Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/iP-SKYMlS2lzoYdf9k-IY95BiIU.roa
File: iP-SKYMlS2lzoYdf9k-IY95BiIU.roa (raw, json)
Hash identifier: y3r4nf2YS5R0GgEpIX4QQg5XE7ABIRh22yt4DkGX/UA=
Subject key identifier: 88:FF:92:29:83:25:4B:69:73:A1:87:5F:F6:4F:88:63:DE:41:88:85
Certificate issuer: /CN=07d64daef339e6fdae644db1b20bbf54e67e5d66
Certificate serial: 01941F8C584F2F2A13C872FC55E026373E23
Authority key identifier: 07:D6:4D:AE:F3:39:E6:FD:AE:64:4D:B1:B2:0B:BF:54:E6:7E:5D:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9ZNrvM55v2uZE2xsgu_VOZ-XWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/iP-SKYMlS2lzoYdf9k-IY95BiIU.roa
Signing time: Wed 01 Jan 2025 01:47:58 +0000
ROA not before: Wed 01 Jan 2025 01:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48319
IP address blocks: 94.199.32.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:58:4f:2f:2a:13:c8:72:fc:55:e0:26:37:3e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d64daef339e6fdae644db1b20bbf54e67e5d66
Validity
Not Before: Jan 1 01:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=88ff922983254b6973a1875ff64f8863de418885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4c:19:4e:4a:40:5c:ab:66:7a:08:c6:3c:af:
6d:8a:b9:76:94:6d:c8:e7:f5:73:7c:d9:fa:2a:27:
68:b9:58:b9:02:a6:77:93:1e:3c:89:dd:a0:2b:0b:
f4:ca:75:0e:52:30:01:40:4d:a9:00:3e:44:df:68:
8d:15:66:4d:6c:7e:c4:f9:0b:53:68:b7:66:9c:ca:
94:22:12:ea:02:69:67:a2:39:cd:e7:e7:8a:2c:f5:
5c:21:22:f0:34:b5:32:43:c5:6c:0e:a4:11:f0:96:
00:4a:78:87:17:d7:09:57:78:5c:76:41:49:91:ce:
89:ef:9f:d2:4b:e2:b6:b3:aa:b5:6e:6f:c5:42:a7:
d3:92:4f:34:00:fb:ce:37:e1:bc:b1:70:27:74:af:
90:d8:5a:a0:6d:e9:3c:8e:b5:cb:ab:ba:92:33:ad:
b1:ec:87:37:19:b3:39:01:55:e7:24:08:18:e7:d8:
54:d4:1d:60:e5:34:c9:f8:92:d8:fd:4c:7e:f9:7f:
0c:b6:5a:1b:a3:f7:47:53:d4:78:5d:61:e3:80:bd:
5f:b9:4a:73:78:7e:08:de:70:06:e0:e7:63:4c:59:
c1:bb:8a:a3:08:d7:37:52:3f:3a:0e:ae:c6:ba:97:
c9:b3:f3:e8:97:3a:02:75:a4:a1:d9:60:a5:ba:72:
31:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:FF:92:29:83:25:4B:69:73:A1:87:5F:F6:4F:88:63:DE:41:88:85
X509v3 Authority Key Identifier:
keyid:07:D6:4D:AE:F3:39:E6:FD:AE:64:4D:B1:B2:0B:BF:54:E6:7E:5D:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9ZNrvM55v2uZE2xsgu_VOZ-XWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/iP-SKYMlS2lzoYdf9k-IY95BiIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/B9ZNrvM55v2uZE2xsgu_VOZ-XWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.32.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:76:1b:fb:70:4e:79:74:ec:99:e9:01:d4:20:44:9f:b2:56:
25:ca:85:84:73:39:af:7c:d7:f0:e9:94:7b:b4:c2:0c:dc:bd:
a1:a7:24:9e:f8:58:e8:71:21:16:ea:24:c6:dc:b5:48:37:19:
3b:2c:1a:82:66:51:2a:f7:5f:e9:7e:22:3c:93:c2:aa:b7:69:
4d:d6:bf:6e:e0:05:ea:25:c8:0e:11:61:63:61:05:df:c9:2d:
fe:a4:60:59:00:9b:01:19:ea:6d:5d:a2:d3:30:e4:78:85:06:
c4:ef:2c:2d:7f:52:6e:db:7d:0b:9b:4d:bf:37:47:15:23:3b:
9f:84:23:ac:ae:0b:d3:5c:37:1c:ae:2f:07:ad:f4:07:f6:42:
d7:7a:eb:1b:91:7b:20:69:39:4e:b7:dc:55:d9:72:06:86:f8:
e1:35:76:81:6b:54:18:2e:d0:53:bb:1b:c4:72:dd:ae:75:c8:
2d:db:ec:39:4a:bb:32:63:9a:04:a3:0c:c8:8a:0c:dd:ef:7c:
04:ad:86:b5:60:86:39:b0:c4:c2:5b:4f:90:96:af:d0:37:bb:
bf:f2:fe:f8:61:3a:4b:62:b3:42:aa:dd:b9:e8:b8:51:53:82:
95:1d:76:21:3f:da:88:52:2f:0a:2b:ff:21:78:23:91:1d:55:
7d:94:fb:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjFhPLyoTyHL8VeAmNz4jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZDY0ZGFlZjMzOWU2ZmRhZTY0NGRiMWIyMGJiZjU0ZTY3
ZTVkNjYwHhcNMjUwMTAxMDE0NzU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OGZmOTIyOTgzMjU0YjY5NzNhMTg3NWZmNjRmODg2M2RlNDE4ODg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkwZTkpAXKtmegjGPK9tirl2lG3I
5/VzfNn6KidouVi5AqZ3kx48id2gKwv0ynUOUjABQE2pAD5E32iNFWZNbH7E+QtT
aLdmnMqUIhLqAmlnojnN5+eKLPVcISLwNLUyQ8VsDqQR8JYASniHF9cJV3hcdkFJ
kc6J75/SS+K2s6q1bm/FQqfTkk80APvON+G8sXAndK+Q2Fqgbek8jrXLq7qSM62x
7Ic3GbM5AVXnJAgY59hU1B1g5TTJ+JLY/Ux++X8Mtlobo/dHU9R4XWHjgL1fuUpz
eH4I3nAG4OdjTFnBu4qjCNc3Uj86Dq7GupfJs/PolzoCdaSh2WClunIxYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIj/kimDJUtpc6GHX/ZPiGPeQYiFMB8GA1UdIwQY
MBaAFAfWTa7zOeb9rmRNsbILv1Tmfl1mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjlaTnJ2TTU1djJ1WkUyeHNndV9WT1otWFdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9kN2ZkMmMtOTVhOS00YzA5LTllNDct
ODI3Zjk2NDhjMDIyLzEvaVAtU0tZTWxTMmx6b1lkZjlrLUlZOTVCaUlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS9kN2ZkMmMtOTVhOS00YzA5LTllNDctODI3Zjk2NDhjMDIy
LzEvQjlaTnJ2TTU1djJ1WkUyeHNndV9WT1otWFdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXscgMA0G
CSqGSIb3DQEBCwUAA4IBAQB+dhv7cE55dOyZ6QHUIESfslYlyoWEczmvfNfw6ZR7
tMIM3L2hpySe+FjocSEW6iTG3LVINxk7LBqCZlEq91/pfiI8k8Kqt2lN1r9u4AXq
JcgOEWFjYQXfyS3+pGBZAJsBGeptXaLTMOR4hQbE7ywtf1Ju230Lm02/N0cVIzuf
hCOsrgvTXDccri8HrfQH9kLXeusbkXsgaTlOt9xV2XIGhvjhNXaBa1QYLtBTuxvE
ct2udcgt2+w5SrsyY5oEowzIigzd73wErYa1YIY5sMTCW0+Qlq/QN7u/8v74YTpL
YrNCqt256LhRU4KVHXYhP9qIUi8KK/8heCORHVV9lPtA
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:47:12 2025 by rpki-client