Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/34c2e4-4e9b-4847-a8ef-0838f78c0259/1/VwdOphY_UgRaqYf3Kg3b6kzwRf0.roa
File: VwdOphY_UgRaqYf3Kg3b6kzwRf0.roa (raw, json)
Hash identifier: RncMvUV6R6LkD/qjU1iWGPE4PHApbhUX2ZP/1640Hn8=
Subject key identifier: 57:07:4E:A6:16:3F:52:04:5A:A9:87:F7:2A:0D:DB:EA:4C:F0:45:FD
Certificate issuer: /CN=f5fde72bf5a00bdec4d1efdd7d02029ee79e4720
Certificate serial: 01942748631A2BC58FCC7FA83BB0BFB1E344
Authority key identifier: F5:FD:E7:2B:F5:A0:0B:DE:C4:D1:EF:DD:7D:02:02:9E:E7:9E:47:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9f3nK_WgC97E0e_dfQICnueeRyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/34c2e4-4e9b-4847-a8ef-0838f78c0259/1/VwdOphY_UgRaqYf3Kg3b6kzwRf0.roa
Signing time: Thu 02 Jan 2025 13:50:42 +0000
ROA not before: Thu 02 Jan 2025 13:50:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56753
IP address blocks: 195.254.170.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:63:1a:2b:c5:8f:cc:7f:a8:3b:b0:bf:b1:e3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5fde72bf5a00bdec4d1efdd7d02029ee79e4720
Validity
Not Before: Jan 2 13:50:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=57074ea6163f52045aa987f72a0ddbea4cf045fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ff:22:fb:9a:1f:0d:39:ee:94:fe:0f:6d:c6:
0d:ff:ed:4d:c2:63:e5:fd:c0:0c:20:04:73:05:02:
ce:d8:71:47:0b:5b:a3:30:35:e2:4a:7c:bc:68:30:
af:e4:1e:2a:6f:1f:78:2a:da:0b:56:3f:99:a4:cd:
3c:c4:ef:f3:43:50:2e:fb:ed:0d:79:96:2b:37:72:
3c:7d:cc:c8:a7:d6:c7:98:df:f3:11:99:77:3b:46:
b9:c9:ee:2b:0c:fd:f3:79:0e:4f:cd:4f:4c:f5:05:
fa:b3:a0:f9:4d:24:98:3c:4a:e5:d4:6f:1c:af:ac:
65:c4:8e:38:20:af:05:bc:42:49:ad:14:0d:6b:d1:
66:20:48:dc:a9:31:20:fc:7c:7e:fc:25:d3:f8:9a:
ff:36:05:05:4d:9f:79:a9:10:19:e6:bb:82:e0:8c:
c9:18:b6:81:52:64:63:98:08:a7:26:12:1f:fa:f8:
f8:8a:72:45:21:99:30:89:12:2a:dc:eb:86:1d:25:
a2:d6:2b:36:e9:e2:93:9a:31:eb:9e:6d:37:25:2f:
4a:48:67:e3:02:f3:af:de:96:8f:bc:83:22:6c:d5:
de:37:e3:fd:78:4a:ea:33:80:45:6b:bd:26:8c:76:
4f:38:3a:05:b8:7b:2e:2f:46:9b:63:78:0c:e1:0d:
0f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:07:4E:A6:16:3F:52:04:5A:A9:87:F7:2A:0D:DB:EA:4C:F0:45:FD
X509v3 Authority Key Identifier:
keyid:F5:FD:E7:2B:F5:A0:0B:DE:C4:D1:EF:DD:7D:02:02:9E:E7:9E:47:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f3nK_WgC97E0e_dfQICnueeRyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/34c2e4-4e9b-4847-a8ef-0838f78c0259/1/VwdOphY_UgRaqYf3Kg3b6kzwRf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/34c2e4-4e9b-4847-a8ef-0838f78c0259/1/9f3nK_WgC97E0e_dfQICnueeRyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.170.0/23
Signature Algorithm: sha256WithRSAEncryption
05:f7:79:03:c1:33:31:ed:55:28:ec:72:08:56:56:6a:5d:6c:
f8:f1:26:c9:22:73:a4:94:88:69:17:5c:f9:7f:2e:d4:2c:fb:
25:75:14:e2:ae:cd:54:fa:ad:90:46:8e:15:c0:02:5c:a5:5a:
b8:cb:f3:6d:0d:02:b3:14:b7:f7:02:a7:52:57:46:7f:be:8e:
d9:b4:14:0d:ad:b9:0f:95:e7:fc:1e:2f:f4:77:9b:4f:aa:af:
41:cb:8b:1e:b6:e2:47:05:55:64:16:6b:ff:f9:98:3f:0f:f9:
fc:6e:b9:37:35:ee:17:aa:ac:e6:b7:62:76:46:20:6c:05:1d:
02:e2:88:a1:3d:ce:a1:1d:51:99:0c:40:d9:22:ad:85:6e:04:
4f:7f:39:a4:6f:3a:0e:c6:9e:25:f5:6a:05:3a:be:19:e6:4b:
81:44:d9:53:73:17:2c:db:a7:69:6e:aa:42:58:f0:bd:16:96:
47:b6:50:26:5e:a5:7f:8c:2f:0c:d8:f5:b2:5c:53:42:9b:98:
10:b5:bb:7e:2d:bd:7d:97:41:74:6d:14:04:3a:fa:a3:c4:1a:
cb:be:25:73:cf:f2:a9:05:7a:8d:1b:9d:12:b1:d3:09:98:2b:
6e:a0:a7:28:f4:76:d4:02:cc:f4:15:cf:6c:06:b6:65:44:d8:
d8:16:74:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSGMaK8WPzH+oO7C/seNEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1ZmRlNzJiZjVhMDBiZGVjNGQxZWZkZDdkMDIwMjllZTc5
ZTQ3MjAwHhcNMjUwMTAyMTM1MDQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzA3NGVhNjE2M2Y1MjA0NWFhOTg3ZjcyYTBkZGJlYTRjZjA0NWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5/8i+5ofDTnulP4PbcYN/+1NwmPl
/cAMIARzBQLO2HFHC1ujMDXiSny8aDCv5B4qbx94KtoLVj+ZpM08xO/zQ1Au++0N
eZYrN3I8fczIp9bHmN/zEZl3O0a5ye4rDP3zeQ5PzU9M9QX6s6D5TSSYPErl1G8c
r6xlxI44IK8FvEJJrRQNa9FmIEjcqTEg/Hx+/CXT+Jr/NgUFTZ95qRAZ5ruC4IzJ
GLaBUmRjmAinJhIf+vj4inJFIZkwiRIq3OuGHSWi1is26eKTmjHrnm03JS9KSGfj
AvOv3paPvIMibNXeN+P9eErqM4BFa70mjHZPODoFuHsuL0abY3gM4Q0PRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFcHTqYWP1IEWqmH9yoN2+pM8EX9MB8GA1UdIwQY
MBaAFPX95yv1oAvexNHv3X0CAp7nnkcgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWYzbktfV2dDOTdFMGVfZGZRSUNudWVlUnlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8zNGMyZTQtNGU5Yi00ODQ3LWE4ZWYt
MDgzOGY3OGMwMjU5LzEvVndkT3BoWV9VZ1JhcVlmM0tnM2I2a3p3UmYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8zNGMyZTQtNGU5Yi00ODQ3LWE4ZWYtMDgzOGY3OGMwMjU5
LzEvOWYzbktfV2dDOTdFMGVfZGZRSUNudWVlUnlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw/6qMA0G
CSqGSIb3DQEBCwUAA4IBAQAF93kDwTMx7VUo7HIIVlZqXWz48SbJInOklIhpF1z5
fy7ULPsldRTirs1U+q2QRo4VwAJcpVq4y/NtDQKzFLf3AqdSV0Z/vo7ZtBQNrbkP
lef8Hi/0d5tPqq9By4setuJHBVVkFmv/+Zg/D/n8brk3Ne4Xqqzmt2J2RiBsBR0C
4oihPc6hHVGZDEDZIq2FbgRPfzmkbzoOxp4l9WoFOr4Z5kuBRNlTcxcs26dpbqpC
WPC9FpZHtlAmXqV/jC8M2PWyXFNCm5gQtbt+Lb19l0F0bRQEOvqjxBrLviVzz/Kp
BXqNG50SsdMJmCtuoKco9HbUAsz0Fc9sBrZlRNjYFnSV
-----END CERTIFICATE-----
Generated at Fri Apr 25 02:54:26 2025 by rpki-client