Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/pp-f8WEoOswXhFWzoQwcW34m8I8.roa
File: pp-f8WEoOswXhFWzoQwcW34m8I8.roa (raw, json)
Hash identifier: 4/7YBwVpZ5svZjTD7gTJ+o41UPdjCGVqAv8BhdVhc+E=
Subject key identifier: A6:9F:9F:F1:61:28:3A:CC:17:84:55:B3:A1:0C:1C:5B:7E:26:F0:8F
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0184894D71A74F39D1CE450C276507445A34
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/pp-f8WEoOswXhFWzoQwcW34m8I8.roa
Signing time: Fri 18 Nov 2022 05:54:24 +0000
ROA not before: Fri 18 Nov 2022 05:54:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61302
IP address blocks: 5.178.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:89:4d:71:a7:4f:39:d1:ce:45:0c:27:65:07:44:5a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Nov 18 05:54:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a69f9ff161283acc178455b3a10c1c5b7e26f08f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:3c:99:ba:95:2c:c9:d9:c9:21:c3:3c:e2:46:
93:7d:0f:82:f8:63:9c:84:23:d1:89:86:19:c1:fd:
32:6d:58:50:53:b0:9b:06:7b:03:12:8f:7c:c7:aa:
68:07:87:71:41:59:e1:42:8f:42:1a:15:1d:c7:f2:
f1:e4:0c:90:61:7b:ad:88:43:66:50:2e:51:b8:9f:
7b:74:64:92:d3:1e:f7:81:ef:07:c8:eb:bc:7f:30:
7b:84:18:2e:2f:f6:8e:33:a8:7c:c4:0f:c4:33:a6:
88:23:87:fa:b7:5c:f6:4f:6c:2c:06:6f:e0:5c:47:
5e:4c:51:88:5a:e2:9d:d2:df:76:70:ce:8f:70:60:
00:8e:ff:a9:0b:de:55:68:bd:10:58:89:93:6c:7d:
88:45:82:14:b2:84:44:01:d2:5b:e5:ce:2b:f0:46:
23:55:a5:6e:55:3e:28:01:92:03:9d:00:3b:4a:44:
53:54:a3:bc:82:8b:bb:16:14:e2:3f:77:71:c4:bd:
5a:bf:38:de:06:cf:6a:54:89:be:b3:cb:2a:32:9b:
70:69:9c:d0:0f:cd:94:99:e9:2b:c5:4d:5c:a0:11:
47:99:c7:f2:4d:6f:5b:35:1a:0d:d1:f3:ac:93:b6:
52:f4:1b:45:16:b7:d5:ce:ee:e7:17:c7:2b:db:8c:
ac:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:9F:9F:F1:61:28:3A:CC:17:84:55:B3:A1:0C:1C:5B:7E:26:F0:8F
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/pp-f8WEoOswXhFWzoQwcW34m8I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.2.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:45:8c:d2:7f:7d:ca:db:b8:54:7d:de:fa:7e:df:cc:cd:e2:
75:12:16:c9:2c:d2:f4:55:65:a8:91:7e:1c:7e:b9:d9:31:42:
05:cb:c2:dd:48:53:ae:d3:0c:09:e0:44:0c:bd:e6:bd:ce:23:
11:16:d7:a5:22:74:14:c9:c1:b6:e6:fe:5e:03:e9:a6:37:79:
31:dc:71:e2:dd:a8:33:ce:9b:8a:e3:43:a9:ec:99:5c:d1:33:
da:2d:a8:d7:2b:5b:c4:ec:c1:8b:3d:61:18:85:ae:3d:21:ea:
b6:c0:22:2b:a0:6e:ba:77:73:6a:d5:c9:38:33:1a:71:df:91:
55:be:e4:ac:27:a0:08:38:59:ac:af:bd:ff:8e:df:90:33:a3:
92:16:22:34:ad:d4:42:44:8c:df:22:b4:1b:24:87:ec:ab:d7:
20:35:57:8a:16:91:02:a2:13:08:d5:af:16:9b:a3:72:5b:94:
fa:9d:49:71:52:41:b1:d2:07:d0:3e:6a:06:12:59:d9:87:3a:
0a:8e:14:7b:01:a9:fc:51:0b:bc:1c:9f:41:45:0b:9e:54:85:
b5:fc:fb:94:e5:03:a8:ad:47:c9:93:61:26:81:34:79:e1:7f:
52:62:e2:a3:82:3d:88:80:81:cb:83:25:d8:20:2c:32:0b:dd:
07:72:ef:ae
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSJTXGnTznRzkUMJ2UHRFo0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjIxMTE4MDU1NDI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjlmOWZmMTYxMjgzYWNjMTc4NDU1YjNhMTBjMWM1YjdlMjZmMDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhzyZupUsydnJIcM84kaTfQ+C+GOc
hCPRiYYZwf0ybVhQU7CbBnsDEo98x6poB4dxQVnhQo9CGhUdx/Lx5AyQYXutiENm
UC5RuJ97dGSS0x73ge8HyOu8fzB7hBguL/aOM6h8xA/EM6aII4f6t1z2T2wsBm/g
XEdeTFGIWuKd0t92cM6PcGAAjv+pC95VaL0QWImTbH2IRYIUsoREAdJb5c4r8EYj
VaVuVT4oAZIDnQA7SkRTVKO8gou7FhTiP3dxxL1avzjeBs9qVIm+s8sqMptwaZzQ
D82UmekrxU1coBFHmcfyTW9bNRoN0fOsk7ZS9BtFFrfVzu7nF8cr24ysWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKafn/FhKDrMF4RVs6EMHFt+JvCPMB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvcHAtZjhXRW9Pc3dYaEZXem9Rd2NXMzRtOEk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbICMA0G
CSqGSIb3DQEBCwUAA4IBAQDMRYzSf33K27hUfd76ft/MzeJ1EhbJLNL0VWWokX4c
frnZMUIFy8LdSFOu0wwJ4EQMvea9ziMRFtelInQUycG25v5eA+mmN3kx3HHi3agz
zpuK40Op7Jlc0TPaLajXK1vE7MGLPWEYha49Ieq2wCIroG66d3Nq1ck4Mxpx35FV
vuSsJ6AIOFmsr73/jt+QM6OSFiI0rdRCRIzfIrQbJIfsq9cgNVeKFpECohMI1a8W
m6NyW5T6nUlxUkGx0gfQPmoGElnZhzoKjhR7Aan8UQu8HJ9BRQueVIW1/PuU5QOo
rUfJk2EmgTR54X9SYuKjgj2IgIHLgyXYICwyC90Hcu+u
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:56 2025 by rpki-client