Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/814325-2191-41c6-b2ed-e229a42c4085/1/t2TSolMpe1MqepO7ZiAhihdiw7E.roa
File: t2TSolMpe1MqepO7ZiAhihdiw7E.roa (raw, json)
Hash identifier: 6XLtwGEoBLRfiwM7FwJJWhjDjtkkFPk9hmuRlaKNmqY=
Subject key identifier: B7:64:D2:A2:53:29:7B:53:2A:7A:93:BB:66:20:21:8A:17:62:C3:B1
Certificate issuer: /CN=49d15a10e74710936cb8c37b7c6f5f1fb38c121f
Certificate serial: 019425FC8CF100A1ED3C8C2BD723FEF32F71
Authority key identifier: 49:D1:5A:10:E7:47:10:93:6C:B8:C3:7B:7C:6F:5F:1F:B3:8C:12:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SdFaEOdHEJNsuMN7fG9fH7OMEh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/814325-2191-41c6-b2ed-e229a42c4085/1/t2TSolMpe1MqepO7ZiAhihdiw7E.roa
Signing time: Thu 02 Jan 2025 07:48:15 +0000
ROA not before: Thu 02 Jan 2025 07:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48930
IP address blocks: 195.88.98.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:8c:f1:00:a1:ed:3c:8c:2b:d7:23:fe:f3:2f:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49d15a10e74710936cb8c37b7c6f5f1fb38c121f
Validity
Not Before: Jan 2 07:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b764d2a253297b532a7a93bb6620218a1762c3b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d9:00:07:e6:72:68:97:17:b5:42:44:15:1f:
41:61:bb:e9:a3:91:08:fe:27:3e:f1:8f:a1:75:83:
2a:1e:05:26:00:c3:fc:4d:d0:18:74:06:68:e1:17:
87:dc:00:d5:e3:1d:da:de:fe:10:a8:7b:bd:f6:ca:
7c:e1:56:8a:48:d0:d8:fa:aa:a6:25:50:78:28:5c:
16:20:30:f3:3b:d5:b4:1f:3d:af:a0:88:fa:42:d5:
53:4e:80:7f:8f:0c:11:27:2d:21:4a:29:c7:f9:14:
80:ad:d7:c2:bd:c9:15:ca:a7:d6:b7:59:44:58:b9:
b2:9c:e3:96:17:b4:aa:f0:11:2a:a4:11:22:ce:dc:
e5:5f:f3:70:3e:5b:c3:cd:cd:8d:59:dd:61:e9:eb:
9b:2c:7d:69:91:c4:b0:eb:c0:8b:08:14:7b:6d:36:
43:41:28:5e:59:46:62:63:86:6e:37:4b:3e:a3:49:
3f:50:8c:ac:fe:a7:43:c0:cd:f1:ae:87:0e:e1:68:
57:30:d9:6d:5f:5c:ec:1e:e9:62:5c:39:30:60:d0:
f2:b6:b2:56:30:e1:9d:d9:7d:e9:ae:e5:8d:4f:82:
3a:ba:3d:42:96:05:ae:77:82:b7:bf:8d:ae:77:49:
d9:72:99:66:14:07:39:a0:7f:cc:87:b3:a3:2a:6e:
b6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:64:D2:A2:53:29:7B:53:2A:7A:93:BB:66:20:21:8A:17:62:C3:B1
X509v3 Authority Key Identifier:
keyid:49:D1:5A:10:E7:47:10:93:6C:B8:C3:7B:7C:6F:5F:1F:B3:8C:12:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SdFaEOdHEJNsuMN7fG9fH7OMEh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/814325-2191-41c6-b2ed-e229a42c4085/1/t2TSolMpe1MqepO7ZiAhihdiw7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/814325-2191-41c6-b2ed-e229a42c4085/1/SdFaEOdHEJNsuMN7fG9fH7OMEh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.98.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:de:cc:f7:a5:0c:ff:25:14:73:66:c8:61:f9:9a:a8:0e:34:
7d:c5:61:1d:ea:5e:31:0c:f3:36:c4:e1:2a:e0:15:44:5c:41:
53:c1:2e:0a:2e:7f:99:14:92:d7:b3:b6:c7:4c:fe:1a:e1:17:
c5:3c:dc:c5:74:d0:2c:48:86:44:c3:f2:76:4c:9d:4b:d1:c9:
47:2e:4f:f5:73:33:48:d2:f2:f9:55:c3:a7:ae:29:1c:d2:5f:
b4:65:85:35:04:ad:7e:64:67:8e:51:0e:53:ee:a4:d7:1e:f7:
6d:b6:47:b8:9d:e2:62:45:d1:5e:01:ec:4f:39:2b:ca:c3:20:
b8:b4:ba:b5:ce:23:b4:86:1c:55:c3:84:25:d6:d4:44:3d:44:
bd:f7:42:9a:e7:04:74:b5:47:bc:83:1d:19:d3:cd:3a:ce:bc:
b4:e1:45:ec:5a:e4:b2:ff:3f:58:d3:16:48:08:13:37:bc:8b:
d8:9d:13:b7:b0:96:ab:ae:c7:cf:e0:9b:77:1a:f6:6c:e2:30:
1c:b9:3d:01:b7:16:5a:75:15:f4:93:bf:ef:c8:9b:b1:5f:54:
0d:a6:94:8a:87:35:13:d9:f4:cd:74:30:1e:10:15:66:3f:13:
13:c1:f6:76:c2:d7:cc:8d:77:6c:ec:10:a5:21:24:44:cf:ae:
44:1a:91:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/IzxAKHtPIwr1yP+8y9xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZDE1YTEwZTc0NzEwOTM2Y2I4YzM3YjdjNmY1ZjFmYjM4
YzEyMWYwHhcNMjUwMTAyMDc0ODE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzY0ZDJhMjUzMjk3YjUzMmE3YTkzYmI2NjIwMjE4YTE3NjJjM2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9kAB+ZyaJcXtUJEFR9BYbvpo5EI
/ic+8Y+hdYMqHgUmAMP8TdAYdAZo4ReH3ADV4x3a3v4QqHu99sp84VaKSNDY+qqm
JVB4KFwWIDDzO9W0Hz2voIj6QtVTToB/jwwRJy0hSinH+RSArdfCvckVyqfWt1lE
WLmynOOWF7Sq8BEqpBEiztzlX/NwPlvDzc2NWd1h6eubLH1pkcSw68CLCBR7bTZD
QSheWUZiY4ZuN0s+o0k/UIys/qdDwM3xrocO4WhXMNltX1zsHuliXDkwYNDytrJW
MOGd2X3pruWNT4I6uj1ClgWud4K3v42ud0nZcplmFAc5oH/Mh7OjKm62QwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLdk0qJTKXtTKnqTu2YgIYoXYsOxMB8GA1UdIwQY
MBaAFEnRWhDnRxCTbLjDe3xvXx+zjBIfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2RGYUVPZEhFSk5zdU1ON2ZHOWZIN09NRWg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi84MTQzMjUtMjE5MS00MWM2LWIyZWQt
ZTIyOWE0MmM0MDg1LzEvdDJUU29sTXBlMU1xZXBPN1ppQWhpaGRpdzdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi84MTQzMjUtMjE5MS00MWM2LWIyZWQtZTIyOWE0MmM0MDg1
LzEvU2RGYUVPZEhFSk5zdU1ON2ZHOWZIN09NRWg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw1hiMA0G
CSqGSIb3DQEBCwUAA4IBAQAt3sz3pQz/JRRzZshh+ZqoDjR9xWEd6l4xDPM2xOEq
4BVEXEFTwS4KLn+ZFJLXs7bHTP4a4RfFPNzFdNAsSIZEw/J2TJ1L0clHLk/1czNI
0vL5VcOnrikc0l+0ZYU1BK1+ZGeOUQ5T7qTXHvdttke4neJiRdFeAexPOSvKwyC4
tLq1ziO0hhxVw4Ql1tREPUS990Ka5wR0tUe8gx0Z0806zry04UXsWuSy/z9Y0xZI
CBM3vIvYnRO3sJarrsfP4Jt3GvZs4jAcuT0BtxZadRX0k7/vyJuxX1QNppSKhzUT
2fTNdDAeEBVmPxMTwfZ2wtfMjXds7BClISREz65EGpHT
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:54:52 2025 by rpki-client