Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/153ff7-d4b2-407f-a216-9f6aa4cf0799/1/jaff7ENxhbDetLmkrM4Rn1poSLI.roa
File: jaff7ENxhbDetLmkrM4Rn1poSLI.roa (raw, json)
Hash identifier: ui5KqDG5NX3RDDGGQyaqVgy4VTQxAtFMr0iFGN/ACUk=
Subject key identifier: 8D:A7:DF:EC:43:71:85:B0:DE:B4:B9:A4:AC:CE:11:9F:5A:68:48:B2
Certificate issuer: /CN=dab80ea0f9965f6880329b12fec27a9390fc1cb7
Certificate serial: 0194252133AD502307BEDD50FA4564C119C2
Authority key identifier: DA:B8:0E:A0:F9:96:5F:68:80:32:9B:12:FE:C2:7A:93:90:FC:1C:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rgOoPmWX2iAMpsS_sJ6k5D8HLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/153ff7-d4b2-407f-a216-9f6aa4cf0799/1/jaff7ENxhbDetLmkrM4Rn1poSLI.roa
Signing time: Thu 02 Jan 2025 03:48:40 +0000
ROA not before: Thu 02 Jan 2025 03:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13101
IP address blocks: 185.230.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:33:ad:50:23:07:be:dd:50:fa:45:64:c1:19:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dab80ea0f9965f6880329b12fec27a9390fc1cb7
Validity
Not Before: Jan 2 03:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8da7dfec437185b0deb4b9a4acce119f5a6848b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b0:75:27:90:c8:8f:53:b4:5a:1d:ed:eb:28:
ec:8c:af:cb:5b:63:f0:b1:bc:f1:68:5a:e8:1a:bd:
b4:d5:44:9a:cd:e5:2f:b2:88:09:eb:41:b2:1b:b1:
8c:00:8a:7c:a7:5c:1f:e4:42:7a:f1:c2:ff:a0:71:
71:bc:50:24:0a:c0:2d:dc:55:7e:e7:fc:c7:50:7d:
47:8f:30:03:94:7b:2c:05:02:07:04:ea:d7:95:46:
8e:66:ca:f2:2f:07:bc:da:1c:03:59:ca:af:cf:f5:
b3:84:c1:47:9c:c2:9c:ca:93:e0:e5:cb:47:45:6d:
18:af:47:cf:94:fd:9c:e5:bd:3c:0f:06:bd:a4:c9:
19:be:b2:f2:9b:df:0a:dd:57:e1:c6:f1:10:bc:e8:
ae:a9:cf:98:a2:d2:24:7b:d2:d8:ac:37:b7:ba:09:
12:2a:0d:1b:d3:b7:b2:cf:ea:fc:32:1e:8d:e2:1e:
20:b6:16:d9:da:67:40:01:d0:41:a1:be:8c:90:67:
f1:e8:e1:3a:e9:0f:72:7c:51:f4:2e:94:5a:9b:ea:
cd:04:57:ff:c3:78:ce:e8:57:c9:b8:62:95:6e:ce:
da:77:f9:f0:5b:48:53:59:ea:21:8f:58:1b:4e:0d:
fc:c8:8e:25:03:42:ff:11:d1:df:1b:21:0b:67:81:
a0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A7:DF:EC:43:71:85:B0:DE:B4:B9:A4:AC:CE:11:9F:5A:68:48:B2
X509v3 Authority Key Identifier:
keyid:DA:B8:0E:A0:F9:96:5F:68:80:32:9B:12:FE:C2:7A:93:90:FC:1C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rgOoPmWX2iAMpsS_sJ6k5D8HLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/153ff7-d4b2-407f-a216-9f6aa4cf0799/1/jaff7ENxhbDetLmkrM4Rn1poSLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/153ff7-d4b2-407f-a216-9f6aa4cf0799/1/2rgOoPmWX2iAMpsS_sJ6k5D8HLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.196.0/24
Signature Algorithm: sha256WithRSAEncryption
36:4c:e0:6c:cb:7c:73:c4:e6:5b:16:25:88:5b:82:23:22:20:
a9:23:59:b6:28:8f:50:f2:58:40:f7:c9:91:f7:3e:76:d3:a8:
2b:db:48:9d:d4:09:5d:ee:59:08:5d:31:40:f8:6b:59:ee:b3:
e2:da:2b:3b:ae:22:44:9c:b6:46:b2:1d:08:70:b2:13:ba:d7:
f8:18:ee:b3:83:ab:3a:d2:d1:11:1f:51:d1:03:63:c3:fa:60:
d3:43:94:d9:ba:ad:08:93:70:8d:f5:9a:42:b8:60:a6:f2:30:
6e:8d:1b:81:15:e9:aa:f7:86:3d:0f:f1:35:c2:36:51:68:20:
63:2b:14:2d:08:a6:e4:95:81:0a:74:43:5a:16:06:35:e9:27:
75:ac:62:c5:3e:49:84:12:ff:07:82:72:9f:ba:c5:58:7f:21:
5f:7b:98:66:42:92:7a:0e:98:89:c9:23:fa:4d:2a:59:1f:ff:
fe:70:eb:20:f6:fa:a5:c2:8a:0d:80:6b:89:48:15:b2:99:61:
db:e2:2e:1d:2c:47:e3:bc:74:f7:19:f7:bb:4c:1e:c7:f1:5b:
47:15:ab:dd:e3:90:86:2d:70:43:1e:a7:5d:86:00:6c:4d:d1:
16:1d:82:39:04:80:17:74:7b:35:e7:7f:4f:e1:39:99:37:44:
4a:cd:5c:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlITOtUCMHvt1Q+kVkwRnCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYjgwZWEwZjk5NjVmNjg4MDMyOWIxMmZlYzI3YTkzOTBm
YzFjYjcwHhcNMjUwMTAyMDM0ODQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZGE3ZGZlYzQzNzE4NWIwZGViNGI5YTRhY2NlMTE5ZjVhNjg0OGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7B1J5DIj1O0Wh3t6yjsjK/LW2Pw
sbzxaFroGr201USazeUvsogJ60GyG7GMAIp8p1wf5EJ68cL/oHFxvFAkCsAt3FV+
5/zHUH1HjzADlHssBQIHBOrXlUaOZsryLwe82hwDWcqvz/WzhMFHnMKcypPg5ctH
RW0Yr0fPlP2c5b08Dwa9pMkZvrLym98K3VfhxvEQvOiuqc+YotIke9LYrDe3ugkS
Kg0b07eyz+r8Mh6N4h4gthbZ2mdAAdBBob6MkGfx6OE66Q9yfFH0LpRam+rNBFf/
w3jO6FfJuGKVbs7ad/nwW0hTWeohj1gbTg38yI4lA0L/EdHfGyELZ4GgSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI2n3+xDcYWw3rS5pKzOEZ9aaEiyMB8GA1UdIwQY
MBaAFNq4DqD5ll9ogDKbEv7CepOQ/By3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnJnT29QbVdYMmlBTXBzU19zSjZrNUQ4SExjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8xNTNmZjctZDRiMi00MDdmLWEyMTYt
OWY2YWE0Y2YwNzk5LzEvamFmZjdFTnhoYkRldExta3JNNFJuMXBvU0xJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS8xNTNmZjctZDRiMi00MDdmLWEyMTYtOWY2YWE0Y2YwNzk5
LzEvMnJnT29QbVdYMmlBTXBzU19zSjZrNUQ4SExjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuebEMA0G
CSqGSIb3DQEBCwUAA4IBAQA2TOBsy3xzxOZbFiWIW4IjIiCpI1m2KI9Q8lhA98mR
9z5206gr20id1Ald7lkIXTFA+GtZ7rPi2is7riJEnLZGsh0IcLITutf4GO6zg6s6
0tERH1HRA2PD+mDTQ5TZuq0Ik3CN9ZpCuGCm8jBujRuBFemq94Y9D/E1wjZRaCBj
KxQtCKbklYEKdENaFgY16Sd1rGLFPkmEEv8HgnKfusVYfyFfe5hmQpJ6DpiJySP6
TSpZH//+cOsg9vqlwooNgGuJSBWymWHb4i4dLEfjvHT3Gfe7TB7H8VtHFavd45CG
LXBDHqddhgBsTdEWHYI5BIAXdHs1539P4TmZN0RKzVz9
-----END CERTIFICATE-----
Generated at Fri Apr 25 02:56:41 2025 by rpki-client