Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/a80ad4-c48c-40a8-b09d-d39f9e2b68ca/1/pTuNoy8v0RF8tGhDr7OC1mF7lGY.roa
File: pTuNoy8v0RF8tGhDr7OC1mF7lGY.roa (raw, json)
Hash identifier: grYqeuMDKTQoj5JesKInVzIbDvXwvRd4xVTu/KKLj+8=
Subject key identifier: A5:3B:8D:A3:2F:2F:D1:11:7C:B4:68:43:AF:B3:82:D6:61:7B:94:66
Certificate issuer: /CN=49d82a20bf2176a8c321c1fbbff7c4660227d8ee
Certificate serial: 04089B75
Authority key identifier: 49:D8:2A:20:BF:21:76:A8:C3:21:C1:FB:BF:F7:C4:66:02:27:D8:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SdgqIL8hdqjDIcH7v_fEZgIn2O4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/a80ad4-c48c-40a8-b09d-d39f9e2b68ca/1/pTuNoy8v0RF8tGhDr7OC1mF7lGY.roa
Signing time: Sat 01 Jan 2022 16:10:39 +0000
ROA not before: Sat 01 Jan 2022 16:10:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198127
IP address blocks: 193.150.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67672949 (0x4089b75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49d82a20bf2176a8c321c1fbbff7c4660227d8ee
Validity
Not Before: Jan 1 16:10:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a53b8da32f2fd1117cb46843afb382d6617b9466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:be:23:7a:bd:0b:f7:4b:4d:61:25:61:6f:62:
91:5b:15:2f:19:df:be:bb:3d:e9:c7:7f:c3:c1:45:
40:ca:e2:8a:f2:8b:af:96:0e:8c:3e:83:01:15:20:
59:c6:71:4f:20:e3:f8:fe:79:19:c3:17:85:d8:5f:
8c:35:dc:5c:ed:51:80:c0:28:a6:4a:a6:ec:eb:03:
3e:34:2a:8f:48:8b:ab:3d:bb:70:a3:33:db:e3:f6:
03:12:85:99:ab:90:de:89:2f:4e:26:56:30:40:7a:
e3:21:0f:59:db:f2:7a:a4:14:16:ee:3f:31:ba:a9:
8e:79:1e:7b:aa:eb:69:3d:03:46:0a:f8:6c:5b:57:
10:da:bf:9c:36:50:fd:73:5e:a3:35:08:83:59:77:
74:54:c5:4a:5b:5b:e2:c8:02:de:04:fc:ab:2b:bd:
d9:74:16:d7:41:0d:e1:af:88:2d:4a:95:18:41:20:
12:d4:31:17:08:c0:31:c5:f4:ee:01:42:3d:93:6c:
2e:23:e4:aa:3a:e1:c8:19:d2:ee:63:64:61:ca:5a:
45:a3:35:73:dc:b4:00:da:46:23:29:99:1a:57:4f:
43:5d:c5:fa:0f:e6:6e:19:a8:9c:7c:a2:d2:56:02:
ec:ad:36:01:59:0f:e2:50:13:42:fb:f5:45:f8:ca:
8b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:3B:8D:A3:2F:2F:D1:11:7C:B4:68:43:AF:B3:82:D6:61:7B:94:66
X509v3 Authority Key Identifier:
keyid:49:D8:2A:20:BF:21:76:A8:C3:21:C1:FB:BF:F7:C4:66:02:27:D8:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SdgqIL8hdqjDIcH7v_fEZgIn2O4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a80ad4-c48c-40a8-b09d-d39f9e2b68ca/1/pTuNoy8v0RF8tGhDr7OC1mF7lGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a80ad4-c48c-40a8-b09d-d39f9e2b68ca/1/SdgqIL8hdqjDIcH7v_fEZgIn2O4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.67.0/24
Signature Algorithm: sha256WithRSAEncryption
94:3c:40:cb:07:e8:19:19:01:04:33:74:97:aa:21:0f:70:e2:
74:ca:75:ea:d4:c7:81:28:c3:fb:a6:87:ff:c6:87:3b:10:7b:
a5:c2:46:a0:ac:d5:b4:8f:d2:c8:75:50:f2:bf:97:01:83:4f:
09:99:f6:f0:6e:09:92:9a:ef:b5:6e:fa:84:67:8f:56:a9:34:
0d:1f:5a:a5:9f:1b:d0:74:7e:7b:c8:c0:37:6a:05:7c:13:0d:
4c:15:d7:c9:0b:fc:0e:dd:0a:d3:82:ae:94:53:a4:0e:38:c2:
67:cc:14:f4:d4:b5:73:88:f3:0d:c8:56:65:79:19:ed:6e:09:
8b:30:11:9a:0e:7d:ff:8d:62:26:9b:88:71:6e:cd:fd:38:73:
87:48:9a:3d:15:2a:38:5c:67:dd:14:45:f3:37:00:83:b0:c1:
dd:f5:d0:53:87:5b:34:fb:7d:3f:06:98:2e:39:19:b0:0e:d0:
f5:49:56:50:77:27:4f:d0:5f:08:38:18:9a:b9:8a:23:0d:eb:
a5:2d:04:32:3b:73:d0:17:ed:28:c3:cc:fd:59:bd:10:eb:41:
68:5a:c1:4c:fb:13:3d:ef:a5:f4:b0:eb:87:6a:ef:15:72:42:
b9:d4:20:21:49:28:6b:d4:8e:55:55:92:f7:29:0f:04:8d:20:
5b:b6:0d:df
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBAibdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
OWQ4MmEyMGJmMjE3NmE4YzMyMWMxZmJiZmY3YzQ2NjAyMjdkOGVlMB4XDTIyMDEw
MTE2MTAzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTUzYjhkYTMyZjJm
ZDExMTdjYjQ2ODQzYWZiMzgyZDY2MTdiOTQ2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMO+I3q9C/dLTWElYW9ikVsVLxnfvrs96cd/w8FFQMriivKL
r5YOjD6DARUgWcZxTyDj+P55GcMXhdhfjDXcXO1RgMAopkqm7OsDPjQqj0iLqz27
cKMz2+P2AxKFmauQ3okvTiZWMEB64yEPWdvyeqQUFu4/Mbqpjnkee6rraT0DRgr4
bFtXENq/nDZQ/XNeozUIg1l3dFTFSltb4sgC3gT8qyu92XQW10EN4a+ILUqVGEEg
EtQxFwjAMcX07gFCPZNsLiPkqjrhyBnS7mNkYcpaRaM1c9y0ANpGIymZGldPQ13F
+g/mbhmonHyi0lYC7K02AVkP4lATQvv1RfjKi/MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSlO42jLy/REXy0aEOvs4LWYXuUZjAfBgNVHSMEGDAWgBRJ2CogvyF2qMMh
wfu/98RmAifY7jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NkZ3FJTDhoZHFqREljSDd2X2ZFWmdJbjJPNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWMvYTgwYWQ0LWM0OGMtNDBhOC1iMDlkLWQzOWY5ZTJiNjhjYS8x
L3BUdU5veTh2MFJGOHRHaERyN09DMW1GN2xHWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMv
YTgwYWQ0LWM0OGMtNDBhOC1iMDlkLWQzOWY5ZTJiNjhjYS8xL1NkZ3FJTDhoZHFq
REljSDd2X2ZFWmdJbjJPNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGWQzANBgkqhkiG9w0BAQsFAAOC
AQEAlDxAywfoGRkBBDN0l6ohD3DidMp16tTHgSjD+6aH/8aHOxB7pcJGoKzVtI/S
yHVQ8r+XAYNPCZn28G4JkprvtW76hGePVqk0DR9apZ8b0HR+e8jAN2oFfBMNTBXX
yQv8Dt0K04KulFOkDjjCZ8wU9NS1c4jzDchWZXkZ7W4JizARmg59/41iJpuIcW7N
/Thzh0iaPRUqOFxn3RRF8zcAg7DB3fXQU4dbNPt9PwaYLjkZsA7Q9UlWUHcnT9Bf
CDgYmrmKIw3rpS0EMjtz0BftKMPM/Vm9EOtBaFrBTPsTPe+l9LDrh2rvFXJCudQg
IUkoa9SOVVWS9ykPBI0gW7YN3w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:46 2025 by rpki-client