Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Y9DTwbuKj1l3cwWXiwNXZoyOdh4.roa
File: Y9DTwbuKj1l3cwWXiwNXZoyOdh4.roa (raw, json)
Hash identifier: ubi9qYAB5WdX147XJ/LaFlHI6aLRjQtoaUmfqiUrpJ0=
Subject key identifier: 63:D0:D3:C1:BB:8A:8F:59:77:73:05:97:8B:03:57:66:8C:8E:76:1E
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 0194266BCB5D7DEC1EB63C3096990F921A1F
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Y9DTwbuKj1l3cwWXiwNXZoyOdh4.roa
Signing time: Thu 02 Jan 2025 09:49:46 +0000
ROA not before: Thu 02 Jan 2025 09:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200724
IP address blocks: 213.33.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:cb:5d:7d:ec:1e:b6:3c:30:96:99:0f:92:1a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jan 2 09:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63d0d3c1bb8a8f59777305978b0357668c8e761e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a5:dd:cb:80:c2:b4:ee:20:bb:35:00:2d:2f:
0c:43:72:ea:8c:fe:fe:87:2e:f0:67:6c:ae:14:60:
05:3e:37:fb:18:d2:d7:df:2c:39:1d:d7:26:14:aa:
7f:21:a9:1b:eb:63:dc:d3:e2:43:ab:a6:17:89:28:
12:41:eb:ff:7d:bf:83:65:20:b2:56:9f:57:bd:46:
fe:20:c0:5a:7e:0f:3b:ae:5a:e9:20:55:61:86:90:
15:52:d9:cb:4e:dd:c7:f0:3d:77:32:43:10:6e:9b:
04:0a:6d:1a:a0:ee:77:e2:e1:e0:4b:cb:de:f0:f7:
bf:63:20:31:c5:9a:71:de:56:42:4b:7b:9f:72:12:
b7:d2:46:c7:20:44:be:aa:aa:55:4a:dc:33:41:bf:
0d:a8:55:70:e8:a0:9c:c5:1b:f9:e0:1d:91:3d:8c:
fe:e8:1c:53:58:46:cb:6e:3f:ca:b1:2d:02:45:0b:
02:86:10:42:58:96:6f:f3:d2:88:66:f5:b1:8f:8d:
e3:81:c1:c4:06:39:00:8e:0c:b7:09:6e:80:dd:3a:
f0:a9:65:20:f5:7c:89:d8:3a:fe:1c:3a:62:4d:ab:
72:33:87:cb:da:16:36:0e:a9:fb:36:05:0b:b2:ab:
d4:7d:b4:50:53:ca:17:f2:72:68:0d:9b:5b:88:04:
e5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D0:D3:C1:BB:8A:8F:59:77:73:05:97:8B:03:57:66:8C:8E:76:1E
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Y9DTwbuKj1l3cwWXiwNXZoyOdh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.33.53.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:a9:ef:ee:3b:cd:6c:6d:03:9a:dc:e2:d5:6e:3b:e0:a1:85:
45:3a:a2:4e:0d:1c:0a:a8:ae:20:87:68:03:1d:8d:24:b4:68:
24:14:77:10:4b:f2:6a:50:d7:67:0f:61:6f:0b:ef:b1:e5:97:
5e:93:a9:e7:eb:67:1b:63:e3:f4:47:54:56:cc:d2:4d:fc:af:
98:06:f1:01:9f:19:fd:c1:a3:34:8f:83:2e:50:a4:c3:91:be:
46:f7:7c:df:f9:2e:68:36:39:72:ab:62:5e:5b:8d:f1:c8:ba:
c9:64:90:ab:7d:19:07:d8:ee:ef:01:0e:4b:06:66:d5:02:a4:
6d:4d:07:16:e7:e4:25:8d:de:9c:18:f3:b2:09:a4:9a:24:fe:
f4:e6:65:03:1d:62:5a:e0:1b:38:fe:ca:33:f8:b0:0b:34:12:
ba:a2:ad:e9:05:d9:15:d8:40:72:d7:ad:d0:4c:7d:eb:b2:2e:
4b:5c:d4:17:16:12:c1:c1:81:f9:17:84:0d:8b:8a:ce:9b:ff:
9a:8d:9d:ec:0c:5a:f0:33:03:2b:4d:ff:30:62:5b:82:3d:2f:
cb:49:f4:9f:96:09:dd:3e:7f:dc:d0:7e:97:18:32:42:f6:2e:
06:59:e7:7d:62:f4:3d:ff:47:73:5c:45:13:83:24:c2:f4:b7:
70:5c:45:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQma8tdfewetjwwlpkPkhofMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MGM1ODlhNGYyMmE5Y2EyZmY5OWI0YzQ4ZjhiZGY0OTI4
NzE3MjUwHhcNMjUwMTAyMDk0OTQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2QwZDNjMWJiOGE4ZjU5Nzc3MzA1OTc4YjAzNTc2NjhjOGU3NjFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqXdy4DCtO4guzUALS8MQ3LqjP7+
hy7wZ2yuFGAFPjf7GNLX3yw5HdcmFKp/Iakb62Pc0+JDq6YXiSgSQev/fb+DZSCy
Vp9XvUb+IMBafg87rlrpIFVhhpAVUtnLTt3H8D13MkMQbpsECm0aoO534uHgS8ve
8Pe/YyAxxZpx3lZCS3ufchK30kbHIES+qqpVStwzQb8NqFVw6KCcxRv54B2RPYz+
6BxTWEbLbj/KsS0CRQsChhBCWJZv89KIZvWxj43jgcHEBjkAjgy3CW6A3TrwqWUg
9XyJ2Dr+HDpiTatyM4fL2hY2Dqn7NgULsqvUfbRQU8oX8nJoDZtbiATlrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGPQ08G7io9Zd3MFl4sDV2aMjnYeMB8GA1UdIwQY
MBaAFIcMWJpPIqnKL/mbTEj4vfSShxclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWIt
ODQ5ZDNhNmI5YzJkLzEvWTlEVHdidUtqMWwzY3dXWGl3Tlhab3lPZGg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWItODQ5ZDNhNmI5YzJk
LzEvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1SE1MA0G
CSqGSIb3DQEBCwUAA4IBAQDOqe/uO81sbQOa3OLVbjvgoYVFOqJODRwKqK4gh2gD
HY0ktGgkFHcQS/JqUNdnD2FvC++x5Zdek6nn62cbY+P0R1RWzNJN/K+YBvEBnxn9
waM0j4MuUKTDkb5G93zf+S5oNjlyq2JeW43xyLrJZJCrfRkH2O7vAQ5LBmbVAqRt
TQcW5+Qljd6cGPOyCaSaJP705mUDHWJa4Bs4/soz+LALNBK6oq3pBdkV2EBy163Q
TH3rsi5LXNQXFhLBwYH5F4QNi4rOm/+ajZ3sDFrwMwMrTf8wYluCPS/LSfSflgnd
Pn/c0H6XGDJC9i4GWed9YvQ9/0dzXEUTgyTC9LdwXEWO
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:39 2025 by rpki-client