Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/mI-_CctqZI0K2tk6hRHxlecB4_0.roa
File: mI-_CctqZI0K2tk6hRHxlecB4_0.roa (raw, json)
Hash identifier: L5SL5l2FWo7G2VvQUQ1QwP0hC9pB98xkcansR+H3uHU=
Subject key identifier: 98:8F:BF:09:CB:6A:64:8D:0A:DA:D9:3A:85:11:F1:95:E7:01:E3:FD
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 01942444D178570528F141629311A423AC9C
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/mI-_CctqZI0K2tk6hRHxlecB4_0.roa
Signing time: Wed 01 Jan 2025 23:47:57 +0000
ROA not before: Wed 01 Jan 2025 23:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9009
IP address blocks: 194.79.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:d1:78:57:05:28:f1:41:62:93:11:a4:23:ac:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 1 23:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=988fbf09cb6a648d0adad93a8511f195e701e3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b3:4b:7b:64:4b:17:d3:e9:ac:81:9d:b2:94:
0e:fd:9f:5c:6e:21:65:c4:cf:d1:1c:5b:a3:7b:0b:
69:da:79:cc:7b:b1:8e:12:87:e2:de:dd:1e:3a:75:
4e:ec:95:fc:1f:98:19:9f:e9:0d:00:c1:4d:a2:15:
42:d1:01:20:a7:a4:8d:26:eb:b5:e0:da:a2:57:58:
70:d5:dd:0f:50:65:cd:ce:58:49:91:ea:6a:f6:00:
26:1a:66:f9:29:84:71:9b:c9:13:04:fe:1f:61:7f:
eb:fd:12:c3:4c:7a:e7:ad:02:bc:14:5b:6b:8b:48:
cd:05:ee:83:0d:b1:5b:d8:4d:57:84:f8:47:a4:3f:
96:98:12:ba:b3:4e:7d:e5:a7:20:56:41:5e:96:4f:
4f:c5:c5:28:08:b4:bf:23:94:d7:0c:8c:33:20:24:
74:da:64:87:bb:0b:81:50:9a:b3:37:40:9c:9a:e0:
4c:2b:cd:20:da:c7:94:b1:f2:96:42:0e:73:71:b9:
e3:77:d4:92:b2:54:5e:64:64:f1:6d:e1:97:52:4e:
e3:41:4a:33:1e:7d:3c:26:40:bb:8d:d7:e2:46:1c:
4a:e0:f2:11:14:22:0f:ce:b9:3f:fd:78:20:5c:dc:
aa:76:15:7b:63:e1:a7:af:a0:a6:b0:7a:66:16:08:
86:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:8F:BF:09:CB:6A:64:8D:0A:DA:D9:3A:85:11:F1:95:E7:01:E3:FD
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/mI-_CctqZI0K2tk6hRHxlecB4_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.79.14.0/24
Signature Algorithm: sha256WithRSAEncryption
87:ba:12:c1:85:53:16:1e:06:5e:e4:b6:ee:7c:8c:18:88:40:
85:73:88:e6:c0:8e:e6:08:1b:4f:1d:13:ae:45:09:2d:28:da:
d2:e9:48:64:ca:4b:1d:a1:c3:b0:99:dd:4d:f8:1d:a7:bd:5e:
56:6e:6f:1e:0f:00:5c:88:df:98:ec:40:93:e3:d1:44:6e:21:
81:81:ca:1e:ca:9b:8c:07:d4:ae:35:f3:7c:e9:d7:95:d4:c6:
2c:26:0e:c6:23:a1:84:54:2e:e7:c1:c4:5e:91:1f:cd:46:a5:
04:51:9d:31:2d:38:4e:6a:3f:32:81:48:8a:b9:ff:68:ce:5a:
0e:93:a0:26:a2:1c:80:13:40:4f:65:c4:04:4d:a6:c9:d1:9a:
4b:6a:2a:6b:f9:b2:aa:e8:8a:b1:6a:07:54:e1:42:76:76:10:
ad:35:7e:05:79:65:7d:9e:62:2f:32:02:a6:02:e6:3f:9d:d9:
61:74:6e:8a:17:43:10:2e:6e:99:8c:ea:61:19:56:a4:5a:d9:
68:3c:46:46:58:2e:fd:63:b2:dc:a6:76:0d:a4:81:b2:cb:40:
c8:e1:bd:93:29:62:fb:04:65:7b:2b:18:1d:d0:d8:86:50:7e:
1d:d4:49:d7:de:50:26:c2:e8:53:c5:d5:87:6e:bf:d0:78:80:
f5:6f:40:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRNF4VwUo8UFikxGkI6ycMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMjRmYmExZTQwMWMwM2U1YmExY2Q3N2FlOWVlMzljZmQ2
MzFiZmIwHhcNMjUwMTAxMjM0NzU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODhmYmYwOWNiNmE2NDhkMGFkYWQ5M2E4NTExZjE5NWU3MDFlM2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0bNLe2RLF9PprIGdspQO/Z9cbiFl
xM/RHFujewtp2nnMe7GOEofi3t0eOnVO7JX8H5gZn+kNAMFNohVC0QEgp6SNJuu1
4NqiV1hw1d0PUGXNzlhJkepq9gAmGmb5KYRxm8kTBP4fYX/r/RLDTHrnrQK8FFtr
i0jNBe6DDbFb2E1XhPhHpD+WmBK6s0595acgVkFelk9PxcUoCLS/I5TXDIwzICR0
2mSHuwuBUJqzN0CcmuBMK80g2seUsfKWQg5zcbnjd9SSslReZGTxbeGXUk7jQUoz
Hn08JkC7jdfiRhxK4PIRFCIPzrk//XggXNyqdhV7Y+Gnr6CmsHpmFgiGXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJiPvwnLamSNCtrZOoUR8ZXnAeP9MB8GA1UdIwQY
MBaAFFEk+6HkAcA+W6HNd66e45z9Yxv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEt
YWI4ZjFmMzM4N2VlLzEvbUktX0NjdHFaSTBLMnRrNmhSSHhsZWNCNF8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEtYWI4ZjFmMzM4N2Vl
LzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwk8OMA0G
CSqGSIb3DQEBCwUAA4IBAQCHuhLBhVMWHgZe5LbufIwYiECFc4jmwI7mCBtPHROu
RQktKNrS6UhkyksdocOwmd1N+B2nvV5Wbm8eDwBciN+Y7ECT49FEbiGBgcoeypuM
B9SuNfN86deV1MYsJg7GI6GEVC7nwcRekR/NRqUEUZ0xLThOaj8ygUiKuf9ozloO
k6AmohyAE0BPZcQETabJ0ZpLaipr+bKq6IqxagdU4UJ2dhCtNX4FeWV9nmIvMgKm
AuY/ndlhdG6KF0MQLm6ZjOphGVakWtloPEZGWC79Y7LcpnYNpIGyy0DI4b2TKWL7
BGV7Kxgd0NiGUH4d1EnX3lAmwuhTxdWHbr/QeID1b0Cm
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:37:55 2025 by rpki-client