Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/383b38-6786-4c11-aaea-7e70ff214871/1/6tCqZKW5vldtCfvpBbOd35PJEeQ.roa
File: 6tCqZKW5vldtCfvpBbOd35PJEeQ.roa (raw, json)
Hash identifier: qPKmGnjJg3hoj+9Ljve2TzPVVQoE9XyUN3U6ASVACnE=
Subject key identifier: EA:D0:AA:64:A5:B9:BE:57:6D:09:FB:E9:05:B3:9D:DF:93:C9:11:E4
Certificate issuer: /CN=af4c5436c9148ab39f3b90970e2c3272b2e0c6c2
Certificate serial: 2BBCC1
Authority key identifier: AF:4C:54:36:C9:14:8A:B3:9F:3B:90:97:0E:2C:32:72:B2:E0:C6:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r0xUNskUirOfO5CXDiwycrLgxsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/383b38-6786-4c11-aaea-7e70ff214871/1/6tCqZKW5vldtCfvpBbOd35PJEeQ.roa
Signing time: Sat 01 Jan 2022 01:52:47 +0000
ROA not before: Sat 01 Jan 2022 01:52:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202909
IP address blocks: 195.128.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2866369 (0x2bbcc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af4c5436c9148ab39f3b90970e2c3272b2e0c6c2
Validity
Not Before: Jan 1 01:52:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ead0aa64a5b9be576d09fbe905b39ddf93c911e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e1:2f:ca:29:4d:7e:e6:19:92:a4:a5:af:85:
ae:8a:a9:54:4c:c2:0b:14:71:8d:b6:23:fc:6d:cc:
38:3c:15:f3:ac:4e:9e:a0:ed:e5:a5:a5:25:e1:c5:
61:e2:5f:01:1a:ad:b5:82:87:e6:24:05:7e:30:5a:
14:05:5d:19:3b:68:5a:b4:e2:88:29:c2:e3:37:26:
9f:47:e0:08:6a:8e:31:a0:27:b4:4b:3c:9c:7a:0f:
0f:59:c7:b2:e5:bf:1a:34:2e:f3:2f:06:7c:9c:4c:
ed:30:b6:1f:2d:48:09:8d:ba:57:d5:e9:35:23:92:
ef:ac:6b:cf:85:8b:f7:17:85:f8:b3:2a:32:f9:df:
27:35:e8:4f:65:ee:bf:d5:58:3f:97:51:97:0f:62:
d0:00:66:64:e7:1e:9b:6e:62:5c:b0:3a:1e:67:21:
51:ea:81:b1:f4:d3:1f:93:d1:00:fa:0b:22:65:c5:
d5:db:96:59:68:89:0e:43:d7:f2:0f:22:7d:f7:9b:
0c:4a:0e:a8:fd:50:9d:86:92:05:bb:81:04:6f:49:
df:f9:93:8c:ec:3c:f1:0c:fb:73:9b:31:af:4e:ac:
2b:ad:5a:d1:e9:ff:f8:c3:7c:53:4d:d7:de:78:c0:
16:6b:bb:1c:77:2f:57:1e:63:ea:aa:86:b4:ff:a9:
80:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D0:AA:64:A5:B9:BE:57:6D:09:FB:E9:05:B3:9D:DF:93:C9:11:E4
X509v3 Authority Key Identifier:
keyid:AF:4C:54:36:C9:14:8A:B3:9F:3B:90:97:0E:2C:32:72:B2:E0:C6:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r0xUNskUirOfO5CXDiwycrLgxsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/383b38-6786-4c11-aaea-7e70ff214871/1/6tCqZKW5vldtCfvpBbOd35PJEeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/383b38-6786-4c11-aaea-7e70ff214871/1/r0xUNskUirOfO5CXDiwycrLgxsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:0f:14:7d:7b:5e:0d:4d:aa:c7:32:e7:90:82:b7:a6:cf:12:
4f:0a:08:20:2b:52:a6:46:91:12:f3:a6:e5:0b:07:a2:7e:c3:
61:99:90:12:77:6b:80:77:cc:f3:7a:f8:00:55:54:ab:ce:0f:
93:4f:c8:06:b4:e0:f3:5f:8b:0d:16:f4:93:38:f5:0e:77:2d:
ba:ee:6d:3a:af:53:f1:70:45:ba:a0:0c:9f:27:2a:52:33:04:
a8:fe:ee:2c:7c:b7:49:67:10:2c:c7:5b:1e:31:b1:55:ac:2e:
04:92:4d:c5:cf:da:e7:56:b8:ab:90:a4:95:1e:09:4c:24:81:
8a:c2:bd:7f:25:78:fb:b5:17:62:0b:6b:9d:3e:57:42:56:9e:
df:fc:bb:aa:4d:f2:29:a9:bb:b2:f4:b9:c7:90:df:fb:bc:72:
f0:83:b6:d4:ed:33:c2:01:01:95:10:19:52:2c:92:a0:31:84:
5d:e0:a9:09:08:a9:81:fe:8b:37:9c:6a:04:76:87:f7:9f:02:
af:28:29:fb:f7:cc:f2:0d:e8:03:98:fe:bf:7d:3f:31:a1:79:
73:c2:8d:07:e5:59:c1:91:44:fd:6c:b7:94:3d:4e:ed:87:2e:
b9:7a:5a:47:0b:c7:bd:88:27:42:6f:8f:f2:72:8a:c9:8a:db:
2c:0a:58:c4
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDK7zBMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGFm
NGM1NDM2YzkxNDhhYjM5ZjNiOTA5NzBlMmMzMjcyYjJlMGM2YzIwHhcNMjIwMTAx
MDE1MjQ3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlYWQwYWE2NGE1Yjli
ZTU3NmQwOWZiZTkwNWIzOWRkZjkzYzkxMWU0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwOEvyilNfuYZkqSlr4WuiqlUTMILFHGNtiP8bcw4PBXzrE6e
oO3lpaUl4cVh4l8BGq21gofmJAV+MFoUBV0ZO2hatOKIKcLjNyafR+AIao4xoCe0
Szyceg8PWcey5b8aNC7zLwZ8nEztMLYfLUgJjbpX1ek1I5LvrGvPhYv3F4X4syoy
+d8nNehPZe6/1Vg/l1GXD2LQAGZk5x6bbmJcsDoeZyFR6oGx9NMfk9EA+gsiZcXV
25ZZaIkOQ9fyDyJ995sMSg6o/VCdhpIFu4EEb0nf+ZOM7DzxDPtzmzGvTqwrrVrR
6f/4w3xTTdfeeMAWa7scdy9XHmPqqoa0/6mAIwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFOrQqmSlub5XbQn76QWznd+TyRHkMB8GA1UdIwQYMBaAFK9MVDbJFIqznzuQ
lw4sMnKy4MbCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cjB4VU5za1Vpck9mTzVDWERpd3ljckxneHNJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iZS8zODNiMzgtNjc4Ni00YzExLWFhZWEtN2U3MGZmMjE0ODcxLzEv
NnRDcVpLVzV2bGR0Q2Z2cEJiT2QzNVBKRWVRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8z
ODNiMzgtNjc4Ni00YzExLWFhZWEtN2U3MGZmMjE0ODcxLzEvcjB4VU5za1Vpck9m
TzVDWERpd3ljckxneHNJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4CXMA0GCSqGSIb3DQEBCwUAA4IB
AQCoDxR9e14NTarHMueQgremzxJPCgggK1KmRpES86blCweifsNhmZASd2uAd8zz
evgAVVSrzg+TT8gGtODzX4sNFvSTOPUOdy267m06r1PxcEW6oAyfJypSMwSo/u4s
fLdJZxAsx1seMbFVrC4Ekk3Fz9rnVrirkKSVHglMJIGKwr1/JXj7tRdiC2udPldC
Vp7f/LuqTfIpqbuy9LnHkN/7vHLwg7bU7TPCAQGVEBlSLJKgMYRd4KkJCKmB/os3
nGoEdof3nwKvKCn798zyDegDmP6/fT8xoXlzwo0H5VnBkUT9bLeUPU7thy65elpH
C8e9iCdCb4/ycorJitssCljE
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:52 2025 by rpki-client