Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/1887fa-43cc-4499-ab74-e28832323f6d/1/uO9dPxlx5kbryFMIrW1wZfHfrqc.roa
File: uO9dPxlx5kbryFMIrW1wZfHfrqc.roa (raw, json)
Hash identifier: NrkTIYE8RmX0UUZREQe1a/gFtR2Be/h3baezRNBfbZg=
Subject key identifier: B8:EF:5D:3F:19:71:E6:46:EB:C8:53:08:AD:6D:70:65:F1:DF:AE:A7
Certificate issuer: /CN=17672556984415b78e9d15461784c8c4e691d010
Certificate serial: 01942444975C7E0C4B037F4B3B4962D5F691
Authority key identifier: 17:67:25:56:98:44:15:B7:8E:9D:15:46:17:84:C8:C4:E6:91:D0:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F2clVphEFbeOnRVGF4TIxOaR0BA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/1887fa-43cc-4499-ab74-e28832323f6d/1/uO9dPxlx5kbryFMIrW1wZfHfrqc.roa
Signing time: Wed 01 Jan 2025 23:47:42 +0000
ROA not before: Wed 01 Jan 2025 23:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200860
IP address blocks: 164.40.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:97:5c:7e:0c:4b:03:7f:4b:3b:49:62:d5:f6:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17672556984415b78e9d15461784c8c4e691d010
Validity
Not Before: Jan 1 23:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b8ef5d3f1971e646ebc85308ad6d7065f1dfaea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b8:91:e9:d6:e5:84:e4:c0:a7:f0:0a:15:3c:
5b:c9:ad:d5:b1:20:08:22:6c:08:1b:3f:24:e4:76:
00:a3:2a:5f:23:be:42:9a:0c:a9:c6:6a:9f:1a:4b:
49:dc:08:8f:e3:23:6f:02:ee:6e:79:db:20:48:10:
fb:5f:3b:d8:c0:f5:f3:f1:da:d6:dd:bf:ed:d5:e5:
dc:21:85:1a:fa:2e:28:4c:22:a1:59:fe:21:5b:57:
1e:44:81:15:25:b7:2f:6b:48:d6:6e:bc:47:de:a0:
4c:2e:7c:fb:1c:0e:be:c8:67:a3:2b:50:8a:41:d3:
93:3b:60:c5:31:10:44:b9:27:17:a1:09:e6:46:4a:
36:5a:0a:ff:d8:46:f6:b9:7e:95:98:3d:3b:3d:fb:
a7:f1:dc:0b:f9:91:8e:e7:80:ef:17:51:2a:1d:70:
68:1d:31:f9:f1:90:e6:ef:36:13:60:d4:15:db:97:
ef:ed:3a:0b:75:42:17:99:31:c5:fd:ab:c4:d0:20:
d3:6e:0b:7c:6d:75:04:68:0e:ef:2b:56:c2:de:58:
44:bd:d1:6b:f3:65:55:ff:02:ce:31:9e:e6:ca:56:
60:cc:ec:de:47:1a:26:76:5a:96:bd:c7:93:0c:bf:
c2:5f:95:7a:08:7b:92:90:23:69:e6:1b:a9:a7:25:
a3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:EF:5D:3F:19:71:E6:46:EB:C8:53:08:AD:6D:70:65:F1:DF:AE:A7
X509v3 Authority Key Identifier:
keyid:17:67:25:56:98:44:15:B7:8E:9D:15:46:17:84:C8:C4:E6:91:D0:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F2clVphEFbeOnRVGF4TIxOaR0BA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/1887fa-43cc-4499-ab74-e28832323f6d/1/uO9dPxlx5kbryFMIrW1wZfHfrqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/1887fa-43cc-4499-ab74-e28832323f6d/1/F2clVphEFbeOnRVGF4TIxOaR0BA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.40.170.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:22:0e:48:7a:d8:77:81:7f:67:96:44:7f:36:84:9e:cb:3b:
d0:f1:35:4d:32:f6:fc:b9:cf:95:40:a8:18:e2:30:f9:29:1e:
2c:54:7a:34:06:03:37:b4:f3:27:3f:07:91:5b:f8:ee:50:4a:
83:1a:ca:41:3e:5c:79:20:63:42:41:58:6b:01:6c:14:f3:f6:
2b:1b:c0:77:30:13:3a:de:d3:2f:26:7b:3e:7d:51:00:52:3a:
86:27:50:aa:3e:e7:dd:ec:4e:b1:86:1a:a6:67:4c:38:df:02:
2a:ad:c1:ac:ad:2f:05:d3:db:56:5e:4a:eb:6f:d6:c4:67:9d:
39:39:c6:a0:62:77:27:61:0b:23:45:cf:b2:d7:27:1c:40:2b:
21:cc:27:58:0b:b8:62:e9:8d:61:57:83:7d:ce:66:7e:f4:f9:
00:15:7b:03:88:9f:23:3f:f6:4a:41:7a:db:bb:36:51:17:7b:
84:7d:42:42:91:8b:1a:9a:85:85:ef:2a:99:73:c1:89:a4:68:
05:94:34:01:59:27:2d:9d:ed:8a:c1:a4:7e:68:e2:9d:b0:e9:
c5:55:0b:ad:81:46:25:a8:cd:e3:ef:e9:21:05:2c:8c:7e:e1:
e7:41:a5:2f:84:c4:f3:12:e9:33:88:8b:1a:c7:d2:19:d4:ae:
69:f1:cf:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRJdcfgxLA39LO0li1faRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NjcyNTU2OTg0NDE1Yjc4ZTlkMTU0NjE3ODRjOGM0ZTY5
MWQwMTAwHhcNMjUwMTAxMjM0NzQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGVmNWQzZjE5NzFlNjQ2ZWJjODUzMDhhZDZkNzA2NWYxZGZhZWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLiR6dblhOTAp/AKFTxbya3VsSAI
ImwIGz8k5HYAoypfI75CmgypxmqfGktJ3AiP4yNvAu5uedsgSBD7XzvYwPXz8drW
3b/t1eXcIYUa+i4oTCKhWf4hW1ceRIEVJbcva0jWbrxH3qBMLnz7HA6+yGejK1CK
QdOTO2DFMRBEuScXoQnmRko2Wgr/2Eb2uX6VmD07Pfun8dwL+ZGO54DvF1EqHXBo
HTH58ZDm7zYTYNQV25fv7ToLdUIXmTHF/avE0CDTbgt8bXUEaA7vK1bC3lhEvdFr
82VV/wLOMZ7mylZgzOzeRxomdlqWvceTDL/CX5V6CHuSkCNp5huppyWjswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLjvXT8ZceZG68hTCK1tcGXx366nMB8GA1UdIwQY
MBaAFBdnJVaYRBW3jp0VRheEyMTmkdAQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjJjbFZwaEVGYmVPblJWR0Y0VEl4T2FSMEJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8xODg3ZmEtNDNjYy00NDk5LWFiNzQt
ZTI4ODMyMzIzZjZkLzEvdU85ZFB4bHg1a2JyeUZNSXJXMXdaZkhmcnFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC8xODg3ZmEtNDNjYy00NDk5LWFiNzQtZTI4ODMyMzIzZjZk
LzEvRjJjbFZwaEVGYmVPblJWR0Y0VEl4T2FSMEJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQApCiqMA0G
CSqGSIb3DQEBCwUAA4IBAQCkIg5Ieth3gX9nlkR/NoSeyzvQ8TVNMvb8uc+VQKgY
4jD5KR4sVHo0BgM3tPMnPweRW/juUEqDGspBPlx5IGNCQVhrAWwU8/YrG8B3MBM6
3tMvJns+fVEAUjqGJ1CqPufd7E6xhhqmZ0w43wIqrcGsrS8F09tWXkrrb9bEZ505
OcagYncnYQsjRc+y1yccQCshzCdYC7hi6Y1hV4N9zmZ+9PkAFXsDiJ8jP/ZKQXrb
uzZRF3uEfUJCkYsamoWF7yqZc8GJpGgFlDQBWSctne2KwaR+aOKdsOnFVQutgUYl
qM3j7+khBSyMfuHnQaUvhMTzEukziIsax9IZ1K5p8c+P
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:24:54 2025 by rpki-client