Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/4b90d6-87e6-473e-b36d-6e54215b24e7/1/ULLsWml2DMUEV9O6ItgBW9WfQ7w.roa
File: ULLsWml2DMUEV9O6ItgBW9WfQ7w.roa (raw, json)
Hash identifier: GoKLED1tWM+X3RXv/+V1cr8dvYW8C2JOaifhAEHcg9Q=
Subject key identifier: 50:B2:EC:5A:69:76:0C:C5:04:57:D3:BA:22:D8:01:5B:D5:9F:43:BC
Certificate issuer: /CN=891d6101d729bc95597da528604ec0b0b7e0042c
Certificate serial: 4CF7EF
Authority key identifier: 89:1D:61:01:D7:29:BC:95:59:7D:A5:28:60:4E:C0:B0:B7:E0:04:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iR1hAdcpvJVZfaUoYE7AsLfgBCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/4b90d6-87e6-473e-b36d-6e54215b24e7/1/ULLsWml2DMUEV9O6ItgBW9WfQ7w.roa
Signing time: Wed 27 Apr 2022 06:01:18 +0000
ROA not before: Wed 27 Apr 2022 06:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5089
IP address blocks: 86.104.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5044207 (0x4cf7ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=891d6101d729bc95597da528604ec0b0b7e0042c
Validity
Not Before: Apr 27 06:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50b2ec5a69760cc50457d3ba22d8015bd59f43bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c6:63:c4:94:35:a2:4d:5d:8b:51:5c:ef:57:
0d:ee:8c:03:b2:d3:b9:0b:2a:2e:49:65:3c:b3:e5:
c2:b5:50:ae:94:7a:a1:cd:76:a0:bd:50:ac:90:5c:
a5:6a:56:13:17:6a:2b:d4:5f:93:c3:31:b4:69:50:
f3:bf:17:d6:6d:e0:6a:f4:02:ca:c7:25:8f:81:ff:
cf:d8:4d:5f:e1:bb:ff:c4:7c:eb:de:3f:41:b0:49:
f2:93:fa:6f:81:8e:60:98:60:c8:a8:58:40:3d:84:
3e:5b:2b:ac:3f:92:da:45:14:e2:51:6f:7e:87:66:
07:d0:63:96:24:cf:39:28:20:bd:09:c3:07:cb:57:
60:e4:9d:e7:e1:30:be:9e:6f:9a:90:e1:e2:27:1e:
8a:ab:f4:63:b5:20:f5:b2:db:7f:56:65:43:2a:2d:
df:b1:d8:36:5c:b1:5f:b4:c5:6c:ff:5c:fc:54:eb:
a7:57:61:a9:43:c9:40:20:0a:96:6a:b0:34:cc:1e:
69:74:5f:fc:11:d6:6f:32:38:df:ea:02:18:82:d9:
be:e8:e0:cd:8c:f8:c1:b2:e1:a3:cd:8b:39:5b:cf:
d0:af:38:30:3a:98:63:34:cc:74:33:c5:66:6d:c4:
4a:6c:64:0d:40:01:5a:01:37:0e:94:aa:d9:a5:e1:
4d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B2:EC:5A:69:76:0C:C5:04:57:D3:BA:22:D8:01:5B:D5:9F:43:BC
X509v3 Authority Key Identifier:
keyid:89:1D:61:01:D7:29:BC:95:59:7D:A5:28:60:4E:C0:B0:B7:E0:04:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iR1hAdcpvJVZfaUoYE7AsLfgBCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4b90d6-87e6-473e-b36d-6e54215b24e7/1/ULLsWml2DMUEV9O6ItgBW9WfQ7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4b90d6-87e6-473e-b36d-6e54215b24e7/1/iR1hAdcpvJVZfaUoYE7AsLfgBCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.192.0/24
Signature Algorithm: sha256WithRSAEncryption
02:89:93:cb:34:95:76:ec:d2:63:66:f0:33:e0:41:35:5d:b4:
2b:c3:f6:9c:49:c0:c1:ef:be:44:e3:b8:66:77:e2:1c:ea:d6:
6d:76:26:46:32:c6:ef:3c:64:09:da:50:4d:ee:92:de:d4:87:
03:3e:8c:dc:dc:40:59:45:76:04:55:48:65:11:5c:39:cd:44:
77:9b:ec:29:23:e2:d5:6f:b9:1d:bc:83:6b:8a:76:67:0a:e6:
97:0c:24:65:f4:db:2c:fd:3f:2a:7f:8b:59:c0:27:49:f8:ff:
d1:65:d3:b2:c4:cf:29:bc:10:b7:1f:c8:7f:8e:15:92:97:6c:
83:3a:cc:3b:b1:e9:e5:fb:e4:92:63:6b:35:9e:42:fe:0f:4d:
86:ea:a4:67:a8:db:37:9f:54:a4:5e:1a:43:c5:bd:96:f0:67:
f1:4b:e4:f4:61:36:11:fd:94:31:92:3b:d9:df:19:d0:85:b0:
c6:41:17:bc:b5:57:e2:46:32:31:d5:70:20:b8:56:0e:1b:fd:
c4:59:a9:80:27:0b:52:cf:c9:20:14:20:dc:77:c6:61:e5:cb:
e6:cd:5e:f6:2c:78:26:69:b7:35:7e:b7:92:0a:f8:6e:fd:19:
70:54:72:0b:b6:1f:ec:fb:82:40:ef:f0:34:9a:91:8c:7c:25:
18:af:2c:06
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDTPfvMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDg5
MWQ2MTAxZDcyOWJjOTU1OTdkYTUyODYwNGVjMGIwYjdlMDA0MmMwHhcNMjIwNDI3
MDYwMTE4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg1MGIyZWM1YTY5NzYw
Y2M1MDQ1N2QzYmEyMmQ4MDE1YmQ1OWY0M2JjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAicZjxJQ1ok1di1Fc71cN7owDstO5CyouSWU8s+XCtVCulHqh
zXagvVCskFylalYTF2or1F+TwzG0aVDzvxfWbeBq9ALKxyWPgf/P2E1f4bv/xHzr
3j9BsEnyk/pvgY5gmGDIqFhAPYQ+WyusP5LaRRTiUW9+h2YH0GOWJM85KCC9CcMH
y1dg5J3n4TC+nm+akOHiJx6Kq/RjtSD1stt/VmVDKi3fsdg2XLFftMVs/1z8VOun
V2GpQ8lAIAqWarA0zB5pdF/8EdZvMjjf6gIYgtm+6ODNjPjBsuGjzYs5W8/Qrzgw
OphjNMx0M8VmbcRKbGQNQAFaATcOlKrZpeFN9QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFFCy7FppdgzFBFfTuiLYAVvVn0O8MB8GA1UdIwQYMBaAFIkdYQHXKbyVWX2l
KGBOwLC34AQsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
aVIxaEFkY3B2SlZaZmFVb1lFN0FzTGZnQkN3LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hZS80YjkwZDYtODdlNi00NzNlLWIzNmQtNmU1NDIxNWIyNGU3LzEv
VUxMc1dtbDJETVVFVjlPNkl0Z0JXOVdmUTd3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS80
YjkwZDYtODdlNi00NzNlLWIzNmQtNmU1NDIxNWIyNGU3LzEvaVIxaEFkY3B2SlZa
ZmFVb1lFN0FzTGZnQkN3LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVmjAMA0GCSqGSIb3DQEBCwUAA4IB
AQACiZPLNJV27NJjZvAz4EE1XbQrw/acScDB775E47hmd+Ic6tZtdiZGMsbvPGQJ
2lBN7pLe1IcDPozc3EBZRXYEVUhlEVw5zUR3m+wpI+LVb7kdvINrinZnCuaXDCRl
9Nss/T8qf4tZwCdJ+P/RZdOyxM8pvBC3H8h/jhWSl2yDOsw7senl++SSY2s1nkL+
D02G6qRnqNs3n1SkXhpDxb2W8GfxS+T0YTYR/ZQxkjvZ3xnQhbDGQRe8tVfiRjIx
1XAguFYOG/3EWamAJwtSz8kgFCDcd8Zh5cvmzV72LHgmabc1freSCvhu/RlwVHIL
th/s+4JA7/A0mpGMfCUYrywG
-----END CERTIFICATE-----
Generated at Sun Apr 20 17:53:20 2025 by rpki-client