Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/XMDBI2XCghZ-H_o2kTtp8OVRuEg.roa
File: XMDBI2XCghZ-H_o2kTtp8OVRuEg.roa (raw, json)
Hash identifier: ZigdaRchV7gBH4/fEJUqQ5rqZLAZZRql3oGE4t3abo8=
Subject key identifier: 5C:C0:C1:23:65:C2:82:16:7E:1F:FA:36:91:3B:69:F0:E5:51:B8:48
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 01943CA9F61ED893C5F306950707682B1F2D
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/XMDBI2XCghZ-H_o2kTtp8OVRuEg.roa
Signing time: Mon 06 Jan 2025 17:29:19 +0000
ROA not before: Mon 06 Jan 2025 17:29:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21859
IP address blocks: 94.229.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3c:a9:f6:1e:d8:93:c5:f3:06:95:07:07:68:2b:1f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jan 6 17:29:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5cc0c12365c282167e1ffa36913b69f0e551b848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4f:67:e0:88:6f:a4:84:d0:61:26:90:bb:01:
82:d8:d9:4f:89:28:8a:fa:ce:ba:06:5c:95:5f:d7:
ed:6d:ba:19:5a:f5:2e:21:55:82:07:c6:1b:ee:85:
84:c2:a9:ac:68:a1:8a:be:09:b5:43:e8:cc:db:ff:
90:e8:88:79:99:ff:a0:31:00:8f:4c:d1:8a:8e:d9:
83:27:21:86:4e:a8:ed:11:ed:61:db:ba:61:2e:0b:
cb:e5:61:65:97:70:ec:19:5f:0f:e8:a5:51:85:f0:
b5:6d:8f:0d:71:9e:7c:da:cc:a2:33:e3:6e:88:62:
a9:d6:72:23:d7:e1:7a:10:b1:39:f1:f5:1e:46:09:
17:8b:57:5e:bc:72:a3:10:36:18:d5:c4:2c:2f:07:
51:06:5f:bd:6c:a7:75:c0:21:73:94:de:8a:49:1b:
75:5f:a1:87:50:74:52:1d:55:5e:69:d1:c2:0c:ae:
14:42:ab:e0:1b:1d:95:18:c1:10:ce:65:eb:73:ff:
7e:9b:fb:8b:1e:5f:81:d5:05:c6:17:b1:04:5c:99:
53:10:d8:5c:61:ff:62:62:b2:90:2c:12:3f:90:2f:
30:4d:dd:5c:16:80:d7:cf:ea:f4:b0:5b:76:42:c3:
dd:5e:88:29:da:b6:18:bd:a3:1f:98:36:8d:17:59:
15:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:C0:C1:23:65:C2:82:16:7E:1F:FA:36:91:3B:69:F0:E5:51:B8:48
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/XMDBI2XCghZ-H_o2kTtp8OVRuEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.229.223.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:30:b7:eb:68:4d:b9:84:69:74:3a:8f:3f:79:ff:75:06:24:
cf:db:23:75:c7:11:2a:ee:c0:a4:6e:c1:0a:c9:a5:04:b7:56:
35:96:fa:24:63:58:50:42:8a:d4:34:a5:07:39:30:00:57:e7:
4e:08:47:ab:ca:25:b8:0c:50:fd:8a:5d:d0:e3:2a:5f:e0:be:
9d:90:fc:a3:18:4a:36:24:c7:45:92:15:74:a1:84:c4:5d:0c:
2d:58:de:e1:b1:d8:b2:53:5e:d8:f7:6f:9b:65:74:d3:c8:f6:
19:67:36:92:fd:95:8d:d0:08:92:1e:f2:52:06:57:c8:6e:a3:
93:e2:96:43:c2:3a:91:84:93:5d:d8:62:fc:8f:52:40:51:00:
23:55:02:2b:5f:46:1d:fc:c3:1a:71:f8:bd:f4:42:37:5a:d8:
e4:57:1a:1d:54:62:f5:33:7e:f1:42:28:5a:c6:e9:66:d3:a8:
49:5e:bb:0d:06:26:fb:5c:9f:cc:e8:7c:86:b5:4d:1a:7c:73:
e4:c7:0d:50:a6:df:a2:58:d1:8f:2f:6c:06:66:0f:8b:ca:09:
a4:4b:86:16:77:67:0e:35:dc:86:10:c7:f7:05:86:49:a5:56:
ac:a6:b7:85:e3:5a:b8:17:3d:b4:43:a2:7a:2f:af:e1:fb:e5:
03:a6:fc:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQ8qfYe2JPF8waVBwdoKx8tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjUwMTA2MTcyOTE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Y2MwYzEyMzY1YzI4MjE2N2UxZmZhMzY5MTNiNjlmMGU1NTFiODQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqU9n4IhvpITQYSaQuwGC2NlPiSiK
+s66BlyVX9ftbboZWvUuIVWCB8Yb7oWEwqmsaKGKvgm1Q+jM2/+Q6Ih5mf+gMQCP
TNGKjtmDJyGGTqjtEe1h27phLgvL5WFll3DsGV8P6KVRhfC1bY8NcZ582syiM+Nu
iGKp1nIj1+F6ELE58fUeRgkXi1devHKjEDYY1cQsLwdRBl+9bKd1wCFzlN6KSRt1
X6GHUHRSHVVeadHCDK4UQqvgGx2VGMEQzmXrc/9+m/uLHl+B1QXGF7EEXJlTENhc
Yf9iYrKQLBI/kC8wTd1cFoDXz+r0sFt2QsPdXogp2rYYvaMfmDaNF1kVkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFzAwSNlwoIWfh/6NpE7afDlUbhIMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvWE1EQkkyWENnaFotSF9vMmtUdHA4T1ZSdUVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXuXfMA0G
CSqGSIb3DQEBCwUAA4IBAQBdMLfraE25hGl0Oo8/ef91BiTP2yN1xxEq7sCkbsEK
yaUEt1Y1lvokY1hQQorUNKUHOTAAV+dOCEeryiW4DFD9il3Q4ypf4L6dkPyjGEo2
JMdFkhV0oYTEXQwtWN7hsdiyU17Y92+bZXTTyPYZZzaS/ZWN0AiSHvJSBlfIbqOT
4pZDwjqRhJNd2GL8j1JAUQAjVQIrX0Yd/MMacfi99EI3WtjkVxodVGL1M37xQiha
xulm06hJXrsNBib7XJ/M6HyGtU0afHPkxw1Qpt+iWNGPL2wGZg+LygmkS4YWd2cO
NdyGEMf3BYZJpVaspreF41q4Fz20Q6J6L6/h++UDpvxx
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:22 2025 by rpki-client