Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/tavXsXu7Wm_kIdKnzfVPzxktMGQ.roa
File: tavXsXu7Wm_kIdKnzfVPzxktMGQ.roa (raw, json)
Hash identifier: PDEUyoKVmJLpE4EXJZCm2eA6jcMg8DukO+sjxPMBeZo=
Subject key identifier: B5:AB:D7:B1:7B:BB:5A:6F:E4:21:D2:A7:CD:F5:4F:CF:19:2D:30:64
Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Certificate serial: 0194266B303BD33B06A80485FE89C3FA0C3D
Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/tavXsXu7Wm_kIdKnzfVPzxktMGQ.roa
Signing time: Thu 02 Jan 2025 09:49:06 +0000
ROA not before: Thu 02 Jan 2025 09:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8365
IP address blocks: 130.83.0.0/16 maxlen: 16
193.23.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:30:3b:d3:3b:06:a8:04:85:fe:89:c3:fa:0c:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Validity
Not Before: Jan 2 09:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b5abd7b17bbb5a6fe421d2a7cdf54fcf192d3064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:de:e7:9d:18:70:5d:2b:f4:0b:2a:91:06:04:
f2:06:7a:75:3a:0a:32:7b:b1:2e:64:fd:41:59:9b:
dc:30:a4:98:5e:ef:13:de:95:fc:8f:c1:dc:c8:ff:
c6:e9:5e:a4:db:e1:0e:5e:85:93:85:e9:e9:6e:d9:
c1:fd:57:55:34:d3:00:17:1a:53:d9:df:16:d1:ea:
e9:4d:10:48:79:b0:ea:d0:92:0c:0d:47:c0:fa:7a:
26:4d:07:e1:b1:3e:9f:bf:00:f6:38:73:fa:37:52:
9e:e0:93:63:55:42:02:64:10:7a:b5:e1:c9:3d:a9:
4f:c0:c2:d2:20:8c:cd:c4:6b:f2:56:ae:36:9d:68:
b7:f2:5d:05:61:74:34:e2:bd:21:bd:69:da:2f:ef:
47:32:f7:88:78:5f:20:fc:1a:a3:27:cf:01:37:9f:
6f:b2:89:db:e9:07:67:f9:e4:ad:62:0d:61:87:d2:
c3:c7:db:ac:dc:84:ab:7c:29:77:8a:a2:2a:28:74:
2e:a3:e0:3d:22:ee:ef:50:6c:7a:d4:a3:cc:1e:57:
38:7d:bf:50:90:e4:c9:04:59:83:68:dd:0a:23:08:
df:43:d1:02:86:19:22:c2:dd:4d:84:ce:9c:e9:30:
ae:50:7a:2c:7b:81:62:f6:2c:42:42:3e:1d:ce:65:
5b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AB:D7:B1:7B:BB:5A:6F:E4:21:D2:A7:CD:F5:4F:CF:19:2D:30:64
X509v3 Authority Key Identifier:
keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/tavXsXu7Wm_kIdKnzfVPzxktMGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.83.0.0/16
193.23.248.0/24
Signature Algorithm: sha256WithRSAEncryption
41:2b:36:db:68:d3:a2:03:dc:04:48:cd:03:da:59:ba:37:da:
d2:39:0f:3e:30:95:f1:40:59:ad:44:2e:f6:76:65:6f:a3:4e:
f0:95:8d:26:f7:05:a3:23:82:65:85:19:d8:ca:df:46:15:bd:
7f:13:8c:74:7d:dd:94:14:ed:05:d9:50:02:6a:a8:04:a1:07:
9c:94:36:56:f1:12:75:a2:d8:7a:ff:b5:41:99:c5:c5:d6:5b:
01:b5:e8:60:68:4f:0d:a8:ca:f9:da:25:52:16:e6:82:af:b4:
a1:09:fe:ed:1f:69:a6:dd:5e:45:e4:63:96:b7:2e:fa:ce:fc:
46:d2:33:8a:79:ea:51:78:60:aa:dc:59:e4:22:96:d8:66:79:
f7:d1:2b:57:07:68:59:f6:1e:fb:ca:e1:e9:60:1a:82:4a:b3:
77:fe:bc:40:d6:8a:dd:1a:b8:20:45:a1:97:df:8c:08:d7:ab:
71:6d:cd:60:8a:42:2d:e2:fe:50:b7:66:27:fd:16:46:6d:8b:
61:3b:ca:f6:b2:37:93:39:4c:fc:1f:3a:0d:d0:2c:98:02:c2:
56:02:cb:6d:d2:a4:1f:fc:5a:59:25:16:05:7f:8b:6d:b2:8b:
90:ab:a8:39:56:b3:d8:2e:c2:b4:74:73:24:1f:72:ce:4c:75:
8d:8b:b4:a8
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAZQmazA70zsGqASF/onD+gw9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3Y2VmNzVlMDk3YTYzMTg4NmIzM2M4MWY2NGFhNWViYmMw
YzMyYTAwHhcNMjUwMTAyMDk0OTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNWFiZDdiMTdiYmI1YTZmZTQyMWQyYTdjZGY1NGZjZjE5MmQzMDY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnN7nnRhwXSv0CyqRBgTyBnp1Ogoy
e7EuZP1BWZvcMKSYXu8T3pX8j8HcyP/G6V6k2+EOXoWThenpbtnB/VdVNNMAFxpT
2d8W0erpTRBIebDq0JIMDUfA+nomTQfhsT6fvwD2OHP6N1Ke4JNjVUICZBB6teHJ
PalPwMLSIIzNxGvyVq42nWi38l0FYXQ04r0hvWnaL+9HMveIeF8g/BqjJ88BN59v
sonb6Qdn+eStYg1hh9LDx9us3ISrfCl3iqIqKHQuo+A9Iu7vUGx61KPMHlc4fb9Q
kOTJBFmDaN0KIwjfQ9EChhkiwt1NhM6c6TCuUHose4Fi9ixCQj4dzmVbRwIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFLWr17F7u1pv5CHSp831T88ZLTBkMB8GA1UdIwQY
MBaAFNfO914JemMYhrM8gfZKpeu8DDKgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9mNGYwZDUtN2U0My00NmJlLWIwOTIt
NWJhNTAxZTBiMzcwLzEvdGF2WHNYdTdXbV9rSWRLbnpmVlB6eGt0TUdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9mNGYwZDUtN2U0My00NmJlLWIwOTItNWJhNTAxZTBiMzcw
LzEvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAATALAwMAglMDBADB
F/gwDQYJKoZIhvcNAQELBQADggEBAEErNtto06ID3ARIzQPaWbo32tI5Dz4wlfFA
Wa1ELvZ2ZW+jTvCVjSb3BaMjgmWFGdjK30YVvX8TjHR93ZQU7QXZUAJqqAShB5yU
NlbxEnWi2Hr/tUGZxcXWWwG16GBoTw2oyvnaJVIW5oKvtKEJ/u0faabdXkXkY5a3
LvrO/EbSM4p56lF4YKrcWeQilthmeffRK1cHaFn2HvvK4elgGoJKs3f+vEDWit0a
uCBFoZffjAjXq3FtzWCKQi3i/lC3Zif9FkZti2E7yvayN5M5TPwfOg3QLJgCwlYC
y23SpB/8WlklFgV/i22yi5CrqDlWs9guwrR0cyQfcs5MdY2LtKg=
-----END CERTIFICATE-----
Generated at Fri Apr 25 08:06:10 2025 by rpki-client