Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/DLcOs08qfUFIN6LO6dUOrzKDA6o.roa
File: DLcOs08qfUFIN6LO6dUOrzKDA6o.roa (raw, json)
Hash identifier: SP+zMutS23BeXG5dY6rmS8n/IRnVOCcXuTqJNXRDY8g=
Subject key identifier: 0C:B7:0E:B3:4F:2A:7D:41:48:37:A2:CE:E9:D5:0E:AF:32:83:03:AA
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEDF0EEFD66A7DC97CC98E0157C22F
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/DLcOs08qfUFIN6LO6dUOrzKDA6o.roa
Signing time: Tue 26 Nov 2024 13:35:11 +0000
ROA not before: Tue 26 Nov 2024 13:35:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21313
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:df:0e:ef:d6:6a:7d:c9:7c:c9:8e:01:57:c2:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0cb70eb34f2a7d414837a2cee9d50eaf328303aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d0:9f:36:99:a9:15:be:4b:06:7a:c4:9e:77:
f7:aa:af:f0:9b:d8:a0:e1:39:e7:ed:d6:8d:c9:63:
40:93:16:ef:96:bf:dc:61:11:b2:cd:8e:97:bc:d0:
ca:ac:50:72:f6:86:94:be:1e:07:ae:84:06:15:a0:
fc:69:38:43:eb:34:a5:71:17:08:1e:6c:a1:92:59:
80:42:f1:10:64:dc:2c:71:88:c0:63:92:d1:dd:6c:
61:58:f6:93:f5:45:1e:2b:5c:ac:50:7c:27:ad:29:
a4:bb:3d:77:2a:ae:bb:d2:36:39:96:31:46:96:f3:
6e:7c:8f:ea:50:18:ba:de:25:5c:21:9c:57:3c:1a:
c4:b2:c5:ad:14:26:63:6d:b1:2d:08:1c:59:a9:40:
00:88:ef:a6:63:ac:60:37:0f:7e:44:e8:a6:2a:1a:
00:c5:5e:fc:23:69:7b:4b:ed:db:69:54:40:4a:34:
0b:22:60:9d:ff:32:3f:68:33:80:7c:c7:43:8d:b3:
22:e9:d8:c2:f0:03:fe:93:0b:87:17:b9:22:bb:dd:
42:dd:1a:80:c6:79:ad:2b:46:a5:0d:c8:30:46:a6:
3a:8d:57:c7:da:36:f8:9a:7a:0f:e7:9f:a4:27:be:
5e:59:f7:75:e2:18:6e:ec:81:2a:08:c6:25:61:a2:
3c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B7:0E:B3:4F:2A:7D:41:48:37:A2:CE:E9:D5:0E:AF:32:83:03:AA
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/DLcOs08qfUFIN6LO6dUOrzKDA6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
97:7d:bf:c7:23:5d:57:ad:b3:54:92:1c:3d:c8:9e:ee:9c:72:
86:cb:98:8a:5c:f3:c4:61:74:66:9a:87:32:f0:35:0a:fa:20:
dd:5c:34:62:e0:63:29:5b:11:bd:19:aa:c7:9e:45:74:4e:c0:
db:a8:44:10:53:2e:f8:79:ca:b0:33:8a:b1:8d:c7:18:89:fc:
c5:45:b9:fd:97:c3:40:a9:8a:2b:67:13:18:e1:b4:b5:59:92:
aa:bc:69:21:91:aa:ac:1d:6e:bc:69:c3:6f:4d:8a:cc:b3:ed:
9c:d1:14:7c:56:89:88:80:f6:c6:30:6d:9c:8a:70:55:ea:00:
f8:a4:1f:1d:a7:ca:74:3e:b9:2c:38:ac:77:24:6f:be:0e:b2:
d9:f3:6a:10:c2:dd:ab:bd:f3:64:10:bb:74:d9:7b:40:a6:a3:
c8:3e:e7:e6:f0:90:a6:54:62:de:cb:3b:83:8e:a8:10:72:3b:
bc:68:ee:1f:85:e3:d2:8a:d4:3e:c8:79:fe:ab:3a:06:37:ab:
65:d8:a1:c1:ab:67:7f:09:33:7e:b7:e2:a2:de:e9:b3:28:9e:
8c:ca:e5:f3:09:ab:d4:f2:5f:4e:e6:93:fa:c3:af:de:89:61:
bc:c3:3d:5c:4b:11:43:86:94:bf:73:ad:fd:c1:04:2d:fe:8c:
e3:e8:3b:46
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZNort8O79Zqfcl8yY4BV8IvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl
MDZkNTIwHhcNMjQxMTI2MTMzNTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwY2I3MGViMzRmMmE3ZDQxNDgzN2EyY2VlOWQ1MGVhZjMyODMwM2FhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0tCfNpmpFb5LBnrEnnf3qq/wm9ig
4Tnn7daNyWNAkxbvlr/cYRGyzY6XvNDKrFBy9oaUvh4HroQGFaD8aThD6zSlcRcI
HmyhklmAQvEQZNwscYjAY5LR3WxhWPaT9UUeK1ysUHwnrSmkuz13Kq670jY5ljFG
lvNufI/qUBi63iVcIZxXPBrEssWtFCZjbbEtCBxZqUAAiO+mY6xgNw9+ROimKhoA
xV78I2l7S+3baVRASjQLImCd/zI/aDOAfMdDjbMi6djC8AP+kwuHF7kiu91C3RqA
xnmtK0alDcgwRqY6jVfH2jb4mnoP55+kJ75eWfd14hhu7IEqCMYlYaI8gQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFAy3DrNPKn1BSDeizunVDq8ygwOqMB8GA1UdIwQY
MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt
MzZjY2I1YTA2MTk1LzEvRExjT3MwOHFmVUZJTjZMTzZkVU9yektEQTZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1
LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF
ALlkADUwDQYJKoZIhvcNAQELBQADggEBAJd9v8cjXVets1SSHD3Inu6ccobLmIpc
88RhdGaahzLwNQr6IN1cNGLgYylbEb0ZqseeRXROwNuoRBBTLvh5yrAzirGNxxiJ
/MVFuf2Xw0CpiitnExjhtLVZkqq8aSGRqqwdbrxpw29Nisyz7ZzRFHxWiYiA9sYw
bZyKcFXqAPikHx2nynQ+uSw4rHckb74OstnzahDC3au982QQu3TZe0Cmo8g+5+bw
kKZUYt7LO4OOqBByO7xo7h+F49KK1D7Ief6rOgY3q2XYocGrZ38JM3634qLe6bMo
nozK5fMJq9TyX07mk/rDr96JYbzDPVxLEUOGlL9zrf3BBC3+jOPoO0Y=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:06 2025 by rpki-client