Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/maYu8dN9neYyc8DtbRu2KTpDdQk.roa
File: maYu8dN9neYyc8DtbRu2KTpDdQk.roa (raw, json)
Hash identifier: H5U+8VR9PAI4QlkVpTR8DC6LqpMXq6tJVvxgrK/vIPo=
Subject key identifier: 99:A6:2E:F1:D3:7D:9D:E6:32:73:C0:ED:6D:1B:B6:29:3A:43:75:09
Certificate issuer: /CN=2101f439debaff5880395d78f0bbfad8ca7608bf
Certificate serial: 019424455888159AD97AE5FA7A8689744AAA
Authority key identifier: 21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/maYu8dN9neYyc8DtbRu2KTpDdQk.roa
Signing time: Wed 01 Jan 2025 23:48:31 +0000
ROA not before: Wed 01 Jan 2025 23:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15404
IP address blocks: 193.178.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:58:88:15:9a:d9:7a:e5:fa:7a:86:89:74:4a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2101f439debaff5880395d78f0bbfad8ca7608bf
Validity
Not Before: Jan 1 23:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=99a62ef1d37d9de63273c0ed6d1bb6293a437509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:55:4e:6f:81:1a:5d:da:19:2b:b5:f2:c9:99:
e3:27:65:f7:ab:b9:db:04:e2:36:72:de:cf:97:94:
74:db:2f:c3:49:40:c1:a6:8b:76:55:09:d3:3e:ad:
27:d7:31:0e:4b:fd:9e:74:98:f8:e7:0f:89:86:10:
c6:39:69:54:10:9d:38:f1:46:88:da:fe:e6:96:ba:
c3:b8:b6:22:66:50:70:83:a2:5b:4d:e4:76:93:fb:
85:3b:70:da:8f:a7:e8:b8:b6:b7:5a:d4:dc:60:2c:
ae:02:f6:cd:4f:0d:bc:e2:ed:0a:00:59:14:c1:67:
5f:f2:c9:58:7a:b4:ce:ca:82:24:12:df:1d:f6:7d:
2b:64:d5:25:49:9e:d3:a4:34:97:48:07:54:d2:2f:
2f:74:1e:80:98:af:0e:a2:a5:c0:96:b0:95:4d:49:
f4:a9:c4:4f:a6:5e:aa:bd:3b:8f:23:47:9e:0d:06:
61:93:0e:35:35:97:a4:e5:fe:24:f8:f5:dd:de:97:
bf:e4:81:f3:f1:68:57:01:42:33:7b:dd:09:9f:c1:
42:28:8b:fd:20:0e:b5:16:05:0c:36:46:90:ea:18:
ed:60:59:d0:89:6f:4a:47:be:20:a8:2a:10:0c:74:
17:c4:ba:f2:1e:88:e3:66:ac:4c:bd:91:0e:8b:45:
0c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A6:2E:F1:D3:7D:9D:E6:32:73:C0:ED:6D:1B:B6:29:3A:43:75:09
X509v3 Authority Key Identifier:
keyid:21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/maYu8dN9neYyc8DtbRu2KTpDdQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.140.0/24
Signature Algorithm: sha256WithRSAEncryption
97:14:f3:7e:32:0e:1e:36:14:7d:37:0e:a7:8d:64:2c:3b:20:
51:c5:a8:64:f9:c1:38:fa:04:bb:d1:40:23:8f:71:6f:4f:06:
68:94:94:04:93:80:84:34:81:09:c3:68:44:60:96:5e:a0:a7:
48:8a:8d:f5:b5:6e:b5:fb:a6:f9:7d:cc:a0:a5:51:49:f9:92:
c1:0c:97:60:a2:43:d1:c0:cb:e7:99:f0:b6:24:7e:03:25:5c:
55:ad:9a:02:ae:74:53:7c:72:65:c1:f1:ca:f3:92:d4:12:a9:
1b:d0:5f:bc:a9:b3:9f:58:e3:2a:66:6c:7a:1e:ac:03:c3:9f:
6e:e7:ec:90:4c:fb:4a:20:97:11:36:d4:4e:94:0a:46:e2:dd:
d6:dc:50:b1:d7:25:b9:5a:97:39:e1:31:3a:34:24:3e:a2:54:
4a:2f:35:c4:e9:58:16:2f:fd:10:78:66:b6:2f:f5:2b:61:72:
af:1d:b8:37:b6:eb:2b:64:04:2c:f3:19:f7:d8:8c:87:b6:2b:
9f:97:50:53:15:26:b2:86:8b:a6:7e:6c:07:f7:21:3c:d9:f6:
c0:73:fd:d6:2a:0d:60:11:0f:c9:36:07:e9:6c:c5:c2:f0:7f:
be:f2:35:3c:40:f6:09:bf:1d:79:f6:d9:51:77:c2:aa:a8:3e:
a3:b0:ad:c9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRViIFZrZeuX6eoaJdEqqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMDFmNDM5ZGViYWZmNTg4MDM5NWQ3OGYwYmJmYWQ4Y2E3
NjA4YmYwHhcNMjUwMTAxMjM0ODMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OWE2MmVmMWQzN2Q5ZGU2MzI3M2MwZWQ2ZDFiYjYyOTNhNDM3NTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzVVOb4EaXdoZK7XyyZnjJ2X3q7nb
BOI2ct7Pl5R02y/DSUDBpot2VQnTPq0n1zEOS/2edJj45w+JhhDGOWlUEJ048UaI
2v7mlrrDuLYiZlBwg6JbTeR2k/uFO3Daj6fouLa3WtTcYCyuAvbNTw284u0KAFkU
wWdf8slYerTOyoIkEt8d9n0rZNUlSZ7TpDSXSAdU0i8vdB6AmK8OoqXAlrCVTUn0
qcRPpl6qvTuPI0eeDQZhkw41NZek5f4k+PXd3pe/5IHz8WhXAUIze90Jn8FCKIv9
IA61FgUMNkaQ6hjtYFnQiW9KR74gqCoQDHQXxLryHojjZqxMvZEOi0UMFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJmmLvHTfZ3mMnPA7W0btik6Q3UJMB8GA1UdIwQY
MBaAFCEB9Dneuv9YgDldePC7+tjKdgi/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVFIME9kNjZfMWlBT1YxNDhMdjYyTXAyQ0w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83OGM0MTQtOWIwOS00Nzc1LWE1NTgt
ZTNkZWZiN2UyNTE4LzEvbWFZdThkTjluZVl5YzhEdGJSdTJLVHBEZFFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83OGM0MTQtOWIwOS00Nzc1LWE1NTgtZTNkZWZiN2UyNTE4
LzEvSVFIME9kNjZfMWlBT1YxNDhMdjYyTXAyQ0w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbKMMA0G
CSqGSIb3DQEBCwUAA4IBAQCXFPN+Mg4eNhR9Nw6njWQsOyBRxahk+cE4+gS70UAj
j3FvTwZolJQEk4CENIEJw2hEYJZeoKdIio31tW61+6b5fcygpVFJ+ZLBDJdgokPR
wMvnmfC2JH4DJVxVrZoCrnRTfHJlwfHK85LUEqkb0F+8qbOfWOMqZmx6HqwDw59u
5+yQTPtKIJcRNtROlApG4t3W3FCx1yW5Wpc54TE6NCQ+olRKLzXE6VgWL/0QeGa2
L/UrYXKvHbg3tusrZAQs8xn32IyHtiufl1BTFSayhoumfmwH9yE82fbAc/3WKg1g
EQ/JNgfpbMXC8H++8jU8QPYJvx159tlRd8KqqD6jsK3J
-----END CERTIFICATE-----
Generated at Fri Apr 25 11:37:17 2025 by rpki-client