Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/2dec37-7d64-4e5c-ab87-a2f59cb52686/1/CBfyMWYeWYm-bK-8CmKxQHj06Bk.roa
File: CBfyMWYeWYm-bK-8CmKxQHj06Bk.roa (raw, json)
Hash identifier: YEGiFtt6qZdvVAEIXbxqfvXp472imHhICom58cKQntY=
Subject key identifier: 08:17:F2:31:66:1E:59:89:BE:6C:AF:BC:0A:62:B1:40:78:F4:E8:19
Certificate issuer: /CN=925a9ca5b49cef38ea627c9b20d470a7f599f608
Certificate serial: 018663242062CF898DCF9C572C46A367B962
Authority key identifier: 92:5A:9C:A5:B4:9C:EF:38:EA:62:7C:9B:20:D4:70:A7:F5:99:F6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klqcpbSc7zjqYnybINRwp_WZ9gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/2dec37-7d64-4e5c-ab87-a2f59cb52686/1/CBfyMWYeWYm-bK-8CmKxQHj06Bk.roa
Signing time: Sat 18 Feb 2023 06:09:17 +0000
ROA not before: Sat 18 Feb 2023 06:09:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 194.9.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:63:24:20:62:cf:89:8d:cf:9c:57:2c:46:a3:67:b9:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=925a9ca5b49cef38ea627c9b20d470a7f599f608
Validity
Not Before: Feb 18 06:09:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0817f231661e5989be6cafbc0a62b14078f4e819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:71:62:d5:7d:78:40:c1:0d:d9:3b:0d:cf:87:
a5:a9:4c:97:16:f7:f7:e7:99:ac:61:49:ab:fb:5e:
31:1a:96:80:e4:59:a5:02:90:82:9b:91:7f:93:15:
7a:07:fc:95:38:ee:cb:1f:e9:02:fe:14:7c:29:96:
61:57:0d:1a:6c:c1:f2:aa:21:97:c8:48:57:c0:96:
18:48:3d:be:15:c6:bf:e2:54:0b:0b:17:14:d6:48:
fb:cf:3d:3c:ea:3a:a0:f7:43:1c:b6:89:24:fe:83:
56:41:59:a4:5d:df:4e:93:2c:f2:bb:6a:58:38:0a:
a0:d8:8a:57:d0:15:a0:ab:95:fc:bb:fb:fc:85:14:
ee:98:e4:38:ac:c2:fe:86:f1:b1:05:11:b5:ec:8c:
16:e6:6d:a2:34:e9:01:b3:57:2a:35:da:82:ba:c0:
59:8c:14:80:54:e5:31:6c:c9:db:cd:f4:0d:d2:0b:
e2:44:f8:8b:e3:ad:dc:aa:1f:0b:0e:96:d9:f5:7e:
03:dc:d1:61:bd:17:03:da:39:7a:10:93:e7:f3:7f:
80:1a:3d:83:6b:95:23:24:01:6d:6f:c3:63:a6:ee:
e2:f4:58:48:db:67:a4:92:e7:45:83:16:5b:20:8e:
53:0c:74:38:24:8b:8b:9d:59:44:13:fd:17:09:ef:
a1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:17:F2:31:66:1E:59:89:BE:6C:AF:BC:0A:62:B1:40:78:F4:E8:19
X509v3 Authority Key Identifier:
keyid:92:5A:9C:A5:B4:9C:EF:38:EA:62:7C:9B:20:D4:70:A7:F5:99:F6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klqcpbSc7zjqYnybINRwp_WZ9gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2dec37-7d64-4e5c-ab87-a2f59cb52686/1/CBfyMWYeWYm-bK-8CmKxQHj06Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2dec37-7d64-4e5c-ab87-a2f59cb52686/1/klqcpbSc7zjqYnybINRwp_WZ9gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.181.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:5c:81:e3:c0:ac:5b:3e:a6:33:5e:4d:e1:d6:d2:26:1e:b2:
34:52:a9:e3:67:32:2e:cd:1e:8f:c4:d2:ad:af:7d:c4:95:8e:
2b:73:f1:b4:1a:83:e4:b7:31:82:5a:4b:4f:46:cd:05:a3:d2:
7c:08:a9:9f:10:3b:90:5f:e6:e3:ff:ea:84:40:aa:28:c2:3d:
14:a8:1e:a7:11:00:c3:da:d0:6d:85:37:77:21:dd:bc:8d:6b:
95:74:e7:bc:d5:00:90:15:33:75:df:17:1b:a8:3e:fe:72:d8:
e6:1a:ba:11:f9:0a:5f:2c:cb:91:13:1d:c4:ff:07:14:ae:8e:
fb:0f:05:62:76:cf:28:e3:d8:98:13:63:8e:5f:2b:25:3a:da:
a3:19:1d:e9:bd:a8:f1:93:f5:79:0a:57:3b:98:df:76:49:80:
a3:30:21:0f:d0:01:fc:f4:11:ed:e4:ee:56:eb:69:aa:e2:6c:
bb:2a:0e:5b:cd:5e:55:0a:61:cf:42:80:d1:bd:6b:70:36:3e:
1a:a1:04:f0:35:ed:5e:6e:c3:bd:f8:87:2d:8b:7b:a1:5e:87:
27:a4:d0:5e:7e:d9:36:b7:05:5c:c2:4b:bd:60:69:7d:a4:8c:
d3:bc:4f:2b:f6:fc:a6:76:be:e8:97:5b:ca:94:6a:8f:02:9d:
fe:d8:d6:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZjJCBiz4mNz5xXLEajZ7liMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNWE5Y2E1YjQ5Y2VmMzhlYTYyN2M5YjIwZDQ3MGE3ZjU5
OWY2MDgwHhcNMjMwMjE4MDYwOTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODE3ZjIzMTY2MWU1OTg5YmU2Y2FmYmMwYTYyYjE0MDc4ZjRlODE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXFi1X14QMEN2TsNz4elqUyXFvf3
55msYUmr+14xGpaA5FmlApCCm5F/kxV6B/yVOO7LH+kC/hR8KZZhVw0abMHyqiGX
yEhXwJYYSD2+Fca/4lQLCxcU1kj7zz086jqg90Mctokk/oNWQVmkXd9Okyzyu2pY
OAqg2IpX0BWgq5X8u/v8hRTumOQ4rML+hvGxBRG17IwW5m2iNOkBs1cqNdqCusBZ
jBSAVOUxbMnbzfQN0gviRPiL463cqh8LDpbZ9X4D3NFhvRcD2jl6EJPn83+AGj2D
a5UjJAFtb8Njpu7i9FhI22ekkudFgxZbII5TDHQ4JIuLnVlEE/0XCe+h1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAgX8jFmHlmJvmyvvApisUB49OgZMB8GA1UdIwQY
MBaAFJJanKW0nO846mJ8myDUcKf1mfYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2xxY3BiU2M3empxWW55YklOUndwX1daOWdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8yZGVjMzctN2Q2NC00ZTVjLWFiODct
YTJmNTljYjUyNjg2LzEvQ0JmeU1XWWVXWW0tYkstOENtS3hRSGowNkJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC8yZGVjMzctN2Q2NC00ZTVjLWFiODctYTJmNTljYjUyNjg2
LzEva2xxY3BiU2M3empxWW55YklOUndwX1daOWdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgm1MA0G
CSqGSIb3DQEBCwUAA4IBAQChXIHjwKxbPqYzXk3h1tImHrI0UqnjZzIuzR6PxNKt
r33ElY4rc/G0GoPktzGCWktPRs0Fo9J8CKmfEDuQX+bj/+qEQKoowj0UqB6nEQDD
2tBthTd3Id28jWuVdOe81QCQFTN13xcbqD7+ctjmGroR+QpfLMuREx3E/wcUro77
DwVids8o49iYE2OOXyslOtqjGR3pvajxk/V5Clc7mN92SYCjMCEP0AH89BHt5O5W
62mq4my7Kg5bzV5VCmHPQoDRvWtwNj4aoQTwNe1ebsO9+Icti3uhXocnpNBeftk2
twVcwku9YGl9pIzTvE8r9vymdr7ol1vKlGqPAp3+2NbI
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:28 2025 by rpki-client