzEvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvILgMA0G
CSqGSIb3DQEBCwUAA4IBAQA8++Rxprtl3ieKVMFfkgpD60+GryvVhoKxQNYNKL/G
3tHFk0nkAsyfvXOIslif4KFtFko4FG9rvXnOEjjYsR7tkLBnXdNPMYi/G7BirzC6
GYyWQji+kRft5o9ihcPjxByT42UVEr3ZPaCVomzUJjkZOQ3T7dwgh6vdGHmJ8u72
JngPGnQzaCGfrpAZIKJhmmVzwfWFSotiwej9rvn9N4fwvcslaMFFz8qtAbhJwHWa
pXbWa8LVLQRO5q2hU16NRpWciXIgUKa19HEbM2lk9juovgqgwod9TN5U3w/XeAYZ
xRXYUcc2THYVLmvJfA26JmJe4TCQJtE9GXoZNW4bLton
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:09 2025 by rpki-client