Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/tC5SBjC7Be-84ptAkA1iQiExyXc.roa
File: tC5SBjC7Be-84ptAkA1iQiExyXc.roa (raw, json)
Hash identifier: 3SSU5x7acOLK7oP+caxvK7xHM/iohNWlv3TGjBUx6iE=
Subject key identifier: B4:2E:52:06:30:BB:05:EF:BC:E2:9B:40:90:0D:62:42:21:31:C9:77
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 019593D2ADE5F5E121D1D5E5EBD1CAD9E322
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/tC5SBjC7Be-84ptAkA1iQiExyXc.roa
Signing time: Fri 14 Mar 2025 08:43:32 +0000
ROA not before: Fri 14 Mar 2025 08:43:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50304
IP address blocks: 78.128.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:93:d2:ad:e5:f5:e1:21:d1:d5:e5:eb:d1:ca:d9:e3:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Mar 14 08:43:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b42e520630bb05efbce29b40900d62422131c977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:25:7c:6b:8a:14:1a:dc:5f:97:22:8c:33:32:
35:75:d9:a4:7b:2a:5c:ff:72:6a:ea:4b:8e:4e:30:
55:a1:b2:d1:11:d9:2a:13:d9:99:c4:8d:21:dc:0c:
74:76:63:26:2c:8a:c0:00:d1:93:3c:9b:22:e1:40:
17:1d:af:03:23:ed:81:4d:c5:2c:50:43:d6:19:d4:
bd:d1:a3:30:1c:c5:25:13:63:e1:27:96:ef:2f:da:
12:cb:35:68:e7:91:94:37:ea:05:65:c3:d2:7e:9d:
71:31:3b:fa:d4:60:8c:8b:e9:18:fb:e4:23:e1:ed:
8c:d2:8f:41:a3:a6:37:a4:36:61:75:c6:20:88:ab:
1e:8d:4d:1f:cb:0f:bc:1b:8c:49:87:df:ee:67:f4:
7b:c1:68:1b:50:70:4b:d4:bc:4e:33:06:4d:d9:ab:
17:ac:86:d7:b9:a1:cd:15:7d:43:47:79:73:59:12:
63:4e:7f:b7:8e:73:18:b0:48:3e:a8:84:cd:99:13:
5d:03:fb:33:1f:a3:49:75:a6:0c:2b:69:f4:69:63:
33:62:fb:80:8e:44:3e:a7:8e:05:a4:2b:c8:fb:0c:
6a:92:29:b0:a7:c9:60:90:b1:64:fe:04:d3:68:35:
02:c3:f8:c1:03:25:06:50:7b:7a:e2:62:95:d0:44:
92:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:2E:52:06:30:BB:05:EF:BC:E2:9B:40:90:0D:62:42:21:31:C9:77
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/tC5SBjC7Be-84ptAkA1iQiExyXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.128.75.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:60:44:9a:a0:0b:be:79:fa:00:b1:a8:79:8a:23:1a:d6:82:
ac:76:6e:45:2f:b7:f3:c1:eb:00:f3:05:b6:44:84:eb:07:73:
a6:f0:57:0c:35:fc:8a:6f:fb:1c:eb:71:6c:1c:18:d3:46:67:
85:66:db:de:8f:6b:f6:6d:68:9e:72:e2:bf:09:92:44:9b:50:
a8:f7:ac:7a:ee:6e:4c:05:ae:76:c4:b4:0c:d9:dd:0e:00:51:
62:2f:8b:d7:9b:53:9f:4f:36:f8:ab:97:fb:d5:4e:1e:99:c7:
74:ae:65:07:9c:de:da:25:ad:d5:86:82:30:df:4a:57:77:c3:
7f:81:e3:d2:8f:70:5e:24:57:a0:6d:6b:02:53:8e:aa:0a:f4:
27:0f:99:83:70:2e:35:f4:05:78:91:94:25:eb:9c:de:57:66:
0a:f3:6a:e4:99:cb:98:24:0c:f8:2d:b3:16:3f:c5:e7:62:6a:
f2:e0:16:de:98:2f:e4:6a:97:85:00:95:b2:fb:f3:78:b0:44:
73:79:ac:b9:6b:45:fe:fc:bc:94:7c:b3:8e:f3:52:c2:53:09:
29:26:02:dd:07:b7:b9:83:84:4f:51:09:00:7e:6c:81:c4:48:
fe:10:ba:57:51:12:42:1b:4f:31:22:23:d7:13:eb:84:89:8f:
f1:31:ce:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZWT0q3l9eEh0dXl69HK2eMiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1
Y2IyYWEwHhcNMjUwMzE0MDg0MzMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDJlNTIwNjMwYmIwNWVmYmNlMjliNDA5MDBkNjI0MjIxMzFjOTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCV8a4oUGtxflyKMMzI1ddmkeypc
/3Jq6kuOTjBVobLREdkqE9mZxI0h3Ax0dmMmLIrAANGTPJsi4UAXHa8DI+2BTcUs
UEPWGdS90aMwHMUlE2PhJ5bvL9oSyzVo55GUN+oFZcPSfp1xMTv61GCMi+kY++Qj
4e2M0o9Bo6Y3pDZhdcYgiKsejU0fyw+8G4xJh9/uZ/R7wWgbUHBL1LxOMwZN2asX
rIbXuaHNFX1DR3lzWRJjTn+3jnMYsEg+qITNmRNdA/szH6NJdaYMK2n0aWMzYvuA
jkQ+p44FpCvI+wxqkimwp8lgkLFk/gTTaDUCw/jBAyUGUHt64mKV0ESSjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLQuUgYwuwXvvOKbQJANYkIhMcl3MB8GA1UdIwQY
MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt
ZGFjYjVmMzU2ZWEzLzEvdEM1U0JqQzdCZS04NHB0QWtBMWlRaUV4eVhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz
LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAToBLMA0G
CSqGSIb3DQEBCwUAA4IBAQCtYESaoAu+efoAsah5iiMa1oKsdm5FL7fzwesA8wW2
RITrB3Om8FcMNfyKb/sc63FsHBjTRmeFZtvej2v2bWiecuK/CZJEm1Co96x67m5M
Ba52xLQM2d0OAFFiL4vXm1OfTzb4q5f71U4emcd0rmUHnN7aJa3VhoIw30pXd8N/
gePSj3BeJFegbWsCU46qCvQnD5mDcC419AV4kZQl65zeV2YK82rkmcuYJAz4LbMW
P8XnYmry4BbemC/kapeFAJWy+/N4sERzeay5a0X+/LyUfLOO81LCUwkpJgLdB7e5
g4RPUQkAfmyBxEj+ELpXURJCG08xIiPXE+uEiY/xMc4s
-----END CERTIFICATE-----
Generated at Sun Apr 6 18:16:24 2025 by rpki-client