Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/S3kw7ooUF7ghsZ427ziCeb4GRrI.roa
File: S3kw7ooUF7ghsZ427ziCeb4GRrI.roa (raw, json)
Hash identifier: QdmUp4HLLwpkQ3fbXAVkhlTcDnc/7CeuPjsvKtdUl9M=
Subject key identifier: 4B:79:30:EE:8A:14:17:B8:21:B1:9E:36:EF:38:82:79:BE:06:46:B2
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0185A1078D14514BC2F3DB6213B24CD40360
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/S3kw7ooUF7ghsZ427ziCeb4GRrI.roa
Signing time: Wed 11 Jan 2023 13:31:44 +0000
ROA not before: Wed 11 Jan 2023 13:31:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28726
IP address blocks: 193.181.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a1:07:8d:14:51:4b:c2:f3:db:62:13:b2:4c:d4:03:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 11 13:31:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b7930ee8a1417b821b19e36ef388279be0646b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:66:92:e7:25:45:7c:6c:c5:17:d4:57:11:19:
eb:ac:75:2b:09:05:b7:7a:ec:e6:f2:3b:86:26:29:
97:89:7c:12:48:3f:a3:c2:a4:05:37:81:02:c6:42:
4e:6f:56:a3:bd:16:2a:84:24:da:bf:fc:48:20:71:
73:5c:18:ad:b9:68:41:12:69:9f:5e:82:bb:93:e9:
ac:2f:fd:5b:30:ce:c9:b9:65:5c:e4:58:12:1f:ca:
3e:e5:9e:1a:d8:57:ab:6e:2c:2f:15:53:e1:c4:6a:
65:fd:e6:6b:5b:03:90:2d:d0:19:d4:77:d4:57:4b:
88:a8:75:9e:c9:20:50:96:f3:58:aa:74:f2:2e:aa:
ed:6d:7a:4c:d2:c6:79:b0:45:a9:e3:e4:b9:1b:75:
9f:93:97:16:a6:3d:19:46:38:38:44:cd:1d:26:e4:
85:60:64:9a:fb:cf:8a:84:11:bb:70:2d:56:88:aa:
61:dc:78:52:fb:96:81:44:50:21:f0:bf:cd:21:2c:
29:38:a0:e4:1f:c4:ff:fd:69:04:c7:00:1d:0d:80:
37:7c:b0:e4:cf:f2:23:58:d0:44:d4:e6:11:02:93:
05:9c:75:f5:c9:7f:01:d5:da:33:0c:d4:d7:0f:f4:
99:9a:b6:6f:a6:bf:0a:68:cc:c8:0b:05:b7:6b:b2:
6f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:79:30:EE:8A:14:17:B8:21:B1:9E:36:EF:38:82:79:BE:06:46:B2
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/S3kw7ooUF7ghsZ427ziCeb4GRrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.181.64.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:e5:55:06:ce:67:0d:39:ad:c7:4f:df:1b:22:61:a2:32:b9:
cd:1e:63:29:86:69:9e:ca:8c:a8:b5:b7:6d:31:ac:5d:76:b7:
48:f1:c3:c6:da:87:fe:b7:5c:98:fb:c5:1c:88:24:00:b1:a2:
d4:ad:a5:46:fd:0d:be:92:00:bb:34:ac:2d:b4:b3:56:9e:8e:
70:da:22:c8:5c:7a:7a:d5:f0:9a:b3:e6:ad:4c:d8:36:ee:55:
0a:52:6a:eb:dd:4d:8b:8c:17:2f:53:1f:77:19:38:d0:3b:aa:
77:d9:09:a0:90:aa:d1:99:b9:7e:47:49:bf:ce:84:93:d0:94:
15:85:87:ba:d1:93:88:90:42:c8:52:08:c2:a8:07:46:e7:3d:
00:5b:ed:43:21:d1:24:c7:fd:23:97:1b:05:c5:ee:b9:fe:49:
3c:22:36:37:75:9a:32:e3:3a:8c:40:16:47:78:1c:5b:5f:a5:
2a:52:45:33:bc:22:d8:96:5d:6f:8d:99:c3:de:7b:06:e1:7e:
e4:81:91:93:05:e8:73:0f:90:fa:d6:67:5b:2d:13:62:a7:b8:
54:5a:5e:81:b8:aa:dd:d2:c4:6d:c8:62:8a:90:b6:3b:81:d9:
e4:07:4c:73:49:29:42:aa:a6:cc:1b:79:20:01:ea:9f:ba:77:
68:ea:c3:6e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWhB40UUUvC89tiE7JM1ANgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjMwMTExMTMzMTQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Yjc5MzBlZThhMTQxN2I4MjFiMTllMzZlZjM4ODI3OWJlMDY0NmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmaS5yVFfGzFF9RXERnrrHUrCQW3
euzm8juGJimXiXwSSD+jwqQFN4ECxkJOb1ajvRYqhCTav/xIIHFzXBituWhBEmmf
XoK7k+msL/1bMM7JuWVc5FgSH8o+5Z4a2FerbiwvFVPhxGpl/eZrWwOQLdAZ1HfU
V0uIqHWeySBQlvNYqnTyLqrtbXpM0sZ5sEWp4+S5G3Wfk5cWpj0ZRjg4RM0dJuSF
YGSa+8+KhBG7cC1WiKph3HhS+5aBRFAh8L/NISwpOKDkH8T//WkExwAdDYA3fLDk
z/IjWNBE1OYRApMFnHX1yX8B1dozDNTXD/SZmrZvpr8KaMzICwW3a7JviQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEt5MO6KFBe4IbGeNu84gnm+BkayMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvUzNrdzdvb1VGN2doc1o0Mjd6aUNlYjRHUnJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbVAMA0G
CSqGSIb3DQEBCwUAA4IBAQCd5VUGzmcNOa3HT98bImGiMrnNHmMphmmeyoyotbdt
MaxddrdI8cPG2of+t1yY+8UciCQAsaLUraVG/Q2+kgC7NKwttLNWno5w2iLIXHp6
1fCas+atTNg27lUKUmrr3U2LjBcvUx93GTjQO6p32QmgkKrRmbl+R0m/zoST0JQV
hYe60ZOIkELIUgjCqAdG5z0AW+1DIdEkx/0jlxsFxe65/kk8IjY3dZoy4zqMQBZH
eBxbX6UqUkUzvCLYll1vjZnD3nsG4X7kgZGTBehzD5D61mdbLRNip7hUWl6BuKrd
0sRtyGKKkLY7gdnkB0xzSSlCqqbMG3kgAeqfundo6sNu
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:18 2025 by rpki-client