Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/aa4f40-d4a2-4a40-bac4-46610094ef9c/1/0zaVylnLaDnl-Wz6lNhv5ZZtARQ.roa
File: 0zaVylnLaDnl-Wz6lNhv5ZZtARQ.roa (raw, json)
Hash identifier: vBN1PcI26M5l+v98K9H61lEXIpIChNuvL2Kf09qWQvE=
Subject key identifier: D3:36:95:CA:59:CB:68:39:E5:F9:6C:FA:94:D8:6F:E5:96:6D:01:14
Certificate issuer: /CN=8e5c18bfb9a5395dceab8cdd58bf1a6b993b1bd0
Certificate serial: 867E60
Authority key identifier: 8E:5C:18:BF:B9:A5:39:5D:CE:AB:8C:DD:58:BF:1A:6B:99:3B:1B:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jlwYv7mlOV3Oq4zdWL8aa5k7G9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/aa4f40-d4a2-4a40-bac4-46610094ef9c/1/0zaVylnLaDnl-Wz6lNhv5ZZtARQ.roa
Signing time: Sat 01 Jan 2022 02:59:25 +0000
ROA not before: Sat 01 Jan 2022 02:59:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43581
IP address blocks: 193.17.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8814176 (0x867e60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e5c18bfb9a5395dceab8cdd58bf1a6b993b1bd0
Validity
Not Before: Jan 1 02:59:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d33695ca59cb6839e5f96cfa94d86fe5966d0114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:de:ad:e1:8b:04:31:4b:10:1a:90:3e:bc:1e:
ed:ac:fe:02:16:d8:f8:67:bc:9d:90:b6:ec:53:f5:
25:2e:56:87:45:34:2a:6f:31:ff:ed:4e:28:c7:d0:
6c:ed:49:05:08:4c:97:8f:4f:75:a4:34:91:ea:98:
a0:07:d5:6e:8f:1d:ce:28:46:db:8e:1f:e1:27:5c:
f8:de:f0:5f:ef:0c:4b:e7:6d:6e:52:35:33:5e:7d:
fe:b9:2c:bf:f3:af:ca:2b:f3:96:f8:30:d2:22:98:
cb:7e:6b:84:5b:11:24:01:2f:11:cc:06:00:5c:70:
80:75:9b:ac:7c:4c:13:e2:aa:9a:1f:0e:65:67:5c:
ef:12:9f:87:b4:5d:a3:e6:6f:4c:a9:fa:31:84:f4:
33:dc:44:eb:21:c1:03:1e:6a:4a:93:73:3c:c9:e5:
0f:9d:2d:01:93:bb:74:2e:2b:b3:5a:8d:9a:5b:4b:
9e:a7:1e:0d:4f:39:99:4c:05:4e:da:f8:b8:b3:d6:
4f:8f:63:e1:77:f7:d1:71:45:b5:87:c9:60:b2:73:
3f:af:2a:cb:21:a1:eb:91:7a:d1:7c:f9:08:e0:e1:
bb:2b:25:98:e4:48:ea:59:ae:b7:e8:94:d4:bc:75:
b7:53:d5:b8:c3:a5:da:33:a0:e5:1d:dd:2d:e7:b4:
01:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:36:95:CA:59:CB:68:39:E5:F9:6C:FA:94:D8:6F:E5:96:6D:01:14
X509v3 Authority Key Identifier:
keyid:8E:5C:18:BF:B9:A5:39:5D:CE:AB:8C:DD:58:BF:1A:6B:99:3B:1B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jlwYv7mlOV3Oq4zdWL8aa5k7G9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/aa4f40-d4a2-4a40-bac4-46610094ef9c/1/0zaVylnLaDnl-Wz6lNhv5ZZtARQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/aa4f40-d4a2-4a40-bac4-46610094ef9c/1/jlwYv7mlOV3Oq4zdWL8aa5k7G9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.92.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:01:50:dc:88:fa:b0:ae:59:0f:1b:59:1a:0f:eb:02:e6:d8:
e6:c3:d4:9d:74:85:9e:6b:04:ee:e6:27:67:c1:fe:ac:75:64:
7c:09:fc:d3:77:9d:dd:8e:10:2a:1e:f1:57:12:f8:83:80:a1:
ec:6d:62:26:10:49:fb:68:8b:5f:7c:7c:b9:fa:5b:10:1a:dd:
51:ff:e3:0e:75:0f:ab:6e:7e:8c:b9:73:6c:a2:6c:34:d9:f1:
e0:0a:8e:6d:39:da:d7:18:32:8f:34:cc:08:7f:b5:96:1e:30:
6a:a0:63:38:e4:1f:fc:40:db:97:cb:f4:19:da:c7:e5:4c:b6:
bb:a2:ff:41:85:cf:cd:cf:61:c6:9e:28:d7:13:4d:e2:0a:c8:
3e:72:1b:1a:cc:57:e0:81:e0:d3:fe:a7:ba:ca:7c:f9:7e:52:
24:8c:23:e7:59:c5:15:ff:f8:5e:b3:32:e1:44:36:9b:da:af:
e9:bf:66:de:26:9d:3b:10:8c:7a:75:7d:4e:6a:54:2a:3b:24:
5e:fa:e3:5b:38:53:35:9f:b3:ef:66:0a:fe:e8:5e:98:42:99:
f3:75:d2:71:6c:7f:f9:8b:16:d2:56:97:b4:d9:16:e1:cc:98:
b5:d6:2b:8b:01:ec:5b:16:a1:d9:98:73:aa:9b:01:7d:8f:6b:
67:94:05:97
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAIZ+YDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTVjMThiZmI5YTUzOTVkY2VhYjhjZGQ1OGJmMWE2Yjk5M2IxYmQwMB4XDTIyMDEw
MTAyNTkyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDMzNjk1Y2E1OWNi
NjgzOWU1Zjk2Y2ZhOTRkODZmZTU5NjZkMDExNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMDereGLBDFLEBqQPrwe7az+AhbY+Ge8nZC27FP1JS5Wh0U0
Km8x/+1OKMfQbO1JBQhMl49PdaQ0keqYoAfVbo8dzihG244f4Sdc+N7wX+8MS+dt
blI1M159/rksv/Ovyivzlvgw0iKYy35rhFsRJAEvEcwGAFxwgHWbrHxME+Kqmh8O
ZWdc7xKfh7Rdo+ZvTKn6MYT0M9xE6yHBAx5qSpNzPMnlD50tAZO7dC4rs1qNmltL
nqceDU85mUwFTtr4uLPWT49j4Xf30XFFtYfJYLJzP68qyyGh65F60Xz5CODhuysl
mORI6lmut+iU1Lx1t1PVuMOl2jOg5R3dLee0AQcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTTNpXKWctoOeX5bPqU2G/llm0BFDAfBgNVHSMEGDAWgBSOXBi/uaU5Xc6r
jN1YvxprmTsb0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2psd1l2N21sT1YzT3E0emRXTDhhYTVrN0c5QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjIvYWE0ZjQwLWQ0YTItNGE0MC1iYWM0LTQ2NjEwMDk0ZWY5Yy8x
LzB6YVZ5bG5MYURubC1XejZsTmh2NVpadEFSUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIv
YWE0ZjQwLWQ0YTItNGE0MC1iYWM0LTQ2NjEwMDk0ZWY5Yy8xL2psd1l2N21sT1Yz
T3E0emRXTDhhYTVrN0c5QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMERXDANBgkqhkiG9w0BAQsFAAOC
AQEAxwFQ3Ij6sK5ZDxtZGg/rAubY5sPUnXSFnmsE7uYnZ8H+rHVkfAn803ed3Y4Q
Kh7xVxL4g4Ch7G1iJhBJ+2iLX3x8ufpbEBrdUf/jDnUPq25+jLlzbKJsNNnx4AqO
bTna1xgyjzTMCH+1lh4waqBjOOQf/EDbl8v0GdrH5Uy2u6L/QYXPzc9hxp4o1xNN
4grIPnIbGsxX4IHg0/6nusp8+X5SJIwj51nFFf/4XrMy4UQ2m9qv6b9m3iadOxCM
enV9TmpUKjskXvrjWzhTNZ+z72YK/uhemEKZ83XScWx/+YsW0laXtNkW4cyYtdYr
iwHsWxah2ZhzqpsBfY9rZ5QFlw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:24 2025 by rpki-client