Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/8JTjdpH61_b8YdQk6EKzLfFVOhM.roa
File: 8JTjdpH61_b8YdQk6EKzLfFVOhM.roa (raw, json)
Hash identifier: FoemGQm/OEp050cZlruzM8IsL6rZgcl589W0xhHhfeA=
Subject key identifier: F0:94:E3:76:91:FA:D7:F6:FC:61:D4:24:E8:42:B3:2D:F1:55:3A:13
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 019089F47913D9087E63F7FB23CC50F8C0FF
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/8JTjdpH61_b8YdQk6EKzLfFVOhM.roa
Signing time: Sat 06 Jul 2024 21:30:18 +0000
ROA not before: Sat 06 Jul 2024 21:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215181
IP address blocks: 194.116.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:89:f4:79:13:d9:08:7e:63:f7:fb:23:cc:50:f8:c0:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jul 6 21:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f094e37691fad7f6fc61d424e842b32df1553a13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:96:a1:81:1f:e0:3a:ac:96:e7:80:e2:bd:ad:
d6:af:93:e2:ee:21:92:33:6e:55:5a:08:d3:8a:f9:
d4:2d:fa:0b:47:6e:1c:93:0b:d4:b9:8c:1b:dc:7a:
12:a6:bd:e0:2c:83:74:e9:be:96:0d:54:e8:1b:4d:
c3:57:1a:b8:76:37:e6:68:39:3a:82:e0:8b:d0:2a:
8d:e4:67:4a:61:3c:a3:d0:b1:02:d6:b6:36:3a:8f:
3c:b9:53:50:a4:ea:40:56:be:e5:47:b6:56:80:06:
24:32:02:f1:04:e8:bd:f6:c1:cb:16:02:67:5a:f9:
7c:5a:05:c9:1f:7d:31:2a:03:fe:20:41:27:1b:fc:
05:43:01:16:61:75:e7:81:1e:7b:54:43:27:98:b4:
84:47:ba:ba:6e:e9:f4:45:40:51:b9:a5:70:d9:00:
a2:00:6b:9c:f8:13:3b:6e:88:2a:d5:4e:63:2e:84:
fc:f6:07:0e:88:ef:29:be:67:99:c9:55:0f:e9:fc:
cc:94:b2:78:80:be:6d:4e:9f:2a:38:85:7a:a0:8d:
77:a3:f5:ce:d2:77:e2:0d:3b:d7:f4:50:94:c0:fc:
53:83:7b:27:0a:fd:f8:a7:ab:4c:c9:1f:e3:48:d2:
8e:71:17:6e:27:88:e6:38:60:8a:4d:5f:4e:75:1f:
b5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:94:E3:76:91:FA:D7:F6:FC:61:D4:24:E8:42:B3:2D:F1:55:3A:13
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/8JTjdpH61_b8YdQk6EKzLfFVOhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.229.0/24
Signature Algorithm: sha256WithRSAEncryption
28:c9:72:43:1b:8e:01:91:8b:c3:88:9f:65:f9:29:9a:3c:18:
24:e0:a5:e5:e4:68:05:12:fc:9c:ba:0c:2b:73:c5:1c:5f:44:
5f:ae:f6:2c:c9:55:50:74:16:dd:64:7b:c0:85:a7:86:6a:1b:
98:1f:37:3b:82:1b:e4:6c:da:5a:fc:5c:e8:b8:54:0b:df:ab:
8d:cf:e6:35:24:96:ae:7a:fd:ef:63:02:b5:00:d4:78:1a:7c:
ef:b3:d1:1d:d8:1f:70:d3:e1:cc:5f:b6:38:16:e2:e2:04:6c:
dc:6f:a6:38:d4:11:a6:0b:94:84:02:85:c7:f3:bc:e2:8f:a9:
db:b0:c5:88:b9:c5:00:84:b5:d4:8a:28:d5:f8:48:e3:42:f5:
2c:5c:24:9f:56:fa:be:33:d8:41:a3:ff:86:7d:34:20:4d:d9:
39:b4:58:5e:18:18:3a:73:92:30:3a:ff:58:fc:31:f9:d3:90:
9a:63:d2:4e:c5:61:62:9a:2f:49:d2:b9:48:b0:bd:4c:67:84:
05:73:48:bb:99:91:03:d8:b9:b1:7f:76:c2:e8:99:dd:b3:e7:
60:d6:e5:67:6a:aa:40:05:46:65:65:11:80:5f:ab:b6:3d:fb:
ce:fe:40:8b:aa:f2:dd:3a:78:96:39:c6:65:9e:da:9f:37:4a:
b4:e9:dc:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCJ9HkT2Qh+Y/f7I8xQ+MD/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjQwNzA2MjEzMDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDk0ZTM3NjkxZmFkN2Y2ZmM2MWQ0MjRlODQyYjMyZGYxNTUzYTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA35ahgR/gOqyW54Diva3Wr5Pi7iGS
M25VWgjTivnULfoLR24ckwvUuYwb3HoSpr3gLIN06b6WDVToG03DVxq4djfmaDk6
guCL0CqN5GdKYTyj0LEC1rY2Oo88uVNQpOpAVr7lR7ZWgAYkMgLxBOi99sHLFgJn
Wvl8WgXJH30xKgP+IEEnG/wFQwEWYXXngR57VEMnmLSER7q6bun0RUBRuaVw2QCi
AGuc+BM7bogq1U5jLoT89gcOiO8pvmeZyVUP6fzMlLJ4gL5tTp8qOIV6oI13o/XO
0nfiDTvX9FCUwPxTg3snCv34p6tMyR/jSNKOcRduJ4jmOGCKTV9OdR+1fwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPCU43aR+tf2/GHUJOhCsy3xVToTMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvOEpUamRwSDYxX2I4WWRRazZFS3pMZkZWT2hNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwnTlMA0G
CSqGSIb3DQEBCwUAA4IBAQAoyXJDG44BkYvDiJ9l+SmaPBgk4KXl5GgFEvycugwr
c8UcX0RfrvYsyVVQdBbdZHvAhaeGahuYHzc7ghvkbNpa/FzouFQL36uNz+Y1JJau
ev3vYwK1ANR4Gnzvs9Ed2B9w0+HMX7Y4FuLiBGzcb6Y41BGmC5SEAoXH87zij6nb
sMWIucUAhLXUiijV+EjjQvUsXCSfVvq+M9hBo/+GfTQgTdk5tFheGBg6c5IwOv9Y
/DH505CaY9JOxWFimi9J0rlIsL1MZ4QFc0i7mZED2Lmxf3bC6Jnds+dg1uVnaqpA
BUZlZRGAX6u2PfvO/kCLqvLdOniWOcZlntqfN0q06dzx
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:16 2025 by rpki-client