Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/S3XpEBxlerRtwSFaGLA6G44LRQI.roa
File: S3XpEBxlerRtwSFaGLA6G44LRQI.roa (raw, json)
Hash identifier: Z/+jFc8Tb7annjDdHUmTXSmFMVDmPYF89/cdJ7u6K/A=
Subject key identifier: 4B:75:E9:10:1C:65:7A:B4:6D:C1:21:5A:18:B0:3A:1B:8E:0B:45:02
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 019422FB9EC719D5E6ECC6F389ED1435C932
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/S3XpEBxlerRtwSFaGLA6G44LRQI.roa
Signing time: Wed 01 Jan 2025 17:48:23 +0000
ROA not before: Wed 01 Jan 2025 17:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 185.228.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:9e:c7:19:d5:e6:ec:c6:f3:89:ed:14:35:c9:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Jan 1 17:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4b75e9101c657ab46dc1215a18b03a1b8e0b4502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:23:13:a4:d0:7e:b5:f2:d7:a8:e8:59:b9:00:
0f:ef:48:50:ce:b8:b0:da:2a:ab:ba:ee:7e:0d:62:
01:72:e3:6b:db:48:c4:a9:27:c6:39:0b:c7:3a:a8:
62:c6:90:a3:9d:f0:b7:b9:1d:a5:fa:b7:ee:27:09:
ae:16:46:b2:4b:8b:26:d3:26:17:7b:1d:64:af:cd:
d5:c8:dd:cd:e4:43:4c:c5:8f:08:db:0c:bc:b7:4d:
c8:14:fc:f7:a8:10:b8:8d:9a:ac:e9:c8:ac:1d:14:
7c:49:10:ff:bf:a2:ee:6d:20:be:3d:16:52:e7:78:
3f:c3:5e:2a:a2:19:7c:71:5f:e6:92:8f:bf:ef:11:
00:8a:a4:ee:82:ea:f7:18:5c:b0:8b:35:9f:26:db:
9b:69:5a:5d:9f:90:31:3f:4a:f7:f4:de:f9:fc:3c:
c7:90:3c:b4:5f:9c:75:f1:8e:54:43:a5:34:00:0e:
bb:b6:aa:af:3f:eb:15:c7:27:2d:c3:63:ce:01:12:
bf:34:ef:bd:83:e6:1f:b9:e4:29:6e:df:98:43:57:
e9:c5:16:ac:fc:d2:7c:f8:b3:38:7d:f5:c7:d6:fe:
e8:b4:9b:65:51:c4:7f:17:0c:fc:6d:fe:83:e9:f2:
cf:dc:5d:24:6c:03:1d:e7:99:e1:27:ec:2b:e2:af:
5f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:75:E9:10:1C:65:7A:B4:6D:C1:21:5A:18:B0:3A:1B:8E:0B:45:02
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/S3XpEBxlerRtwSFaGLA6G44LRQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.2.0/24
Signature Algorithm: sha256WithRSAEncryption
75:b7:5f:b0:29:66:2c:68:66:45:3b:9e:73:1b:8d:df:2a:66:
f5:7c:46:59:74:0f:ee:7b:fd:62:86:fb:d9:c2:81:53:90:c8:
6a:ca:67:4f:92:98:76:94:5a:f6:cd:37:f7:21:66:3a:44:c0:
6e:9b:d8:34:07:db:df:0c:85:b8:a8:a7:73:a7:bf:12:60:a3:
9c:7a:8f:93:ad:e4:66:4d:8b:76:59:26:c3:98:b3:58:82:7d:
2d:5d:7b:5d:9c:5a:21:d9:ab:e2:96:ee:6c:d9:fc:90:93:d9:
23:95:68:ef:8f:41:4b:02:4f:e4:a9:bd:ba:c4:6d:93:ae:ba:
0d:48:c8:79:0a:b7:0d:fd:95:fd:6e:f8:ea:2e:f8:85:d0:4f:
77:46:b9:b1:f3:db:8a:ba:71:2a:b0:8c:dd:1a:99:86:05:5e:
64:40:63:2b:4e:75:e7:a3:b8:2f:3f:c6:51:f8:c0:74:8b:46:
79:28:38:f4:c9:e4:3c:f0:b4:a0:68:3e:3b:c7:6c:d3:8f:48:
e5:af:4f:71:fc:98:b6:90:ce:51:e6:25:cc:68:7a:0b:bf:6d:
be:bd:65:25:66:10:9e:2e:b4:cf:1a:60:60:c7:d7:13:0c:c8:
9b:7c:86:83:e5:3b:39:e9:dd:f6:e8:db:46:46:e7:c7:d1:9b:
ca:f7:d0:14
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi+57HGdXm7Mbzie0UNckyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1YzYzNzNlYWIxOWNmNDNkZDJmNDMxMTEzOTgzODNlZTJi
YWQwMzAwHhcNMjUwMTAxMTc0ODIzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Yjc1ZTkxMDFjNjU3YWI0NmRjMTIxNWExOGIwM2ExYjhlMGI0NTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CMTpNB+tfLXqOhZuQAP70hQzriw
2iqruu5+DWIBcuNr20jEqSfGOQvHOqhixpCjnfC3uR2l+rfuJwmuFkayS4sm0yYX
ex1kr83VyN3N5ENMxY8I2wy8t03IFPz3qBC4jZqs6cisHRR8SRD/v6LubSC+PRZS
53g/w14qohl8cV/mko+/7xEAiqTugur3GFywizWfJtubaVpdn5AxP0r39N75/DzH
kDy0X5x18Y5UQ6U0AA67tqqvP+sVxyctw2POARK/NO+9g+YfueQpbt+YQ1fpxRas
/NJ8+LM4ffXH1v7otJtlUcR/Fwz8bf6D6fLP3F0kbAMd55nhJ+wr4q9f1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEt16RAcZXq0bcEhWhiwOhuOC0UCMB8GA1UdIwQY
MBaAFKXGNz6rGc9D3S9DEROYOD7iutAwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGNZM1Bxc1p6MFBkTDBNUkU1ZzRQdUs2MERBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9mMGY1ZTMtNjA1MC00ZTJkLWE0ZWEt
YTRlYTBhNjNmNzY2LzEvUzNYcEVCeGxlclJ0d1NGYUdMQTZHNDRMUlFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9mMGY1ZTMtNjA1MC00ZTJkLWE0ZWEtYTRlYTBhNjNmNzY2
LzEvcGNZM1Bxc1p6MFBkTDBNUkU1ZzRQdUs2MERBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueQCMA0G
CSqGSIb3DQEBCwUAA4IBAQB1t1+wKWYsaGZFO55zG43fKmb1fEZZdA/ue/1ihvvZ
woFTkMhqymdPkph2lFr2zTf3IWY6RMBum9g0B9vfDIW4qKdzp78SYKOceo+TreRm
TYt2WSbDmLNYgn0tXXtdnFoh2avilu5s2fyQk9kjlWjvj0FLAk/kqb26xG2TrroN
SMh5CrcN/ZX9bvjqLviF0E93Rrmx89uKunEqsIzdGpmGBV5kQGMrTnXno7gvP8ZR
+MB0i0Z5KDj0yeQ88LSgaD47x2zTj0jlr09x/Ji2kM5R5iXMaHoLv22+vWUlZhCe
LrTPGmBgx9cTDMibfIaD5Ts56d326NtGRufH0ZvK99AU
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:50:56 2025 by rpki-client