Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/iuLWl39KK5_aNaq1WsPE60hdbCw.roa
File: iuLWl39KK5_aNaq1WsPE60hdbCw.roa (raw, json)
Hash identifier: 20QH+aMyz7btg2ItRbizZ6HxBagtfnJOnIYg9KYZxFI=
Subject key identifier: 8A:E2:D6:97:7F:4A:2B:9F:DA:35:AA:B5:5A:C3:C4:EB:48:5D:6C:2C
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 019425FC61E9C2E671118CB170B2D881C569
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/iuLWl39KK5_aNaq1WsPE60hdbCw.roa
Signing time: Thu 02 Jan 2025 07:48:04 +0000
ROA not before: Thu 02 Jan 2025 07:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 193.178.52.0/24 maxlen: 24
193.178.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:61:e9:c2:e6:71:11:8c:b1:70:b2:d8:81:c5:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Jan 2 07:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8ae2d6977f4a2b9fda35aab55ac3c4eb485d6c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:76:7a:75:7b:f5:c4:ba:2f:69:59:50:d2:83:
67:94:27:a4:06:6e:9e:7c:c2:bd:7a:37:06:ce:10:
56:d4:ea:f9:27:b3:04:89:e8:5f:e9:63:19:83:16:
de:37:4d:86:e5:89:73:0d:2e:a9:75:b8:62:89:61:
be:f7:7c:95:a1:aa:de:3c:6c:76:cf:bc:67:53:96:
86:f6:d2:7f:80:c1:47:3e:fa:78:d8:2c:e1:57:fe:
9c:74:ca:10:5e:2b:ca:cf:a1:97:b8:e5:02:f9:65:
ad:0c:89:18:27:0c:2e:93:1b:7d:3e:6a:5f:b8:b9:
8d:00:da:e0:cc:72:40:6d:58:b3:c4:92:f8:26:97:
b8:f9:d7:44:ac:22:6b:29:47:fc:92:62:17:0d:82:
7f:ca:ca:05:42:31:60:cd:ae:18:55:95:5e:e4:49:
1e:70:c0:88:aa:61:8a:6e:ce:4d:87:d0:e5:de:e3:
72:d8:d3:f3:51:3e:33:68:c6:73:05:71:f7:51:69:
e5:32:66:a8:f9:46:10:57:4e:9d:39:f8:06:b2:07:
15:41:0d:a9:10:6a:e8:df:fc:dd:6d:99:4d:a2:b1:
82:5a:a0:64:91:ed:7c:62:35:ac:5b:68:c3:6b:e7:
76:6c:48:47:e1:bb:46:0a:6b:43:d6:fe:24:91:f4:
47:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E2:D6:97:7F:4A:2B:9F:DA:35:AA:B5:5A:C3:C4:EB:48:5D:6C:2C
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/iuLWl39KK5_aNaq1WsPE60hdbCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.52.0/24
193.178.115.0/24
Signature Algorithm: sha256WithRSAEncryption
76:d2:6a:61:56:51:e0:b4:a3:77:5b:68:c4:73:5d:9e:95:43:
53:e1:0e:1d:53:c5:fa:72:b5:71:c7:1d:aa:a8:26:22:e4:03:
3c:9e:1a:47:aa:ae:08:74:ea:0d:69:8b:62:c8:ff:0c:20:cd:
6b:5f:25:45:ac:5c:46:b2:1f:76:e6:36:ea:3d:98:47:7f:20:
ec:0b:ef:b1:45:49:8a:68:7b:91:58:4f:fa:39:af:88:40:bb:
62:3c:44:ba:14:67:a3:ba:fd:ae:d5:2d:82:5b:6b:37:17:fc:
ce:13:0f:82:19:f2:b5:99:c9:a6:c9:58:de:02:24:39:09:4c:
ea:e2:cc:81:76:da:2f:9e:b1:ca:67:93:16:68:52:f1:ee:a4:
e6:39:1b:7b:73:fa:7b:09:74:e0:13:c5:0f:65:0f:4e:af:06:
d0:e3:5e:46:e2:cc:a6:39:7e:9d:70:67:c5:ae:de:80:e0:82:
7c:a4:cb:f2:2c:15:cc:40:d5:9b:55:34:c1:d3:96:78:ca:13:
9e:22:48:72:8b:9f:4b:70:76:5f:59:7a:6d:2b:b8:e1:2f:c6:
ca:f0:54:b6:42:89:13:3d:f1:b7:83:30:9a:cb:7e:5d:ac:b6:
0e:84:60:d4:c1:a7:15:39:ca:92:f5:b2:b4:e7:4a:84:ef:9a:
6d:ee:e4:ad
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQl/GHpwuZxEYyxcLLYgcVpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1ZjA2NWM4YmRiNzhmZjI5NGY3YzU0NTQ5NzFkYmZhYmZi
NmMxODQwHhcNMjUwMTAyMDc0ODA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWUyZDY5NzdmNGEyYjlmZGEzNWFhYjU1YWMzYzRlYjQ4NWQ2YzJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXZ6dXv1xLovaVlQ0oNnlCekBm6e
fMK9ejcGzhBW1Or5J7MEiehf6WMZgxbeN02G5YlzDS6pdbhiiWG+93yVoarePGx2
z7xnU5aG9tJ/gMFHPvp42CzhV/6cdMoQXivKz6GXuOUC+WWtDIkYJwwukxt9Pmpf
uLmNANrgzHJAbVizxJL4Jpe4+ddErCJrKUf8kmIXDYJ/ysoFQjFgza4YVZVe5Eke
cMCIqmGKbs5Nh9Dl3uNy2NPzUT4zaMZzBXH3UWnlMmao+UYQV06dOfgGsgcVQQ2p
EGro3/zdbZlNorGCWqBkke18YjWsW2jDa+d2bEhH4btGCmtD1v4kkfRHGwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIri1pd/Siuf2jWqtVrDxOtIXWwsMB8GA1UdIwQY
MBaAFNXwZci9t4/ylPfFRUlx2/q/tsGEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWZCbHlMMjNqX0tVOThWRlNYSGItci0yd1lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9mMjc3ZWEtNzI2YS00MDUyLThlNWIt
MzVhNWRjMmM3OTJjLzEvaXVMV2wzOUtLNV9hTmFxMVdzUEU2MGhkYkN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9mMjc3ZWEtNzI2YS00MDUyLThlNWItMzVhNWRjMmM3OTJj
LzEvMWZCbHlMMjNqX0tVOThWRlNYSGItci0yd1lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwbI0AwQA
wbJzMA0GCSqGSIb3DQEBCwUAA4IBAQB20mphVlHgtKN3W2jEc12elUNT4Q4dU8X6
crVxxx2qqCYi5AM8nhpHqq4IdOoNaYtiyP8MIM1rXyVFrFxGsh925jbqPZhHfyDs
C++xRUmKaHuRWE/6Oa+IQLtiPES6FGejuv2u1S2CW2s3F/zOEw+CGfK1mcmmyVje
AiQ5CUzq4syBdtovnrHKZ5MWaFLx7qTmORt7c/p7CXTgE8UPZQ9OrwbQ415G4sym
OX6dcGfFrt6A4IJ8pMvyLBXMQNWbVTTB05Z4yhOeIkhyi59LcHZfWXptK7jhL8bK
8FS2QokTPfG3gzCay35drLYOhGDUwacVOcqS9bK050qE75pt7uSt
-----END CERTIFICATE-----
Generated at Fri Apr 4 21:42:41 2025 by rpki-client