Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/r81ikWJGvf8DyIFp9NtaxpIUWZ0.roa
File: r81ikWJGvf8DyIFp9NtaxpIUWZ0.roa (raw, json)
Hash identifier: 5jqv4gMDPdzak1GnGrdRJHYFHSSPSNmfOxnwfyTOW6o=
Subject key identifier: AF:CD:62:91:62:46:BD:FF:03:C8:81:69:F4:DB:5A:C6:92:14:59:9D
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0187FB564BAD9AE372CC5597C5C915DDA17D
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/r81ikWJGvf8DyIFp9NtaxpIUWZ0.roa
Signing time: Mon 08 May 2023 12:29:09 +0000
ROA not before: Mon 08 May 2023 12:29:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203936
IP address blocks: 193.160.209.0/24 maxlen: 24
193.160.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fb:56:4b:ad:9a:e3:72:cc:55:97:c5:c9:15:dd:a1:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: May 8 12:29:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afcd62916246bdff03c88169f4db5ac69214599d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:16:ca:bf:df:47:c7:95:d1:bd:a2:93:f9:44:
72:b7:b8:84:c0:b5:82:c6:dc:93:f3:d7:b1:14:77:
1b:ef:52:f4:4f:23:97:9f:4c:bd:1c:44:4b:87:87:
f4:69:2c:91:cb:44:7d:9d:92:7a:c8:68:ce:57:62:
6d:21:06:8e:8c:8b:71:66:da:90:97:95:b0:2b:34:
ec:a2:c6:3b:fa:59:69:9b:3e:2b:5a:b4:66:00:cb:
4a:f2:10:9e:1c:25:0a:09:9f:94:ea:22:ba:22:73:
e2:fd:be:a0:9e:18:9f:4e:20:4a:85:0e:26:2c:5a:
fb:68:95:d7:22:a0:da:0b:bc:e9:87:f3:17:ea:1d:
5e:ea:05:4d:b3:df:d2:1e:64:e7:d1:6a:b7:60:fb:
59:18:11:d7:81:58:a4:f7:ce:4f:5e:0e:11:48:b0:
5d:10:ef:42:90:f0:e1:cf:ab:6e:1c:05:f7:9d:e0:
03:2c:2e:c3:ac:3a:fb:f0:c2:da:1c:7d:1b:74:a4:
28:13:a7:97:38:be:21:ab:1f:9e:0e:af:80:37:5a:
45:98:d4:df:be:af:80:e0:73:b8:b5:6e:86:e5:6e:
6d:5f:fa:dc:4f:63:10:18:ca:56:28:ba:de:f4:1a:
4d:b9:4b:2a:7c:ee:68:cf:05:06:f6:21:0f:48:6d:
97:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CD:62:91:62:46:BD:FF:03:C8:81:69:F4:DB:5A:C6:92:14:59:9D
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/r81ikWJGvf8DyIFp9NtaxpIUWZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.208.0/23
Signature Algorithm: sha256WithRSAEncryption
03:95:82:c8:52:a2:75:7e:aa:02:94:eb:e7:bf:92:d8:56:c5:
e8:f9:88:c9:2b:fd:21:42:71:4e:b6:05:0a:f5:ba:58:c0:a7:
d4:6b:ef:c8:51:2e:fd:f4:c2:10:30:d5:5f:08:07:9c:a6:2a:
55:36:cc:fd:e8:61:a0:a2:84:2f:62:00:53:9a:ab:96:d1:cc:
ad:54:43:cb:cf:c3:d9:14:2e:32:91:cc:3e:57:28:21:15:7d:
ff:03:5b:06:cb:3f:61:73:59:f2:8a:c7:94:3c:b0:6c:09:f4:
0f:6b:5d:b5:98:03:06:76:7b:64:d5:0e:e1:cc:9b:7e:7b:d9:
51:fc:2e:9d:34:5c:ce:c2:9b:11:19:03:88:41:ae:a8:82:56:
9c:69:e3:77:77:b3:a9:44:e5:42:dc:b5:b1:20:45:43:c9:1e:
d3:f2:14:b0:cf:0a:f5:ff:35:ed:e6:3c:7f:e6:04:3b:5e:63:
24:1f:f8:6e:4b:e5:e5:02:79:ac:b3:e1:bd:da:c7:93:06:1f:
39:f1:d9:bb:9e:ea:f7:7b:87:e0:1f:a5:52:19:66:1b:00:7c:
6c:5a:b5:d2:ff:ba:d4:fb:b7:80:a1:b7:7a:1d:ca:bc:0f:65:
49:44:2a:20:70:6c:af:0b:ee:e7:3a:33:7d:78:4d:83:4e:7b:
b4:ab:36:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYf7VkutmuNyzFWXxckV3aF9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4
YWJjYzUwHhcNMjMwNTA4MTIyOTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZmNkNjI5MTYyNDZiZGZmMDNjODgxNjlmNGRiNWFjNjkyMTQ1OTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBbKv99Hx5XRvaKT+URyt7iEwLWC
xtyT89exFHcb71L0TyOXn0y9HERLh4f0aSyRy0R9nZJ6yGjOV2JtIQaOjItxZtqQ
l5WwKzTsosY7+llpmz4rWrRmAMtK8hCeHCUKCZ+U6iK6InPi/b6gnhifTiBKhQ4m
LFr7aJXXIqDaC7zph/MX6h1e6gVNs9/SHmTn0Wq3YPtZGBHXgVik985PXg4RSLBd
EO9CkPDhz6tuHAX3neADLC7DrDr78MLaHH0bdKQoE6eXOL4hqx+eDq+AN1pFmNTf
vq+A4HO4tW6G5W5tX/rcT2MQGMpWKLre9BpNuUsqfO5ozwUG9iEPSG2X2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK/NYpFiRr3/A8iBafTbWsaSFFmdMB8GA1UdIwQY
MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt
NmZlOWJmNjA1NjFjLzEvcjgxaWtXSkd2ZjhEeUlGcDlOdGF4cElVV1owLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj
LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwaDQMA0G
CSqGSIb3DQEBCwUAA4IBAQADlYLIUqJ1fqoClOvnv5LYVsXo+YjJK/0hQnFOtgUK
9bpYwKfUa+/IUS799MIQMNVfCAecpipVNsz96GGgooQvYgBTmquW0cytVEPLz8PZ
FC4ykcw+VyghFX3/A1sGyz9hc1nyiseUPLBsCfQPa121mAMGdntk1Q7hzJt+e9lR
/C6dNFzOwpsRGQOIQa6oglacaeN3d7OpROVC3LWxIEVDyR7T8hSwzwr1/zXt5jx/
5gQ7XmMkH/huS+XlAnmss+G92seTBh858dm7nur3e4fgH6VSGWYbAHxsWrXS/7rU
+7eAobd6Hcq8D2VJRCogcGyvC+7nOjN9eE2DTnu0qzY2
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:13 2025 by rpki-client