Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/uZ82HsSJfJMX-injZJkIBGdxGBY.roa
File: uZ82HsSJfJMX-injZJkIBGdxGBY.roa (raw, json)
Hash identifier: mT1BefewYqT0QULFBWTWCpATALXi+6J6LGgvQIVpGhI=
Subject key identifier: B9:9F:36:1E:C4:89:7C:93:17:FA:29:E3:64:99:08:04:67:71:18:16
Certificate issuer: /CN=05e9fca0a8584feb1c12319071423061b08fe456
Certificate serial: 0194221F84025B742E3F36D18331D86A9716
Authority key identifier: 05:E9:FC:A0:A8:58:4F:EB:1C:12:31:90:71:42:30:61:B0:8F:E4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ben8oKhYT-scEjGQcUIwYbCP5FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/uZ82HsSJfJMX-injZJkIBGdxGBY.roa
Signing time: Wed 01 Jan 2025 13:47:58 +0000
ROA not before: Wed 01 Jan 2025 13:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52000
IP address blocks: 109.107.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:84:02:5b:74:2e:3f:36:d1:83:31:d8:6a:97:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05e9fca0a8584feb1c12319071423061b08fe456
Validity
Not Before: Jan 1 13:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b99f361ec4897c9317fa29e36499080467711816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b8:6b:1d:0f:63:46:21:93:49:2e:76:01:04:
2b:72:dd:93:cf:29:b0:b6:39:f8:36:ce:22:ed:b0:
65:1f:ed:e7:f7:df:81:b6:38:91:e3:10:4b:b3:4e:
72:93:0b:07:2f:76:74:4b:b2:d3:94:c6:5a:9d:9b:
f6:a2:5f:32:68:d8:c8:66:07:19:c7:56:9d:43:2e:
be:2f:72:6f:6e:88:89:8b:be:9f:8a:1f:a2:30:93:
89:a3:19:21:2e:80:96:92:9f:e4:07:20:e0:3c:29:
92:03:50:f7:69:86:94:fd:9b:2d:d0:59:e6:02:a3:
8c:f2:36:36:9f:86:d4:31:4b:f2:af:ee:83:08:c6:
e8:b6:bc:1d:cd:7a:1d:bc:64:da:db:f7:4b:20:33:
ae:60:2c:66:23:3b:b0:37:62:b7:94:b0:9b:38:52:
28:a6:22:f5:f1:2b:61:3c:e8:8c:66:61:d7:a5:19:
f7:f9:dc:3c:d8:1e:3e:61:90:ad:37:fd:24:4f:f4:
74:01:55:91:8d:7b:97:e6:fc:83:bc:7f:56:cd:e0:
83:a5:42:00:ca:e4:91:6e:b7:63:8f:c0:5d:4f:46:
53:47:47:d6:bf:83:58:9c:fa:6c:ee:e1:bb:1d:7a:
5c:e3:7d:e5:17:58:d3:df:1f:e2:da:03:e4:1d:05:
a6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:9F:36:1E:C4:89:7C:93:17:FA:29:E3:64:99:08:04:67:71:18:16
X509v3 Authority Key Identifier:
keyid:05:E9:FC:A0:A8:58:4F:EB:1C:12:31:90:71:42:30:61:B0:8F:E4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ben8oKhYT-scEjGQcUIwYbCP5FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/uZ82HsSJfJMX-injZJkIBGdxGBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c7ee9e-b5bf-4c2d-a983-dee3ed497aee/1/Ben8oKhYT-scEjGQcUIwYbCP5FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.170.0/24
Signature Algorithm: sha256WithRSAEncryption
68:87:9c:a5:77:e0:75:c0:39:39:ed:a1:81:a2:6a:b5:e5:46:
1f:53:7b:6c:75:41:f8:fc:84:18:00:de:2c:6c:88:7a:9d:d7:
f5:fb:f9:87:cf:da:80:f1:4a:aa:79:9c:0b:07:cf:8d:15:a9:
86:3e:c8:ba:a0:21:ef:10:80:5d:b8:ee:c3:0e:15:2a:9f:74:
ab:27:6d:64:94:14:6f:f3:39:e8:ed:c0:bb:81:04:9c:ee:3c:
75:ed:1d:50:29:b3:77:61:0c:fe:a3:d6:78:71:5f:b4:77:e9:
70:89:1f:a8:21:d8:ae:d3:90:06:b8:e7:27:78:c4:fb:20:ed:
92:02:c5:a2:cd:d7:c7:6d:be:8e:cd:0f:8a:19:d4:c5:de:66:
cf:67:ec:4d:2f:63:c8:e0:26:f1:cb:d4:02:10:c0:8c:0e:54:
ab:6b:c2:26:8c:fe:08:10:a4:6f:50:11:01:fd:4d:4a:c8:ff:
4a:66:30:46:09:02:72:67:6c:50:c1:4d:10:37:63:2c:54:06:
10:f1:7f:6c:89:2c:75:65:a0:1d:ae:56:bb:a5:43:8e:b5:0c:
9b:fe:68:de:c0:57:7b:42:34:52:43:5e:37:a2:b9:51:f1:8b:
34:ed:42:37:a8:c4:a1:f7:16:89:5f:06:b3:6f:dc:ec:1c:bb:
6b:c3:b9:72
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH4QCW3QuPzbRgzHYapcWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ZTlmY2EwYTg1ODRmZWIxYzEyMzE5MDcxNDIzMDYxYjA4
ZmU0NTYwHhcNMjUwMTAxMTM0NzU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTlmMzYxZWM0ODk3YzkzMTdmYTI5ZTM2NDk5MDgwNDY3NzExODE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLhrHQ9jRiGTSS52AQQrct2Tzymw
tjn4Ns4i7bBlH+3n99+BtjiR4xBLs05ykwsHL3Z0S7LTlMZanZv2ol8yaNjIZgcZ
x1adQy6+L3JvboiJi76fih+iMJOJoxkhLoCWkp/kByDgPCmSA1D3aYaU/Zst0Fnm
AqOM8jY2n4bUMUvyr+6DCMbotrwdzXodvGTa2/dLIDOuYCxmIzuwN2K3lLCbOFIo
piL18SthPOiMZmHXpRn3+dw82B4+YZCtN/0kT/R0AVWRjXuX5vyDvH9WzeCDpUIA
yuSRbrdjj8BdT0ZTR0fWv4NYnPps7uG7HXpc433lF1jT3x/i2gPkHQWm5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLmfNh7EiXyTF/op42SZCARncRgWMB8GA1UdIwQY
MBaAFAXp/KCoWE/rHBIxkHFCMGGwj+RWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmVuOG9LaFlULXNjRWpHUWNVSXdZYkNQNUZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jN2VlOWUtYjViZi00YzJkLWE5ODMt
ZGVlM2VkNDk3YWVlLzEvdVo4MkhzU0pmSk1YLWlualpKa0lCR2R4R0JZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9jN2VlOWUtYjViZi00YzJkLWE5ODMtZGVlM2VkNDk3YWVl
LzEvQmVuOG9LaFlULXNjRWpHUWNVSXdZYkNQNUZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWuqMA0G
CSqGSIb3DQEBCwUAA4IBAQBoh5yld+B1wDk57aGBomq15UYfU3tsdUH4/IQYAN4s
bIh6ndf1+/mHz9qA8UqqeZwLB8+NFamGPsi6oCHvEIBduO7DDhUqn3SrJ21klBRv
8zno7cC7gQSc7jx17R1QKbN3YQz+o9Z4cV+0d+lwiR+oIdiu05AGuOcneMT7IO2S
AsWizdfHbb6OzQ+KGdTF3mbPZ+xNL2PI4Cbxy9QCEMCMDlSra8ImjP4IEKRvUBEB
/U1KyP9KZjBGCQJyZ2xQwU0QN2MsVAYQ8X9siSx1ZaAdrla7pUOOtQyb/mjewFd7
QjRSQ143orlR8Ys07UI3qMSh9xaJXwazb9zsHLtrw7ly
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:00:32 2025 by rpki-client