Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ce8619-0b3c-4d15-bd7b-c0e72e2ab802/1/kMibTH4Hc9jTwfnlZl1vzB4PReE.roa
File: kMibTH4Hc9jTwfnlZl1vzB4PReE.roa (raw, json)
Hash identifier: /5X3nHf4I7Yw8pruFBWS30P8pgNdR1MWHaWuYc5dhz8=
Subject key identifier: 90:C8:9B:4C:7E:07:73:D8:D3:C1:F9:E5:66:5D:6F:CC:1E:0F:45:E1
Certificate issuer: /CN=cefff6ae51ea2a679f745fd8cc3984315e57299b
Certificate serial: 047826FF
Authority key identifier: CE:FF:F6:AE:51:EA:2A:67:9F:74:5F:D8:CC:39:84:31:5E:57:29:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zv_2rlHqKmefdF_YzDmEMV5XKZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ce8619-0b3c-4d15-bd7b-c0e72e2ab802/1/kMibTH4Hc9jTwfnlZl1vzB4PReE.roa
Signing time: Sat 01 Jan 2022 13:58:37 +0000
ROA not before: Sat 01 Jan 2022 13:58:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211017
IP address blocks: 194.50.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74983167 (0x47826ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefff6ae51ea2a679f745fd8cc3984315e57299b
Validity
Not Before: Jan 1 13:58:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90c89b4c7e0773d8d3c1f9e5665d6fcc1e0f45e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:98:21:2c:4e:44:16:4e:be:67:4f:90:ca:0e:
47:aa:11:c1:e8:37:ff:c7:5e:c6:29:74:f8:5e:61:
d1:67:5b:97:02:41:89:d2:1f:2d:60:45:1e:0e:de:
15:7f:ed:8a:08:d7:a6:6d:3c:5b:bf:57:0f:d3:63:
db:c5:d7:96:07:78:e6:ef:87:58:f1:21:91:b9:3c:
50:3d:43:8e:0a:7f:25:48:ec:36:93:b7:30:ab:e3:
32:0b:02:dd:d1:70:e5:fc:92:33:64:70:d5:0c:3b:
c4:89:1f:05:e2:1f:5e:4e:d9:94:41:fe:02:e8:13:
45:fd:f1:ee:06:28:16:0a:c1:03:8f:dc:a1:28:75:
01:f2:c9:64:a5:c3:f5:4a:7a:71:54:de:7f:b3:03:
38:91:df:3e:1b:0e:a7:0b:29:9d:ac:20:c8:41:3b:
3f:ea:9e:a2:66:ef:09:36:2d:1e:f5:24:7a:b3:4e:
76:e6:14:c9:03:e1:da:8d:0b:36:a7:d5:0c:76:93:
01:96:78:80:31:4b:ee:df:90:dc:c7:f0:43:9c:2c:
85:1a:5c:6a:85:a9:a3:1e:bd:c5:12:a1:9f:e9:92:
34:43:2f:47:4a:56:58:35:11:b0:c9:21:d6:3b:fd:
aa:dd:ef:b1:9b:63:55:a2:c3:92:91:72:8b:aa:f0:
32:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C8:9B:4C:7E:07:73:D8:D3:C1:F9:E5:66:5D:6F:CC:1E:0F:45:E1
X509v3 Authority Key Identifier:
keyid:CE:FF:F6:AE:51:EA:2A:67:9F:74:5F:D8:CC:39:84:31:5E:57:29:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zv_2rlHqKmefdF_YzDmEMV5XKZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ce8619-0b3c-4d15-bd7b-c0e72e2ab802/1/kMibTH4Hc9jTwfnlZl1vzB4PReE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ce8619-0b3c-4d15-bd7b-c0e72e2ab802/1/zv_2rlHqKmefdF_YzDmEMV5XKZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.4.0/24
Signature Algorithm: sha256WithRSAEncryption
72:4f:85:36:16:1d:1a:99:1d:ce:78:7b:71:35:2a:52:90:7c:
52:b7:42:53:06:d0:49:38:0b:05:cf:08:5d:e5:ff:f9:04:f6:
3e:b1:10:c0:cd:00:e8:2a:be:61:1e:59:b1:10:6a:74:5b:62:
8c:1d:f5:00:74:53:d5:fd:7d:f1:58:45:14:91:c3:ee:27:23:
63:6e:7d:00:c5:1b:13:2f:63:88:0d:d0:b5:00:c6:58:30:9b:
69:85:1d:04:80:34:83:ae:5b:a6:fa:78:67:c8:e2:41:d9:3b:
2c:08:34:f0:bc:13:a2:36:31:fb:27:a0:81:f8:18:8e:57:ab:
7b:d1:23:45:df:e2:62:b3:1d:ce:6c:fe:f3:16:a0:de:8f:23:
46:28:59:9c:19:58:8d:0e:8b:c9:6e:9b:6b:f9:5b:83:30:57:
9e:4b:40:da:f3:90:7c:a7:a5:94:48:a6:ab:0c:bb:cc:e1:92:
42:a3:2e:af:c1:a0:19:d0:96:30:a8:0e:71:46:c4:3d:e4:db:
5f:79:5d:e4:9b:a1:81:1b:59:13:0e:22:d5:e8:2c:9d:84:60:
76:b8:cb:2f:72:0c:21:c6:ed:25:2f:5e:ee:fa:96:e5:ef:83:
3c:fe:35:c1:9a:80:2b:c4:36:00:e0:17:60:9f:b4:02:3e:6f:
16:80:76:70
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBHgm/zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZWZmZjZhZTUxZWEyYTY3OWY3NDVmZDhjYzM5ODQzMTVlNTcyOTliMB4XDTIyMDEw
MTEzNTgzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTBjODliNGM3ZTA3
NzNkOGQzYzFmOWU1NjY1ZDZmY2MxZTBmNDVlMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKaYISxORBZOvmdPkMoOR6oRweg3/8dexil0+F5h0WdblwJB
idIfLWBFHg7eFX/tigjXpm08W79XD9Nj28XXlgd45u+HWPEhkbk8UD1Djgp/JUjs
NpO3MKvjMgsC3dFw5fySM2Rw1Qw7xIkfBeIfXk7ZlEH+AugTRf3x7gYoFgrBA4/c
oSh1AfLJZKXD9Up6cVTef7MDOJHfPhsOpwspnawgyEE7P+qeombvCTYtHvUkerNO
duYUyQPh2o0LNqfVDHaTAZZ4gDFL7t+Q3MfwQ5wshRpcaoWpox69xRKhn+mSNEMv
R0pWWDURsMkh1jv9qt3vsZtjVaLDkpFyi6rwMokCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQyJtMfgdz2NPB+eVmXW/MHg9F4TAfBgNVHSMEGDAWgBTO//auUeoqZ590
X9jMOYQxXlcpmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3p2XzJybEhxS21lZmRGX1l6RG1FTVY1WEtacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvY2U4NjE5LTBiM2MtNGQxNS1iZDdiLWMwZTcyZTJhYjgwMi8x
L2tNaWJUSDRIYzlqVHdmbmxabDF2ekI0UFJlRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
Y2U4NjE5LTBiM2MtNGQxNS1iZDdiLWMwZTcyZTJhYjgwMi8xL3p2XzJybEhxS21l
ZmRGX1l6RG1FTVY1WEtacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIyBDANBgkqhkiG9w0BAQsFAAOC
AQEAck+FNhYdGpkdznh7cTUqUpB8UrdCUwbQSTgLBc8IXeX/+QT2PrEQwM0A6Cq+
YR5ZsRBqdFtijB31AHRT1f198VhFFJHD7icjY259AMUbEy9jiA3QtQDGWDCbaYUd
BIA0g65bpvp4Z8jiQdk7LAg08LwTojYx+yeggfgYjlere9EjRd/iYrMdzmz+8xag
3o8jRihZnBlYjQ6LyW6ba/lbgzBXnktA2vOQfKellEimqwy7zOGSQqMur8GgGdCW
MKgOcUbEPeTbX3ld5JuhgRtZEw4i1egsnYRgdrjLL3IMIcbtJS9e7vqW5e+DPP41
wZqAK8Q2AOAXYJ+0Aj5vFoB2cA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:13:25 2025 by rpki-client