Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/uY1QhTOWxV4UKC9D82RM9yb0zNE.roa
File: uY1QhTOWxV4UKC9D82RM9yb0zNE.roa (raw, json)
Hash identifier: Bvx8t4Oi0CQUF3Zey6rE/7ccr+hwq753xh5wAVW5P6Y=
Subject key identifier: B9:8D:50:85:33:96:C5:5E:14:28:2F:43:F3:64:4C:F7:26:F4:CC:D1
Certificate issuer: /CN=e4d271c3fa903a590fdf54899449e698f2e9c632
Certificate serial: 019427B60F39D16F6A57AB47CECFBC41D615
Authority key identifier: E4:D2:71:C3:FA:90:3A:59:0F:DF:54:89:94:49:E6:98:F2:E9:C6:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NJxw_qQOlkP31SJlEnmmPLpxjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/uY1QhTOWxV4UKC9D82RM9yb0zNE.roa
Signing time: Thu 02 Jan 2025 15:50:30 +0000
ROA not before: Thu 02 Jan 2025 15:50:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29296
IP address blocks: 193.135.64.0/19 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:0f:39:d1:6f:6a:57:ab:47:ce:cf:bc:41:d6:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d271c3fa903a590fdf54899449e698f2e9c632
Validity
Not Before: Jan 2 15:50:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b98d50853396c55e14282f43f3644cf726f4ccd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:47:bc:b4:39:e9:3e:77:b7:80:62:0a:9c:0b:
dc:45:f7:f0:e3:b6:b5:26:72:41:45:92:ea:08:b1:
55:21:16:51:ce:ae:3c:2a:37:c8:1f:e8:ba:4a:6d:
a5:44:d0:bc:35:e4:ea:e2:9e:90:57:af:ba:8a:8f:
97:8e:84:91:51:11:65:57:8f:60:a7:9c:fd:20:7e:
10:3a:ad:c1:f4:cf:c9:cc:5d:8c:93:3a:b1:9c:1d:
6e:77:6f:33:96:29:2a:ed:74:28:ba:a2:df:3f:bb:
a7:c0:7f:7e:71:2a:16:5e:04:bf:62:c4:71:38:81:
98:0d:eb:2e:ff:16:cf:93:ee:90:4c:3d:cd:43:d8:
49:09:19:98:47:3a:7a:01:e5:d1:8b:06:99:d4:5c:
e2:d4:01:e7:26:c8:77:5d:97:48:8b:0f:02:97:4d:
8e:e7:f3:69:41:bc:0e:12:af:db:09:21:31:bb:be:
7f:5c:4c:a9:96:07:eb:ef:44:45:10:0f:f9:27:7e:
a4:7a:ea:b4:e6:39:64:f2:64:0d:ae:91:88:ca:15:
e5:79:f3:29:39:64:b2:d9:e5:0d:6a:10:a7:b9:b7:
44:6e:a5:c5:41:91:d4:01:93:3c:6c:e8:86:69:45:
d9:2f:b6:a9:cc:b4:95:96:da:70:6e:62:26:9a:e9:
a3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:8D:50:85:33:96:C5:5E:14:28:2F:43:F3:64:4C:F7:26:F4:CC:D1
X509v3 Authority Key Identifier:
keyid:E4:D2:71:C3:FA:90:3A:59:0F:DF:54:89:94:49:E6:98:F2:E9:C6:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NJxw_qQOlkP31SJlEnmmPLpxjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/uY1QhTOWxV4UKC9D82RM9yb0zNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/5NJxw_qQOlkP31SJlEnmmPLpxjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.64.0/19
Signature Algorithm: sha256WithRSAEncryption
0a:a4:7b:e5:ee:64:60:cc:b9:07:91:da:82:c9:08:3d:a9:a2:
db:33:a8:3c:7f:b5:6a:19:d9:98:6c:cd:ba:e8:0d:f8:63:50:
43:b4:d8:a7:19:f0:6e:b5:7e:2d:0b:b4:df:fc:47:70:b3:19:
6a:b7:a1:f4:09:25:3f:03:d2:49:1f:a4:8b:a6:93:a0:08:22:
6a:28:dc:01:af:b2:37:3a:70:4e:f2:d0:d8:6e:d0:03:ef:30:
0f:50:e8:7c:0c:28:86:1f:77:3e:63:c2:b5:7f:aa:3c:2e:30:
15:1e:e7:c9:f2:27:ef:67:a5:9b:25:50:c7:9d:76:3d:39:69:
33:a2:2c:42:91:71:ff:0a:22:71:8e:f4:be:15:94:46:14:28:
22:64:4f:ed:d3:88:94:ea:7e:63:74:81:76:9d:6b:6b:8e:86:
ef:b6:64:c5:f5:46:56:12:5a:c2:aa:0a:2f:a8:71:b2:07:81:
53:0c:eb:86:ad:42:78:e7:fb:b9:9c:40:6d:88:fb:a6:03:f4:
d5:01:18:76:97:1d:e2:8d:cd:65:b1:fb:9e:5b:52:9f:97:c9:
83:4f:87:e5:69:b6:36:d1:f8:f1:de:68:23:20:1f:f0:88:18:
5e:8c:f1:65:fd:54:ee:92:82:31:5a:1d:96:f8:8e:c1:8b:69:
36:6f:a8:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQntg850W9qV6tHzs+8QdYVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ZDI3MWMzZmE5MDNhNTkwZmRmNTQ4OTk0NDllNjk4ZjJl
OWM2MzIwHhcNMjUwMTAyMTU1MDMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOThkNTA4NTMzOTZjNTVlMTQyODJmNDNmMzY0NGNmNzI2ZjRjY2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmEe8tDnpPne3gGIKnAvcRffw47a1
JnJBRZLqCLFVIRZRzq48KjfIH+i6Sm2lRNC8NeTq4p6QV6+6io+XjoSRURFlV49g
p5z9IH4QOq3B9M/JzF2MkzqxnB1ud28zlikq7XQouqLfP7unwH9+cSoWXgS/YsRx
OIGYDesu/xbPk+6QTD3NQ9hJCRmYRzp6AeXRiwaZ1Fzi1AHnJsh3XZdIiw8Cl02O
5/NpQbwOEq/bCSExu75/XEyplgfr70RFEA/5J36keuq05jlk8mQNrpGIyhXlefMp
OWSy2eUNahCnubdEbqXFQZHUAZM8bOiGaUXZL7apzLSVltpwbmImmumj0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLmNUIUzlsVeFCgvQ/NkTPcm9MzRMB8GA1UdIwQY
MBaAFOTSccP6kDpZD99UiZRJ5pjy6cYyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNU5KeHdfcVFPbGtQMzFTSmxFbm1tUExweGpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC84OTcwOTItMDc1MC00ZDk2LWIzMmYt
NWYyMDUyMzZkZTFmLzEvdVkxUWhUT1d4VjRVS0M5RDgyUk05eWIwek5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC84OTcwOTItMDc1MC00ZDk2LWIzMmYtNWYyMDUyMzZkZTFm
LzEvNU5KeHdfcVFPbGtQMzFTSmxFbm1tUExweGpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFwYdAMA0G
CSqGSIb3DQEBCwUAA4IBAQAKpHvl7mRgzLkHkdqCyQg9qaLbM6g8f7VqGdmYbM26
6A34Y1BDtNinGfButX4tC7Tf/Edwsxlqt6H0CSU/A9JJH6SLppOgCCJqKNwBr7I3
OnBO8tDYbtAD7zAPUOh8DCiGH3c+Y8K1f6o8LjAVHufJ8ifvZ6WbJVDHnXY9OWkz
oixCkXH/CiJxjvS+FZRGFCgiZE/t04iU6n5jdIF2nWtrjobvtmTF9UZWElrCqgov
qHGyB4FTDOuGrUJ45/u5nEBtiPumA/TVARh2lx3ijc1lsfueW1Kfl8mDT4flabY2
0fjx3mgjIB/wiBhejPFl/VTukoIxWh2W+I7Bi2k2b6hh
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:26:55 2025 by rpki-client