Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/nNaCo93qTJERaT_zB3sD2IERlDU.roa
File: nNaCo93qTJERaT_zB3sD2IERlDU.roa (raw, json)
Hash identifier: +6lYQMW0tJQv7x9VPZiAqYcASqdUzyG3bb2sUUjUY8E=
Subject key identifier: 9C:D6:82:A3:DD:EA:4C:91:11:69:3F:F3:07:7B:03:D8:81:11:94:35
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 019422FC11CF5AE28C549F1EEDE5B852EED9
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/nNaCo93qTJERaT_zB3sD2IERlDU.roa
Signing time: Wed 01 Jan 2025 17:48:52 +0000
ROA not before: Wed 01 Jan 2025 17:48:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3215
IP address blocks: 185.145.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:11:cf:5a:e2:8c:54:9f:1e:ed:e5:b8:52:ee:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Jan 1 17:48:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9cd682a3ddea4c9111693ff3077b03d881119435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:84:06:cb:7e:a1:2a:30:22:6a:34:3a:ee:23:
c8:f9:41:49:ad:f5:a3:22:c7:48:d2:80:5c:53:18:
2c:27:59:c0:a5:28:2c:30:aa:37:71:57:6d:5a:83:
b5:e2:21:32:67:c0:4b:25:a5:c6:f2:c2:59:4d:cb:
8b:28:f2:6e:d2:3e:53:b9:f9:52:13:8a:d3:8a:fd:
ce:46:b1:9b:68:4e:c3:d9:a1:78:db:b5:15:a0:8e:
f7:1d:7c:9b:e7:47:df:df:a9:73:4f:61:86:8c:ce:
59:a1:60:23:62:db:12:f1:20:a1:8b:22:35:bb:d1:
30:f9:12:a7:bd:2f:81:2f:2c:1a:67:47:78:51:11:
11:23:80:06:34:d6:3a:a0:b7:4e:9a:2e:5b:c1:ea:
65:09:9c:a1:49:ac:f4:7f:a8:e3:ea:26:28:0d:f3:
14:de:11:f1:88:d5:73:17:c5:18:db:cd:b4:cf:94:
22:9c:7e:fa:55:bd:98:10:48:23:6c:cc:ca:a0:f7:
91:4b:e4:2e:c7:74:31:aa:06:5f:55:88:ef:11:67:
58:c4:25:66:10:d4:45:a4:b5:8a:1d:bf:0c:50:f9:
7c:5c:e1:95:c4:24:17:f0:65:d6:e3:cc:d3:d4:5c:
b1:f6:a4:f6:12:e2:d6:0b:ef:dc:b3:52:d5:46:4d:
3f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:D6:82:A3:DD:EA:4C:91:11:69:3F:F3:07:7B:03:D8:81:11:94:35
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/nNaCo93qTJERaT_zB3sD2IERlDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.78.0/24
Signature Algorithm: sha256WithRSAEncryption
09:c1:7c:bb:22:4c:7f:44:7b:6f:37:b6:d7:d5:a5:62:51:67:
b7:a5:e4:a3:cb:82:4b:a4:0b:a4:38:a9:00:fb:bc:20:96:42:
1f:ce:10:bc:2a:0c:13:34:57:c6:be:e3:e0:f3:4a:e8:b5:46:
36:4c:c5:6e:95:64:04:31:7b:7d:e7:61:6b:68:6b:a2:c1:03:
a1:0d:a5:83:f5:2c:25:85:bf:59:1c:e0:86:e7:ce:7e:a8:f5:
37:9d:46:ec:c0:8c:be:79:c4:f5:ba:a1:1c:70:ef:d0:00:aa:
81:77:be:77:74:91:4d:c5:4f:a6:c5:58:72:69:1b:4d:32:af:
ce:22:b8:e8:04:ef:ea:cd:73:cf:d2:53:4a:45:12:69:2a:9c:
77:9e:38:83:a9:e9:1d:0c:f8:9c:69:44:a7:e4:a1:f8:9c:84:
58:eb:9e:90:9a:d8:fd:ae:f6:b1:9b:1e:e8:10:3d:68:bd:5b:
27:c4:09:c9:29:5a:24:89:78:f0:66:d1:c9:8b:5f:2b:ff:a9:
c6:eb:62:09:c2:59:f6:e6:6e:17:a7:70:4e:7b:fb:4a:07:a6:
2c:a6:4c:cc:cc:9b:9a:1a:a6:6f:28:2d:45:33:8c:7e:8d:cc:
49:dc:0f:de:84:7f:6d:49:8c:4e:78:7b:87:e6:52:db:d8:d5:
58:82:44:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi/BHPWuKMVJ8e7eW4Uu7ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwZjFiYTYxMTFjOGYxZDNmMzdjMWI3YzFhNWVkNzM3NDAy
MTkyZjIwHhcNMjUwMTAxMTc0ODUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Y2Q2ODJhM2RkZWE0YzkxMTE2OTNmZjMwNzdiMDNkODgxMTE5NDM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14QGy36hKjAiajQ67iPI+UFJrfWj
IsdI0oBcUxgsJ1nApSgsMKo3cVdtWoO14iEyZ8BLJaXG8sJZTcuLKPJu0j5TuflS
E4rTiv3ORrGbaE7D2aF427UVoI73HXyb50ff36lzT2GGjM5ZoWAjYtsS8SChiyI1
u9Ew+RKnvS+BLywaZ0d4URERI4AGNNY6oLdOmi5bweplCZyhSaz0f6jj6iYoDfMU
3hHxiNVzF8UY2820z5QinH76Vb2YEEgjbMzKoPeRS+Qux3QxqgZfVYjvEWdYxCVm
ENRFpLWKHb8MUPl8XOGVxCQX8GXW48zT1Fyx9qT2EuLWC+/cs1LVRk0/dQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJzWgqPd6kyREWk/8wd7A9iBEZQ1MB8GA1UdIwQY
MBaAFDDxumERyPHT83wbfBpe1zdAIZLyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVBHNllSSEk4ZFB6ZkJ0OEdsN1hOMEFoa3ZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy84ZDdjNTctYmE2NS00N2ZjLWJjYzQt
YzMzMDE4NjMzZDMzLzEvbk5hQ285M3FUSkVSYVRfekIzc0QySUVSbERVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy84ZDdjNTctYmE2NS00N2ZjLWJjYzQtYzMzMDE4NjMzZDMz
LzEvTVBHNllSSEk4ZFB6ZkJ0OEdsN1hOMEFoa3ZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZFOMA0G
CSqGSIb3DQEBCwUAA4IBAQAJwXy7Ikx/RHtvN7bX1aViUWe3peSjy4JLpAukOKkA
+7wglkIfzhC8KgwTNFfGvuPg80rotUY2TMVulWQEMXt952FraGuiwQOhDaWD9Swl
hb9ZHOCG585+qPU3nUbswIy+ecT1uqEccO/QAKqBd753dJFNxU+mxVhyaRtNMq/O
IrjoBO/qzXPP0lNKRRJpKpx3njiDqekdDPicaUSn5KH4nIRY656Qmtj9rvaxmx7o
ED1ovVsnxAnJKVokiXjwZtHJi18r/6nG62IJwln25m4Xp3BOe/tKB6YspkzMzJua
GqZvKC1FM4x+jcxJ3A/ehH9tSYxOeHuH5lLb2NVYgkTz
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:25:02 2025 by rpki-client