Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/943585-c124-4bac-888a-3e59cf1aec44/1/9fQEpDeRFoRhriY89YC0U1QCAQE.roa
File: 9fQEpDeRFoRhriY89YC0U1QCAQE.roa (raw, json)
Hash identifier: pgmm0HakSd9c9hjgDpMYWy+m+6d5sx2nXkg9ySWcugw=
Subject key identifier: F5:F4:04:A4:37:91:16:84:61:AE:26:3C:F5:80:B4:53:54:02:01:01
Certificate issuer: /CN=b67dd6f5bce98f7bc3169b1db9fa0e5b9cef2ebb
Certificate serial: 02803E0B
Authority key identifier: B6:7D:D6:F5:BC:E9:8F:7B:C3:16:9B:1D:B9:FA:0E:5B:9C:EF:2E:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tn3W9bzpj3vDFpsdufoOW5zvLrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/943585-c124-4bac-888a-3e59cf1aec44/1/9fQEpDeRFoRhriY89YC0U1QCAQE.roa
Signing time: Tue 21 Jun 2022 19:05:44 +0000
ROA not before: Tue 21 Jun 2022 19:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 185.251.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41958923 (0x2803e0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b67dd6f5bce98f7bc3169b1db9fa0e5b9cef2ebb
Validity
Not Before: Jun 21 19:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5f404a43791168461ae263cf580b45354020101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ef:e0:28:4c:4d:41:24:80:91:c4:a8:b0:ff:
5a:56:e7:ca:2e:3b:1f:07:0b:4c:49:ce:d8:98:4a:
74:07:29:85:46:ab:58:ec:75:c6:7e:71:96:9c:d8:
8a:57:79:86:99:02:67:e5:93:2a:a8:e1:7c:c5:3a:
7c:00:07:43:86:bf:26:06:fd:72:ea:eb:f8:ea:3c:
5f:02:8b:5b:39:d1:4c:51:7d:fb:5c:0b:f5:e6:5a:
a8:c7:87:63:20:63:4d:41:18:69:c1:5e:3b:8e:89:
1c:c8:31:b1:de:ff:99:b2:1b:da:5f:5a:4a:91:e8:
a4:a2:c0:30:ca:b4:10:51:bd:af:ad:d6:5b:18:1e:
97:24:a1:65:09:95:e3:1a:5f:e3:7e:0a:10:a0:c5:
6f:c2:6e:fb:b5:21:1e:c1:e4:dd:42:a9:c9:e1:3e:
07:06:d7:59:7c:4d:ba:b9:99:62:c1:0f:17:d8:85:
70:b4:e6:ef:23:b3:b5:ed:52:06:3c:c7:cf:88:8b:
fc:61:7e:b2:d9:4a:dc:78:04:1c:0b:a1:03:4d:10:
27:f3:cf:03:8f:6f:7b:44:0d:94:04:66:b7:57:f2:
f7:f9:ca:87:e9:46:ef:d4:cd:d0:3a:ca:a6:72:e5:
a3:7f:90:ee:5c:d6:fb:0e:fc:6b:bd:97:b8:42:6b:
d0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F4:04:A4:37:91:16:84:61:AE:26:3C:F5:80:B4:53:54:02:01:01
X509v3 Authority Key Identifier:
keyid:B6:7D:D6:F5:BC:E9:8F:7B:C3:16:9B:1D:B9:FA:0E:5B:9C:EF:2E:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tn3W9bzpj3vDFpsdufoOW5zvLrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/943585-c124-4bac-888a-3e59cf1aec44/1/9fQEpDeRFoRhriY89YC0U1QCAQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/943585-c124-4bac-888a-3e59cf1aec44/1/tn3W9bzpj3vDFpsdufoOW5zvLrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.23.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:e9:eb:c1:57:22:01:58:ab:df:38:17:e7:25:e3:0c:4a:12:
2f:87:61:b3:1a:7e:33:f4:4b:f3:1f:7a:39:37:e0:32:5f:67:
9d:79:5a:15:98:13:c8:87:b0:71:7f:dd:97:cd:2e:8d:c3:c7:
7c:59:73:be:95:f9:b3:03:dd:23:88:96:cb:6b:1d:dd:d3:72:
af:71:56:c3:37:7e:32:73:c6:85:60:54:47:ba:5a:a8:0f:f4:
bc:71:ed:6c:d5:70:f7:6c:0f:ee:f2:83:a5:2e:5c:75:0f:c4:
2d:04:70:49:ab:b6:8c:dc:24:07:17:6a:ce:58:eb:a8:1b:3c:
cd:43:d1:c2:b4:c7:de:9e:99:35:cc:1b:15:17:02:16:7b:77:
30:bc:a6:ef:a5:03:4c:ca:d8:60:92:dc:ad:ce:8b:c9:aa:e2:
77:04:ec:c0:d1:51:97:6e:ec:23:ba:c5:56:05:50:64:de:7c:
a4:69:38:c9:fe:2f:06:6b:5d:bb:3d:5a:11:85:d7:0e:b8:a9:
9b:2d:8e:a3:b9:23:8e:f9:47:2c:6f:9b:29:93:92:7c:0c:58:
cd:33:f1:38:a1:6f:ca:d3:d8:3f:7d:82:16:e4:e1:08:36:d0:
c2:c5:c1:64:ab:98:a5:61:dd:e0:ee:8d:69:92:d1:ca:f4:0c:
5e:52:ee:1d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAoA+CzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NjdkZDZmNWJjZTk4ZjdiYzMxNjliMWRiOWZhMGU1YjljZWYyZWJiMB4XDTIyMDYy
MTE5MDU0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjVmNDA0YTQzNzkx
MTY4NDYxYWUyNjNjZjU4MGI0NTM1NDAyMDEwMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI7v4ChMTUEkgJHEqLD/Wlbnyi47HwcLTEnO2JhKdAcphUar
WOx1xn5xlpzYild5hpkCZ+WTKqjhfMU6fAAHQ4a/Jgb9curr+Oo8XwKLWznRTFF9
+1wL9eZaqMeHYyBjTUEYacFeO46JHMgxsd7/mbIb2l9aSpHopKLAMMq0EFG9r63W
WxgelyShZQmV4xpf434KEKDFb8Ju+7UhHsHk3UKpyeE+BwbXWXxNurmZYsEPF9iF
cLTm7yOzte1SBjzHz4iL/GF+stlK3HgEHAuhA00QJ/PPA49ve0QNlARmt1fy9/nK
h+lG79TN0DrKpnLlo3+Q7lzW+w78a72XuEJr0McCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT19ASkN5EWhGGuJjz1gLRTVAIBATAfBgNVHSMEGDAWgBS2fdb1vOmPe8MW
mx25+g5bnO8uuzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RuM1c5YnpwajN2REZwc2R1Zm9PVzV6dkxycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvOTQzNTg1LWMxMjQtNGJhYy04ODhhLTNlNTljZjFhZWM0NC8x
LzlmUUVwRGVSRm9SaHJpWTg5WUMwVTFRQ0FRRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
OTQzNTg1LWMxMjQtNGJhYy04ODhhLTNlNTljZjFhZWM0NC8xL3RuM1c5YnpwajN2
REZwc2R1Zm9PVzV6dkxycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALn7FzANBgkqhkiG9w0BAQsFAAOC
AQEADenrwVciAVir3zgX5yXjDEoSL4dhsxp+M/RL8x96OTfgMl9nnXlaFZgTyIew
cX/dl80ujcPHfFlzvpX5swPdI4iWy2sd3dNyr3FWwzd+MnPGhWBUR7paqA/0vHHt
bNVw92wP7vKDpS5cdQ/ELQRwSau2jNwkBxdqzljrqBs8zUPRwrTH3p6ZNcwbFRcC
Fnt3MLym76UDTMrYYJLcrc6LyaridwTswNFRl27sI7rFVgVQZN58pGk4yf4vBmtd
uz1aEYXXDripmy2Oo7kjjvlHLG+bKZOSfAxYzTPxOKFvytPYP32CFuThCDbQwsXB
ZKuYpWHd4O6NaZLRyvQMXlLuHQ==
-----END CERTIFICATE-----
Generated at Thu May 1 22:33:32 2025 by rpki-client