Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/ShowtNM2m2UKeBL8F3fZYKX41FQ.roa
File: ShowtNM2m2UKeBL8F3fZYKX41FQ.roa (raw, json)
Hash identifier: fLdZxXolLRuOUGV4tUzHHqmQm+iuYEtRLW2OEHSE+Js=
Subject key identifier: 4A:1A:30:B4:D3:36:9B:65:0A:78:12:FC:17:77:D9:60:A5:F8:D4:54
Certificate issuer: /CN=a8539f9355d3eb778b1bb8ee2723326011a1229b
Certificate serial: 0194221FB95096786CF0FE90B6C4AD8FAD84
Authority key identifier: A8:53:9F:93:55:D3:EB:77:8B:1B:B8:EE:27:23:32:60:11:A1:22:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFOfk1XT63eLG7juJyMyYBGhIps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/ShowtNM2m2UKeBL8F3fZYKX41FQ.roa
Signing time: Wed 01 Jan 2025 13:48:11 +0000
ROA not before: Wed 01 Jan 2025 13:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 559
IP address blocks: 148.187.0.0/16 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:b9:50:96:78:6c:f0:fe:90:b6:c4:ad:8f:ad:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8539f9355d3eb778b1bb8ee2723326011a1229b
Validity
Not Before: Jan 1 13:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a1a30b4d3369b650a7812fc1777d960a5f8d454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b6:7f:d9:19:aa:69:99:56:c3:09:3c:70:94:
b7:6f:2d:94:58:66:29:60:a8:97:26:7a:3a:4f:23:
97:2b:7b:99:94:5c:a0:3f:f1:b1:4a:f0:71:be:39:
45:71:40:23:81:6c:bf:32:a6:38:34:55:85:3a:8e:
f4:2e:1f:c6:6e:64:dd:1e:92:34:19:ae:1b:ac:6e:
0e:ab:41:39:a1:b8:2b:6c:48:3c:45:22:24:6e:d5:
5f:df:2f:f5:40:e4:97:1a:63:d4:52:11:5c:97:1d:
7c:33:53:a1:a0:ed:ec:3e:f4:71:14:f4:9f:99:45:
41:77:38:83:e4:60:ff:e8:1d:58:d0:ba:d6:ac:99:
1f:51:08:2c:74:f8:23:47:88:8f:ee:33:5e:ae:7e:
20:0a:28:59:46:ee:f6:cb:77:ff:f2:5a:dd:96:5f:
d7:6f:bf:60:23:b6:c0:10:2d:63:3a:85:1c:02:82:
cb:dc:97:17:58:da:22:3f:74:b4:c2:e0:4e:a6:60:
df:72:77:fc:3c:fa:08:43:00:61:f0:8b:61:67:19:
3d:34:48:27:78:ea:ff:8d:f2:7f:0d:b6:42:17:ad:
30:28:57:85:27:7b:62:7a:7a:49:b7:60:03:d3:c1:
2c:31:11:ba:df:70:6c:84:ad:be:0f:2c:36:56:89:
2f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:1A:30:B4:D3:36:9B:65:0A:78:12:FC:17:77:D9:60:A5:F8:D4:54
X509v3 Authority Key Identifier:
keyid:A8:53:9F:93:55:D3:EB:77:8B:1B:B8:EE:27:23:32:60:11:A1:22:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFOfk1XT63eLG7juJyMyYBGhIps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/ShowtNM2m2UKeBL8F3fZYKX41FQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/qFOfk1XT63eLG7juJyMyYBGhIps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:18:75:9e:63:b9:4b:dc:48:67:a7:e4:73:e7:5b:d4:d5:cc:
8e:4c:f8:f3:2f:2d:3b:d7:a2:22:da:5e:a3:57:6b:bb:43:85:
ca:e5:9d:e5:e0:c3:04:37:66:85:a7:26:0e:bf:95:f0:2d:d7:
7a:68:ba:20:bc:8c:70:bb:98:8b:08:82:87:52:61:43:28:4d:
ca:19:9d:bd:f6:21:1e:8a:6e:f2:98:f4:e0:ae:fc:36:64:eb:
7e:87:a6:d8:2f:6c:27:fb:4a:5e:2d:1f:c4:99:f6:9c:6a:e8:
99:61:df:a2:15:58:7e:1b:08:7c:f8:4b:c2:58:f0:c5:85:7b:
33:a6:a5:89:d4:a2:b7:f7:f7:c5:3b:5b:21:6a:05:de:35:65:
6d:91:52:db:a4:d2:73:8c:ff:49:1a:88:59:86:6f:18:7e:88:
d2:f6:ef:17:10:ab:76:cb:5e:f0:ad:a5:78:aa:61:8a:1d:b3:
f1:eb:8a:2d:d6:3e:ae:e4:ff:cc:9e:a7:82:49:1a:0c:d3:49:
b0:71:ba:49:be:68:b2:84:25:ed:09:1a:d1:f9:27:19:ef:4f:
b0:89:36:3b:98:d8:ab:fc:90:96:e9:67:73:d2:47:83:da:b5:
d0:39:df:af:e1:a4:e3:a8:d3:08:f8:a4:28:ee:71:80:b0:c7:
3d:5a:ab:eb
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAZQiH7lQlnhs8P6QtsStj62EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4NTM5ZjkzNTVkM2ViNzc4YjFiYjhlZTI3MjMzMjYwMTFh
MTIyOWIwHhcNMjUwMTAxMTM0ODExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTFhMzBiNGQzMzY5YjY1MGE3ODEyZmMxNzc3ZDk2MGE1ZjhkNDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7Z/2RmqaZlWwwk8cJS3by2UWGYp
YKiXJno6TyOXK3uZlFygP/GxSvBxvjlFcUAjgWy/MqY4NFWFOo70Lh/GbmTdHpI0
Ga4brG4Oq0E5obgrbEg8RSIkbtVf3y/1QOSXGmPUUhFclx18M1OhoO3sPvRxFPSf
mUVBdziD5GD/6B1Y0LrWrJkfUQgsdPgjR4iP7jNern4gCihZRu72y3f/8lrdll/X
b79gI7bAEC1jOoUcAoLL3JcXWNoiP3S0wuBOpmDfcnf8PPoIQwBh8IthZxk9NEgn
eOr/jfJ/DbZCF60wKFeFJ3tienpJt2AD08EsMRG633BshK2+Dyw2Vokv+wIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFEoaMLTTNptlCngS/Bd32WCl+NRUMB8GA1UdIwQY
MBaAFKhTn5NV0+t3ixu47icjMmARoSKbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUZPZmsxWFQ2M2VMRzdqdUp5TXlZQkdoSXBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS80ZjhlNzYtNTllNS00MGQxLWExM2Ut
NzFmNGM0N2Y1MDZlLzEvU2hvd3ROTTJtMlVLZUJMOEYzZlpZS1g0MUZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS80ZjhlNzYtNTllNS00MGQxLWExM2UtNzFmNGM0N2Y1MDZl
LzEvcUZPZmsxWFQ2M2VMRzdqdUp5TXlZQkdoSXBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAlLswDQYJ
KoZIhvcNAQELBQADggEBAFIYdZ5juUvcSGen5HPnW9TVzI5M+PMvLTvXoiLaXqNX
a7tDhcrlneXgwwQ3ZoWnJg6/lfAt13pouiC8jHC7mIsIgodSYUMoTcoZnb32IR6K
bvKY9OCu/DZk636HptgvbCf7Sl4tH8SZ9pxq6Jlh36IVWH4bCHz4S8JY8MWFezOm
pYnUorf398U7WyFqBd41ZW2RUtuk0nOM/0kaiFmGbxh+iNL27xcQq3bLXvCtpXiq
YYods/Hrii3WPq7k/8yep4JJGgzTSbBxukm+aLKEJe0JGtH5JxnvT7CJNjuY2Kv8
kJbpZ3PSR4PatdA536/hpOOo0wj4pCjucYCwxz1aq+s=
-----END CERTIFICATE-----
Generated at Fri Apr 11 04:58:41 2025 by rpki-client