Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/c176a7-0a8d-457b-94a7-ffba8dc6d33c/1/sigfd6lad2KjMcTIgBf7sNrBBHE.roa
File: sigfd6lad2KjMcTIgBf7sNrBBHE.roa (raw, json)
Hash identifier: uSqf9YFsgeXkundRoEiYY+t99VYx5P8HWvPXJCUoHlY=
Subject key identifier: B2:28:1F:77:A9:5A:77:62:A3:31:C4:C8:80:17:FB:B0:DA:C1:04:71
Certificate issuer: /CN=c91bbcc5a4e5cf9a2d28e728dfbc130f688bb8dd
Certificate serial: 09CF3F6D
Authority key identifier: C9:1B:BC:C5:A4:E5:CF:9A:2D:28:E7:28:DF:BC:13:0F:68:8B:B8:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRu8xaTlz5otKOco37wTD2iLuN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/c176a7-0a8d-457b-94a7-ffba8dc6d33c/1/sigfd6lad2KjMcTIgBf7sNrBBHE.roa
Signing time: Sat 01 Jan 2022 09:55:52 +0000
ROA not before: Sat 01 Jan 2022 09:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20766
IP address blocks: 193.23.30.0/24 maxlen: 24
2a04:9ac2::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164577133 (0x9cf3f6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91bbcc5a4e5cf9a2d28e728dfbc130f688bb8dd
Validity
Not Before: Jan 1 09:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2281f77a95a7762a331c4c88017fbb0dac10471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0b:7c:62:40:32:40:86:d1:b7:84:e7:79:74:
00:93:8c:3a:ca:e1:89:90:a6:8a:48:e5:18:a1:02:
51:82:6d:5f:b4:a3:4c:7c:db:b2:9a:00:88:71:6b:
90:bb:28:93:70:b8:f5:9b:b1:37:ff:d3:de:cc:48:
88:a6:10:33:07:17:88:46:46:6e:7f:69:3f:ae:78:
e8:49:69:6d:78:3a:d3:64:ce:c7:66:8e:0c:bd:00:
8b:6b:6c:45:d6:10:27:8a:4d:eb:ef:64:53:1e:24:
76:ab:3f:48:cc:f8:83:77:bf:0f:1b:3b:b7:d4:2a:
82:3b:95:68:ab:ed:df:b2:ec:1b:14:cb:19:ea:94:
61:df:44:91:46:e2:96:e4:72:f2:85:b5:d5:6f:1d:
84:ee:d1:32:9d:91:ea:64:f0:e2:d9:22:15:0f:5c:
12:86:ac:3c:7f:c0:56:2d:18:67:1d:4d:2a:b3:77:
c7:b5:cc:56:8a:d9:fb:d8:6a:98:14:6d:05:c1:26:
9d:7b:bb:b1:d1:9e:45:ac:99:0e:7a:6f:92:cf:88:
77:0a:5d:67:c7:37:c4:ec:55:14:3e:cd:4e:71:d9:
eb:8c:4f:2f:76:dc:ba:93:98:f7:58:de:85:77:f5:
47:0f:8f:40:bd:33:d2:8f:58:52:e6:ab:67:bd:f0:
0f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:28:1F:77:A9:5A:77:62:A3:31:C4:C8:80:17:FB:B0:DA:C1:04:71
X509v3 Authority Key Identifier:
keyid:C9:1B:BC:C5:A4:E5:CF:9A:2D:28:E7:28:DF:BC:13:0F:68:8B:B8:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRu8xaTlz5otKOco37wTD2iLuN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c176a7-0a8d-457b-94a7-ffba8dc6d33c/1/sigfd6lad2KjMcTIgBf7sNrBBHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c176a7-0a8d-457b-94a7-ffba8dc6d33c/1/yRu8xaTlz5otKOco37wTD2iLuN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.30.0/24
IPv6:
2a04:9ac2::/32
Signature Algorithm: sha256WithRSAEncryption
62:66:28:7d:ce:2b:5f:17:20:db:87:73:f9:c7:2c:95:26:e9:
30:62:01:16:6c:fe:38:30:32:87:70:6a:0d:52:f2:a0:3b:b1:
df:74:02:d2:67:b2:b8:de:2a:e9:71:11:35:5b:44:e7:88:53:
6e:99:9b:3d:cf:af:26:de:92:2c:76:a7:5b:71:c5:48:ce:73:
04:55:d2:13:7c:09:0d:50:6a:db:cd:ca:ee:ff:33:7d:1f:72:
56:88:fa:3b:9d:61:5a:b8:d8:fb:f3:61:56:4e:6c:05:bc:f3:
5e:9a:ee:e3:85:1a:0d:4e:a0:e7:22:26:9e:d4:01:f9:0e:81:
ee:bf:bc:e0:d6:18:97:05:57:62:89:9d:0c:17:ca:16:c5:f6:
aa:66:94:bd:8f:c0:09:52:15:d9:0d:83:07:a2:bf:50:f0:2c:
f9:c1:f2:d8:ec:38:8c:ee:a3:fb:d1:a6:a3:78:d4:30:3f:05:
e4:96:25:6c:c3:ad:ee:6f:eb:0b:da:2c:54:9e:40:2e:7b:73:
15:e0:b7:6d:fa:03:26:36:e4:a7:31:48:fb:f5:56:fc:22:b5:
45:23:b4:97:14:6b:c3:9c:05:03:d6:58:14:86:b6:c0:2f:24:
b8:72:61:31:a6:5f:b2:b7:2e:85:01:47:b4:4a:61:9a:88:10:
9a:f6:12:07
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECc8/bTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OTFiYmNjNWE0ZTVjZjlhMmQyOGU3MjhkZmJjMTMwZjY4OGJiOGRkMB4XDTIyMDEw
MTA5NTU1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjIyODFmNzdhOTVh
Nzc2MmEzMzFjNGM4ODAxN2ZiYjBkYWMxMDQ3MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKgLfGJAMkCG0beE53l0AJOMOsrhiZCmikjlGKECUYJtX7Sj
THzbspoAiHFrkLsok3C49ZuxN//T3sxIiKYQMwcXiEZGbn9pP6546ElpbXg602TO
x2aODL0Ai2tsRdYQJ4pN6+9kUx4kdqs/SMz4g3e/Dxs7t9QqgjuVaKvt37LsGxTL
GeqUYd9EkUbiluRy8oW11W8dhO7RMp2R6mTw4tkiFQ9cEoasPH/AVi0YZx1NKrN3
x7XMVorZ+9hqmBRtBcEmnXu7sdGeRayZDnpvks+IdwpdZ8c3xOxVFD7NTnHZ64xP
L3bcupOY91jehXf1Rw+PQL0z0o9YUuarZ73wDwsCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSyKB93qVp3YqMxxMiAF/uw2sEEcTAfBgNVHSMEGDAWgBTJG7zFpOXPmi0o
5yjfvBMPaIu43TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lSdTh4YVRsejVvdEtPY28zN3dURDJpTHVOMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvYzE3NmE3LTBhOGQtNDU3Yi05NGE3LWZmYmE4ZGM2ZDMzYy8x
L3NpZ2ZkNmxhZDJLak1jVElnQmY3c05yQkJIRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
YzE3NmE3LTBhOGQtNDU3Yi05NGE3LWZmYmE4ZGM2ZDMzYy8xL3lSdTh4YVRsejVv
dEtPY28zN3dURDJpTHVOMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMEXHjANBAIAAjAHAwUAKgSawjAN
BgkqhkiG9w0BAQsFAAOCAQEAYmYofc4rXxcg24dz+ccslSbpMGIBFmz+ODAyh3Bq
DVLyoDux33QC0meyuN4q6XERNVtE54hTbpmbPc+vJt6SLHanW3HFSM5zBFXSE3wJ
DVBq283K7v8zfR9yVoj6O51hWrjY+/NhVk5sBbzzXpru44UaDU6g5yImntQB+Q6B
7r+84NYYlwVXYomdDBfKFsX2qmaUvY/ACVIV2Q2DB6K/UPAs+cHy2Ow4jO6j+9Gm
o3jUMD8F5JYlbMOt7m/rC9osVJ5ALntzFeC3bfoDJjbkpzFI+/VW/CK1RSO0lxRr
w5wFA9ZYFIa2wC8kuHJhMaZfsrcuhQFHtEphmogQmvYSBw==
-----END CERTIFICATE-----
Generated at Fri Feb 21 12:50:04 2025 by rpki-client