Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8c820f-1a78-423b-8196-5bdf5932f4f0/1/9R1UtnmUFqtAzKWh0Dxoa2QFSMU.roa
File: 9R1UtnmUFqtAzKWh0Dxoa2QFSMU.roa (raw, json)
Hash identifier: 6wT/wv73fldP1mfu6HjUrC8fU0wDM+qiKsFjsBxWkx4=
Subject key identifier: F5:1D:54:B6:79:94:16:AB:40:CC:A5:A1:D0:3C:68:6B:64:05:48:C5
Certificate issuer: /CN=ee8470f640487378be9d77a6ede477435a06ca99
Certificate serial: 28681A
Authority key identifier: EE:84:70:F6:40:48:73:78:BE:9D:77:A6:ED:E4:77:43:5A:06:CA:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7oRw9kBIc3i-nXem7eR3Q1oGypk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8c820f-1a78-423b-8196-5bdf5932f4f0/1/9R1UtnmUFqtAzKWh0Dxoa2QFSMU.roa
Signing time: Sat 01 Jan 2022 00:55:50 +0000
ROA not before: Sat 01 Jan 2022 00:55:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41828
IP address blocks: 195.191.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2648090 (0x28681a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee8470f640487378be9d77a6ede477435a06ca99
Validity
Not Before: Jan 1 00:55:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f51d54b6799416ab40cca5a1d03c686b640548c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:32:97:2b:df:16:ad:d0:24:84:8f:28:0b:92:
f2:a2:89:d0:eb:0e:23:d4:8f:f9:15:e6:df:f9:9d:
6d:cd:81:1a:14:80:3f:c1:00:26:73:2b:d3:1d:d4:
1f:bc:98:20:a8:b2:a0:5e:80:82:76:e8:d4:68:8d:
bb:e7:4b:38:42:94:5d:dc:95:32:ba:df:47:2d:c3:
09:4e:11:19:6a:46:29:dc:eb:22:01:7f:70:77:23:
32:23:c3:6e:51:1a:31:bf:b4:b8:32:de:aa:87:c2:
b0:c5:e5:f0:2a:0e:21:b4:c6:9d:e3:a4:8a:df:f8:
13:76:ad:23:8c:a7:9a:34:e5:09:dc:84:59:e1:6f:
6b:f4:45:99:c8:c5:f3:27:e8:a3:95:9a:49:44:c1:
67:4f:5d:45:c2:44:63:0b:7b:40:a6:34:18:d9:4e:
f1:c7:a0:d5:4e:a7:45:0c:07:a1:6e:91:95:d1:c1:
2b:af:e9:4f:8b:ae:ef:e9:b3:92:eb:a2:9c:68:4e:
c3:f2:4c:65:b1:6d:fc:5b:83:38:8d:a8:0b:db:d6:
21:19:cd:f9:07:3c:92:c4:07:7d:ee:24:de:fe:ed:
3a:ce:6d:58:ee:f2:cf:75:0e:a4:99:87:1a:48:01:
f7:30:97:1c:08:0e:43:27:f3:35:44:dd:5b:95:38:
fe:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:1D:54:B6:79:94:16:AB:40:CC:A5:A1:D0:3C:68:6B:64:05:48:C5
X509v3 Authority Key Identifier:
keyid:EE:84:70:F6:40:48:73:78:BE:9D:77:A6:ED:E4:77:43:5A:06:CA:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7oRw9kBIc3i-nXem7eR3Q1oGypk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c820f-1a78-423b-8196-5bdf5932f4f0/1/9R1UtnmUFqtAzKWh0Dxoa2QFSMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c820f-1a78-423b-8196-5bdf5932f4f0/1/7oRw9kBIc3i-nXem7eR3Q1oGypk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.96.0/24
Signature Algorithm: sha256WithRSAEncryption
98:8c:2a:99:7e:95:60:50:6e:ef:57:b9:32:80:0a:72:41:aa:
65:bf:66:15:6e:34:92:76:46:8d:b2:5a:00:57:0c:e5:8d:68:
21:11:45:00:e2:de:c3:9b:c0:df:d1:bc:f5:49:c8:8e:b1:10:
19:1d:19:69:ea:13:aa:0b:63:e9:52:11:1d:5b:b4:4a:95:78:
4f:9c:60:b9:5b:c6:5c:81:5f:bd:b1:7b:b7:49:e1:d3:a8:2f:
4e:51:50:96:5f:17:aa:36:40:42:62:bf:44:af:14:26:d1:eb:
90:fd:c7:11:e1:e3:fe:f6:50:ee:1b:81:b7:5a:85:5d:83:ae:
d3:2d:90:9e:8b:b8:a3:b8:6c:f7:02:37:23:5f:8a:d0:ce:58:
09:b5:cc:1c:7f:26:4e:3f:1d:49:b2:ac:b8:29:7e:d1:f5:4b:
e6:6c:e5:c9:91:d4:56:19:b7:62:ac:60:56:0e:6b:10:5f:72:
cf:77:a0:3f:b3:f5:d2:59:8c:8a:2d:f8:98:84:44:63:ee:cd:
b7:7c:db:a8:ca:c6:0a:22:be:3b:4d:9a:c3:e0:f8:7d:eb:18:
2c:52:25:6b:b5:65:e4:54:7f:d2:2c:d5:c8:e2:c8:88:c4:00:
c2:1e:69:58:7e:a1:6a:41:d3:3a:87:6f:ab:99:8b:30:44:9a:
02:00:85:47
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDKGgaMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGVl
ODQ3MGY2NDA0ODczNzhiZTlkNzdhNmVkZTQ3NzQzNWEwNmNhOTkwHhcNMjIwMTAx
MDA1NTUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmNTFkNTRiNjc5OTQx
NmFiNDBjY2E1YTFkMDNjNjg2YjY0MDU0OGM1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArzKXK98WrdAkhI8oC5LyoonQ6w4j1I/5Febf+Z1tzYEaFIA/
wQAmcyvTHdQfvJggqLKgXoCCdujUaI2750s4QpRd3JUyut9HLcMJThEZakYp3Osi
AX9wdyMyI8NuURoxv7S4Mt6qh8KwxeXwKg4htMad46SK3/gTdq0jjKeaNOUJ3IRZ
4W9r9EWZyMXzJ+ijlZpJRMFnT11FwkRjC3tApjQY2U7xx6DVTqdFDAehbpGV0cEr
r+lPi67v6bOS66KcaE7D8kxlsW38W4M4jagL29YhGc35BzySxAd97iTe/u06zm1Y
7vLPdQ6kmYcaSAH3MJccCA5DJ/M1RN1blTj++wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFPUdVLZ5lBarQMylodA8aGtkBUjFMB8GA1UdIwQYMBaAFO6EcPZASHN4vp13
pu3kd0NaBsqZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
N29SdzlrQkljM2ktblhlbTdlUjNRMW9HeXBrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mMy84YzgyMGYtMWE3OC00MjNiLTgxOTYtNWJkZjU5MzJmNGYwLzEv
OVIxVXRubVVGcXRBektXaDBEeG9hMlFGU01VLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy84
YzgyMGYtMWE3OC00MjNiLTgxOTYtNWJkZjU5MzJmNGYwLzEvN29SdzlrQkljM2kt
blhlbTdlUjNRMW9HeXBrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw79gMA0GCSqGSIb3DQEBCwUAA4IB
AQCYjCqZfpVgUG7vV7kygApyQaplv2YVbjSSdkaNsloAVwzljWghEUUA4t7Dm8Df
0bz1SciOsRAZHRlp6hOqC2PpUhEdW7RKlXhPnGC5W8ZcgV+9sXu3SeHTqC9OUVCW
XxeqNkBCYr9ErxQm0euQ/ccR4eP+9lDuG4G3WoVdg67TLZCei7ijuGz3AjcjX4rQ
zlgJtcwcfyZOPx1Jsqy4KX7R9UvmbOXJkdRWGbdirGBWDmsQX3LPd6A/s/XSWYyK
LfiYhERj7s23fNuoysYKIr47TZrD4Ph96xgsUiVrtWXkVH/SLNXI4siIxADCHmlY
fqFqQdM6h2+rmYswRJoCAIVH
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:07:29 2025 by rpki-client