Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/ea3638-6981-4de8-ad82-4d62eacd95ec/1/r9Kmd0tq-WDtKgqkOIIhUCQ-jrI.roa
File: r9Kmd0tq-WDtKgqkOIIhUCQ-jrI.roa (raw, json)
Hash identifier: XMCiI2rPvlkplT8jn0ZRQud+U2yIXao+MhbclR7yDLg=
Subject key identifier: AF:D2:A6:77:4B:6A:F9:60:ED:2A:0A:A4:38:82:21:50:24:3E:8E:B2
Certificate issuer: /CN=0a192818f0a0d9739dc1238baf2c417e4e8e830c
Certificate serial: 010B3A
Authority key identifier: 0A:19:28:18:F0:A0:D9:73:9D:C1:23:8B:AF:2C:41:7E:4E:8E:83:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChkoGPCg2XOdwSOLryxBfk6Ogww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/ea3638-6981-4de8-ad82-4d62eacd95ec/1/r9Kmd0tq-WDtKgqkOIIhUCQ-jrI.roa
Signing time: Fri 08 Apr 2022 16:50:50 +0000
ROA not before: Fri 08 Apr 2022 16:50:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201211
IP address blocks: 185.164.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68410 (0x10b3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a192818f0a0d9739dc1238baf2c417e4e8e830c
Validity
Not Before: Apr 8 16:50:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afd2a6774b6af960ed2a0aa438822150243e8eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d2:ee:eb:b6:5f:53:48:2b:31:00:ef:00:d0:
31:e8:37:aa:08:6e:f2:20:61:6c:44:b7:fb:a6:49:
e3:42:3b:d4:24:bd:a4:ec:bd:e1:20:e8:6f:7f:66:
b8:e6:5b:5d:83:f7:ea:a8:8d:df:0f:c0:28:62:97:
43:e4:4a:e1:7f:3c:14:90:76:29:68:00:46:a7:6b:
51:ab:32:1e:f2:73:0d:67:34:e8:c5:86:55:76:35:
ab:ab:30:d5:0a:83:27:e1:25:16:fd:41:73:83:42:
cd:5a:9a:1d:fb:a5:8f:46:70:41:06:82:c0:cd:64:
6f:52:ad:1a:28:76:fe:62:92:c0:b0:e1:9f:ff:72:
de:ff:28:3c:6e:48:16:4e:6e:27:55:cb:2e:f6:a6:
69:8a:7b:af:f7:27:e2:de:9a:51:3c:f6:e2:91:56:
38:04:b4:ca:7a:6c:64:6f:71:4d:3d:f3:a7:a9:6e:
84:54:6a:f9:da:4b:59:e5:f9:6f:ab:fb:0b:65:43:
72:29:28:77:62:ba:f9:8a:85:e5:34:2d:70:2d:9b:
23:cf:5d:35:ae:37:ef:fb:ed:14:87:11:b5:70:3a:
b8:a1:06:1a:e9:2f:30:ec:10:6a:f2:5f:68:99:8d:
a8:f1:1a:51:4a:46:dc:aa:40:b5:4c:f9:96:e8:e2:
9b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D2:A6:77:4B:6A:F9:60:ED:2A:0A:A4:38:82:21:50:24:3E:8E:B2
X509v3 Authority Key Identifier:
keyid:0A:19:28:18:F0:A0:D9:73:9D:C1:23:8B:AF:2C:41:7E:4E:8E:83:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChkoGPCg2XOdwSOLryxBfk6Ogww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ea3638-6981-4de8-ad82-4d62eacd95ec/1/r9Kmd0tq-WDtKgqkOIIhUCQ-jrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ea3638-6981-4de8-ad82-4d62eacd95ec/1/ChkoGPCg2XOdwSOLryxBfk6Ogww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.174.0/24
Signature Algorithm: sha256WithRSAEncryption
36:25:60:48:bc:e5:be:fc:86:d5:6b:0d:ea:be:09:91:c0:44:
57:60:63:28:08:05:93:b0:fe:6d:f7:ef:fb:80:e8:77:d4:bd:
d0:05:f0:5f:49:72:e9:24:5f:12:8c:7f:12:a5:75:c7:bb:31:
52:24:9f:8d:ef:20:ce:2a:2d:15:38:a3:ee:ae:6b:75:0e:b6:
1c:5e:5f:36:b8:0c:27:0a:f0:50:85:dd:ca:5b:be:6b:bc:7f:
d3:6b:ba:fc:14:f1:83:0c:54:46:21:8b:2d:e0:ae:1c:74:46:
99:c5:e7:10:54:a0:43:64:6e:6c:70:97:55:d9:7d:f3:23:d8:
59:59:13:da:dc:fa:f5:98:17:87:e2:e1:9a:9c:03:4b:23:14:
48:e5:f7:7e:04:f8:41:70:32:26:9f:c1:00:88:f4:6f:40:66:
76:b6:fb:60:f8:f0:58:ee:14:89:3c:da:ad:09:7f:2d:dd:03:
35:89:38:d1:39:3c:c7:31:21:88:2f:20:1c:38:56:b7:85:e4:
69:76:4e:12:1f:ed:97:1f:42:7b:47:3d:c0:62:81:a1:29:bb:
0b:87:01:30:84:44:6d:05:f2:c7:ec:78:f3:28:2c:7b:94:a4:
d0:ac:a7:8f:75:8e:47:17:c8:e2:c8:ff:7f:38:73:18:02:04:
4f:bb:51:15
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAQs6MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDBh
MTkyODE4ZjBhMGQ5NzM5ZGMxMjM4YmFmMmM0MTdlNGU4ZTgzMGMwHhcNMjIwNDA4
MTY1MDUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhZmQyYTY3NzRiNmFm
OTYwZWQyYTBhYTQzODgyMjE1MDI0M2U4ZWIyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAy9Lu67ZfU0grMQDvANAx6DeqCG7yIGFsRLf7pknjQjvUJL2k
7L3hIOhvf2a45ltdg/fqqI3fD8AoYpdD5ErhfzwUkHYpaABGp2tRqzIe8nMNZzTo
xYZVdjWrqzDVCoMn4SUW/UFzg0LNWpod+6WPRnBBBoLAzWRvUq0aKHb+YpLAsOGf
/3Le/yg8bkgWTm4nVcsu9qZpinuv9yfi3ppRPPbikVY4BLTKemxkb3FNPfOnqW6E
VGr52ktZ5flvq/sLZUNyKSh3Yrr5ioXlNC1wLZsjz101rjfv++0UhxG1cDq4oQYa
6S8w7BBq8l9omY2o8RpRSkbcqkC1TPmW6OKblQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFK/SpndLavlg7SoKpDiCIVAkPo6yMB8GA1UdIwQYMBaAFAoZKBjwoNlzncEj
i68sQX5OjoMMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Q2hrb0dQQ2cyWE9kd1NPTHJ5eEJmazZPZ3d3LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hZS9lYTM2MzgtNjk4MS00ZGU4LWFkODItNGQ2MmVhY2Q5NWVjLzEv
cjlLbWQwdHEtV0R0S2dxa09JSWhVQ1EtanJJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9l
YTM2MzgtNjk4MS00ZGU4LWFkODItNGQ2MmVhY2Q5NWVjLzEvQ2hrb0dQQ2cyWE9k
d1NPTHJ5eEJmazZPZ3d3LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaSuMA0GCSqGSIb3DQEBCwUAA4IB
AQA2JWBIvOW+/IbVaw3qvgmRwERXYGMoCAWTsP5t9+/7gOh31L3QBfBfSXLpJF8S
jH8SpXXHuzFSJJ+N7yDOKi0VOKPurmt1DrYcXl82uAwnCvBQhd3KW75rvH/Ta7r8
FPGDDFRGIYst4K4cdEaZxecQVKBDZG5scJdV2X3zI9hZWRPa3Pr1mBeH4uGanANL
IxRI5fd+BPhBcDImn8EAiPRvQGZ2tvtg+PBY7hSJPNqtCX8t3QM1iTjROTzHMSGI
LyAcOFa3heRpdk4SH+2XH0J7Rz3AYoGhKbsLhwEwhERtBfLH7HjzKCx7lKTQrKeP
dY5HF8jiyP9/OHMYAgRPu1EV
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:13 2025 by rpki-client