Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/D2ZeDBn-e_ZyY19PJi4UYEKZOvs.roa
File: D2ZeDBn-e_ZyY19PJi4UYEKZOvs.roa (raw, json)
Hash identifier: nl1dVH1zxgmnhvwWM5NA0reLjQPrxWgXlnIzGLrUTng=
Subject key identifier: 0F:66:5E:0C:19:FE:7B:F6:72:63:5F:4F:26:2E:14:60:42:99:3A:FB
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019422FBCC9726EEAA1739B9C0E0E8971734
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/D2ZeDBn-e_ZyY19PJi4UYEKZOvs.roa
Signing time: Wed 01 Jan 2025 17:48:34 +0000
ROA not before: Wed 01 Jan 2025 17:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396585
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:cc:97:26:ee:aa:17:39:b9:c0:e0:e8:97:17:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jan 1 17:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f665e0c19fe7bf672635f4f262e146042993afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5b:90:8e:8f:d8:86:6e:e5:ea:91:81:85:0c:
d4:49:65:fc:b0:9f:71:1f:53:e0:c9:7f:df:0a:2b:
72:72:7a:9f:1f:23:82:94:c0:17:9c:2b:20:d9:67:
2a:df:57:90:27:4f:67:c0:e2:77:82:49:63:10:c5:
86:da:cc:5b:a1:1e:9a:bc:aa:66:c3:46:4b:a6:80:
4a:35:00:a6:ea:d2:45:9b:02:2b:69:67:9a:df:28:
fa:69:08:21:b8:73:91:a9:8b:95:56:bd:df:46:cb:
20:83:7e:ce:58:7c:f1:6b:8f:33:c2:ce:a9:80:a8:
58:70:b3:a6:53:98:2a:c7:39:e5:a7:7a:49:d9:6f:
57:7a:60:51:0e:68:9f:2b:94:1f:86:46:30:b9:25:
cc:ae:8a:d9:3d:82:7c:f6:3b:c3:c7:b4:a3:ab:8a:
6b:76:ad:98:14:2a:8e:21:20:11:42:19:25:82:78:
60:6f:cc:85:38:75:fb:6c:3f:e8:85:20:1f:fc:11:
5f:36:04:3e:f7:f7:ed:c7:1f:41:28:e1:a2:74:15:
27:90:f3:6b:80:31:3d:f7:55:39:41:6a:5e:cc:c7:
af:f3:b4:f2:77:f4:80:62:4f:02:ec:4c:db:4c:f5:
66:79:1c:40:09:53:72:36:7d:7d:98:48:5e:5a:c3:
38:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:66:5E:0C:19:FE:7B:F6:72:63:5F:4F:26:2E:14:60:42:99:3A:FB
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/D2ZeDBn-e_ZyY19PJi4UYEKZOvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
b6:ae:a8:5a:f6:9e:ac:2c:1d:ca:85:35:78:23:d2:8a:89:7b:
4a:88:a5:0d:d8:f9:7a:70:52:fc:2d:c3:aa:21:c2:51:3e:8f:
3d:e0:54:15:a9:eb:1e:97:c5:5a:2c:d9:88:f9:11:62:6a:0d:
89:7e:4b:bb:0d:79:a3:c2:5e:b5:d8:6f:f5:db:41:59:83:01:
6f:a2:6e:d6:03:23:d1:b4:09:4d:ae:7e:3b:7f:98:4e:c8:23:
69:80:87:38:93:6f:5b:a1:22:60:7d:61:b6:72:bd:86:b4:1c:
d7:af:74:2c:89:b0:ff:1d:7c:c1:43:66:2a:7f:97:ab:5b:94:
86:b5:88:f7:df:cf:2e:66:03:f7:7c:29:67:ad:94:e9:87:93:
29:4a:0d:4d:57:30:23:e4:4f:55:10:28:cd:21:28:b7:e3:1a:
a1:ce:c0:07:33:8a:51:1f:96:05:57:09:25:bc:ad:06:56:ec:
df:2f:c7:51:9e:eb:6a:d5:66:20:b5:14:1f:ad:8c:55:66:68:
42:59:8f:c9:1c:8d:f3:89:a1:39:de:d6:7b:6c:3b:6f:1f:75:
39:85:2f:3a:bb:0a:65:b1:60:53:95:a4:5d:0a:c1:1f:a2:f7:
ef:a3:b9:85:08:e7:aa:c8:39:69:7d:01:c2:b8:4c:5c:8a:31:
7d:39:c6:96
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZQi+8yXJu6qFzm5wODolxc0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl
MDZkNTIwHhcNMjUwMTAxMTc0ODM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjY2NWUwYzE5ZmU3YmY2NzI2MzVmNGYyNjJlMTQ2MDQyOTkzYWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVuQjo/Yhm7l6pGBhQzUSWX8sJ9x
H1PgyX/fCitycnqfHyOClMAXnCsg2Wcq31eQJ09nwOJ3gkljEMWG2sxboR6avKpm
w0ZLpoBKNQCm6tJFmwIraWea3yj6aQghuHORqYuVVr3fRssgg37OWHzxa48zws6p
gKhYcLOmU5gqxznlp3pJ2W9XemBRDmifK5QfhkYwuSXMrorZPYJ89jvDx7Sjq4pr
dq2YFCqOISARQhklgnhgb8yFOHX7bD/ohSAf/BFfNgQ+9/ftxx9BKOGidBUnkPNr
gDE991U5QWpezMev87Tyd/SAYk8C7EzbTPVmeRxACVNyNn19mEheWsM4kwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFA9mXgwZ/nv2cmNfTyYuFGBCmTr7MB8GA1UdIwQY
MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt
MzZjY2I1YTA2MTk1LzEvRDJaZURCbi1lX1p5WTE5UEppNFVZRUtaT3ZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1
LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF
ALlkADUwDQYJKoZIhvcNAQELBQADggEBALauqFr2nqwsHcqFNXgj0oqJe0qIpQ3Y
+XpwUvwtw6ohwlE+jz3gVBWp6x6XxVos2Yj5EWJqDYl+S7sNeaPCXrXYb/XbQVmD
AW+ibtYDI9G0CU2ufjt/mE7II2mAhziTb1uhImB9YbZyvYa0HNevdCyJsP8dfMFD
Zip/l6tblIa1iPffzy5mA/d8KWetlOmHkylKDU1XMCPkT1UQKM0hKLfjGqHOwAcz
ilEflgVXCSW8rQZW7N8vx1Ge62rVZiC1FB+tjFVmaEJZj8kcjfOJoTne1ntsO28f
dTmFLzq7CmWxYFOVpF0KwR+i9++juYUI56rIOWl9AcK4TFyKMX05xpY=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:38 2025 by rpki-client