Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a08ea3-e801-4ada-af8e-74978cb14f08/1/HgNdOhco1VLqGB9Hz0k1X-GYelg.roa
File: HgNdOhco1VLqGB9Hz0k1X-GYelg.roa (raw, json)
Hash identifier: E9ZFx3TByKr4ptGQl6ndbC1nIDkjgRNVG98Kao36nNI=
Subject key identifier: 1E:03:5D:3A:17:28:D5:52:EA:18:1F:47:CF:49:35:5F:E1:98:7A:58
Certificate issuer: /CN=a3835ebc11f9ffc9d2fcd5cd57b2c7aec60a776e
Certificate serial: 0448490D
Authority key identifier: A3:83:5E:BC:11:F9:FF:C9:D2:FC:D5:CD:57:B2:C7:AE:C6:0A:77:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4NevBH5_8nS_NXNV7LHrsYKd24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a08ea3-e801-4ada-af8e-74978cb14f08/1/HgNdOhco1VLqGB9Hz0k1X-GYelg.roa
Signing time: Mon 13 Jun 2022 08:49:05 +0000
ROA not before: Mon 13 Jun 2022 08:49:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34471
IP address blocks: 185.228.124.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71846157 (0x448490d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3835ebc11f9ffc9d2fcd5cd57b2c7aec60a776e
Validity
Not Before: Jun 13 08:49:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e035d3a1728d552ea181f47cf49355fe1987a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:16:06:9d:29:2e:79:b8:6f:88:bd:d6:48:59:
47:69:79:bd:bd:35:a7:da:b5:10:21:6b:36:11:83:
fb:e7:ee:aa:e7:f4:3f:20:1c:67:8e:97:78:57:75:
fb:d5:b5:eb:de:75:97:69:7d:0e:9c:99:ec:df:36:
66:f1:bb:9b:ec:65:66:b5:a5:6a:80:b7:2d:e1:7a:
45:05:bc:9e:ac:58:d8:3b:01:98:8c:57:92:6e:4c:
16:0e:a6:f6:62:89:bd:e6:22:2b:00:db:09:31:3f:
db:ce:a1:dd:76:ed:99:ba:e4:0d:22:b6:25:7f:b5:
27:77:4a:23:ed:2e:26:76:9f:e4:9f:9b:1e:e5:76:
bb:9c:45:17:a9:2e:f9:5b:62:0b:c1:9a:61:07:3a:
ec:0c:3c:bf:c1:64:66:0d:85:15:e3:3e:26:8f:fc:
fc:5b:d2:54:e5:78:9c:cc:3c:ea:ba:9d:e9:c8:21:
65:83:9b:49:2a:d0:92:36:29:e0:ca:e2:3f:e4:22:
9c:0d:48:6b:03:10:2c:e1:cb:c5:cc:a3:c5:14:6f:
a0:45:03:0b:25:49:18:07:9d:9a:f2:c6:ce:82:bc:
e1:29:f0:6d:2f:e7:70:b3:7a:61:01:17:62:d5:0b:
96:ed:24:9e:0a:79:87:44:5f:54:6e:10:2c:48:7b:
0f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:03:5D:3A:17:28:D5:52:EA:18:1F:47:CF:49:35:5F:E1:98:7A:58
X509v3 Authority Key Identifier:
keyid:A3:83:5E:BC:11:F9:FF:C9:D2:FC:D5:CD:57:B2:C7:AE:C6:0A:77:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4NevBH5_8nS_NXNV7LHrsYKd24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a08ea3-e801-4ada-af8e-74978cb14f08/1/HgNdOhco1VLqGB9Hz0k1X-GYelg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a08ea3-e801-4ada-af8e-74978cb14f08/1/o4NevBH5_8nS_NXNV7LHrsYKd24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:f3:9a:0e:a2:81:47:e7:a6:8a:3f:7b:87:a7:2f:5e:b8:fa:
12:e5:eb:5c:16:8e:55:fc:ad:f6:3c:a5:e0:78:82:4f:80:7d:
ec:e8:1a:35:eb:db:82:6e:e5:c6:45:5e:4c:6e:54:e8:1a:c9:
f9:48:0d:6e:4f:91:27:4f:a9:dd:a1:53:37:37:ea:4a:97:1f:
9b:d7:e1:f2:e5:25:64:02:e3:53:9b:81:c6:8b:b9:42:62:1b:
7c:e5:87:5d:10:a0:eb:8c:fe:45:8e:81:4c:e6:64:04:08:c9:
04:4b:c6:bb:2e:e3:fd:64:26:e4:5f:80:58:ab:95:4f:9c:51:
bb:ad:66:f5:21:14:1d:e4:f4:fa:a3:63:f1:84:96:48:f8:e8:
a5:2f:e9:f9:45:4f:59:39:76:e0:41:85:0a:f1:5b:1f:e0:4d:
0f:f7:9e:fe:35:27:a3:3e:76:e5:5d:c5:15:12:77:73:4c:e8:
f8:0d:05:83:25:bb:25:b6:48:c0:b3:58:82:90:60:e0:b5:e1:
0f:a0:38:83:6c:f8:3b:55:f3:7f:2b:a0:61:f5:c1:08:99:d7:
61:71:15:e4:4c:ef:f2:38:1d:9e:ae:a0:94:45:25:bc:33:f0:
61:c1:3f:4d:cd:09:72:22:b7:52:09:e1:c3:78:02:14:0c:33:
52:ee:53:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBEhJDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MzgzNWViYzExZjlmZmM5ZDJmY2Q1Y2Q1N2IyYzdhZWM2MGE3NzZlMB4XDTIyMDYx
MzA4NDkwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWUwMzVkM2ExNzI4
ZDU1MmVhMTgxZjQ3Y2Y0OTM1NWZlMTk4N2E1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALUWBp0pLnm4b4i91khZR2l5vb01p9q1ECFrNhGD++fuquf0
PyAcZ46XeFd1+9W16951l2l9DpyZ7N82ZvG7m+xlZrWlaoC3LeF6RQW8nqxY2DsB
mIxXkm5MFg6m9mKJveYiKwDbCTE/286h3XbtmbrkDSK2JX+1J3dKI+0uJnaf5J+b
HuV2u5xFF6ku+VtiC8GaYQc67Aw8v8FkZg2FFeM+Jo/8/FvSVOV4nMw86rqd6cgh
ZYObSSrQkjYp4MriP+QinA1IawMQLOHLxcyjxRRvoEUDCyVJGAedmvLGzoK84Snw
bS/ncLN6YQEXYtULlu0kngp5h0RfVG4QLEh7DwMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQeA106FyjVUuoYH0fPSTVf4Zh6WDAfBgNVHSMEGDAWgBSjg168Efn/ydL8
1c1Xsseuxgp3bjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L280TmV2Qkg1XzhuU19OWE5WN0xIcnNZS2QyNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzkvYTA4ZWEzLWU4MDEtNGFkYS1hZjhlLTc0OTc4Y2IxNGYwOC8x
L0hnTmRPaGNvMVZMcUdCOUh6MGsxWC1HWWVsZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzkv
YTA4ZWEzLWU4MDEtNGFkYS1hZjhlLTc0OTc4Y2IxNGYwOC8xL280TmV2Qkg1Xzhu
U19OWE5WN0xIcnNZS2QyNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnkfDANBgkqhkiG9w0BAQsFAAOC
AQEAofOaDqKBR+emij97h6cvXrj6EuXrXBaOVfyt9jyl4HiCT4B97OgaNevbgm7l
xkVeTG5U6BrJ+UgNbk+RJ0+p3aFTNzfqSpcfm9fh8uUlZALjU5uBxou5QmIbfOWH
XRCg64z+RY6BTOZkBAjJBEvGuy7j/WQm5F+AWKuVT5xRu61m9SEUHeT0+qNj8YSW
SPjopS/p+UVPWTl24EGFCvFbH+BND/ee/jUnoz525V3FFRJ3c0zo+A0FgyW7JbZI
wLNYgpBg4LXhD6A4g2z4O1XzfyugYfXBCJnXYXEV5Ezv8jgdnq6glEUlvDPwYcE/
Tc0JciK3Ugnhw3gCFAwzUu5TwQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:39 2025 by rpki-client