Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/c4GjJYQTEh2o-lSPEZIBXS6XrzE.roa
File: c4GjJYQTEh2o-lSPEZIBXS6XrzE.roa (raw, json)
Hash identifier: luBg7C335NWqc9Xzt2TCLJ/Ltm5e+LsoeEEABJnQl8o=
Subject key identifier: 73:81:A3:25:84:13:12:1D:A8:FA:54:8F:11:92:01:5D:2E:97:AF:31
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0182C006520F87D4C9D34CB9504B3C22574A
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/c4GjJYQTEh2o-lSPEZIBXS6XrzE.roa
Signing time: Sun 21 Aug 2022 10:50:15 +0000
ROA not before: Sun 21 Aug 2022 10:50:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 46.23.98.0/24 maxlen: 24
46.23.96.0/24 maxlen: 24
164.215.100.0/24 maxlen: 24
46.23.99.0/24 maxlen: 24
46.23.111.0/24 maxlen: 24
46.23.108.0/24 maxlen: 24
5.178.0.0/22 maxlen: 22
185.81.216.0/22 maxlen: 22
88.151.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c0:06:52:0f:87:d4:c9:d3:4c:b9:50:4b:3c:22:57:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Aug 21 10:50:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7381a3258413121da8fa548f1192015d2e97af31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a8:60:ab:e8:d9:ef:27:ad:51:68:30:e8:39:
9d:6e:d6:27:8c:55:44:11:8c:5d:0b:c9:93:e7:6a:
7a:13:4d:b0:ff:1a:07:c0:fa:b8:0c:52:e8:29:45:
43:13:6b:8f:8a:22:a5:12:93:ec:d6:88:dd:3a:e7:
87:b1:90:ff:82:9e:89:d7:b5:33:5c:2f:07:d4:e2:
a4:b5:a4:8d:c8:bb:96:60:7c:4b:a2:cc:22:8b:4a:
8f:af:54:7f:b0:5f:f5:b9:d4:fa:fb:61:e7:b7:72:
d4:02:14:cf:46:f9:e2:7e:e4:e5:2b:bf:3d:05:14:
97:18:c1:60:cd:de:53:38:ac:9c:b6:91:4b:3b:f0:
70:3c:39:aa:1d:22:d9:cb:f6:31:73:6d:df:34:f4:
0e:41:b4:81:a2:2a:2d:7e:62:1b:2e:bf:13:13:c7:
3e:3c:db:66:11:40:8e:6b:b7:18:44:91:6d:53:22:
dd:fc:70:1a:31:96:cb:e7:ac:a7:ff:6f:0f:f9:65:
3a:c2:62:26:90:52:ae:23:55:e7:28:e9:09:4a:2f:
25:ec:a1:b4:89:fa:69:e1:51:71:fb:75:fe:5a:27:
65:cb:41:ef:2a:65:e2:c2:1a:72:40:19:aa:6e:a2:
bd:f6:07:ae:a1:35:e4:19:95:66:55:e4:aa:76:0f:
ef:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:81:A3:25:84:13:12:1D:A8:FA:54:8F:11:92:01:5D:2E:97:AF:31
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/c4GjJYQTEh2o-lSPEZIBXS6XrzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.0.0/22
46.23.96.0/24
46.23.98.0/23
46.23.108.0/24
46.23.111.0/24
88.151.195.0/24
164.215.100.0/24
185.81.216.0/22
Signature Algorithm: sha256WithRSAEncryption
96:27:1d:10:8a:51:a6:0a:12:ce:43:1d:1d:c7:7f:92:15:a6:
57:78:75:90:8f:c8:9e:5c:9f:bd:53:e2:bd:33:f1:b0:1a:b8:
1b:74:b4:2d:e3:31:ae:01:b0:82:8e:e7:c0:52:d9:69:93:0a:
e8:25:fb:0d:da:74:9d:e8:8b:18:87:40:5a:e8:62:ef:7c:af:
f3:8e:9e:a3:10:f8:8a:84:b4:e7:19:10:97:80:ef:0a:7c:25:
39:4a:f5:d8:c1:7b:fd:32:58:cd:9e:53:85:57:b0:08:c4:70:
3d:59:49:7e:6d:00:0e:98:2e:ff:b8:4e:8b:03:53:e9:b2:40:
24:98:0c:1d:54:ac:a2:52:09:94:6e:01:54:22:e2:2c:9f:20:
bb:75:41:c8:10:c0:f4:d7:47:e6:8d:62:e0:0c:cb:cf:da:f7:
c3:a5:c2:2b:3e:3c:cc:98:49:c7:82:1a:1c:40:b8:47:20:8a:
9c:d6:67:e1:ae:e6:34:5c:0d:8f:2c:7d:b1:01:a8:e1:46:99:
84:ac:bf:71:5c:93:f0:25:ca:aa:a5:03:b3:44:4b:6a:d9:78:
d5:a5:74:92:b9:77:9a:22:73:65:db:a8:1f:c0:48:a8:81:3b:
11:96:9f:e1:3b:e1:bb:6d:de:26:b2:b9:d8:f7:56:9c:32:65:
8b:08:92:7e
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAYLABlIPh9TJ00y5UEs8IldKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjIwODIxMTA1MDE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzgxYTMyNTg0MTMxMjFkYThmYTU0OGYxMTkyMDE1ZDJlOTdhZjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiKhgq+jZ7yetUWgw6DmdbtYnjFVE
EYxdC8mT52p6E02w/xoHwPq4DFLoKUVDE2uPiiKlEpPs1ojdOueHsZD/gp6J17Uz
XC8H1OKktaSNyLuWYHxLoswii0qPr1R/sF/1udT6+2Hnt3LUAhTPRvnifuTlK789
BRSXGMFgzd5TOKyctpFLO/BwPDmqHSLZy/Yxc23fNPQOQbSBoiotfmIbLr8TE8c+
PNtmEUCOa7cYRJFtUyLd/HAaMZbL56yn/28P+WU6wmImkFKuI1XnKOkJSi8l7KG0
ifpp4VFx+3X+Widly0HvKmXiwhpyQBmqbqK99geuoTXkGZVmVeSqdg/vMQIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFHOBoyWEExIdqPpUjxGSAV0ul68xMB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvYzRHakpZUVRFaDJvLWxTUEVaSUJYUzZYcnpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCBbIAAwQA
LhdgAwQBLhdiAwQALhdsAwQALhdvAwQAWJfDAwQApNdkAwQCuVHYMA0GCSqGSIb3
DQEBCwUAA4IBAQCWJx0QilGmChLOQx0dx3+SFaZXeHWQj8ieXJ+9U+K9M/GwGrgb
dLQt4zGuAbCCjufAUtlpkwroJfsN2nSd6IsYh0Ba6GLvfK/zjp6jEPiKhLTnGRCX
gO8KfCU5SvXYwXv9MljNnlOFV7AIxHA9WUl+bQAOmC7/uE6LA1PpskAkmAwdVKyi
UgmUbgFUIuIsnyC7dUHIEMD010fmjWLgDMvP2vfDpcIrPjzMmEnHghocQLhHIIqc
1mfhruY0XA2PLH2xAajhRpmErL9xXJPwJcqqpQOzREtq2XjVpXSSuXeaInNl26gf
wEiogTsRlp/hO+G7bd4msrnY91acMmWLCJJ+
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:45 2025 by rpki-client