Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/ccb9bd-fec4-4cf7-9fe4-e193a28f6838/1/NiLdAe0UVP7vtvwu4-cPu7DbLBw.roa
File: NiLdAe0UVP7vtvwu4-cPu7DbLBw.roa (raw, json)
Hash identifier: tmyEQ9UZAyYgChMTDN10qqx1IuX7qHv8blFVAI5HGPs=
Subject key identifier: 36:22:DD:01:ED:14:54:FE:EF:B6:FC:2E:E3:E7:0F:BB:B0:DB:2C:1C
Certificate issuer: /CN=5a81f54036aef754ad94130072ab0879d83a0c74
Certificate serial: 0187505FFD33918A0BAF2A1C148DF074609F
Authority key identifier: 5A:81:F5:40:36:AE:F7:54:AD:94:13:00:72:AB:08:79:D8:3A:0C:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WoH1QDau91StlBMAcqsIedg6DHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/ccb9bd-fec4-4cf7-9fe4-e193a28f6838/1/NiLdAe0UVP7vtvwu4-cPu7DbLBw.roa
Signing time: Wed 05 Apr 2023 07:44:40 +0000
ROA not before: Wed 05 Apr 2023 07:44:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 195.177.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:5f:fd:33:91:8a:0b:af:2a:1c:14:8d:f0:74:60:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a81f54036aef754ad94130072ab0879d83a0c74
Validity
Not Before: Apr 5 07:44:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3622dd01ed1454feefb6fc2ee3e70fbbb0db2c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:99:fa:64:55:3f:ae:21:77:4c:ef:fb:97:e1:
56:c6:8b:36:1e:1f:da:e2:78:6b:e7:c1:5a:e8:0a:
30:88:21:70:e2:22:ef:58:fb:21:47:01:da:0e:e1:
b6:08:7c:66:c1:ea:32:c6:b1:58:ef:47:5d:73:b0:
a1:06:67:0a:f1:4d:c8:a3:8a:26:92:a2:7b:15:6d:
5c:f9:f0:15:ad:5d:f3:98:4d:d8:50:a2:96:21:8e:
48:cc:8b:5d:af:df:83:81:c4:c6:11:95:03:0e:a8:
95:3e:0c:fd:50:72:fb:c4:d3:ed:68:54:05:40:03:
85:86:8e:c0:ed:9e:75:38:95:c8:f7:f6:c8:40:cf:
12:ef:3e:83:e1:00:d4:c2:aa:36:ad:ed:f4:41:d6:
d8:81:33:15:4e:c5:ac:1f:ec:9c:ce:ec:27:0c:40:
ea:d0:d3:03:c1:50:7e:86:72:8e:e5:db:78:e2:84:
e5:fd:fe:a8:6a:14:a7:37:53:40:96:a0:57:cf:f3:
ec:d1:36:f0:44:7e:5a:56:f7:c7:5a:dd:d2:8f:31:
0d:c7:48:12:d7:46:0c:28:08:7f:c4:10:19:e3:ec:
02:9f:b6:7c:10:00:76:15:6a:ec:69:69:76:86:7d:
39:c8:6a:bf:77:6b:5c:d6:45:3d:eb:6d:ef:c9:11:
41:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:22:DD:01:ED:14:54:FE:EF:B6:FC:2E:E3:E7:0F:BB:B0:DB:2C:1C
X509v3 Authority Key Identifier:
keyid:5A:81:F5:40:36:AE:F7:54:AD:94:13:00:72:AB:08:79:D8:3A:0C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WoH1QDau91StlBMAcqsIedg6DHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/ccb9bd-fec4-4cf7-9fe4-e193a28f6838/1/NiLdAe0UVP7vtvwu4-cPu7DbLBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/ccb9bd-fec4-4cf7-9fe4-e193a28f6838/1/WoH1QDau91StlBMAcqsIedg6DHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.88.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:2a:92:9e:2e:2a:c5:9f:2c:46:f1:86:07:9e:7c:28:2a:cd:
61:b4:83:03:f5:69:ff:ad:c2:9c:46:52:07:3a:3c:21:81:f5:
c9:24:20:c2:fe:65:5f:21:a7:36:83:96:04:ef:56:36:39:27:
61:b2:45:48:f9:1d:0d:42:fe:d6:3f:9d:56:6f:59:f3:ec:28:
6d:56:8a:a1:c7:a0:3c:6a:b1:03:e8:31:ab:cd:49:64:53:85:
45:b4:0f:ee:bb:08:fc:0e:87:a1:84:3a:31:4b:bb:17:59:2e:
2c:37:d3:ee:5c:07:20:66:2c:97:6b:82:06:39:6c:ef:be:a5:
f3:6f:ee:01:81:ac:e6:f1:40:ba:fc:52:71:94:22:49:96:6f:
d1:f9:57:1a:47:dd:d1:d4:6f:fa:33:81:f6:4f:6c:bf:01:33:
8f:9c:02:53:7d:47:00:a6:04:f7:d4:fc:6c:3f:90:cd:a1:c6:
1b:3f:c3:81:05:23:1a:68:2e:6a:db:99:6f:fa:49:78:21:97:
e8:70:91:d5:66:63:ce:c9:0b:f5:48:ec:40:13:84:dc:45:2e:
ba:f7:b5:52:de:99:9f:d3:76:ce:95:7d:71:a3:da:71:7f:e4:
8b:13:e2:59:33:1d:f8:2b:52:1d:63:6c:64:18:a5:75:f4:0e:
cd:13:0c:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdQX/0zkYoLryocFI3wdGCfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhODFmNTQwMzZhZWY3NTRhZDk0MTMwMDcyYWIwODc5ZDgz
YTBjNzQwHhcNMjMwNDA1MDc0NDQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjIyZGQwMWVkMTQ1NGZlZWZiNmZjMmVlM2U3MGZiYmIwZGIyYzFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjJn6ZFU/riF3TO/7l+FWxos2Hh/a
4nhr58Fa6AowiCFw4iLvWPshRwHaDuG2CHxmweoyxrFY70ddc7ChBmcK8U3Io4om
kqJ7FW1c+fAVrV3zmE3YUKKWIY5IzItdr9+DgcTGEZUDDqiVPgz9UHL7xNPtaFQF
QAOFho7A7Z51OJXI9/bIQM8S7z6D4QDUwqo2re30QdbYgTMVTsWsH+yczuwnDEDq
0NMDwVB+hnKO5dt44oTl/f6oahSnN1NAlqBXz/Ps0TbwRH5aVvfHWt3SjzENx0gS
10YMKAh/xBAZ4+wCn7Z8EAB2FWrsaWl2hn05yGq/d2tc1kU9623vyRFBzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDYi3QHtFFT+77b8LuPnD7uw2ywcMB8GA1UdIwQY
MBaAFFqB9UA2rvdUrZQTAHKrCHnYOgx0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV29IMVFEYXU5MVN0bEJNQWNxc0llZGc2REhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9jY2I5YmQtZmVjNC00Y2Y3LTlmZTQt
ZTE5M2EyOGY2ODM4LzEvTmlMZEFlMFVWUDd2dHZ3dTQtY1B1N0RiTEJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9jY2I5YmQtZmVjNC00Y2Y3LTlmZTQtZTE5M2EyOGY2ODM4
LzEvV29IMVFEYXU5MVN0bEJNQWNxc0llZGc2REhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw7FYMA0G
CSqGSIb3DQEBCwUAA4IBAQCfKpKeLirFnyxG8YYHnnwoKs1htIMD9Wn/rcKcRlIH
OjwhgfXJJCDC/mVfIac2g5YE71Y2OSdhskVI+R0NQv7WP51Wb1nz7ChtVoqhx6A8
arED6DGrzUlkU4VFtA/uuwj8DoehhDoxS7sXWS4sN9PuXAcgZiyXa4IGOWzvvqXz
b+4Bgazm8UC6/FJxlCJJlm/R+VcaR93R1G/6M4H2T2y/ATOPnAJTfUcApgT31Pxs
P5DNocYbP8OBBSMaaC5q25lv+kl4IZfocJHVZmPOyQv1SOxAE4TcRS6697VS3pmf
03bOlX1xo9pxf+SLE+JZMx34K1IdY2xkGKV19A7NEwz5
-----END CERTIFICATE-----
Generated at Wed Mar 12 12:38:27 2025 by rpki-client