Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/ZqsDRLhiPpia2P-7RyyhANwTVV4.roa
File: ZqsDRLhiPpia2P-7RyyhANwTVV4.roa (raw, json)
Hash identifier: 0rsjP4AuQ2t0LszFPHOckD8EVFICht07+jDEBI6TOgQ=
Subject key identifier: 66:AB:03:44:B8:62:3E:98:9A:D8:FF:BB:47:2C:A1:00:DC:13:55:5E
Certificate issuer: /CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Certificate serial: 0194228D90FA4FBD3129B63FF3BDE633AC09
Authority key identifier: B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/ZqsDRLhiPpia2P-7RyyhANwTVV4.roa
Signing time: Wed 01 Jan 2025 15:48:10 +0000
ROA not before: Wed 01 Jan 2025 15:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39440
IP address blocks: 81.88.184.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:90:fa:4f:bd:31:29:b6:3f:f3:bd:e6:33:ac:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Validity
Not Before: Jan 1 15:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=66ab0344b8623e989ad8ffbb472ca100dc13555e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:78:0a:34:ad:98:f2:73:cd:ca:96:2b:3f:8e:
10:a8:e1:84:9c:d4:b1:18:4c:9d:82:38:33:9e:a8:
57:ab:51:19:23:15:ff:d2:0e:24:06:37:28:6f:1b:
60:c2:58:b3:aa:3a:c4:1a:7f:84:ac:b0:15:72:00:
78:b2:43:22:7f:f5:dc:4c:95:49:64:14:60:b4:4d:
0e:91:2a:d7:a3:ed:d3:13:90:89:87:39:40:c1:da:
3c:92:72:39:16:c6:5d:b5:e2:ac:7e:8b:f0:60:af:
50:f9:46:a6:d8:43:00:fa:37:44:6b:b3:cb:71:39:
8a:44:f0:77:0d:0a:03:29:7e:bb:29:a0:e3:3d:f4:
ed:b0:7a:a2:b0:fd:32:2c:2c:77:63:19:29:92:55:
38:b9:8e:83:e2:3b:fb:89:c6:2c:1e:9c:ca:e9:1b:
fe:f6:da:fa:63:0b:83:30:28:89:63:78:fb:17:a5:
9a:49:79:36:f2:41:01:99:85:4a:bc:10:fa:ca:3b:
52:32:b3:09:e7:ee:78:ab:28:71:73:bb:08:0f:94:
c1:9a:b7:0b:a6:c7:b0:b1:eb:3a:94:03:11:27:b6:
05:a2:5a:a0:25:9f:c6:d5:c3:3d:0a:ac:ef:04:6a:
e1:7d:1e:aa:c8:9c:56:33:66:98:d2:4c:e9:4e:6f:
3d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:AB:03:44:B8:62:3E:98:9A:D8:FF:BB:47:2C:A1:00:DC:13:55:5E
X509v3 Authority Key Identifier:
keyid:B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/ZqsDRLhiPpia2P-7RyyhANwTVV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.88.184.0/21
Signature Algorithm: sha256WithRSAEncryption
ae:db:fc:a3:80:46:1b:97:a1:a3:a8:22:bb:1b:14:8d:6a:58:
6d:2b:dc:61:3f:e0:99:cd:7b:99:0b:c4:96:f0:dc:5c:6e:2d:
e0:1f:1b:8e:a5:35:72:3d:42:fd:70:9d:8c:ec:e2:1f:d0:ad:
d1:b9:38:77:4e:7a:8f:3e:2f:59:d1:65:0b:c4:bd:f1:60:ff:
be:55:98:68:ed:cd:a3:fd:5f:2b:42:7c:b9:e3:ad:91:c8:52:
dc:e0:94:e8:3c:46:9c:a6:94:e3:f9:bc:1d:ab:51:d2:97:b5:
d1:b7:e1:e6:86:2c:e8:f7:54:66:d8:4b:eb:0d:66:9a:ba:ad:
aa:7e:a3:3d:9a:59:34:a2:7f:00:69:34:16:31:b4:34:b3:81:
40:16:27:24:07:fd:ea:c9:24:71:54:25:ac:6a:25:9c:67:f8:
88:f4:da:e6:50:83:d5:77:28:4f:b8:4b:57:53:2a:85:76:d8:
dd:d5:ee:6d:6e:39:bc:8b:62:11:f6:ae:0a:72:1c:c1:45:c9:
fe:d5:c1:78:0e:48:76:e3:92:58:a3:6e:e9:85:1b:ab:ea:22:
1a:c7:54:b6:4f:3a:ba:8b:c2:eb:5f:3a:ad:a9:32:9b:9d:58:
4f:eb:c1:8c:5a:2b:59:c1:6a:73:7c:a6:9e:7c:ef:b3:09:1a:
2e:b0:51:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijZD6T70xKbY/873mM6wJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5ZTY3ZmNiMGJkYzYwMDFkOGNmNzA3M2M2NDllYjk4MTlm
YzVlYjgwHhcNMjUwMTAxMTU0ODEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NmFiMDM0NGI4NjIzZTk4OWFkOGZmYmI0NzJjYTEwMGRjMTM1NTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXgKNK2Y8nPNypYrP44QqOGEnNSx
GEydgjgznqhXq1EZIxX/0g4kBjcobxtgwlizqjrEGn+ErLAVcgB4skMif/XcTJVJ
ZBRgtE0OkSrXo+3TE5CJhzlAwdo8knI5FsZdteKsfovwYK9Q+Uam2EMA+jdEa7PL
cTmKRPB3DQoDKX67KaDjPfTtsHqisP0yLCx3YxkpklU4uY6D4jv7icYsHpzK6Rv+
9tr6YwuDMCiJY3j7F6WaSXk28kEBmYVKvBD6yjtSMrMJ5+54qyhxc7sID5TBmrcL
psewses6lAMRJ7YFolqgJZ/G1cM9CqzvBGrhfR6qyJxWM2aY0kzpTm89wwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGarA0S4Yj6Ymtj/u0csoQDcE1VeMB8GA1UdIwQY
MBaAFLnmf8sL3GAB2M9wc8ZJ65gZ/F64MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWVaX3l3dmNZQUhZejNCenhrbnJtQm44WHJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC8wZGJlNTYtM2RhYS00YTY0LTkyNWEt
ZmE3MWFlMDVkYzNmLzEvWnFzRFJMaGlQcGlhMlAtN1J5eWhBTndUVlY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC8wZGJlNTYtM2RhYS00YTY0LTkyNWEtZmE3MWFlMDVkYzNm
LzEvdWVaX3l3dmNZQUhZejNCenhrbnJtQm44WHJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDUVi4MA0G
CSqGSIb3DQEBCwUAA4IBAQCu2/yjgEYbl6GjqCK7GxSNalhtK9xhP+CZzXuZC8SW
8Nxcbi3gHxuOpTVyPUL9cJ2M7OIf0K3RuTh3TnqPPi9Z0WULxL3xYP++VZho7c2j
/V8rQny5462RyFLc4JToPEacppTj+bwdq1HSl7XRt+Hmhizo91Rm2EvrDWaauq2q
fqM9mlk0on8AaTQWMbQ0s4FAFickB/3qySRxVCWsaiWcZ/iI9NrmUIPVdyhPuEtX
UyqFdtjd1e5tbjm8i2IR9q4KchzBRcn+1cF4Dkh245JYo27phRur6iIax1S2Tzq6
i8LrXzqtqTKbnVhP68GMWitZwWpzfKaefO+zCRousFEw
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:27:28 2025 by rpki-client