Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/9c1e83-e714-4c45-8685-586b6d047878/1/0dPAqKgOAuiY9utXfZ6aQl4Q1To.roa
File: 0dPAqKgOAuiY9utXfZ6aQl4Q1To.roa (raw, json)
Hash identifier: KexgKVAX55HT0VInxfPQWEVnBob74G0mShOjnhg+jF8=
Subject key identifier: D1:D3:C0:A8:A8:0E:02:E8:98:F6:EB:57:7D:9E:9A:42:5E:10:D5:3A
Certificate issuer: /CN=ea90ed6848a9ca1ef2010e634ce21b6c9addeb62
Certificate serial: 0192F7918241C6B16A6D7654A07237389CFA
Authority key identifier: EA:90:ED:68:48:A9:CA:1E:F2:01:0E:63:4C:E2:1B:6C:9A:DD:EB:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6pDtaEipyh7yAQ5jTOIbbJrd62I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/9c1e83-e714-4c45-8685-586b6d047878/1/0dPAqKgOAuiY9utXfZ6aQl4Q1To.roa
Signing time: Mon 04 Nov 2024 14:26:01 +0000
ROA not before: Mon 04 Nov 2024 14:26:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35101
IP address blocks: 193.227.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f7:91:82:41:c6:b1:6a:6d:76:54:a0:72:37:38:9c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea90ed6848a9ca1ef2010e634ce21b6c9addeb62
Validity
Not Before: Nov 4 14:26:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1d3c0a8a80e02e898f6eb577d9e9a425e10d53a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0a:84:e6:56:2c:f8:fa:08:67:7a:9c:e6:dc:
65:e3:60:71:e9:2e:66:64:ff:62:49:85:85:ff:4a:
ec:f8:0c:9f:e6:0a:9f:3d:77:21:65:ce:b8:8b:0c:
e6:b5:e6:b1:c7:13:df:30:e9:a8:6d:e0:ea:65:c9:
6c:80:c1:99:1a:35:13:1f:5f:cc:bc:45:0a:75:37:
5c:61:d8:fb:54:1f:48:2c:e4:05:3a:76:1a:33:a5:
2b:f3:ef:48:be:a9:1c:7e:27:f1:e4:f1:2d:ec:d2:
ec:02:45:a9:44:99:59:16:44:40:90:f8:dc:3a:68:
b0:96:ca:a8:a7:45:71:66:b7:f1:39:7a:59:64:65:
16:f3:9d:9e:dd:05:9e:a4:8b:4e:e6:18:0d:bf:b4:
34:80:fb:32:b3:21:3e:d5:28:b8:f4:03:d0:16:00:
d2:f9:27:ef:5a:42:e1:35:fc:eb:30:a3:b6:b4:d1:
99:83:6a:1c:f7:6a:78:ba:15:11:e7:7c:43:72:89:
7d:6c:4d:8d:d9:a1:c0:91:30:8c:7a:ba:d9:7c:28:
ac:e6:93:db:35:2f:65:f8:cd:3e:e1:47:b0:79:3e:
a6:e1:45:77:ab:34:89:17:d7:e6:7b:53:ca:0a:7e:
68:54:42:42:a1:73:16:1d:85:79:f3:c2:f1:b4:4e:
80:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D3:C0:A8:A8:0E:02:E8:98:F6:EB:57:7D:9E:9A:42:5E:10:D5:3A
X509v3 Authority Key Identifier:
keyid:EA:90:ED:68:48:A9:CA:1E:F2:01:0E:63:4C:E2:1B:6C:9A:DD:EB:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6pDtaEipyh7yAQ5jTOIbbJrd62I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/9c1e83-e714-4c45-8685-586b6d047878/1/0dPAqKgOAuiY9utXfZ6aQl4Q1To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/9c1e83-e714-4c45-8685-586b6d047878/1/6pDtaEipyh7yAQ5jTOIbbJrd62I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.227.130.0/24
Signature Algorithm: sha256WithRSAEncryption
31:3d:d6:68:fd:6f:2b:ec:90:e3:15:c3:01:a3:fa:a0:6c:c9:
82:f5:a2:08:17:f1:20:5f:24:ac:ef:8a:37:f1:c8:21:05:51:
09:e5:df:2b:35:f4:e9:c2:f1:5f:ba:3c:58:f6:6a:a4:a1:86:
1d:b3:11:45:eb:6e:89:65:9e:cc:c2:9d:f2:1f:29:17:51:d9:
71:e6:0b:4d:e5:b8:3a:c3:3a:ae:e5:a7:cd:b5:60:81:b3:04:
e6:00:13:53:57:21:e3:15:e0:db:f2:67:10:ab:bb:1e:41:97:
ad:9b:ec:be:2c:96:1e:7c:d6:de:91:d9:d0:dd:4b:b7:ba:72:
9b:da:d4:af:0c:7f:5e:85:bf:7d:9f:d2:25:03:f8:ba:d3:cc:
19:59:8f:83:cd:9c:72:dd:4f:7a:b7:37:5f:3f:c1:ac:0b:b9:
9b:e5:52:f2:0b:09:6c:08:bc:8a:91:9c:74:2c:b7:81:1a:dc:
8d:e8:b9:e9:e8:9f:31:28:22:96:75:73:01:9e:2e:34:5e:ca:
97:20:87:f6:89:03:6f:0e:fe:19:c6:44:ef:22:b5:33:82:45:
4a:9a:1e:f1:24:8e:65:92:b2:0a:25:df:ca:ea:7a:32:41:43:
2e:dd:ac:9c:50:fb:0d:df:3c:5d:90:ac:b0:28:5a:81:92:77:
e3:86:a4:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZL3kYJBxrFqbXZUoHI3OJz6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhOTBlZDY4NDhhOWNhMWVmMjAxMGU2MzRjZTIxYjZjOWFk
ZGViNjIwHhcNMjQxMTA0MTQyNjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMWQzYzBhOGE4MGUwMmU4OThmNmViNTc3ZDllOWE0MjVlMTBkNTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4QqE5lYs+PoIZ3qc5txl42Bx6S5m
ZP9iSYWF/0rs+Ayf5gqfPXchZc64iwzmteaxxxPfMOmobeDqZclsgMGZGjUTH1/M
vEUKdTdcYdj7VB9ILOQFOnYaM6Ur8+9Ivqkcfifx5PEt7NLsAkWpRJlZFkRAkPjc
Omiwlsqop0VxZrfxOXpZZGUW852e3QWepItO5hgNv7Q0gPsysyE+1Si49APQFgDS
+SfvWkLhNfzrMKO2tNGZg2oc92p4uhUR53xDcol9bE2N2aHAkTCMerrZfCis5pPb
NS9l+M0+4UeweT6m4UV3qzSJF9fme1PKCn5oVEJCoXMWHYV588LxtE6AhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNHTwKioDgLomPbrV32emkJeENU6MB8GA1UdIwQY
MBaAFOqQ7WhIqcoe8gEOY0ziG2ya3etiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnBEdGFFaXB5aDd5QVE1alRPSWJiSnJkNjJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi85YzFlODMtZTcxNC00YzQ1LTg2ODUt
NTg2YjZkMDQ3ODc4LzEvMGRQQXFLZ09BdWlZOXV0WGZaNmFRbDRRMVRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi85YzFlODMtZTcxNC00YzQ1LTg2ODUtNTg2YjZkMDQ3ODc4
LzEvNnBEdGFFaXB5aDd5QVE1alRPSWJiSnJkNjJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAweOCMA0G
CSqGSIb3DQEBCwUAA4IBAQAxPdZo/W8r7JDjFcMBo/qgbMmC9aIIF/EgXySs74o3
8cghBVEJ5d8rNfTpwvFfujxY9mqkoYYdsxFF626JZZ7Mwp3yHykXUdlx5gtN5bg6
wzqu5afNtWCBswTmABNTVyHjFeDb8mcQq7seQZetm+y+LJYefNbekdnQ3Uu3unKb
2tSvDH9ehb99n9IlA/i608wZWY+DzZxy3U96tzdfP8GsC7mb5VLyCwlsCLyKkZx0
LLeBGtyN6Lnp6J8xKCKWdXMBni40XsqXIIf2iQNvDv4ZxkTvIrUzgkVKmh7xJI5l
krIKJd/K6noyQUMu3aycUPsN3zxdkKywKFqBknfjhqSh
-----END CERTIFICATE-----
Generated at Tue Apr 8 11:27:31 2025 by rpki-client