Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/c7c618-1a34-4496-9990-eeb1981533fd/1/bA8WFmSg1INCXJwXZkiaYTVVlDE.roa
File: bA8WFmSg1INCXJwXZkiaYTVVlDE.roa (raw, json)
Hash identifier: Y60Pa1L0UchmYnV1C0MhkokROeXNrhRIyT8zghhZCS0=
Subject key identifier: 6C:0F:16:16:64:A0:D4:83:42:5C:9C:17:66:48:9A:61:35:55:94:31
Certificate issuer: /CN=b89fd0738d945f209334a2ed626cd9a2d7feea5b
Certificate serial: 0286BF
Authority key identifier: B8:9F:D0:73:8D:94:5F:20:93:34:A2:ED:62:6C:D9:A2:D7:FE:EA:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uJ_Qc42UXyCTNKLtYmzZotf-6ls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/c7c618-1a34-4496-9990-eeb1981533fd/1/bA8WFmSg1INCXJwXZkiaYTVVlDE.roa
Signing time: Tue 05 Apr 2022 15:54:41 +0000
ROA not before: Tue 05 Apr 2022 15:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.131.114.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165567 (0x286bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b89fd0738d945f209334a2ed626cd9a2d7feea5b
Validity
Not Before: Apr 5 15:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c0f161664a0d483425c9c1766489a6135559431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4d:86:0b:88:2e:bd:25:c7:d4:69:e6:65:d9:
05:57:30:4d:c8:8d:30:f2:01:44:58:3e:41:8b:9f:
9a:b3:d2:bd:1c:7f:1e:f7:5f:43:4f:e8:b2:49:23:
49:ef:3a:38:4d:da:63:14:3c:8a:08:a8:13:e4:51:
e1:fd:c1:8c:e4:10:30:5e:ed:ef:1e:33:de:e4:ac:
ed:90:ac:56:28:57:27:f6:a5:8a:d4:65:0b:4b:c8:
ee:fe:f4:33:a7:2d:89:77:20:39:a6:20:74:d7:b9:
f2:18:f8:fa:26:dd:bf:dc:71:30:82:00:72:e0:3a:
e1:d7:65:da:92:c0:2d:73:db:50:e4:71:39:8f:73:
f1:59:c0:fa:f1:7c:2a:d8:16:1b:27:be:29:6e:3a:
27:58:84:69:f9:7f:e9:64:7c:8a:c2:80:de:de:f1:
2e:1e:b0:38:68:fd:9b:b1:4f:0b:1d:6d:87:d7:df:
a6:5d:ac:83:7a:6c:19:aa:51:39:3c:be:12:dc:74:
85:55:2f:f5:68:dc:2f:b3:b5:7e:82:a7:66:8a:6f:
bb:56:19:fd:b4:3d:0a:04:be:9e:36:f5:df:f6:c6:
e5:08:81:88:91:4f:df:e7:b0:25:34:de:6a:bd:3b:
5c:75:a9:1b:d9:72:39:fa:c4:c1:c3:c6:6d:8e:74:
5b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0F:16:16:64:A0:D4:83:42:5C:9C:17:66:48:9A:61:35:55:94:31
X509v3 Authority Key Identifier:
keyid:B8:9F:D0:73:8D:94:5F:20:93:34:A2:ED:62:6C:D9:A2:D7:FE:EA:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uJ_Qc42UXyCTNKLtYmzZotf-6ls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/c7c618-1a34-4496-9990-eeb1981533fd/1/bA8WFmSg1INCXJwXZkiaYTVVlDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/c7c618-1a34-4496-9990-eeb1981533fd/1/uJ_Qc42UXyCTNKLtYmzZotf-6ls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.131.114.0/23
Signature Algorithm: sha256WithRSAEncryption
63:b0:24:7c:d0:28:42:73:ee:99:1b:ca:9b:4f:0c:40:f8:88:
54:4c:b4:02:22:5e:6d:9a:6f:d4:61:1b:7e:66:07:68:7e:c1:
54:41:91:a0:42:c8:54:b6:07:ab:a7:84:62:f2:0b:7c:7e:41:
d7:f2:a9:f9:7d:35:7a:d4:6a:16:5a:64:d7:cf:c5:06:29:a6:
28:ae:df:c2:df:c3:75:8a:c6:73:57:d6:4a:e1:32:9a:69:32:
90:1b:c1:47:64:0f:d4:b7:ae:2a:d5:f3:4b:b5:06:96:9d:62:
02:d6:ab:06:27:a8:6d:b5:37:e5:90:2a:c4:79:11:9f:c4:66:
b8:2e:92:80:f8:ce:9d:17:f7:51:e7:9a:cc:06:79:3d:37:51:
05:04:58:e0:45:04:5d:79:f1:f1:42:de:64:43:fc:98:e9:3a:
7b:17:d6:6d:c2:85:1f:b2:c5:d3:c3:5e:c9:55:6d:49:4e:9a:
30:70:11:26:e3:e0:34:e1:a3:29:23:ac:15:31:28:79:22:88:
a6:54:58:e6:c8:6c:0e:9b:d4:89:67:03:dc:42:4a:38:51:5f:
6c:38:aa:73:18:f0:49:56:b6:75:52:87:c6:b5:41:e0:cf:2a:
99:c2:72:19:ae:04:0e:7b:02:33:70:7e:72:be:73:32:15:58:
70:76:f5:2e
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAoa/MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGI4
OWZkMDczOGQ5NDVmMjA5MzM0YTJlZDYyNmNkOWEyZDdmZWVhNWIwHhcNMjIwNDA1
MTU1NDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2YzBmMTYxNjY0YTBk
NDgzNDI1YzljMTc2NjQ4OWE2MTM1NTU5NDMxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAik2GC4guvSXH1GnmZdkFVzBNyI0w8gFEWD5Bi5+as9K9HH8e
919DT+iySSNJ7zo4TdpjFDyKCKgT5FHh/cGM5BAwXu3vHjPe5KztkKxWKFcn9qWK
1GULS8ju/vQzpy2JdyA5piB017nyGPj6Jt2/3HEwggBy4Drh12XaksAtc9tQ5HE5
j3PxWcD68Xwq2BYbJ74pbjonWIRp+X/pZHyKwoDe3vEuHrA4aP2bsU8LHW2H19+m
XayDemwZqlE5PL4S3HSFVS/1aNwvs7V+gqdmim+7Vhn9tD0KBL6eNvXf9sblCIGI
kU/f57AlNN5qvTtcdakb2XI5+sTBw8ZtjnRb8QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGwPFhZkoNSDQlycF2ZImmE1VZQxMB8GA1UdIwQYMBaAFLif0HONlF8gkzSi
7WJs2aLX/upbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dUpfUWM0MlVYeUNUTktMdFltelpvdGYtNmxzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mOS9jN2M2MTgtMWEzNC00NDk2LTk5OTAtZWViMTk4MTUzM2ZkLzEv
YkE4V0ZtU2cxSU5DWEp3WFpraWFZVFZWbERFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9j
N2M2MTgtMWEzNC00NDk2LTk5OTAtZWViMTk4MTUzM2ZkLzEvdUpfUWM0MlVYeUNU
TktMdFltelpvdGYtNmxzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwYNyMA0GCSqGSIb3DQEBCwUAA4IB
AQBjsCR80ChCc+6ZG8qbTwxA+IhUTLQCIl5tmm/UYRt+ZgdofsFUQZGgQshUtger
p4Ri8gt8fkHX8qn5fTV61GoWWmTXz8UGKaYort/C38N1isZzV9ZK4TKaaTKQG8FH
ZA/Ut64q1fNLtQaWnWIC1qsGJ6httTflkCrEeRGfxGa4LpKA+M6dF/dR55rMBnk9
N1EFBFjgRQRdefHxQt5kQ/yY6Tp7F9ZtwoUfssXTw17JVW1JTpowcBEm4+A04aMp
I6wVMSh5IoimVFjmyGwOm9SJZwPcQko4UV9sOKpzGPBJVrZ1UofGtUHgzyqZwnIZ
rgQOewIzcH5yvnMyFVhwdvUu
-----END CERTIFICATE-----
Generated at Tue Apr 22 16:00:15 2025 by rpki-client