Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/96b597-ca2b-4a9c-bb82-5bbe7b20f3fc/1/ArAqFM1CBgy5RATk_odm_5kQTts.roa
File: ArAqFM1CBgy5RATk_odm_5kQTts.roa (raw, json)
Hash identifier: QofzSbtatlOf9/WTEX2EbhNjHSJnb70jK+A9CGy0vLA=
Subject key identifier: 02:B0:2A:14:CD:42:06:0C:B9:44:04:E4:FE:87:66:FF:99:10:4E:DB
Certificate issuer: /CN=9672fe8715b63a120ed7d067eb525fe4b6de90f7
Certificate serial: 018800FDBF25429683A4188BCD6FAFF5560E
Authority key identifier: 96:72:FE:87:15:B6:3A:12:0E:D7:D0:67:EB:52:5F:E4:B6:DE:90:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lnL-hxW2OhIO19Bn61Jf5LbekPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/96b597-ca2b-4a9c-bb82-5bbe7b20f3fc/1/ArAqFM1CBgy5RATk_odm_5kQTts.roa
Signing time: Tue 09 May 2023 14:50:09 +0000
ROA not before: Tue 09 May 2023 14:50:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25419
IP address blocks: 195.190.138.0/24 maxlen: 24
2001:678:22c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:00:fd:bf:25:42:96:83:a4:18:8b:cd:6f:af:f5:56:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9672fe8715b63a120ed7d067eb525fe4b6de90f7
Validity
Not Before: May 9 14:50:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02b02a14cd42060cb94404e4fe8766ff99104edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1f:94:3c:22:26:5c:ce:59:10:15:f2:11:72:
fc:84:df:e8:0f:58:d7:cf:a0:7e:66:a6:d0:a1:1a:
4d:d7:f7:62:f7:b3:0c:02:3a:a5:9a:ad:d9:28:14:
59:fe:b4:8c:36:53:4d:f3:7a:99:0f:bb:9e:2c:a1:
54:c5:5b:a2:54:f6:91:ae:5b:ee:ce:41:67:0d:ce:
12:8c:8d:10:a7:be:2d:1a:50:41:c1:f7:1f:5f:47:
f5:01:a9:a0:84:c6:6a:d1:e7:7e:25:c9:59:57:c6:
4d:c7:ca:ad:b1:a1:c3:c1:df:c6:57:ee:51:1c:31:
4e:b5:b1:df:f3:63:bc:0a:87:0f:a8:15:f4:18:a8:
48:b8:95:9e:e9:48:6a:b7:e9:70:f8:8f:57:a8:07:
3d:c1:32:5d:e6:27:d3:c1:80:9e:88:33:2d:34:25:
fe:11:19:79:7c:ab:ae:e4:4c:9b:c3:ad:a6:0b:00:
c0:76:5e:cb:ba:d2:fe:5d:53:fa:d5:59:d0:46:c8:
03:f3:52:ab:40:54:20:af:7e:71:3a:49:73:98:98:
b7:06:f7:95:d4:82:fe:b9:06:98:00:1d:05:e9:6f:
8b:7b:d8:10:56:0a:79:44:ea:1f:b1:ed:1c:d7:92:
35:d1:ed:45:31:db:f7:5d:de:d9:20:8d:d1:3f:ff:
95:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:B0:2A:14:CD:42:06:0C:B9:44:04:E4:FE:87:66:FF:99:10:4E:DB
X509v3 Authority Key Identifier:
keyid:96:72:FE:87:15:B6:3A:12:0E:D7:D0:67:EB:52:5F:E4:B6:DE:90:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lnL-hxW2OhIO19Bn61Jf5LbekPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/96b597-ca2b-4a9c-bb82-5bbe7b20f3fc/1/ArAqFM1CBgy5RATk_odm_5kQTts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/96b597-ca2b-4a9c-bb82-5bbe7b20f3fc/1/lnL-hxW2OhIO19Bn61Jf5LbekPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.138.0/24
IPv6:
2001:678:22c::/48
Signature Algorithm: sha256WithRSAEncryption
d1:78:b4:ec:71:3f:08:77:d7:66:ce:4e:2d:89:d5:00:26:4a:
4a:ef:cf:ae:cd:89:13:a6:10:80:10:32:da:7e:37:57:67:5a:
b6:b5:53:64:cb:ba:49:54:f8:10:09:c5:d9:29:25:3b:e8:55:
ff:f8:c3:15:43:1c:02:ce:e0:91:69:01:1e:40:b0:61:ae:2f:
65:d8:1a:a8:fd:f4:fb:14:02:65:c3:5e:69:a7:34:1f:f5:a1:
81:5a:26:15:36:c6:61:a3:48:31:30:7e:06:17:e1:24:a5:a9:
f0:c9:73:61:6a:46:ef:0b:98:59:5e:c5:be:01:f9:94:32:56:
06:40:b2:12:39:4d:4e:03:e4:19:a4:58:54:15:76:cc:b8:f1:
53:aa:21:93:68:c3:cd:54:5c:51:2f:e0:aa:e5:e8:73:59:24:
02:7f:11:41:8a:a3:e4:8a:a8:76:19:e1:b0:da:fb:18:85:39:
81:65:03:2e:c5:a8:8f:ae:93:c6:0b:63:05:f3:9d:f7:71:4f:
57:8b:eb:e7:b4:74:77:dc:5f:29:8b:5e:f7:99:59:2c:a4:8a:
a8:6c:55:f3:ea:bb:96:05:52:03:3d:2a:27:90:5d:90:ff:13:
8c:12:5d:1d:cf:15:e1:c6:f5:cd:e4:1d:c7:29:a4:69:76:7c:
6a:ac:b6:7c
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYgA/b8lQpaDpBiLzW+v9VYOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NzJmZTg3MTViNjNhMTIwZWQ3ZDA2N2ViNTI1ZmU0YjZk
ZTkwZjcwHhcNMjMwNTA5MTQ1MDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMmIwMmExNGNkNDIwNjBjYjk0NDA0ZTRmZTg3NjZmZjk5MTA0ZWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiR+UPCImXM5ZEBXyEXL8hN/oD1jX
z6B+ZqbQoRpN1/di97MMAjqlmq3ZKBRZ/rSMNlNN83qZD7ueLKFUxVuiVPaRrlvu
zkFnDc4SjI0Qp74tGlBBwfcfX0f1AamghMZq0ed+JclZV8ZNx8qtsaHDwd/GV+5R
HDFOtbHf82O8CocPqBX0GKhIuJWe6Uhqt+lw+I9XqAc9wTJd5ifTwYCeiDMtNCX+
ERl5fKuu5Eybw62mCwDAdl7LutL+XVP61VnQRsgD81KrQFQgr35xOklzmJi3BveV
1IL+uQaYAB0F6W+Le9gQVgp5ROofse0c15I10e1FMdv3Xd7ZII3RP/+VqQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFAKwKhTNQgYMuUQE5P6HZv+ZEE7bMB8GA1UdIwQY
MBaAFJZy/ocVtjoSDtfQZ+tSX+S23pD3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbG5MLWh4VzJPaElPMTlCbjYxSmY1TGJla1BjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC85NmI1OTctY2EyYi00YTljLWJiODIt
NWJiZTdiMjBmM2ZjLzEvQXJBcUZNMUNCZ3k1UkFUa19vZG1fNWtRVHRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC85NmI1OTctY2EyYi00YTljLWJiODItNWJiZTdiMjBmM2Zj
LzEvbG5MLWh4VzJPaElPMTlCbjYxSmY1TGJla1BjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAw76KMA8E
AgACMAkDBwAgAQZ4AiwwDQYJKoZIhvcNAQELBQADggEBANF4tOxxPwh312bOTi2J
1QAmSkrvz67NiROmEIAQMtp+N1dnWra1U2TLuklU+BAJxdkpJTvoVf/4wxVDHALO
4JFpAR5AsGGuL2XYGqj99PsUAmXDXmmnNB/1oYFaJhU2xmGjSDEwfgYX4SSlqfDJ
c2FqRu8LmFlexb4B+ZQyVgZAshI5TU4D5BmkWFQVdsy48VOqIZNow81UXFEv4Krl
6HNZJAJ/EUGKo+SKqHYZ4bDa+xiFOYFlAy7FqI+uk8YLYwXznfdxT1eL6+e0dHfc
XymLXveZWSykiqhsVfPqu5YFUgM9KieQXZD/E4wSXR3PFeHG9c3kHccppGl2fGqs
tnw=
-----END CERTIFICATE-----
Generated at Thu Feb 20 03:34:22 2025 by rpki-client