Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/ACYyHUY1VwnHtLQl1FsqwnJnP30.roa
File: ACYyHUY1VwnHtLQl1FsqwnJnP30.roa (raw, json)
Hash identifier: wCslrMDKaDNN5aOL9+FkOXOMw3+oK5w6dkUAN2wRg5Y=
Subject key identifier: 00:26:32:1D:46:35:57:09:C7:B4:B4:25:D4:5B:2A:C2:72:67:3F:7D
Certificate issuer: /CN=bd8f133d1095cd31205c7a3462248cc9941203ac
Certificate serial: 1A93E867
Authority key identifier: BD:8F:13:3D:10:95:CD:31:20:5C:7A:34:62:24:8C:C9:94:12:03:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vY8TPRCVzTEgXHo0YiSMyZQSA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/ACYyHUY1VwnHtLQl1FsqwnJnP30.roa
Signing time: Sat 01 Jan 2022 12:56:00 +0000
ROA not before: Sat 01 Jan 2022 12:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34396
IP address blocks: 195.200.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445900903 (0x1a93e867)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd8f133d1095cd31205c7a3462248cc9941203ac
Validity
Not Before: Jan 1 12:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0026321d46355709c7b4b425d45b2ac272673f7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9a:6f:fc:6c:55:cd:12:e2:32:7b:e6:6d:de:
90:6a:a5:a4:ac:f1:e6:8b:8a:8b:77:d5:84:04:50:
81:65:21:8d:02:e3:05:24:13:f0:5a:ea:73:a6:4d:
a5:25:2f:6f:b5:f3:e2:3d:67:50:1a:42:8c:af:73:
9a:df:30:d4:80:b8:8f:69:82:a5:c3:73:ee:4b:14:
34:0d:89:da:49:f1:96:0c:c8:06:94:6a:91:e5:59:
cf:66:27:19:95:f9:ec:16:9f:aa:c9:d6:06:2e:e2:
80:38:19:fa:15:8e:66:82:29:7f:bf:84:9b:22:b8:
91:6f:fb:ec:21:6e:c4:63:26:29:54:1c:01:72:c7:
35:3e:4a:f3:f2:0f:63:bf:ae:6b:ee:37:46:57:92:
6d:cd:a0:8f:91:2e:2d:f7:cb:26:76:a4:ba:2a:9b:
e5:72:5c:3d:36:95:a3:fe:9d:af:2e:bd:40:85:99:
24:f7:c7:62:2f:7b:32:e5:83:86:09:c9:43:99:51:
e9:4f:e8:ee:74:b6:0c:49:55:6b:99:d4:66:47:ce:
43:bd:b3:5d:35:89:33:b6:63:5b:14:37:2a:1b:fe:
97:9e:cb:99:7c:43:de:40:d1:71:8a:0d:c1:ff:0e:
4f:1d:8c:03:a0:68:e6:17:32:a5:65:8d:7b:97:69:
79:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:26:32:1D:46:35:57:09:C7:B4:B4:25:D4:5B:2A:C2:72:67:3F:7D
X509v3 Authority Key Identifier:
keyid:BD:8F:13:3D:10:95:CD:31:20:5C:7A:34:62:24:8C:C9:94:12:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vY8TPRCVzTEgXHo0YiSMyZQSA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/ACYyHUY1VwnHtLQl1FsqwnJnP30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/3b7c43-4241-44d4-8534-409d0f9c8a04/1/vY8TPRCVzTEgXHo0YiSMyZQSA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.81.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:7e:9b:02:21:ce:e5:10:6b:19:cc:88:62:c7:c1:cb:ca:0e:
e9:ba:45:7b:f9:da:7f:bc:cc:d9:f8:c4:ad:97:86:44:3b:79:
65:af:8b:01:05:f1:7e:2a:71:83:38:af:4d:0c:97:67:c3:aa:
55:e8:ad:b9:46:0b:e1:86:d7:03:c4:2b:ee:91:5f:4e:6e:17:
c1:da:b3:dd:2f:96:4b:3f:14:80:92:d8:4c:74:60:19:29:44:
4a:71:23:13:d3:7b:7d:0d:a7:54:ad:62:8a:48:dc:90:ac:af:
92:3b:ee:a2:02:cb:2a:14:23:b6:ca:f7:0b:68:02:da:73:d3:
77:cc:c2:25:6c:dc:5d:1c:69:5f:74:aa:6b:51:de:77:56:67:
86:3e:28:ea:03:78:0a:d3:e2:19:ba:62:2b:36:aa:4f:d6:a3:
c3:08:47:cf:58:52:c0:22:4d:e3:c9:8d:2a:df:0f:bf:c3:11:
8f:f8:a2:5e:03:40:a3:91:bd:af:5f:39:5f:ab:3f:7d:df:40:
ab:90:3d:5a:e4:f2:94:5f:75:21:02:5f:52:50:39:48:46:d8:
f0:5d:12:46:84:86:b1:56:2c:d2:5d:7c:32:46:00:62:3b:e1:
3c:d2:df:3e:f2:5e:06:52:8e:81:bc:33:6a:8a:39:57:0b:e9:
7b:d8:83:06
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGpPoZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZDhmMTMzZDEwOTVjZDMxMjA1YzdhMzQ2MjI0OGNjOTk0MTIwM2FjMB4XDTIyMDEw
MTEyNTYwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDAyNjMyMWQ0NjM1
NTcwOWM3YjRiNDI1ZDQ1YjJhYzI3MjY3M2Y3ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOaab/xsVc0S4jJ75m3ekGqlpKzx5ouKi3fVhARQgWUhjQLj
BSQT8Frqc6ZNpSUvb7Xz4j1nUBpCjK9zmt8w1IC4j2mCpcNz7ksUNA2J2knxlgzI
BpRqkeVZz2YnGZX57BafqsnWBi7igDgZ+hWOZoIpf7+EmyK4kW/77CFuxGMmKVQc
AXLHNT5K8/IPY7+ua+43RleSbc2gj5EuLffLJnakuiqb5XJcPTaVo/6dry69QIWZ
JPfHYi97MuWDhgnJQ5lR6U/o7nS2DElVa5nUZkfOQ72zXTWJM7ZjWxQ3Khv+l57L
mXxD3kDRcYoNwf8OTx2MA6Bo5hcypWWNe5dpeasCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQAJjIdRjVXCce0tCXUWyrCcmc/fTAfBgNVHSMEGDAWgBS9jxM9EJXNMSBc
ejRiJIzJlBIDrDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZZOFRQUkNWelRFZ1hIbzBZaVNNeVpRU0E2dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvM2I3YzQzLTQyNDEtNDRkNC04NTM0LTQwOWQwZjljOGEwNC8x
L0FDWXlIVVkxVnduSHRMUWwxRnNxd25KblAzMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
M2I3YzQzLTQyNDEtNDRkNC04NTM0LTQwOWQwZjljOGEwNC8xL3ZZOFRQUkNWelRF
Z1hIbzBZaVNNeVpRU0E2dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMPIUTANBgkqhkiG9w0BAQsFAAOC
AQEAoX6bAiHO5RBrGcyIYsfBy8oO6bpFe/naf7zM2fjErZeGRDt5Za+LAQXxfipx
gzivTQyXZ8OqVeituUYL4YbXA8Qr7pFfTm4Xwdqz3S+WSz8UgJLYTHRgGSlESnEj
E9N7fQ2nVK1iikjckKyvkjvuogLLKhQjtsr3C2gC2nPTd8zCJWzcXRxpX3Sqa1He
d1Znhj4o6gN4CtPiGbpiKzaqT9ajwwhHz1hSwCJN48mNKt8Pv8MRj/iiXgNAo5G9
r185X6s/fd9Aq5A9WuTylF91IQJfUlA5SEbY8F0SRoSGsVYs0l18MkYAYjvhPNLf
PvJeBlKOgbwzaoo5Vwvpe9iDBg==
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:40:59 2025 by rpki-client