Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/S2bE60chVUj0S5eQ-CaSn2tX30s.roa
File: S2bE60chVUj0S5eQ-CaSn2tX30s.roa (raw, json)
Hash identifier: cOzsCGzElNnS9KdINb5ukBLS0Zg8V/g/+HshZKlINrA=
Subject key identifier: 4B:66:C4:EB:47:21:55:48:F4:4B:97:90:F8:26:92:9F:6B:57:DF:4B
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 019425FD505F146DDF58C860C4CBA6AA24DB
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/S2bE60chVUj0S5eQ-CaSn2tX30s.roa
Signing time: Thu 02 Jan 2025 07:49:05 +0000
ROA not before: Thu 02 Jan 2025 07:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15754
IP address blocks: 195.208.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:50:5f:14:6d:df:58:c8:60:c4:cb:a6:aa:24:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 07:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4b66c4eb47215548f44b9790f826929f6b57df4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:66:13:1a:e9:90:87:53:69:fe:26:12:5c:24:
e4:31:6c:5f:f3:32:0a:f7:f2:7b:99:3a:ce:5c:5e:
ba:b8:35:a7:de:dd:1f:72:6d:a1:3b:35:58:85:84:
25:db:9d:80:7d:e2:49:69:34:94:db:18:17:12:d2:
a4:a4:ea:81:ee:af:f0:54:67:c1:57:2b:be:a8:19:
d9:5d:25:9c:e8:4a:14:4b:a0:87:27:dd:26:42:af:
6c:c3:56:6c:a0:44:48:6b:d1:b1:58:ca:a4:8b:d1:
98:da:4d:fd:72:36:41:1c:de:43:cd:eb:41:f9:e0:
e6:07:25:93:de:1d:c0:99:18:89:17:ba:ad:d0:de:
6c:1d:53:63:92:4d:d9:1d:fc:ca:72:95:1f:81:f0:
09:f6:b9:a9:a5:a3:4f:38:cf:54:e1:55:6d:4c:41:
16:cc:49:b6:0f:03:db:1e:79:37:61:4b:da:55:ad:
01:e4:82:c3:3b:42:a1:c1:bf:73:5d:84:17:e7:e9:
65:fe:c8:11:b8:46:dd:b9:b3:34:27:eb:6c:4c:6a:
8a:43:e1:36:28:51:d0:57:98:fc:e4:bb:82:4b:17:
4f:02:a1:60:57:8e:9b:fe:51:4b:e3:15:d4:11:5c:
16:1f:93:f1:6a:f7:cd:72:30:22:c2:1e:34:ed:9f:
4c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:66:C4:EB:47:21:55:48:F4:4B:97:90:F8:26:92:9F:6B:57:DF:4B
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/S2bE60chVUj0S5eQ-CaSn2tX30s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.208.98.0/24
Signature Algorithm: sha256WithRSAEncryption
33:31:7a:8d:1d:80:a6:84:ee:1a:61:b2:ce:27:e5:9e:1b:99:
9d:95:33:10:30:6d:30:15:35:34:72:63:74:0f:e9:2d:0e:ba:
b4:7b:80:1a:2b:f7:77:39:3b:a1:57:75:29:40:fc:a2:f0:ca:
c0:8e:ea:02:77:c1:e3:00:6a:21:e8:75:ee:d6:39:7d:e2:20:
14:11:45:e1:4e:a0:e8:b5:97:3c:94:3e:2d:bb:c3:75:7e:26:
d6:34:66:be:96:e6:d5:d4:c0:b3:5e:ef:90:8f:f8:21:f4:4a:
e9:6f:59:59:1e:d1:e9:9a:b3:76:6c:5e:8e:8d:98:1b:e1:7d:
50:ec:ee:6e:c4:9d:c1:38:00:8a:8c:d2:c4:ee:eb:18:06:95:
58:22:43:d8:ed:c1:4f:ce:1c:b9:53:12:65:e3:2d:a2:d2:95:
84:44:43:b7:52:15:de:0c:fb:42:16:2e:13:24:03:32:50:a3:
a4:3d:7b:5c:41:61:50:6c:01:e6:4f:c5:51:8c:92:20:08:97:
da:33:42:78:ce:52:e7:6f:f4:55:9b:0f:cd:15:db:ef:ed:d3:
7a:60:79:66:ef:aa:5e:71:b1:ca:94:28:ce:80:54:b5:89:54:
fb:5b:80:3b:68:2a:f5:d3:7d:00:d9:fe:bb:df:f1:f9:a6:52:
e7:8c:12:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/VBfFG3fWMhgxMumqiTbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjUwMTAyMDc0OTA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjY2YzRlYjQ3MjE1NTQ4ZjQ0Yjk3OTBmODI2OTI5ZjZiNTdkZjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7WYTGumQh1Np/iYSXCTkMWxf8zIK
9/J7mTrOXF66uDWn3t0fcm2hOzVYhYQl252AfeJJaTSU2xgXEtKkpOqB7q/wVGfB
Vyu+qBnZXSWc6EoUS6CHJ90mQq9sw1ZsoERIa9GxWMqki9GY2k39cjZBHN5DzetB
+eDmByWT3h3AmRiJF7qt0N5sHVNjkk3ZHfzKcpUfgfAJ9rmppaNPOM9U4VVtTEEW
zEm2DwPbHnk3YUvaVa0B5ILDO0Khwb9zXYQX5+ll/sgRuEbdubM0J+tsTGqKQ+E2
KFHQV5j85LuCSxdPAqFgV46b/lFL4xXUEVwWH5PxavfNcjAiwh407Z9MQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEtmxOtHIVVI9EuXkPgmkp9rV99LMB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvUzJiRTYwY2hWVWowUzVlUS1DYVNuMnRYMzBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9BiMA0G
CSqGSIb3DQEBCwUAA4IBAQAzMXqNHYCmhO4aYbLOJ+WeG5mdlTMQMG0wFTU0cmN0
D+ktDrq0e4AaK/d3OTuhV3UpQPyi8MrAjuoCd8HjAGoh6HXu1jl94iAUEUXhTqDo
tZc8lD4tu8N1fibWNGa+lubV1MCzXu+Qj/gh9Erpb1lZHtHpmrN2bF6OjZgb4X1Q
7O5uxJ3BOACKjNLE7usYBpVYIkPY7cFPzhy5UxJl4y2i0pWEREO3UhXeDPtCFi4T
JAMyUKOkPXtcQWFQbAHmT8VRjJIgCJfaM0J4zlLnb/RVmw/NFdvv7dN6YHlm76pe
cbHKlCjOgFS1iVT7W4A7aCr1030A2f673/H5plLnjBLL
-----END CERTIFICATE-----
Generated at Fri Apr 11 10:51:38 2025 by rpki-client