Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/TlrlolHFzIrFFjHBVALYOPX3qJA.roa
File: TlrlolHFzIrFFjHBVALYOPX3qJA.roa (raw, json)
Hash identifier: tIDw8TB5Hz1UzBt4wufp07wkzzH5cb/d41WKPUwlgPA=
Subject key identifier: 4E:5A:E5:A2:51:C5:CC:8A:C5:16:31:C1:54:02:D8:38:F5:F7:A8:90
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0195280CCEE48F73AA3B7C03F224AEF63AE0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/TlrlolHFzIrFFjHBVALYOPX3qJA.roa
Signing time: Fri 21 Feb 2025 10:28:02 +0000
ROA not before: Fri 21 Feb 2025 10:28:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215703
IP address blocks: 185.194.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:28:0c:ce:e4:8f:73:aa:3b:7c:03:f2:24:ae:f6:3a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 21 10:28:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e5ae5a251c5cc8ac51631c15402d838f5f7a890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:63:e9:ea:0a:06:d1:f9:f6:8a:9e:7d:3c:dc:
c6:7f:86:2d:b2:45:b2:fe:43:05:7c:10:2f:7f:1f:
63:98:37:bc:1e:15:7c:00:c9:71:5c:9a:7d:1f:0b:
eb:45:fd:bd:36:9d:38:ce:fe:6c:db:90:d2:35:d4:
30:37:9b:f5:46:dd:cf:30:41:17:d6:09:b8:4c:fd:
31:37:ec:39:30:25:a0:e7:e7:1d:84:67:98:ed:4b:
2e:4d:77:55:7c:61:7f:b0:e6:32:d8:4f:53:b2:43:
0f:6a:e7:33:f2:55:ba:8a:6c:ff:32:94:e8:08:a5:
03:78:62:1f:06:39:81:17:3c:37:3b:50:ec:d3:9a:
b9:17:b2:02:cd:8c:33:fe:7b:20:b8:0e:32:4b:34:
9c:37:88:d7:ab:a8:82:ae:28:a7:45:a5:d6:1b:da:
66:2c:d4:85:28:ae:c9:44:b3:50:44:d0:98:4b:2d:
ef:54:09:d3:66:b6:83:24:23:0d:50:08:4f:e9:c6:
98:d9:28:56:51:a1:f5:94:cc:3d:af:d3:1c:7b:ec:
06:1c:65:04:4b:18:10:97:a1:34:82:05:09:d2:65:
95:59:f5:dc:62:0f:21:5f:d2:03:dd:8c:83:1d:a7:
96:80:0e:9f:24:f1:0a:cf:46:e2:f3:9a:0e:a7:27:
84:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5A:E5:A2:51:C5:CC:8A:C5:16:31:C1:54:02:D8:38:F5:F7:A8:90
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/TlrlolHFzIrFFjHBVALYOPX3qJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.177.0/24
Signature Algorithm: sha256WithRSAEncryption
94:73:d6:d8:a8:aa:00:aa:a5:6b:a5:7a:ea:3f:44:c6:84:04:
a6:3c:13:99:d9:37:2a:8e:b9:ba:b0:48:d9:a7:60:e1:49:4f:
57:6a:89:31:a9:8d:5d:f6:5e:4b:9f:32:64:10:89:de:31:d7:
e6:3a:2a:2d:eb:00:f8:79:a2:61:b4:48:b2:24:e7:78:c6:27:
f2:61:07:45:17:bb:e9:af:f9:07:c7:f9:27:dd:07:26:47:69:
db:61:32:6e:d5:96:1d:24:d5:12:cb:59:f8:16:89:31:67:34:
88:ee:37:bf:bd:24:cf:24:f9:a0:a2:f5:0f:ee:c6:19:16:03:
65:72:76:71:6c:e4:22:71:88:2f:58:6c:d7:fc:63:6a:77:bf:
ee:1f:e1:37:e2:7f:27:e1:37:c9:5b:7c:7d:0a:a9:b4:75:6b:
69:9f:37:19:49:50:01:37:95:f0:bf:bc:c1:df:cf:7e:a4:8a:
ad:27:0a:3e:6d:9b:d7:64:93:72:bc:fa:c1:e7:3e:33:74:73:
c7:ec:03:56:70:ba:71:fc:f0:9d:64:9b:43:82:40:93:78:11:
13:34:ce:a7:3e:3d:46:a6:e8:88:5b:e8:f7:d2:7c:cc:48:1b:
67:c0:e1:bb:ea:f4:85:6c:8b:cf:45:57:e5:9b:a4:0f:ee:b0:
5b:21:99:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUoDM7kj3OqO3wD8iSu9jrgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjUwMjIxMTAyODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTVhZTVhMjUxYzVjYzhhYzUxNjMxYzE1NDAyZDgzOGY1ZjdhODkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2Pp6goG0fn2ip59PNzGf4YtskWy
/kMFfBAvfx9jmDe8HhV8AMlxXJp9HwvrRf29Np04zv5s25DSNdQwN5v1Rt3PMEEX
1gm4TP0xN+w5MCWg5+cdhGeY7UsuTXdVfGF/sOYy2E9TskMPaucz8lW6imz/MpTo
CKUDeGIfBjmBFzw3O1Ds05q5F7ICzYwz/nsguA4ySzScN4jXq6iCriinRaXWG9pm
LNSFKK7JRLNQRNCYSy3vVAnTZraDJCMNUAhP6caY2ShWUaH1lMw9r9Mce+wGHGUE
SxgQl6E0ggUJ0mWVWfXcYg8hX9ID3YyDHaeWgA6fJPEKz0bi85oOpyeEDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE5a5aJRxcyKxRYxwVQC2Dj196iQMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvVGxybG9sSEZ6SXJGRmpIQlZBTFlPUFgzcUpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucKxMA0G
CSqGSIb3DQEBCwUAA4IBAQCUc9bYqKoAqqVrpXrqP0TGhASmPBOZ2Tcqjrm6sEjZ
p2DhSU9XaokxqY1d9l5LnzJkEIneMdfmOiot6wD4eaJhtEiyJOd4xifyYQdFF7vp
r/kHx/kn3QcmR2nbYTJu1ZYdJNUSy1n4FokxZzSI7je/vSTPJPmgovUP7sYZFgNl
cnZxbOQicYgvWGzX/GNqd7/uH+E34n8n4TfJW3x9Cqm0dWtpnzcZSVABN5Xwv7zB
389+pIqtJwo+bZvXZJNyvPrB5z4zdHPH7ANWcLpx/PCdZJtDgkCTeBETNM6nPj1G
puiIW+j30nzMSBtnwOG76vSFbIvPRVflm6QP7rBbIZmk
-----END CERTIFICATE-----
Generated at Sat Apr 12 09:29:11 2025 by rpki-client