Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f60134-6d6d-4dc1-92a9-659ae821991c/1/J34FEax5wDDr8doFeio-FtYnXSk.roa
File: J34FEax5wDDr8doFeio-FtYnXSk.roa (raw, json)
Hash identifier: BSkpMRVkkRJOnXjYlfdRciFjV87O18peqIcoYZgdhNU=
Subject key identifier: 27:7E:05:11:AC:79:C0:30:EB:F1:DA:05:7A:2A:3E:16:D6:27:5D:29
Certificate issuer: /CN=aceb99748999ab8e0218f7c8dbdcc5698d669d39
Certificate serial: 019422FC42EBB95AECD85DC5BF773E5C820D
Authority key identifier: AC:EB:99:74:89:99:AB:8E:02:18:F7:C8:DB:DC:C5:69:8D:66:9D:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOuZdImZq44CGPfI29zFaY1mnTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f60134-6d6d-4dc1-92a9-659ae821991c/1/J34FEax5wDDr8doFeio-FtYnXSk.roa
Signing time: Wed 01 Jan 2025 17:49:04 +0000
ROA not before: Wed 01 Jan 2025 17:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5484
IP address blocks: 185.219.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:42:eb:b9:5a:ec:d8:5d:c5:bf:77:3e:5c:82:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aceb99748999ab8e0218f7c8dbdcc5698d669d39
Validity
Not Before: Jan 1 17:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=277e0511ac79c030ebf1da057a2a3e16d6275d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:54:a8:b6:94:61:1a:a2:e0:16:b7:b0:53:9d:
00:46:f4:76:ec:75:39:ee:9b:0e:31:97:e0:e5:7d:
43:8f:7c:e9:da:eb:22:76:85:b6:e2:95:7e:f3:48:
d4:1f:ce:11:5d:1f:ac:63:07:1c:21:cb:95:1b:62:
9f:7c:82:a2:c3:6d:c6:94:d4:bf:c3:a0:bc:af:c4:
35:90:b6:41:a0:72:b1:4d:ad:75:fc:8b:f1:41:1f:
1f:89:13:82:7f:e7:6d:4c:ef:2d:37:f9:8e:f3:64:
a2:77:b6:8a:e0:3a:14:47:cf:31:c3:fe:d3:aa:49:
2a:00:45:ec:ab:ed:f0:3b:96:e3:28:cd:83:df:64:
7e:db:a4:cf:f2:ed:fa:af:01:d4:6c:be:af:bc:01:
c0:ef:bc:73:92:fc:bc:76:b1:a7:62:87:9f:5b:28:
58:b8:37:b4:8a:ee:46:9d:7e:4c:e3:39:7e:ea:0f:
c2:21:97:23:10:75:01:4a:ed:b0:98:2d:39:ec:90:
25:f5:25:1b:54:08:0e:fa:d9:75:30:04:36:c5:69:
2d:b6:77:8c:3c:90:55:9d:2e:2e:1c:4f:df:1f:7a:
0f:8e:44:c4:40:66:38:6c:0e:56:10:f4:35:31:53:
35:c2:0f:de:28:5c:ba:72:91:66:f6:20:f1:01:8a:
78:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:7E:05:11:AC:79:C0:30:EB:F1:DA:05:7A:2A:3E:16:D6:27:5D:29
X509v3 Authority Key Identifier:
keyid:AC:EB:99:74:89:99:AB:8E:02:18:F7:C8:DB:DC:C5:69:8D:66:9D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOuZdImZq44CGPfI29zFaY1mnTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f60134-6d6d-4dc1-92a9-659ae821991c/1/J34FEax5wDDr8doFeio-FtYnXSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f60134-6d6d-4dc1-92a9-659ae821991c/1/rOuZdImZq44CGPfI29zFaY1mnTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.114.0/24
Signature Algorithm: sha256WithRSAEncryption
06:27:09:fa:a5:de:21:75:12:4e:e5:22:ea:85:89:82:d1:3f:
19:0e:17:1f:11:99:04:94:19:5b:42:f2:ef:38:d3:ca:04:78:
11:76:f9:ed:a2:bf:31:3a:b8:aa:7d:76:b8:17:77:30:bf:97:
2c:21:5f:d7:3f:2e:50:6c:cf:a6:12:a8:71:fe:c0:e0:9b:41:
1c:97:78:10:16:f6:b8:0c:f0:6a:4c:4d:ef:15:43:b4:46:90:
ba:7b:57:7f:5e:fb:9f:17:af:39:96:1a:ce:83:f2:67:4f:42:
40:e0:09:d3:2c:96:4f:94:af:24:54:48:ef:09:68:6f:be:33:
79:ba:f9:74:1f:b9:c7:66:76:6f:e5:a0:70:65:02:cf:69:ee:
d7:9a:76:00:4b:73:f3:7f:6d:f1:a6:f1:8b:68:3d:8c:75:3c:
33:69:62:c2:bf:05:14:8c:ae:3a:df:87:10:9b:17:49:27:3f:
4b:5f:d4:31:3c:ec:7a:70:ee:20:7a:27:9d:74:b4:1c:84:3b:
6c:27:cd:28:5e:f0:86:77:a9:44:00:99:3b:98:5d:48:45:4c:
10:99:20:ab:6a:4d:d3:eb:61:90:04:78:9d:a1:64:90:e3:2d:
2b:fd:16:d5:a8:ca:eb:e9:16:8d:0b:62:49:f0:5b:be:0c:80:
17:f5:71:72
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi/ELruVrs2F3Fv3c+XIINMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjZWI5OTc0ODk5OWFiOGUwMjE4ZjdjOGRiZGNjNTY5OGQ2
NjlkMzkwHhcNMjUwMTAxMTc0OTA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzdlMDUxMWFjNzljMDMwZWJmMWRhMDU3YTJhM2UxNmQ2Mjc1ZDI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzVSotpRhGqLgFrewU50ARvR27HU5
7psOMZfg5X1Dj3zp2usidoW24pV+80jUH84RXR+sYwccIcuVG2KffIKiw23GlNS/
w6C8r8Q1kLZBoHKxTa11/IvxQR8fiROCf+dtTO8tN/mO82Sid7aK4DoUR88xw/7T
qkkqAEXsq+3wO5bjKM2D32R+26TP8u36rwHUbL6vvAHA77xzkvy8drGnYoefWyhY
uDe0iu5GnX5M4zl+6g/CIZcjEHUBSu2wmC057JAl9SUbVAgO+tl1MAQ2xWkttneM
PJBVnS4uHE/fH3oPjkTEQGY4bA5WEPQ1MVM1wg/eKFy6cpFm9iDxAYp4swIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCd+BRGsecAw6/HaBXoqPhbWJ10pMB8GA1UdIwQY
MBaAFKzrmXSJmauOAhj3yNvcxWmNZp05MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvck91WmRJbVpxNDRDR1BmSTI5ekZhWTFtblRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mNjAxMzQtNmQ2ZC00ZGMxLTkyYTkt
NjU5YWU4MjE5OTFjLzEvSjM0RkVheDV3RERyOGRvRmVpby1GdFluWFNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9mNjAxMzQtNmQ2ZC00ZGMxLTkyYTktNjU5YWU4MjE5OTFj
LzEvck91WmRJbVpxNDRDR1BmSTI5ekZhWTFtblRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudtyMA0G
CSqGSIb3DQEBCwUAA4IBAQAGJwn6pd4hdRJO5SLqhYmC0T8ZDhcfEZkElBlbQvLv
ONPKBHgRdvntor8xOriqfXa4F3cwv5csIV/XPy5QbM+mEqhx/sDgm0Ecl3gQFva4
DPBqTE3vFUO0RpC6e1d/XvufF685lhrOg/JnT0JA4AnTLJZPlK8kVEjvCWhvvjN5
uvl0H7nHZnZv5aBwZQLPae7XmnYAS3Pzf23xpvGLaD2MdTwzaWLCvwUUjK4634cQ
mxdJJz9LX9QxPOx6cO4geieddLQchDtsJ80oXvCGd6lEAJk7mF1IRUwQmSCrak3T
62GQBHidoWSQ4y0r/RbVqMrr6RaNC2JJ8Fu+DIAX9XFy
-----END CERTIFICATE-----
Generated at Fri Apr 25 11:58:58 2025 by rpki-client