Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/oSl_ZyF49A9m-tcRTURBescg6L4.roa
File: oSl_ZyF49A9m-tcRTURBescg6L4.roa (raw, json)
Hash identifier: iSlN37cFoAVO5o/CLBiI+HhIUnITA0rUGkhFjtFKLu0=
Subject key identifier: A1:29:7F:67:21:78:F4:0F:66:FA:D7:11:4D:44:41:7A:C7:20:E8:BE
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0192AFC773771A6B88F042C9683B33DCDB34
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/oSl_ZyF49A9m-tcRTURBescg6L4.roa
Signing time: Mon 21 Oct 2024 15:52:16 +0000
ROA not before: Mon 21 Oct 2024 15:52:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 85.208.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:af:c7:73:77:1a:6b:88:f0:42:c9:68:3b:33:dc:db:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Oct 21 15:52:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1297f672178f40f66fad7114d44417ac720e8be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1e:bc:56:30:e6:de:ab:8e:8e:52:4f:00:c6:
52:31:1a:aa:4e:30:ab:f0:bb:01:f8:99:82:25:98:
d4:0a:43:d5:78:f0:68:f7:11:e5:9a:c2:b4:70:f0:
51:d8:87:6d:55:dc:8a:86:d3:63:80:20:82:4c:cb:
b8:ad:12:59:68:9f:73:3f:1c:3f:1b:f0:a2:a8:4d:
88:57:cd:0f:37:52:f5:7e:3b:23:0c:19:30:af:ff:
53:74:25:17:d2:53:27:93:39:82:f7:a5:6c:38:2f:
0a:20:fa:26:cf:15:a5:9e:9e:56:3f:84:7e:0e:0e:
12:29:49:33:69:4e:53:69:b6:db:89:e8:23:6c:c7:
41:e9:32:a1:b8:1f:fb:fb:4f:f3:ba:cd:86:ea:d0:
c3:23:47:a3:23:95:6c:39:20:fe:6f:4e:0f:90:d1:
e2:5c:65:d6:9c:e1:9a:69:ee:fb:3b:34:3a:af:90:
d8:4b:79:27:3b:82:4f:5b:04:cc:d7:c5:4a:ec:d6:
ed:7c:c2:ef:f7:b2:ca:58:b3:2c:25:66:fc:73:a9:
67:9e:ed:db:b9:2f:fc:19:1a:4d:64:17:31:2a:24:
6e:46:48:31:2e:ba:26:b2:ee:3b:00:f9:27:9f:b8:
cc:bc:ab:9d:5e:6d:d6:5a:f4:ba:55:4b:44:8d:46:
76:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:29:7F:67:21:78:F4:0F:66:FA:D7:11:4D:44:41:7A:C7:20:E8:BE
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/oSl_ZyF49A9m-tcRTURBescg6L4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.9.0/24
Signature Algorithm: sha256WithRSAEncryption
99:78:ee:11:e4:8b:31:95:a5:52:60:e0:61:ca:75:6d:21:49:
9a:0c:03:3d:65:00:e4:a3:7a:0d:09:29:49:f5:de:51:d8:5b:
e3:3a:98:d9:d1:33:ad:8f:c8:be:a1:a4:82:fe:51:7a:2c:cf:
d4:2f:b5:53:b9:47:f3:d2:4d:2e:aa:3d:bd:38:85:38:2c:33:
47:40:69:ba:99:b2:0c:d1:de:64:3a:18:02:0a:43:cd:1b:8b:
74:69:d2:c1:75:f0:76:d4:99:08:8f:a0:c8:bd:9d:19:92:a1:
7b:1e:3e:03:ec:13:85:e9:e5:c8:82:05:8b:9f:c5:b2:1c:55:
e2:f6:b0:9a:9a:d7:15:69:54:a5:21:8a:2c:c6:2d:f3:86:24:
2b:c8:77:7f:e6:a8:50:fb:7f:92:35:26:ec:1b:7a:5a:37:55:
dd:96:76:4e:22:cf:4c:2f:e1:1d:d2:90:56:a3:98:31:0d:ac:
77:42:28:2b:8f:05:46:20:a0:a7:3d:5b:ae:f8:24:76:27:e3:
a3:4c:3e:a5:da:86:71:28:13:e9:ab:37:46:20:38:41:b0:26:
45:c7:97:d0:0a:4a:ce:1a:e7:25:29:77:94:02:7b:d4:02:37:
2a:f0:82:69:2d:46:82:18:a2:46:fb:96:4b:6a:7a:6c:f0:8d:
5a:b5:4d:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZKvx3N3GmuI8ELJaDsz3Ns0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjQxMDIxMTU1MjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTI5N2Y2NzIxNzhmNDBmNjZmYWQ3MTE0ZDQ0NDE3YWM3MjBlOGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvB68VjDm3quOjlJPAMZSMRqqTjCr
8LsB+JmCJZjUCkPVePBo9xHlmsK0cPBR2IdtVdyKhtNjgCCCTMu4rRJZaJ9zPxw/
G/CiqE2IV80PN1L1fjsjDBkwr/9TdCUX0lMnkzmC96VsOC8KIPomzxWlnp5WP4R+
Dg4SKUkzaU5TabbbiegjbMdB6TKhuB/7+0/zus2G6tDDI0ejI5VsOSD+b04PkNHi
XGXWnOGaae77OzQ6r5DYS3knO4JPWwTM18VK7NbtfMLv97LKWLMsJWb8c6lnnu3b
uS/8GRpNZBcxKiRuRkgxLromsu47APknn7jMvKudXm3WWvS6VUtEjUZ2gQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKEpf2chePQPZvrXEU1EQXrHIOi+MB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvb1NsX1p5RjQ5QTltLXRjUlRVUkJlc2NnNkw0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVdAJMA0G
CSqGSIb3DQEBCwUAA4IBAQCZeO4R5IsxlaVSYOBhynVtIUmaDAM9ZQDko3oNCSlJ
9d5R2FvjOpjZ0TOtj8i+oaSC/lF6LM/UL7VTuUfz0k0uqj29OIU4LDNHQGm6mbIM
0d5kOhgCCkPNG4t0adLBdfB21JkIj6DIvZ0ZkqF7Hj4D7BOF6eXIggWLn8WyHFXi
9rCamtcVaVSlIYosxi3zhiQryHd/5qhQ+3+SNSbsG3paN1XdlnZOIs9ML+Ed0pBW
o5gxDax3QigrjwVGIKCnPVuu+CR2J+OjTD6l2oZxKBPpqzdGIDhBsCZFx5fQCkrO
GuclKXeUAnvUAjcq8IJpLUaCGKJG+5ZLanps8I1atU3+
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:25 2025 by rpki-client