Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/c71dd4-27ce-4925-9f8a-08ffa7c5ae03/1/0_Y0mkHj_RkR1fODR_C3M6lv4ac.roa
File: 0_Y0mkHj_RkR1fODR_C3M6lv4ac.roa (raw, json)
Hash identifier: cRa10Oj34UgHNP34iGGiKA26sN9+aHD3RYiv0w0X5a0=
Subject key identifier: D3:F6:34:9A:41:E3:FD:19:11:D5:F3:83:47:F0:B7:33:A9:6F:E1:A7
Certificate issuer: /CN=cdf60ebe1ab3ef190fd17b308ef08a93dbaf1cd4
Certificate serial: 9A9489
Authority key identifier: CD:F6:0E:BE:1A:B3:EF:19:0F:D1:7B:30:8E:F0:8A:93:DB:AF:1C:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zfYOvhqz7xkP0XswjvCKk9uvHNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/c71dd4-27ce-4925-9f8a-08ffa7c5ae03/1/0_Y0mkHj_RkR1fODR_C3M6lv4ac.roa
Signing time: Sat 01 Jan 2022 02:56:01 +0000
ROA not before: Sat 01 Jan 2022 02:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205499
IP address blocks: 185.188.10.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10130569 (0x9a9489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdf60ebe1ab3ef190fd17b308ef08a93dbaf1cd4
Validity
Not Before: Jan 1 02:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3f6349a41e3fd1911d5f38347f0b733a96fe1a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a9:eb:f0:b2:c7:56:e1:6b:97:b9:fe:84:ea:
63:2c:f3:19:25:ca:fe:79:27:67:82:1f:7f:2a:38:
ed:9c:ec:41:22:a4:ea:76:b4:5d:57:58:92:c6:0f:
38:a7:98:2f:32:5d:2b:83:c8:d3:36:4a:45:90:1a:
10:55:fa:1c:00:3f:a4:88:f9:85:7e:f1:a9:f4:60:
29:75:e8:9c:f2:42:9c:66:3a:85:01:42:f8:c7:6f:
f0:c3:35:0a:15:c8:0d:df:a1:cd:13:fb:2d:3d:9d:
bb:da:fb:3c:63:2c:87:69:8c:71:e1:27:2d:34:13:
4a:bf:c8:1e:4d:fc:04:a1:c6:fb:ca:da:16:92:c9:
30:03:98:f9:7a:51:17:73:8c:d1:8d:18:04:09:94:
5a:3d:6c:90:da:f7:c5:17:80:6a:16:f9:22:1a:93:
ef:65:68:6c:90:3c:3b:63:2d:ba:46:33:ce:75:6f:
01:c4:45:32:55:ed:4a:56:04:fe:7e:8e:db:49:24:
5b:a8:57:87:01:ad:42:36:6a:8f:17:da:63:73:4e:
25:68:e0:24:e1:c6:41:20:01:bd:4f:95:78:96:6b:
5f:58:bb:2a:03:ec:30:43:29:d5:0d:58:6b:de:28:
56:d8:9a:47:25:f6:8c:d4:0e:8d:17:3d:b1:35:fa:
d6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F6:34:9A:41:E3:FD:19:11:D5:F3:83:47:F0:B7:33:A9:6F:E1:A7
X509v3 Authority Key Identifier:
keyid:CD:F6:0E:BE:1A:B3:EF:19:0F:D1:7B:30:8E:F0:8A:93:DB:AF:1C:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfYOvhqz7xkP0XswjvCKk9uvHNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/c71dd4-27ce-4925-9f8a-08ffa7c5ae03/1/0_Y0mkHj_RkR1fODR_C3M6lv4ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/c71dd4-27ce-4925-9f8a-08ffa7c5ae03/1/zfYOvhqz7xkP0XswjvCKk9uvHNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.10.0/23
Signature Algorithm: sha256WithRSAEncryption
57:7a:b1:e8:f1:af:27:33:b3:96:72:a4:92:4a:35:f0:ae:69:
6d:d5:00:86:23:f7:66:3d:39:9b:2c:87:98:9b:95:86:0a:28:
35:e7:74:2d:d1:f1:b0:45:53:15:58:05:6a:f0:c8:9d:0e:9a:
93:10:92:1f:5e:ae:62:65:1e:ec:d2:96:13:7f:18:58:9b:15:
8e:8f:cc:91:41:c3:8d:b9:7f:40:66:8c:4a:23:f0:48:a5:a6:
f9:a6:e2:48:7b:ab:11:7a:dd:0f:8f:17:22:bf:f6:05:a5:0a:
06:3c:60:c7:8d:f5:6b:22:ca:64:9a:07:1b:fb:2e:f2:f2:59:
14:22:e2:fa:a9:23:33:31:ee:8e:4d:34:d6:00:d2:e6:22:f0:
38:55:62:7d:aa:92:6c:79:5b:2e:03:ad:c8:28:63:25:3b:29:
d1:1b:6b:42:e7:5b:56:4a:5d:a3:43:5d:23:28:6d:70:0c:49:
89:a5:c6:0e:2f:7d:59:73:87:23:28:7f:ba:5b:06:16:2d:ae:
94:89:d1:40:20:b7:04:15:97:6f:cd:19:56:8c:2e:73:fc:39:
8b:66:3c:0b:43:01:01:7e:82:fa:fe:8f:20:b8:01:6d:d9:ca:
53:1e:9c:60:ae:1a:43:52:41:8c:f7:72:0f:8f:51:e8:b0:23:
21:11:61:c7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJqUiTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZGY2MGViZTFhYjNlZjE5MGZkMTdiMzA4ZWYwOGE5M2RiYWYxY2Q0MB4XDTIyMDEw
MTAyNTYwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDNmNjM0OWE0MWUz
ZmQxOTExZDVmMzgzNDdmMGI3MzNhOTZmZTFhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIap6/Cyx1bha5e5/oTqYyzzGSXK/nknZ4Iffyo47ZzsQSKk
6na0XVdYksYPOKeYLzJdK4PI0zZKRZAaEFX6HAA/pIj5hX7xqfRgKXXonPJCnGY6
hQFC+Mdv8MM1ChXIDd+hzRP7LT2du9r7PGMsh2mMceEnLTQTSr/IHk38BKHG+8ra
FpLJMAOY+XpRF3OM0Y0YBAmUWj1skNr3xReAahb5IhqT72VobJA8O2MtukYzznVv
AcRFMlXtSlYE/n6O20kkW6hXhwGtQjZqjxfaY3NOJWjgJOHGQSABvU+VeJZrX1i7
KgPsMEMp1Q1Ya94oVtiaRyX2jNQOjRc9sTX61rcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTT9jSaQeP9GRHV84NH8LczqW/hpzAfBgNVHSMEGDAWgBTN9g6+GrPvGQ/R
ezCO8IqT268c1DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pmWU92aHF6N3hrUDBYc3dqdkNLazl1dkhOUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWYvYzcxZGQ0LTI3Y2UtNDkyNS05ZjhhLTA4ZmZhN2M1YWUwMy8x
LzBfWTBta0hqX1JrUjFmT0RSX0MzTTZsdjRhYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWYv
YzcxZGQ0LTI3Y2UtNDkyNS05ZjhhLTA4ZmZhN2M1YWUwMy8xL3pmWU92aHF6N3hr
UDBYc3dqdkNLazl1dkhOUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbm8CjANBgkqhkiG9w0BAQsFAAOC
AQEAV3qx6PGvJzOzlnKkkko18K5pbdUAhiP3Zj05myyHmJuVhgooNed0LdHxsEVT
FVgFavDInQ6akxCSH16uYmUe7NKWE38YWJsVjo/MkUHDjbl/QGaMSiPwSKWm+abi
SHurEXrdD48XIr/2BaUKBjxgx431ayLKZJoHG/su8vJZFCLi+qkjMzHujk001gDS
5iLwOFVifaqSbHlbLgOtyChjJTsp0RtrQudbVkpdo0NdIyhtcAxJiaXGDi99WXOH
Iyh/ulsGFi2ulInRQCC3BBWXb80ZVowuc/w5i2Y8C0MBAX6C+v6PILgBbdnKUx6c
YK4aQ1JBjPdyD49R6LAjIRFhxw==
-----END CERTIFICATE-----
Generated at Wed Apr 16 21:59:34 2025 by rpki-client