Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ZpA4HpaJPnkTDU5dKqa3s5fTlVg.roa
File: ZpA4HpaJPnkTDU5dKqa3s5fTlVg.roa (raw, json)
Hash identifier: KuTtG6pzDCyD19r9GgvrNx6LSC4Ulrwx/1ayR5rvcKo=
Subject key identifier: 66:90:38:1E:96:89:3E:79:13:0D:4E:5D:2A:A6:B7:B3:97:D3:95:58
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 019427484740F45F2D3D1F929319C647ED53
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ZpA4HpaJPnkTDU5dKqa3s5fTlVg.roa
Signing time: Thu 02 Jan 2025 13:50:35 +0000
ROA not before: Thu 02 Jan 2025 13:50:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28099
IP address blocks: 193.235.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:47:40:f4:5f:2d:3d:1f:92:93:19:c6:47:ed:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 13:50:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6690381e96893e79130d4e5d2aa6b7b397d39558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:04:9e:44:f0:c3:1c:e8:95:13:62:25:44:b2:
de:45:2a:3c:40:31:96:f7:73:6f:62:78:49:a7:a7:
c7:8e:a1:95:70:79:fc:5b:e3:01:bf:14:90:cd:77:
1c:bf:35:fb:f6:d0:0b:c0:ef:e1:da:af:aa:ec:77:
3e:47:9a:00:83:b3:65:58:39:e8:ca:e9:11:d1:8a:
66:21:50:00:73:a2:42:5f:df:cc:54:f4:7a:3c:50:
51:18:21:02:55:ae:af:91:84:53:21:c5:04:84:4a:
16:1f:2f:51:af:2e:6b:c8:9a:d5:e3:e6:96:12:9f:
cc:3d:b3:d3:c2:25:72:2a:97:15:f3:ba:d5:6c:db:
21:80:dc:40:89:6a:57:2f:fa:85:21:e2:a3:f0:61:
c7:73:68:6a:cc:87:08:10:7e:dd:2e:5c:1f:99:00:
1a:58:1d:60:90:98:9e:83:b3:02:0a:af:3d:f5:42:
05:cf:d1:cf:62:fd:5f:ae:03:b5:40:3e:c5:fb:d7:
49:38:00:49:a8:8b:50:0b:ee:06:8d:49:42:6d:9f:
7d:0a:1e:eb:e8:94:4e:28:87:0b:9b:ba:52:48:2b:
0a:6f:d9:12:9b:e4:6a:fb:6b:b0:df:85:4d:1c:f9:
dc:2a:ed:c0:71:6d:6e:86:7c:b2:39:eb:36:6e:92:
ef:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:90:38:1E:96:89:3E:79:13:0D:4E:5D:2A:A6:B7:B3:97:D3:95:58
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ZpA4HpaJPnkTDU5dKqa3s5fTlVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.235.146.0/24
Signature Algorithm: sha256WithRSAEncryption
87:ea:30:59:b5:af:5f:31:3b:c4:ea:1e:a0:37:1b:40:d7:f8:
c4:f4:f0:94:4c:45:f8:8c:71:5b:3c:e2:d9:dd:97:2b:75:b9:
86:c5:a4:53:e8:84:eb:da:e9:90:74:ee:cd:19:ad:f6:86:f6:
af:5d:8c:dc:5f:61:f6:40:2e:21:02:1e:cd:eb:3f:a8:28:7f:
cd:92:fc:46:8d:22:37:e2:fa:8f:cb:e5:7e:19:fa:68:8f:1c:
b4:c0:9b:f5:fc:49:18:e0:3d:14:b7:db:4d:c2:0b:70:5d:95:
4d:a0:05:0e:e7:4e:83:ae:99:22:26:1c:1a:e3:81:ca:df:75:
4d:b3:9e:b7:8c:c6:67:33:37:ab:4d:f6:f5:17:06:a2:38:3d:
1f:7f:99:c5:d4:1b:f4:7b:3c:fe:99:52:d9:20:26:06:7a:92:
0d:69:f0:3a:80:f4:db:b1:f9:f5:06:a2:0b:55:81:46:24:0d:
ab:05:5b:47:28:0d:b8:60:e1:fc:fd:a7:5d:cf:e5:41:7a:d1:
9b:e3:c9:5f:7c:46:3a:55:ac:12:3f:32:b9:58:34:7a:18:75:
6b:29:1a:bf:65:db:91:fd:cd:8b:8a:f8:8a:93:03:7c:81:7b:
0b:ea:d2:a2:1f:e0:b7:7a:bb:d3:9d:6b:f3:e1:0a:88:8e:d7:
b5:3a:f8:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSEdA9F8tPR+SkxnGR+1TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjUwMTAyMTM1MDM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjkwMzgxZTk2ODkzZTc5MTMwZDRlNWQyYWE2YjdiMzk3ZDM5NTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgSeRPDDHOiVE2IlRLLeRSo8QDGW
93NvYnhJp6fHjqGVcHn8W+MBvxSQzXccvzX79tALwO/h2q+q7Hc+R5oAg7NlWDno
yukR0YpmIVAAc6JCX9/MVPR6PFBRGCECVa6vkYRTIcUEhEoWHy9Rry5ryJrV4+aW
Ep/MPbPTwiVyKpcV87rVbNshgNxAiWpXL/qFIeKj8GHHc2hqzIcIEH7dLlwfmQAa
WB1gkJieg7MCCq899UIFz9HPYv1frgO1QD7F+9dJOABJqItQC+4GjUlCbZ99Ch7r
6JROKIcLm7pSSCsKb9kSm+Rq+2uw34VNHPncKu3AcW1uhnyyOes2bpLvpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGaQOB6WiT55Ew1OXSqmt7OX05VYMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvWnBBNEhwYUpQbmtURFU1ZEtxYTNzNWZUbFZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAweuSMA0G
CSqGSIb3DQEBCwUAA4IBAQCH6jBZta9fMTvE6h6gNxtA1/jE9PCUTEX4jHFbPOLZ
3ZcrdbmGxaRT6ITr2umQdO7NGa32hvavXYzcX2H2QC4hAh7N6z+oKH/NkvxGjSI3
4vqPy+V+Gfpojxy0wJv1/EkY4D0Ut9tNwgtwXZVNoAUO506DrpkiJhwa44HK33VN
s563jMZnMzerTfb1FwaiOD0ff5nF1Bv0ezz+mVLZICYGepINafA6gPTbsfn1BqIL
VYFGJA2rBVtHKA24YOH8/addz+VBetGb48lffEY6VawSPzK5WDR6GHVrKRq/ZduR
/c2LiviKkwN8gXsL6tKiH+C3ervTnWvz4QqIjte1Ovip
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:52 2025 by rpki-client