Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/55057b-a27a-4876-a6c5-c150dffff7d6/1/gy8PxnPhMux-9t4sbvGCWvic5G0.roa
File: gy8PxnPhMux-9t4sbvGCWvic5G0.roa (raw, json)
Hash identifier: jptPhT4osHr3FgAckCyNoQbuny6lMt6q4P49VFlXaHY=
Subject key identifier: 83:2F:0F:C6:73:E1:32:EC:7E:F6:DE:2C:6E:F1:82:5A:F8:9C:E4:6D
Certificate issuer: /CN=a61db78c7f21285866dab4a45a544dce559f43da
Certificate serial: 02BFF17C
Authority key identifier: A6:1D:B7:8C:7F:21:28:58:66:DA:B4:A4:5A:54:4D:CE:55:9F:43:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ph23jH8hKFhm2rSkWlRNzlWfQ9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/55057b-a27a-4876-a6c5-c150dffff7d6/1/gy8PxnPhMux-9t4sbvGCWvic5G0.roa
Signing time: Thu 28 Apr 2022 04:55:05 +0000
ROA not before: Thu 28 Apr 2022 04:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210225
IP address blocks: 193.32.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46133628 (0x2bff17c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a61db78c7f21285866dab4a45a544dce559f43da
Validity
Not Before: Apr 28 04:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=832f0fc673e132ec7ef6de2c6ef1825af89ce46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2a:25:76:29:5a:e7:7f:98:50:20:76:dc:ff:
a1:a0:6b:1e:9a:fb:6c:b4:9d:78:b5:65:1f:c2:20:
78:a7:a2:f5:70:2a:12:2b:c9:2b:60:a7:5f:9d:47:
c6:42:fb:07:64:28:df:4c:ef:0e:1b:94:18:67:b5:
22:93:3c:9c:26:60:3e:cd:28:db:07:53:07:a9:bf:
46:2f:0a:1e:d8:69:09:7d:4a:0e:26:06:21:8f:19:
24:a2:e3:37:e3:59:c4:af:58:d6:3d:79:af:83:e8:
bf:b8:55:af:f3:99:2b:50:d7:77:af:4e:39:9d:e6:
db:18:6d:93:01:67:62:e4:4f:98:68:9a:3b:5a:66:
b8:fe:6f:28:4c:b3:bc:9f:e7:4a:95:13:5a:b5:45:
e0:1d:03:0d:d1:2d:43:a4:7d:79:f1:e7:77:0e:7a:
8d:4d:e0:fa:18:cb:49:6b:8d:63:75:fe:01:f2:f1:
0b:5b:ff:01:2f:19:2f:4c:08:19:44:9f:c2:5e:38:
0b:aa:1c:a3:ca:19:1f:fc:50:bc:27:72:bc:1c:67:
ed:36:6e:88:3b:cc:36:02:d6:7f:fc:e8:4b:c2:c6:
22:c7:13:82:12:32:b8:58:77:b3:cd:31:81:9d:5e:
e9:21:90:25:43:01:9e:7e:5e:9c:82:4e:1a:7a:64:
87:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2F:0F:C6:73:E1:32:EC:7E:F6:DE:2C:6E:F1:82:5A:F8:9C:E4:6D
X509v3 Authority Key Identifier:
keyid:A6:1D:B7:8C:7F:21:28:58:66:DA:B4:A4:5A:54:4D:CE:55:9F:43:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ph23jH8hKFhm2rSkWlRNzlWfQ9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/55057b-a27a-4876-a6c5-c150dffff7d6/1/gy8PxnPhMux-9t4sbvGCWvic5G0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/55057b-a27a-4876-a6c5-c150dffff7d6/1/ph23jH8hKFhm2rSkWlRNzlWfQ9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.236.0/22
Signature Algorithm: sha256WithRSAEncryption
53:8e:8f:2d:b2:fd:e6:c0:f8:ad:01:7d:31:d4:1e:08:d2:45:
a2:46:95:df:13:c3:99:3c:07:83:fe:60:c1:e0:74:94:56:01:
26:a7:c8:d8:4e:3c:c5:09:9b:ef:6f:23:3d:ff:85:58:92:19:
52:d9:11:e8:22:f5:fa:77:6f:3c:e7:4a:98:d0:57:8f:fc:01:
38:af:b3:1a:ad:ef:0e:b0:77:73:6c:ee:a9:30:5d:db:37:c5:
98:ef:d7:d1:06:6b:77:6e:7d:98:95:7f:d8:bf:08:79:d2:98:
37:36:98:27:c2:52:7b:a5:20:26:d3:8b:7d:36:f5:ce:db:ee:
17:8e:04:5e:38:31:32:55:0f:ac:8f:29:98:e9:e4:49:ba:76:
d4:1d:a5:20:6e:40:88:02:69:8e:54:9a:19:ef:8e:1e:25:77:
e3:d3:e3:78:9d:28:fb:21:53:17:f6:ee:8b:b1:f3:5d:7a:cb:
9e:38:bb:71:9e:05:bf:b0:6c:1e:d5:1f:49:69:b8:e2:bf:b0:
21:42:ad:a2:e4:ec:10:4d:b2:0f:df:80:18:b4:1b:bb:35:78:
c3:3a:bb:9a:c4:49:37:7c:c1:9c:bc:b5:2c:ac:99:b0:38:44:
f5:37:4f:af:00:09:06:e2:68:85:63:59:f0:d5:b3:9f:1d:fa:
df:fa:42:1d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAr/xfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NjFkYjc4YzdmMjEyODU4NjZkYWI0YTQ1YTU0NGRjZTU1OWY0M2RhMB4XDTIyMDQy
ODA0NTUwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODMyZjBmYzY3M2Ux
MzJlYzdlZjZkZTJjNmVmMTgyNWFmODljZTQ2ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANIqJXYpWud/mFAgdtz/oaBrHpr7bLSdeLVlH8IgeKei9XAq
EivJK2CnX51HxkL7B2Qo30zvDhuUGGe1IpM8nCZgPs0o2wdTB6m/Ri8KHthpCX1K
DiYGIY8ZJKLjN+NZxK9Y1j15r4Pov7hVr/OZK1DXd69OOZ3m2xhtkwFnYuRPmGia
O1pmuP5vKEyzvJ/nSpUTWrVF4B0DDdEtQ6R9efHndw56jU3g+hjLSWuNY3X+AfLx
C1v/AS8ZL0wIGUSfwl44C6oco8oZH/xQvCdyvBxn7TZuiDvMNgLWf/zoS8LGIscT
ghIyuFh3s80xgZ1e6SGQJUMBnn5enIJOGnpkh9UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSDLw/Gc+Ey7H723ixu8YJa+JzkbTAfBgNVHSMEGDAWgBSmHbeMfyEoWGba
tKRaVE3OVZ9D2jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BoMjNqSDhoS0ZobTJyU2tXbFJOemxXZlE5by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWIvNTUwNTdiLWEyN2EtNDg3Ni1hNmM1LWMxNTBkZmZmZjdkNi8x
L2d5OFB4blBoTXV4LTl0NHNidkdDV3ZpYzVHMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIv
NTUwNTdiLWEyN2EtNDg3Ni1hNmM1LWMxNTBkZmZmZjdkNi8xL3BoMjNqSDhoS0Zo
bTJyU2tXbFJOemxXZlE5by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsEg7DANBgkqhkiG9w0BAQsFAAOC
AQEAU46PLbL95sD4rQF9MdQeCNJFokaV3xPDmTwHg/5gweB0lFYBJqfI2E48xQmb
728jPf+FWJIZUtkR6CL1+ndvPOdKmNBXj/wBOK+zGq3vDrB3c2zuqTBd2zfFmO/X
0QZrd259mJV/2L8IedKYNzaYJ8JSe6UgJtOLfTb1ztvuF44EXjgxMlUPrI8pmOnk
Sbp21B2lIG5AiAJpjlSaGe+OHiV349PjeJ0o+yFTF/bui7HzXXrLnji7cZ4Fv7Bs
HtUfSWm44r+wIUKtouTsEE2yD9+AGLQbuzV4wzq7msRJN3zBnLy1LKyZsDhE9TdP
rwAJBuJohWNZ8NWznx363/pCHQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:51 2025 by rpki-client