Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/adea93-808b-4488-a53c-3a06b3af5243/1/uHUBTRM7ms7lHifJGLr0cSi4K68.roa
File: uHUBTRM7ms7lHifJGLr0cSi4K68.roa (raw, json)
Hash identifier: HNm5MECAWZO8mlBdE+nHtouNqfQ5DgOAPfHdzgcgnEM=
Subject key identifier: B8:75:01:4D:13:3B:9A:CE:E5:1E:27:C9:18:BA:F4:71:28:B8:2B:AF
Certificate issuer: /CN=c4182e28f311c44294a8ca6ad81d7a7863af5099
Certificate serial: 01856D01B5AD47F190A4054E8C78A732C717
Authority key identifier: C4:18:2E:28:F3:11:C4:42:94:A8:CA:6A:D8:1D:7A:78:63:AF:50:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBguKPMRxEKUqMpq2B16eGOvUJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/adea93-808b-4488-a53c-3a06b3af5243/1/uHUBTRM7ms7lHifJGLr0cSi4K68.roa
Signing time: Sun 01 Jan 2023 11:05:06 +0000
ROA not before: Sun 01 Jan 2023 11:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35592
IP address blocks: 194.56.181.0/24 maxlen: 24
2a11:3600::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:b5:ad:47:f1:90:a4:05:4e:8c:78:a7:32:c7:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4182e28f311c44294a8ca6ad81d7a7863af5099
Validity
Not Before: Jan 1 11:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b875014d133b9acee51e27c918baf47128b82baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e7:e7:d5:18:6e:05:56:0b:d8:58:6d:d1:82:
03:e8:91:49:dc:2f:4f:f5:94:f0:32:4f:b7:ef:c9:
ba:74:55:11:a3:ab:ba:17:8c:04:4e:6a:4d:20:f4:
12:1c:47:90:1f:8e:56:07:ae:a8:5d:95:3c:3e:4a:
03:4a:d3:83:a5:c0:46:7e:78:d2:d7:93:68:33:46:
df:9a:9b:16:df:f9:44:6c:f1:99:68:6b:3a:c7:fc:
b7:30:76:94:a0:8c:58:4f:7a:bb:69:53:60:26:87:
29:20:0e:ff:4e:71:ad:e6:9b:5c:97:d9:47:4e:e2:
f4:9c:bb:38:c8:06:31:4e:c8:75:42:56:fd:4f:68:
12:2e:69:ac:47:11:08:73:ab:ad:af:7c:99:cf:4e:
92:f4:fa:bb:74:32:1f:d8:54:62:d5:6b:40:51:c5:
e1:9b:7b:e2:4e:61:f5:e8:0a:c9:79:6f:c2:76:1b:
b5:1d:df:13:ff:c1:32:60:cb:e3:9a:a7:81:22:22:
bd:6b:95:2e:39:6f:c3:40:d5:a2:ba:60:4d:b5:9f:
1d:3b:d3:d5:e8:aa:c7:0e:5b:f2:d0:4f:b8:6a:26:
34:c3:d5:2c:ba:ad:98:ee:9d:73:60:80:a6:fb:e2:
b0:8e:df:07:0a:6b:c4:7a:65:6b:7e:1c:66:eb:f7:
64:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:75:01:4D:13:3B:9A:CE:E5:1E:27:C9:18:BA:F4:71:28:B8:2B:AF
X509v3 Authority Key Identifier:
keyid:C4:18:2E:28:F3:11:C4:42:94:A8:CA:6A:D8:1D:7A:78:63:AF:50:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBguKPMRxEKUqMpq2B16eGOvUJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/adea93-808b-4488-a53c-3a06b3af5243/1/uHUBTRM7ms7lHifJGLr0cSi4K68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/adea93-808b-4488-a53c-3a06b3af5243/1/xBguKPMRxEKUqMpq2B16eGOvUJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.181.0/24
IPv6:
2a11:3600::/48
Signature Algorithm: sha256WithRSAEncryption
70:4f:cb:20:6a:7e:99:a5:82:d0:1e:7c:76:c2:f2:f0:e7:cf:
53:b3:8d:68:06:74:ca:4f:e1:d2:0a:61:3c:03:73:49:f3:24:
f8:32:5d:c7:83:8c:1b:57:58:d8:18:b2:c7:5d:84:3c:91:2a:
a2:1e:27:9d:8a:c3:d7:4c:a3:84:af:5d:60:b9:a1:f5:83:3e:
ea:5f:65:d1:0f:3a:25:0e:56:23:11:29:f0:00:c3:aa:b8:2b:
b9:af:20:c7:69:38:e1:2b:e4:af:24:64:52:53:cc:b2:a9:59:
9b:b6:7d:e1:62:1d:b9:4f:62:38:a6:49:40:c3:14:14:e1:3f:
f2:a3:15:3a:88:d2:0f:df:75:70:0e:1a:9b:e5:ab:2f:c4:2f:
70:b9:f5:70:b6:1d:23:3a:14:01:05:89:9a:46:32:f4:0c:b9:
bb:31:c3:8b:d6:be:bc:61:de:eb:f4:a2:ca:42:4c:52:04:ba:
1c:a6:f7:93:54:fa:1c:da:96:6d:5a:c9:59:22:74:b6:24:a1:
65:66:d6:31:db:f1:45:0d:bb:19:9a:d2:8b:e9:86:b2:ea:ee:
c9:b0:44:16:10:13:7c:48:5e:93:4b:d9:ed:35:65:a3:43:25:
93:9c:b8:b2:e5:a6:71:06:7e:58:10:fd:59:4d:c0:ec:ae:52:
51:25:19:eb
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVtAbWtR/GQpAVOjHinMscXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0MTgyZTI4ZjMxMWM0NDI5NGE4Y2E2YWQ4MWQ3YTc4NjNh
ZjUwOTkwHhcNMjMwMTAxMTEwNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODc1MDE0ZDEzM2I5YWNlZTUxZTI3YzkxOGJhZjQ3MTI4YjgyYmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOfn1RhuBVYL2Fht0YID6JFJ3C9P
9ZTwMk+378m6dFURo6u6F4wETmpNIPQSHEeQH45WB66oXZU8PkoDStODpcBGfnjS
15NoM0bfmpsW3/lEbPGZaGs6x/y3MHaUoIxYT3q7aVNgJocpIA7/TnGt5ptcl9lH
TuL0nLs4yAYxTsh1Qlb9T2gSLmmsRxEIc6utr3yZz06S9Pq7dDIf2FRi1WtAUcXh
m3viTmH16ArJeW/Cdhu1Hd8T/8EyYMvjmqeBIiK9a5UuOW/DQNWiumBNtZ8dO9PV
6KrHDlvy0E+4aiY0w9Usuq2Y7p1zYICm++Kwjt8HCmvEemVrfhxm6/dkCwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLh1AU0TO5rO5R4nyRi69HEouCuvMB8GA1UdIwQY
MBaAFMQYLijzEcRClKjKatgdenhjr1CZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEJndUtQTVJ4RUtVcU1wcTJCMTZlR092VUprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hZGVhOTMtODA4Yi00NDg4LWE1M2Mt
M2EwNmIzYWY1MjQzLzEvdUhVQlRSTTdtczdsSGlmSkdMcjBjU2k0SzY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9hZGVhOTMtODA4Yi00NDg4LWE1M2MtM2EwNmIzYWY1MjQz
LzEveEJndUtQTVJ4RUtVcU1wcTJCMTZlR092VUprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwji1MA8E
AgACMAkDBwAqETYAAAAwDQYJKoZIhvcNAQELBQADggEBAHBPyyBqfpmlgtAefHbC
8vDnz1OzjWgGdMpP4dIKYTwDc0nzJPgyXceDjBtXWNgYssddhDyRKqIeJ52Kw9dM
o4SvXWC5ofWDPupfZdEPOiUOViMRKfAAw6q4K7mvIMdpOOEr5K8kZFJTzLKpWZu2
feFiHblPYjimSUDDFBThP/KjFTqI0g/fdXAOGpvlqy/EL3C59XC2HSM6FAEFiZpG
MvQMubsxw4vWvrxh3uv0ospCTFIEuhym95NU+hzalm1ayVkidLYkoWVm1jHb8UUN
uxma0ovphrLq7smwRBYQE3xIXpNL2e01ZaNDJZOcuLLlpnEGflgQ/VlNwOyuUlEl
Ges=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:58 2025 by rpki-client