Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/41a166-3a00-49bc-935d-56b65b91a73c/1/UXcHNRDTyy3PiUqS2xFpW1tKLYo.roa
File: UXcHNRDTyy3PiUqS2xFpW1tKLYo.roa (raw, json)
Hash identifier: BltR1oVh4LzI1B9mL1LTvil5PzPzPEDEKGPAhFkqH3c=
Subject key identifier: 51:77:07:35:10:D3:CB:2D:CF:89:4A:92:DB:11:69:5B:5B:4A:2D:8A
Certificate issuer: /CN=ef2a98b221abe4dd95999eef292ff0bea41218ac
Certificate serial: 019421B1DDA629B14DE142FF054707ED6458
Authority key identifier: EF:2A:98:B2:21:AB:E4:DD:95:99:9E:EF:29:2F:F0:BE:A4:12:18:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7yqYsiGr5N2VmZ7vKS_wvqQSGKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/41a166-3a00-49bc-935d-56b65b91a73c/1/UXcHNRDTyy3PiUqS2xFpW1tKLYo.roa
Signing time: Wed 01 Jan 2025 11:48:12 +0000
ROA not before: Wed 01 Jan 2025 11:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12637
IP address blocks: 93.157.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:dd:a6:29:b1:4d:e1:42:ff:05:47:07:ed:64:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef2a98b221abe4dd95999eef292ff0bea41218ac
Validity
Not Before: Jan 1 11:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5177073510d3cb2dcf894a92db11695b5b4a2d8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a4:5a:d5:17:fc:d5:9a:90:32:e9:cc:55:c0:
c4:05:d6:5b:43:bb:cf:36:dc:93:c6:ce:b3:55:d9:
7d:21:05:98:3c:23:ea:f1:d3:2c:06:9c:e0:3c:17:
0e:4c:b2:fa:b5:f3:d4:81:fa:56:b0:44:ed:39:6b:
17:77:13:a0:2c:5a:53:57:2a:81:0a:0d:86:12:95:
2d:29:f0:35:3e:a6:83:07:8b:ca:8d:62:cc:b6:e7:
74:a2:50:a3:98:9d:3b:a3:d7:ca:47:c0:02:d0:d6:
f2:73:78:3e:27:44:09:8b:90:c1:20:da:03:1d:6f:
32:d5:74:94:b7:3d:09:a3:46:e7:6c:66:f2:15:f8:
74:0e:d0:fc:1f:50:75:22:93:bc:59:03:11:ed:dc:
22:7b:3a:83:61:9b:52:ae:43:f4:3a:87:10:dc:cb:
f9:fc:49:db:e4:6a:89:ef:4b:95:a4:76:f2:b1:e5:
e3:0b:91:21:f5:4b:96:a0:d3:89:d1:20:d6:90:8d:
20:1b:86:99:60:94:21:29:3e:b0:88:9e:36:00:53:
ee:f1:7a:2c:95:ad:36:d8:77:ff:50:37:d4:0f:fb:
51:0a:90:47:56:7a:79:35:f2:85:bc:e7:26:64:06:
1a:08:2b:92:81:94:b1:8e:02:0b:46:98:97:78:ce:
04:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:77:07:35:10:D3:CB:2D:CF:89:4A:92:DB:11:69:5B:5B:4A:2D:8A
X509v3 Authority Key Identifier:
keyid:EF:2A:98:B2:21:AB:E4:DD:95:99:9E:EF:29:2F:F0:BE:A4:12:18:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7yqYsiGr5N2VmZ7vKS_wvqQSGKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/41a166-3a00-49bc-935d-56b65b91a73c/1/UXcHNRDTyy3PiUqS2xFpW1tKLYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/41a166-3a00-49bc-935d-56b65b91a73c/1/7yqYsiGr5N2VmZ7vKS_wvqQSGKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.185.0/24
Signature Algorithm: sha256WithRSAEncryption
17:3b:62:5f:71:0d:1e:e0:73:d9:64:ab:da:03:78:0a:4e:97:
28:e5:20:78:87:9c:18:ed:26:88:74:4c:21:74:3a:30:46:d3:
03:8d:bc:27:e5:bd:ac:1f:49:21:a1:6c:87:36:ff:e4:00:cb:
62:9e:81:7b:2f:1a:57:09:ff:48:52:a7:14:4a:c1:b1:20:64:
67:5c:9d:54:b1:96:aa:09:7e:ea:6c:3f:95:f7:17:6f:e7:b5:
be:a6:0f:9e:87:40:b3:13:fd:b3:11:f6:37:1d:c9:9b:87:02:
e7:63:29:42:62:db:16:86:a8:18:1b:58:30:16:92:16:95:15:
35:a8:0f:21:91:72:45:76:6d:d6:2c:8a:6c:8d:10:c2:b9:46:
a5:68:7f:c9:87:2c:31:23:12:f2:27:9d:7a:79:2f:4e:de:1a:
c4:81:30:a0:bc:18:3f:be:8a:ff:3c:74:34:2e:d5:3d:dc:b1:
00:eb:ce:eb:d4:18:da:0a:4f:6b:8f:88:9a:32:7c:f0:50:85:
9d:36:8e:45:bd:ac:e8:6c:53:a6:b3:1c:9b:f1:73:d8:51:c9:
e2:fd:d3:e1:7d:e2:f4:24:c5:15:d7:70:b3:ea:d5:fb:d3:ec:
5a:25:3f:f5:2b:a7:b1:f2:a4:10:79:70:71:6c:7a:1e:99:4a:
5e:92:73:66
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsd2mKbFN4UL/BUcH7WRYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmMmE5OGIyMjFhYmU0ZGQ5NTk5OWVlZjI5MmZmMGJlYTQx
MjE4YWMwHhcNMjUwMTAxMTE0ODEyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTc3MDczNTEwZDNjYjJkY2Y4OTRhOTJkYjExNjk1YjViNGEyZDhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3KRa1Rf81ZqQMunMVcDEBdZbQ7vP
NtyTxs6zVdl9IQWYPCPq8dMsBpzgPBcOTLL6tfPUgfpWsETtOWsXdxOgLFpTVyqB
Cg2GEpUtKfA1PqaDB4vKjWLMtud0olCjmJ07o9fKR8AC0Nbyc3g+J0QJi5DBINoD
HW8y1XSUtz0Jo0bnbGbyFfh0DtD8H1B1IpO8WQMR7dwiezqDYZtSrkP0OocQ3Mv5
/Enb5GqJ70uVpHbyseXjC5Eh9UuWoNOJ0SDWkI0gG4aZYJQhKT6wiJ42AFPu8Xos
la022Hf/UDfUD/tRCpBHVnp5NfKFvOcmZAYaCCuSgZSxjgILRpiXeM4ESwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFF3BzUQ08stz4lKktsRaVtbSi2KMB8GA1UdIwQY
MBaAFO8qmLIhq+TdlZme7ykv8L6kEhisMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3lxWXNpR3I1TjJWbVo3dktTX3d2cVFTR0t3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC80MWExNjYtM2EwMC00OWJjLTkzNWQt
NTZiNjViOTFhNzNjLzEvVVhjSE5SRFR5eTNQaVVxUzJ4RnBXMXRLTFlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC80MWExNjYtM2EwMC00OWJjLTkzNWQtNTZiNjViOTFhNzNj
LzEvN3lxWXNpR3I1TjJWbVo3dktTX3d2cVFTR0t3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXZ25MA0G
CSqGSIb3DQEBCwUAA4IBAQAXO2JfcQ0e4HPZZKvaA3gKTpco5SB4h5wY7SaIdEwh
dDowRtMDjbwn5b2sH0khoWyHNv/kAMtinoF7LxpXCf9IUqcUSsGxIGRnXJ1UsZaq
CX7qbD+V9xdv57W+pg+eh0CzE/2zEfY3HcmbhwLnYylCYtsWhqgYG1gwFpIWlRU1
qA8hkXJFdm3WLIpsjRDCuUalaH/JhywxIxLyJ516eS9O3hrEgTCgvBg/vor/PHQ0
LtU93LEA687r1BjaCk9rj4iaMnzwUIWdNo5FvazobFOmsxyb8XPYUcni/dPhfeL0
JMUV13Cz6tX70+xaJT/1K6ex8qQQeXBxbHoemUpeknNm
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:42:00 2025 by rpki-client