Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/dxiJRbb0rG53Lq98f0i5g1Diw3E.roa
File: dxiJRbb0rG53Lq98f0i5g1Diw3E.roa (raw, json)
Hash identifier: 9/nhvqiEnr8fAWmfTM/kuetnXqSQzx8yP5QO3uiQqGc=
Subject key identifier: 77:18:89:45:B6:F4:AC:6E:77:2E:AF:7C:7F:48:B9:83:50:E2:C3:71
Certificate issuer: /CN=e801f23ce821c264d67727536ec183537594c5f2
Certificate serial: 0194228D7899D0699F2500999CF92BAF84ED
Authority key identifier: E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/dxiJRbb0rG53Lq98f0i5g1Diw3E.roa
Signing time: Wed 01 Jan 2025 15:48:04 +0000
ROA not before: Wed 01 Jan 2025 15:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49858
IP address blocks: 37.156.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:78:99:d0:69:9f:25:00:99:9c:f9:2b:af:84:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e801f23ce821c264d67727536ec183537594c5f2
Validity
Not Before: Jan 1 15:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77188945b6f4ac6e772eaf7c7f48b98350e2c371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:79:19:d5:ad:b8:04:2b:3e:d5:bd:67:e5:ef:
c5:dc:45:c1:df:e0:9d:fe:b8:78:e4:ce:9a:e4:87:
00:b6:1b:11:15:cb:b0:8d:d4:47:cb:e3:77:57:41:
55:ab:16:81:bd:c5:b4:1f:d6:1e:82:31:26:83:50:
f2:2d:ea:5e:f4:b0:3a:e2:0b:15:d9:bd:1d:32:f6:
06:a7:96:e5:af:d0:d7:02:a2:1b:a3:cf:4b:c2:2c:
d8:31:a4:9d:54:9d:53:6d:ef:3b:00:cc:d5:5b:4c:
27:53:5f:36:9f:5b:19:8a:74:0c:15:51:a8:eb:df:
ce:b2:18:75:24:90:e0:2f:c6:9b:29:05:75:8f:59:
df:36:f4:b7:b2:20:80:d7:b3:0d:fa:ca:af:58:8b:
03:d3:2c:d4:4b:26:8b:5d:bb:bf:e9:19:21:aa:9c:
16:cb:44:d1:a6:a9:8b:9f:68:4e:26:dd:56:de:f9:
96:48:59:4b:1d:84:43:84:75:18:eb:69:c9:05:81:
75:32:a4:e7:f7:70:d6:5c:e1:96:bc:09:24:72:9c:
1c:5d:76:61:b8:aa:f6:87:a9:e0:83:5f:92:27:29:
42:20:2f:ad:b9:1f:cf:cb:cc:fd:9c:0f:7a:bb:af:
5a:6a:1b:cb:8d:87:aa:81:15:7e:e1:fd:ac:8c:d1:
9d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:18:89:45:B6:F4:AC:6E:77:2E:AF:7C:7F:48:B9:83:50:E2:C3:71
X509v3 Authority Key Identifier:
keyid:E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/dxiJRbb0rG53Lq98f0i5g1Diw3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/6AHyPOghwmTWdydTbsGDU3WUxfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.194.0/24
Signature Algorithm: sha256WithRSAEncryption
86:6f:3a:04:d9:fa:df:44:3c:fa:0d:9c:af:17:b3:67:22:a1:
66:be:2a:cd:a8:fa:21:2a:63:3a:86:25:0d:4a:03:2f:e0:ef:
1c:7a:a9:12:40:f2:50:92:3a:44:d1:d3:fa:7c:e3:c7:f0:45:
47:ab:f4:5f:3e:3b:89:7d:2e:c1:32:96:88:49:a0:54:5c:52:
59:8e:6a:b2:75:e8:f2:f1:84:c1:b8:03:af:65:95:8e:05:dd:
c1:55:1d:d8:fc:1c:73:51:8e:62:26:1b:2f:a4:8a:c8:66:1c:
43:5d:7c:e6:b0:67:66:0f:76:2e:12:34:9c:c2:59:27:e5:33:
54:39:86:22:01:bc:01:c3:9c:9a:59:f3:77:f3:1d:2d:2f:c6:
99:9b:02:5a:bf:9b:32:51:4f:d1:bc:f6:db:39:cb:a8:18:bf:
64:45:80:96:91:20:9a:49:ba:7c:b9:6c:73:b2:11:a6:7f:d6:
0e:84:24:9a:e8:e3:4f:6e:29:ef:91:8e:d8:65:a4:cc:b3:75:
a9:05:47:19:f8:2c:4f:c0:0e:83:53:31:69:73:d8:3d:4a:2c:
d5:b5:de:a5:75:bf:ee:f1:34:d9:a3:c8:00:97:c9:03:f0:11:
1c:cd:0f:a5:0e:df:76:ec:4b:06:7f:2b:56:4b:3f:75:24:e9:
e0:01:ab:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijXiZ0GmfJQCZnPkrr4TtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4MDFmMjNjZTgyMWMyNjRkNjc3Mjc1MzZlYzE4MzUzNzU5
NGM1ZjIwHhcNMjUwMTAxMTU0ODA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzE4ODk0NWI2ZjRhYzZlNzcyZWFmN2M3ZjQ4Yjk4MzUwZTJjMzcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3kZ1a24BCs+1b1n5e/F3EXB3+Cd
/rh45M6a5IcAthsRFcuwjdRHy+N3V0FVqxaBvcW0H9YegjEmg1DyLepe9LA64gsV
2b0dMvYGp5blr9DXAqIbo89LwizYMaSdVJ1Tbe87AMzVW0wnU182n1sZinQMFVGo
69/Oshh1JJDgL8abKQV1j1nfNvS3siCA17MN+sqvWIsD0yzUSyaLXbu/6RkhqpwW
y0TRpqmLn2hOJt1W3vmWSFlLHYRDhHUY62nJBYF1MqTn93DWXOGWvAkkcpwcXXZh
uKr2h6ngg1+SJylCIC+tuR/Py8z9nA96u69aahvLjYeqgRV+4f2sjNGdSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHcYiUW29Kxudy6vfH9IuYNQ4sNxMB8GA1UdIwQY
MBaAFOgB8jzoIcJk1ncnU27Bg1N1lMXyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNkFIeVBPZ2h3bVRXZHlkVGJzR0RVM1dVeGZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9lYWI0ZDgtNmFmZC00ZjgxLWFiMTAt
NDY0ZWIxODNiNTY4LzEvZHhpSlJiYjByRzUzTHE5OGYwaTVnMURpdzNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9lYWI0ZDgtNmFmZC00ZjgxLWFiMTAtNDY0ZWIxODNiNTY4
LzEvNkFIeVBPZ2h3bVRXZHlkVGJzR0RVM1dVeGZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJZzCMA0G
CSqGSIb3DQEBCwUAA4IBAQCGbzoE2frfRDz6DZyvF7NnIqFmvirNqPohKmM6hiUN
SgMv4O8ceqkSQPJQkjpE0dP6fOPH8EVHq/RfPjuJfS7BMpaISaBUXFJZjmqydejy
8YTBuAOvZZWOBd3BVR3Y/BxzUY5iJhsvpIrIZhxDXXzmsGdmD3YuEjScwlkn5TNU
OYYiAbwBw5yaWfN38x0tL8aZmwJav5syUU/RvPbbOcuoGL9kRYCWkSCaSbp8uWxz
shGmf9YOhCSa6ONPbinvkY7YZaTMs3WpBUcZ+CxPwA6DUzFpc9g9SizVtd6ldb/u
8TTZo8gAl8kD8BEczQ+lDt927EsGfytWSz91JOngAauD
-----END CERTIFICATE-----
Generated at Fri Apr 25 08:49:40 2025 by rpki-client