Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/0e19fe-0ad9-48e0-9b7b-452561935031/1/A8jjmK0kbHo3shuzOjuaZPLY0lA.roa
File: A8jjmK0kbHo3shuzOjuaZPLY0lA.roa (raw, json)
Hash identifier: vis28C1mwfjy7KcDtg+2X5RUSRegAsoJjOlr68nOUKw=
Subject key identifier: 03:C8:E3:98:AD:24:6C:7A:37:B2:1B:B3:3A:3B:9A:64:F2:D8:D2:50
Certificate issuer: /CN=d9e1019bbe11b55114874c961716eb238a11cd4e
Certificate serial: 0194221F5A85315DE7C5E250A03BBCB3E8B5
Authority key identifier: D9:E1:01:9B:BE:11:B5:51:14:87:4C:96:17:16:EB:23:8A:11:CD:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2eEBm74RtVEUh0yWFxbrI4oRzU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/0e19fe-0ad9-48e0-9b7b-452561935031/1/A8jjmK0kbHo3shuzOjuaZPLY0lA.roa
Signing time: Wed 01 Jan 2025 13:47:47 +0000
ROA not before: Wed 01 Jan 2025 13:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201133
IP address blocks: 185.148.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:5a:85:31:5d:e7:c5:e2:50:a0:3b:bc:b3:e8:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9e1019bbe11b55114874c961716eb238a11cd4e
Validity
Not Before: Jan 1 13:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03c8e398ad246c7a37b21bb33a3b9a64f2d8d250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:06:10:7e:ae:30:fe:fe:94:79:2c:22:a2:eb:
22:9f:22:bf:3a:4f:26:c8:3e:1b:4a:38:ee:13:2f:
ff:da:8e:b7:c5:d4:6d:3a:7a:6e:86:0d:ea:3c:17:
5a:07:8f:a6:1f:43:77:fa:0b:9c:41:50:dd:53:44:
b1:fc:8b:e4:ec:60:2a:86:1e:f0:da:60:5d:39:97:
88:f4:da:38:c4:89:63:4e:7d:f4:47:e7:d0:17:68:
f5:46:f4:bf:ea:3d:9e:00:0d:6a:00:c1:12:b6:e5:
21:d8:21:1b:90:06:6b:66:17:24:7d:84:93:c9:3b:
3f:7b:8b:8a:b1:fa:72:8d:4b:fc:30:82:18:43:14:
07:62:cf:4f:9b:a4:04:1e:f9:81:9f:b0:ef:f1:d3:
68:93:57:c0:60:4c:94:da:5e:a4:5b:a0:69:db:0c:
ee:93:3a:ed:20:fb:fb:32:23:22:7a:e6:d8:d9:f1:
f8:36:87:a1:12:a3:8a:8c:e0:37:79:38:bf:a8:6b:
51:8f:bc:cd:37:92:62:05:cb:3f:21:67:8f:a8:6d:
b5:de:89:8a:b1:a8:c5:10:dc:18:e6:98:e9:cc:e6:
aa:df:5f:e4:b9:d5:4a:f6:47:f7:54:9e:cc:f2:be:
d5:c3:38:0c:45:00:82:b5:0c:8c:1f:f6:4a:9b:d4:
33:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C8:E3:98:AD:24:6C:7A:37:B2:1B:B3:3A:3B:9A:64:F2:D8:D2:50
X509v3 Authority Key Identifier:
keyid:D9:E1:01:9B:BE:11:B5:51:14:87:4C:96:17:16:EB:23:8A:11:CD:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2eEBm74RtVEUh0yWFxbrI4oRzU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/0e19fe-0ad9-48e0-9b7b-452561935031/1/A8jjmK0kbHo3shuzOjuaZPLY0lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/0e19fe-0ad9-48e0-9b7b-452561935031/1/2eEBm74RtVEUh0yWFxbrI4oRzU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.144.0/24
Signature Algorithm: sha256WithRSAEncryption
97:46:60:97:f7:2e:d6:fa:8d:e4:b6:78:2b:96:2b:44:fe:08:
07:d8:fc:30:fc:9f:7b:13:b3:cf:9d:2c:5f:fc:15:0d:0f:f7:
86:c2:6e:7b:d4:c4:36:79:71:97:7e:ba:6b:32:ad:e9:5c:f9:
7b:18:f1:bc:50:e3:23:ee:b8:a0:5c:92:96:8c:f8:6f:0c:fd:
fa:5b:c8:03:6a:5f:34:f3:3a:df:40:2b:44:fb:7d:3d:74:5f:
e1:cd:ea:8e:2c:4e:bc:62:98:f3:85:42:3a:70:72:0b:f5:e9:
47:64:72:1e:72:2d:3f:01:11:6a:e0:c2:7c:bf:b2:1a:ff:b9:
6d:dc:e2:08:ea:ff:9a:61:63:48:b0:0f:b9:31:3c:26:ad:45:
60:13:88:f2:b8:84:f4:eb:0a:ee:a1:79:fc:1a:d6:8d:af:22:
1d:59:f8:a7:36:cb:5b:74:d8:cc:1a:d6:71:f3:b8:40:eb:8c:
78:a3:a1:0e:a7:b8:04:47:1e:a4:d0:5a:c4:a6:5c:27:c4:68:
6e:03:50:36:6c:52:06:be:7f:2c:9d:1a:82:ed:81:5f:18:53:
d9:8f:d4:5f:8e:20:55:da:32:7a:f3:09:a5:e8:98:ea:a5:89:
2e:e4:4f:8b:31:35:f5:f8:ff:ab:23:a0:a6:1e:77:91:7c:34:
a8:bd:97:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH1qFMV3nxeJQoDu8s+i1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZTEwMTliYmUxMWI1NTExNDg3NGM5NjE3MTZlYjIzOGEx
MWNkNGUwHhcNMjUwMTAxMTM0NzQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwM2M4ZTM5OGFkMjQ2YzdhMzdiMjFiYjMzYTNiOWE2NGYyZDhkMjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwYQfq4w/v6UeSwiousinyK/Ok8m
yD4bSjjuEy//2o63xdRtOnpuhg3qPBdaB4+mH0N3+gucQVDdU0Sx/Ivk7GAqhh7w
2mBdOZeI9No4xIljTn30R+fQF2j1RvS/6j2eAA1qAMEStuUh2CEbkAZrZhckfYST
yTs/e4uKsfpyjUv8MIIYQxQHYs9Pm6QEHvmBn7Dv8dNok1fAYEyU2l6kW6Bp2wzu
kzrtIPv7MiMieubY2fH4NoehEqOKjOA3eTi/qGtRj7zNN5JiBcs/IWePqG213omK
sajFENwY5pjpzOaq31/kudVK9kf3VJ7M8r7VwzgMRQCCtQyMH/ZKm9QzFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAPI45itJGx6N7Ibszo7mmTy2NJQMB8GA1UdIwQY
MBaAFNnhAZu+EbVRFIdMlhcW6yOKEc1OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmVFQm03NFJ0VkVVaDB5V0Z4YnJJNG9SelU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8wZTE5ZmUtMGFkOS00OGUwLTliN2It
NDUyNTYxOTM1MDMxLzEvQThqam1LMGtiSG8zc2h1ek9qdWFaUExZMGxBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8wZTE5ZmUtMGFkOS00OGUwLTliN2ItNDUyNTYxOTM1MDMx
LzEvMmVFQm03NFJ0VkVVaDB5V0Z4YnJJNG9SelU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZSQMA0G
CSqGSIb3DQEBCwUAA4IBAQCXRmCX9y7W+o3ktngrlitE/ggH2Pww/J97E7PPnSxf
/BUND/eGwm571MQ2eXGXfrprMq3pXPl7GPG8UOMj7rigXJKWjPhvDP36W8gDal80
8zrfQCtE+309dF/hzeqOLE68YpjzhUI6cHIL9elHZHIeci0/ARFq4MJ8v7Ia/7lt
3OII6v+aYWNIsA+5MTwmrUVgE4jyuIT06wruoXn8GtaNryIdWfinNstbdNjMGtZx
87hA64x4o6EOp7gERx6k0FrEplwnxGhuA1A2bFIGvn8snRqC7YFfGFPZj9RfjiBV
2jJ68wml6JjqpYku5E+LMTX1+P+rI6CmHneRfDSovZeB
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:00:54 2025 by rpki-client