Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/JSeCG85aOy7pzV54BoHFanFKHdI.roa
File: JSeCG85aOy7pzV54BoHFanFKHdI.roa (raw, json)
Hash identifier: hwsyhI0TgE+h8CQ3KJtqtE1FodhU6z6pN6txsZ/6bVE=
Subject key identifier: 25:27:82:1B:CE:5A:3B:2E:E9:CD:5E:78:06:81:C5:6A:71:4A:1D:D2
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0194274879D5CB9AF80DEAF4DC0123D3ACAE
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/JSeCG85aOy7pzV54BoHFanFKHdI.roa
Signing time: Thu 02 Jan 2025 13:50:48 +0000
ROA not before: Thu 02 Jan 2025 13:50:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208373
IP address blocks: 194.71.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:79:d5:cb:9a:f8:0d:ea:f4:dc:01:23:d3:ac:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 13:50:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2527821bce5a3b2ee9cd5e780681c56a714a1dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b4:7d:80:be:52:e5:f6:81:db:d6:2b:56:d6:
5c:9f:85:fa:5e:2f:83:f9:23:df:a5:a8:61:af:e4:
a7:ce:47:44:5e:43:d5:07:71:b5:62:ea:ba:ba:ed:
98:c0:5c:42:cf:8b:a0:a6:11:31:92:a2:ae:39:a9:
b5:b0:f9:45:80:88:a5:83:76:4a:5d:0e:91:f7:96:
b5:18:0a:1a:84:91:e4:6e:cc:37:76:e2:1c:46:5d:
98:cd:70:c0:fc:7f:b5:a0:61:fa:71:09:77:2d:96:
46:b3:a2:5b:ab:be:65:8c:1d:a8:eb:81:74:bc:10:
86:7a:a9:66:66:93:c3:51:c7:42:af:57:02:a8:2b:
0e:f7:05:71:25:1a:df:54:ea:8d:11:74:88:e0:e8:
1a:16:2d:f0:9e:58:66:90:b1:1c:7e:d1:85:54:5d:
53:26:97:13:cd:35:2c:01:eb:cf:04:31:4c:53:ca:
27:ef:bb:cd:cc:25:ce:36:a1:07:c4:43:fa:8c:1a:
a6:a6:d4:65:29:c5:c3:0b:c1:95:b9:9e:61:36:6d:
76:6a:b4:37:56:dd:83:6d:b1:72:c9:2a:f9:8c:ed:
d1:f6:4b:db:fa:f9:3f:da:ae:ae:ce:66:d4:df:65:
22:a5:bb:8e:28:36:ee:bd:71:62:e7:e6:eb:98:a6:
79:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:27:82:1B:CE:5A:3B:2E:E9:CD:5E:78:06:81:C5:6A:71:4A:1D:D2
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/JSeCG85aOy7pzV54BoHFanFKHdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.71.197.0/24
Signature Algorithm: sha256WithRSAEncryption
39:48:c6:23:7a:31:25:a9:73:ab:5b:fa:b9:fc:80:4a:ac:72:
69:df:05:1c:91:fb:ee:b6:09:fd:24:dd:59:fc:63:df:ca:7f:
be:1b:d9:58:ef:81:a8:50:7e:74:64:81:b8:aa:a4:80:6d:52:
23:0f:0c:67:4c:76:50:2e:b0:71:6c:85:30:d7:fb:38:f2:23:
70:e6:bb:78:8e:c6:8f:44:95:a9:e2:e7:e0:f5:e0:26:66:71:
23:9e:83:3e:6e:bb:a3:82:16:f1:d3:b5:d8:4d:dc:52:3f:d3:
ef:c5:e4:6d:ae:72:1c:18:95:d9:a6:92:cf:86:ef:aa:2f:02:
57:81:db:fd:9b:33:4c:66:cf:db:42:b8:3d:76:17:00:71:03:
cb:48:5d:8f:e9:c7:41:9b:99:a0:f0:56:01:70:b1:21:ed:77:
62:90:52:3e:c8:d2:36:8b:b9:21:60:10:20:f9:a2:7a:bf:f9:
88:63:f4:5d:41:49:91:5c:88:51:58:e4:58:1d:a0:89:0b:55:
bc:37:5f:f9:98:6c:83:13:3c:a2:57:6e:2c:66:00:49:0e:5d:
5e:43:87:37:dd:ad:6c:14:f6:f6:ac:59:1d:56:ae:e2:8b:8e:
78:4e:cd:25:4c:92:11:cd:c1:1a:85:2c:71:ff:11:5c:06:2a:
3a:df:b6:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSHnVy5r4Der03AEj06yuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjUwMTAyMTM1MDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTI3ODIxYmNlNWEzYjJlZTljZDVlNzgwNjgxYzU2YTcxNGExZGQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6bR9gL5S5faB29YrVtZcn4X6Xi+D
+SPfpahhr+SnzkdEXkPVB3G1Yuq6uu2YwFxCz4ugphExkqKuOam1sPlFgIilg3ZK
XQ6R95a1GAoahJHkbsw3duIcRl2YzXDA/H+1oGH6cQl3LZZGs6Jbq75ljB2o64F0
vBCGeqlmZpPDUcdCr1cCqCsO9wVxJRrfVOqNEXSI4OgaFi3wnlhmkLEcftGFVF1T
JpcTzTUsAevPBDFMU8on77vNzCXONqEHxEP6jBqmptRlKcXDC8GVuZ5hNm12arQ3
Vt2DbbFyySr5jO3R9kvb+vk/2q6uzmbU32UipbuOKDbuvXFi5+brmKZ59wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCUnghvOWjsu6c1eeAaBxWpxSh3SMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvSlNlQ0c4NWFPeTdwelY1NEJvSEZhbkZLSGRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwkfFMA0G
CSqGSIb3DQEBCwUAA4IBAQA5SMYjejElqXOrW/q5/IBKrHJp3wUckfvutgn9JN1Z
/GPfyn++G9lY74GoUH50ZIG4qqSAbVIjDwxnTHZQLrBxbIUw1/s48iNw5rt4jsaP
RJWp4ufg9eAmZnEjnoM+brujghbx07XYTdxSP9PvxeRtrnIcGJXZppLPhu+qLwJX
gdv9mzNMZs/bQrg9dhcAcQPLSF2P6cdBm5mg8FYBcLEh7XdikFI+yNI2i7khYBAg
+aJ6v/mIY/RdQUmRXIhRWORYHaCJC1W8N1/5mGyDEzyiV24sZgBJDl1eQ4c33a1s
FPb2rFkdVq7ii454Ts0lTJIRzcEahSxx/xFcBio637by
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:35 2025 by rpki-client