Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/nkYAwBNqKxLmX5WUjJoxD2o2Xcw.roa
File: nkYAwBNqKxLmX5WUjJoxD2o2Xcw.roa (raw, json)
Hash identifier: JA2gYvpCnD5aaz2NgKKhZkI5HtsAKP18iG+kLLkSlBY=
Subject key identifier: 9E:46:00:C0:13:6A:2B:12:E6:5F:95:94:8C:9A:31:0F:6A:36:5D:CC
Certificate issuer: /CN=b12caece23c6adf6917039293e25baaa906ce556
Certificate serial: 16D0E859
Authority key identifier: B1:2C:AE:CE:23:C6:AD:F6:91:70:39:29:3E:25:BA:AA:90:6C:E5:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sSyuziPGrfaRcDkpPiW6qpBs5VY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/nkYAwBNqKxLmX5WUjJoxD2o2Xcw.roa
Signing time: Sat 01 Jan 2022 01:52:54 +0000
ROA not before: Sat 01 Jan 2022 01:52:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196801
IP address blocks: 95.87.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382789721 (0x16d0e859)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b12caece23c6adf6917039293e25baaa906ce556
Validity
Not Before: Jan 1 01:52:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e4600c0136a2b12e65f95948c9a310f6a365dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d7:89:ea:4a:c2:63:61:0b:a8:8b:34:bb:15:
a2:df:38:97:07:49:63:fa:f2:a9:eb:62:1f:d6:29:
b2:cb:11:0d:d1:70:1b:00:21:d5:1b:79:0e:00:cd:
31:a1:20:a2:37:f6:e6:c0:39:0f:af:ce:65:21:fa:
bd:17:bb:70:a3:d2:46:03:60:d9:d0:01:33:e7:5e:
b9:53:45:3a:bf:70:02:31:ad:ce:b2:8d:e4:dd:ef:
0e:55:8c:c5:c4:04:00:d0:93:27:cb:4f:36:ef:ce:
eb:b7:34:a1:e9:c8:66:3c:bc:40:b7:b2:e7:95:9a:
ef:62:a6:75:ca:35:1b:89:35:ca:bd:8e:88:c9:ba:
41:b3:d0:c8:15:8f:07:93:7c:9b:8b:f4:53:2d:1b:
95:ec:12:33:33:f8:24:ca:de:c6:0d:08:54:c9:c6:
fd:23:23:04:af:bc:6b:2e:72:ec:4b:71:9e:2e:f6:
46:d7:84:84:06:d2:0d:21:a5:15:02:1d:6c:70:db:
7a:06:1f:1a:0a:0f:ee:c6:5a:4c:be:b4:f7:1a:ec:
65:4e:2c:1d:f1:36:30:21:2c:0f:04:95:7f:08:78:
33:2e:6e:bb:bb:53:cc:05:e8:8e:8e:ab:52:26:74:
a0:ee:99:c0:2c:45:ec:10:3a:e4:06:72:53:60:2f:
24:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:46:00:C0:13:6A:2B:12:E6:5F:95:94:8C:9A:31:0F:6A:36:5D:CC
X509v3 Authority Key Identifier:
keyid:B1:2C:AE:CE:23:C6:AD:F6:91:70:39:29:3E:25:BA:AA:90:6C:E5:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sSyuziPGrfaRcDkpPiW6qpBs5VY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/nkYAwBNqKxLmX5WUjJoxD2o2Xcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/sSyuziPGrfaRcDkpPiW6qpBs5VY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.87.251.0/24
Signature Algorithm: sha256WithRSAEncryption
88:a5:d5:04:b1:6c:94:8c:9d:1c:22:2c:7e:96:5d:51:a4:7c:
b9:dc:96:7c:79:6a:9e:c1:f4:ce:71:7d:89:af:e2:b5:91:e0:
35:11:fd:d2:21:55:83:eb:7c:80:2f:3d:98:da:b5:c4:73:4b:
11:bb:95:8a:0c:53:19:a4:84:27:70:c0:9b:a9:e6:f2:b9:2f:
fe:fb:47:52:02:7d:8c:c5:e4:5e:5a:51:6b:4d:b2:07:94:16:
98:a3:54:0d:c8:a5:6c:6a:43:9c:50:a7:f3:2e:a6:8c:41:c2:
df:43:35:df:0f:0f:da:b5:b4:ab:db:9b:f4:de:3f:58:d9:f2:
c2:b5:4b:67:36:5c:8f:7e:f2:25:54:7e:c8:ff:c9:71:48:63:
15:29:3f:d2:d0:4a:fd:8b:a1:31:22:95:b2:71:a9:05:ba:c0:
37:62:3f:22:26:ac:03:7f:df:2e:d4:6e:af:22:32:59:d1:46:
61:3d:f9:7a:4a:a7:8a:08:cc:e5:93:26:0b:d2:1e:4f:34:44:
52:58:b5:1a:c6:1f:39:76:e8:aa:7c:d0:11:6b:16:7e:d0:33:
ef:6a:f9:e8:f2:38:a2:37:15:3f:cd:d9:91:65:18:03:f3:16:
58:80:34:4e:b5:c3:ad:0f:ed:7a:ef:a3:20:dc:a1:78:b7:8f:
6b:38:6b:93
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFtDoWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTJjYWVjZTIzYzZhZGY2OTE3MDM5MjkzZTI1YmFhYTkwNmNlNTU2MB4XDTIyMDEw
MTAxNTI1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWU0NjAwYzAxMzZh
MmIxMmU2NWY5NTk0OGM5YTMxMGY2YTM2NWRjYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMLXiepKwmNhC6iLNLsVot84lwdJY/ryqetiH9YpsssRDdFw
GwAh1Rt5DgDNMaEgojf25sA5D6/OZSH6vRe7cKPSRgNg2dABM+deuVNFOr9wAjGt
zrKN5N3vDlWMxcQEANCTJ8tPNu/O67c0oenIZjy8QLey55Wa72Kmdco1G4k1yr2O
iMm6QbPQyBWPB5N8m4v0Uy0blewSMzP4JMrexg0IVMnG/SMjBK+8ay5y7Etxni72
RteEhAbSDSGlFQIdbHDbegYfGgoP7sZaTL609xrsZU4sHfE2MCEsDwSVfwh4My5u
u7tTzAXojo6rUiZ0oO6ZwCxF7BA65AZyU2AvJCcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSeRgDAE2orEuZflZSMmjEPajZdzDAfBgNVHSMEGDAWgBSxLK7OI8at9pFw
OSk+JbqqkGzlVjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NTeXV6aVBHcmZhUmNEa3BQaVc2cXBCczVWWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDcvMjhjZDQ4LTZhN2MtNGQwNS1iNGI5LTg3YWE1YTJkZDEyMi8x
L25rWUF3Qk5xS3hMbVg1V1VqSm94RDJvMlhjdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcv
MjhjZDQ4LTZhN2MtNGQwNS1iNGI5LTg3YWE1YTJkZDEyMi8xL3NTeXV6aVBHcmZh
UmNEa3BQaVc2cXBCczVWWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF9X+zANBgkqhkiG9w0BAQsFAAOC
AQEAiKXVBLFslIydHCIsfpZdUaR8udyWfHlqnsH0znF9ia/itZHgNRH90iFVg+t8
gC89mNq1xHNLEbuVigxTGaSEJ3DAm6nm8rkv/vtHUgJ9jMXkXlpRa02yB5QWmKNU
DcilbGpDnFCn8y6mjEHC30M13w8P2rW0q9ub9N4/WNnywrVLZzZcj37yJVR+yP/J
cUhjFSk/0tBK/YuhMSKVsnGpBbrAN2I/IiasA3/fLtRuryIyWdFGYT35ekqnigjM
5ZMmC9IeTzREUli1GsYfOXboqnzQEWsWftAz72r56PI4ojcVP83ZkWUYA/MWWIA0
TrXDrQ/teu+jINyheLePazhrkw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:33 2025 by rpki-client