Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/OwN_u8-wXQUeHGlWNCeV2-9Zw1E.roa
File: OwN_u8-wXQUeHGlWNCeV2-9Zw1E.roa (raw, json)
Hash identifier: GL8HC8nKjSwa4mRugn3DqDIjF1e/NuFqUhL9j08TswI=
Subject key identifier: 3B:03:7F:BB:CF:B0:5D:05:1E:1C:69:56:34:27:95:DB:EF:59:C3:51
Certificate issuer: /CN=359ddc737684ce041754a95b56b5a076d8851048
Certificate serial: 019425FD76AD83CA787ACB23E2ACD4A10C3A
Authority key identifier: 35:9D:DC:73:76:84:CE:04:17:54:A9:5B:56:B5:A0:76:D8:85:10:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/OwN_u8-wXQUeHGlWNCeV2-9Zw1E.roa
Signing time: Thu 02 Jan 2025 07:49:15 +0000
ROA not before: Thu 02 Jan 2025 07:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207264
IP address blocks: 185.117.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:76:ad:83:ca:78:7a:cb:23:e2:ac:d4:a1:0c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359ddc737684ce041754a95b56b5a076d8851048
Validity
Not Before: Jan 2 07:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3b037fbbcfb05d051e1c6956342795dbef59c351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:0c:66:6c:3c:cf:49:f1:f5:d2:44:24:77:9f:
eb:24:e5:05:98:84:2d:3a:1f:e1:71:f0:0e:8e:29:
b3:e9:d7:86:49:40:4d:fb:af:07:e5:35:94:f6:29:
73:ad:c7:cc:af:31:a5:3e:ab:96:6a:36:03:64:37:
96:e9:59:1e:24:99:89:1a:6b:70:a8:ee:bf:f5:af:
52:da:f5:17:1e:d6:15:f9:64:5e:00:7d:5b:4c:14:
b0:cf:f7:ab:fc:7e:c6:ab:24:e7:5c:3b:2d:bc:f0:
bd:a6:a7:56:c1:7e:54:13:d1:0d:a2:d0:0e:2f:bb:
fd:e0:4e:18:7c:92:56:97:44:58:ea:04:70:c9:4c:
f5:fb:cc:51:72:88:bb:11:a6:de:28:ec:d7:cf:7e:
ae:42:de:c7:74:ba:51:fa:86:a7:63:6e:bd:1e:9e:
6e:71:1f:1b:d7:03:cc:7c:02:4d:70:ce:2d:bc:01:
4a:d8:5c:e0:3d:1b:04:1e:e1:45:75:0d:89:3c:a7:
b1:16:3d:ea:e2:65:d6:a4:b7:ba:60:3d:25:e9:d2:
c3:41:3f:7d:2c:6a:cd:e5:9b:a9:e3:8c:5c:47:53:
da:b5:75:78:44:c0:41:52:35:6e:70:ca:b3:68:13:
42:01:c8:4e:3a:12:52:2b:9f:ed:7d:4d:13:ce:9e:
68:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:03:7F:BB:CF:B0:5D:05:1E:1C:69:56:34:27:95:DB:EF:59:C3:51
X509v3 Authority Key Identifier:
keyid:35:9D:DC:73:76:84:CE:04:17:54:A9:5B:56:B5:A0:76:D8:85:10:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/OwN_u8-wXQUeHGlWNCeV2-9Zw1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.98.0/24
Signature Algorithm: sha256WithRSAEncryption
56:6b:fd:eb:a6:6b:d4:18:73:ff:5c:a2:71:19:b9:ab:17:17:
ec:65:d6:f7:c8:31:c7:8b:de:cc:f1:19:38:b9:3e:87:53:22:
18:3a:57:e8:39:8c:dd:d9:dc:fa:4e:32:e1:31:47:5b:01:66:
ee:ce:28:11:35:a3:6f:0c:9d:0e:93:81:96:2e:42:06:e2:34:
8e:c2:18:31:13:7e:2f:6f:90:fe:38:23:b8:04:29:be:20:5f:
3f:b9:cd:db:d6:a9:c3:28:ca:f0:bd:ec:3f:8c:07:86:f2:50:
f9:dd:6a:9c:40:31:40:33:56:ee:2e:5e:a1:8e:ff:5d:7f:c8:
6b:69:8e:52:f0:0f:7a:c3:48:61:da:75:30:97:9f:9a:8e:19:
80:c6:02:7b:aa:79:30:04:63:68:53:57:7e:a8:e3:e1:dd:52:
75:17:4a:20:b3:00:39:62:48:d8:db:c6:a9:39:fd:5c:bc:05:
9a:a2:fa:a3:d6:9a:9e:c6:68:81:4f:ed:56:52:91:ed:ab:be:
71:97:3f:36:eb:fa:7e:a5:87:85:e5:57:c5:0c:16:69:26:e4:
2f:c9:ac:3b:7b:c2:44:c5:23:3a:8e:da:9d:66:b6:a5:9c:d2:
52:82:7a:98:d2:29:63:53:fe:c7:3a:00:9d:82:25:43:0b:8a:
80:c1:e8:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/Xatg8p4essj4qzUoQw6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1OWRkYzczNzY4NGNlMDQxNzU0YTk1YjU2YjVhMDc2ZDg4
NTEwNDgwHhcNMjUwMTAyMDc0OTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjAzN2ZiYmNmYjA1ZDA1MWUxYzY5NTYzNDI3OTVkYmVmNTljMzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAxmbDzPSfH10kQkd5/rJOUFmIQt
Oh/hcfAOjimz6deGSUBN+68H5TWU9ilzrcfMrzGlPquWajYDZDeW6VkeJJmJGmtw
qO6/9a9S2vUXHtYV+WReAH1bTBSwz/er/H7GqyTnXDstvPC9pqdWwX5UE9ENotAO
L7v94E4YfJJWl0RY6gRwyUz1+8xRcoi7EabeKOzXz36uQt7HdLpR+oanY269Hp5u
cR8b1wPMfAJNcM4tvAFK2FzgPRsEHuFFdQ2JPKexFj3q4mXWpLe6YD0l6dLDQT99
LGrN5Zup44xcR1PatXV4RMBBUjVucMqzaBNCAchOOhJSK5/tfU0Tzp5odQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDsDf7vPsF0FHhxpVjQnldvvWcNRMB8GA1UdIwQY
MBaAFDWd3HN2hM4EF1SpW1a1oHbYhRBIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlozY2MzYUV6Z1FYVktsYlZyV2dkdGlGRUVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iMmUzZDMtMzJlZC00YmIyLWFjZjYt
MjA0MTQ4YzVhMDE3LzEvT3dOX3U4LXdYUVVlSEdsV05DZVYyLTladzFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9iMmUzZDMtMzJlZC00YmIyLWFjZjYtMjA0MTQ4YzVhMDE3
LzEvTlozY2MzYUV6Z1FYVktsYlZyV2dkdGlGRUVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXViMA0G
CSqGSIb3DQEBCwUAA4IBAQBWa/3rpmvUGHP/XKJxGbmrFxfsZdb3yDHHi97M8Rk4
uT6HUyIYOlfoOYzd2dz6TjLhMUdbAWbuzigRNaNvDJ0Ok4GWLkIG4jSOwhgxE34v
b5D+OCO4BCm+IF8/uc3b1qnDKMrwvew/jAeG8lD53WqcQDFAM1buLl6hjv9df8hr
aY5S8A96w0hh2nUwl5+ajhmAxgJ7qnkwBGNoU1d+qOPh3VJ1F0ogswA5YkjY28ap
Of1cvAWaovqj1pqexmiBT+1WUpHtq75xlz826/p+pYeF5VfFDBZpJuQvyaw7e8JE
xSM6jtqdZralnNJSgnqY0iljU/7HOgCdgiVDC4qAweip
-----END CERTIFICATE-----
Generated at Fri Apr 25 04:10:52 2025 by rpki-client