Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/CH7r7LAd7ICHK-Dygl0NNi9y2Fs.roa
File: CH7r7LAd7ICHK-Dygl0NNi9y2Fs.roa (raw, json)
Hash identifier: 2P/ZXqkSYzteEP/NZd9bWuj5lyjduKASE9BcOR6PU0I=
Subject key identifier: 08:7E:EB:EC:B0:1D:EC:80:87:2B:E0:F2:82:5D:0D:36:2F:72:D8:5B
Certificate issuer: /CN=de01c443831cf930b7478708d76a3cf44d89a162
Certificate serial: 0192B4BA8AB15278B4090E1DE8CD0E61A09A
Authority key identifier: DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/CH7r7LAd7ICHK-Dygl0NNi9y2Fs.roa
Signing time: Tue 22 Oct 2024 14:56:16 +0000
ROA not before: Tue 22 Oct 2024 14:56:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59504
IP address blocks: 185.42.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b4:ba:8a:b1:52:78:b4:09:0e:1d:e8:cd:0e:61:a0:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de01c443831cf930b7478708d76a3cf44d89a162
Validity
Not Before: Oct 22 14:56:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=087eebecb01dec80872be0f2825d0d362f72d85b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c3:fe:c6:68:ef:c6:53:80:b4:f1:ac:68:e8:
09:41:70:7a:56:28:fb:07:6c:7e:26:1c:6f:29:22:
7f:c1:14:f1:a8:ee:7a:68:72:95:12:57:8a:89:a1:
9d:ad:5d:58:64:be:30:68:4f:e4:30:b0:c9:46:f5:
d8:70:75:5f:87:ba:59:1a:1a:b6:2f:77:56:8c:92:
10:0f:51:ef:d3:9b:7d:d7:6c:a8:0f:32:05:2f:c5:
21:66:14:28:23:d7:18:2d:5e:d3:e5:39:8e:a0:b2:
1d:c2:09:47:6c:8e:ea:8d:03:c1:33:18:cd:a7:48:
52:be:66:9d:f1:92:45:09:a7:33:7e:34:a5:87:12:
2e:d9:27:b3:df:45:2e:fc:c3:60:25:fb:38:f7:b1:
0e:38:47:64:64:1a:52:2e:09:74:af:40:83:d6:83:
c4:16:f0:3c:d0:af:62:12:5d:ea:4f:8c:2c:42:90:
5c:67:4c:5a:ca:14:b5:55:b8:93:7d:73:b7:9e:5b:
a4:25:8e:97:dd:23:26:b4:5e:97:d4:01:e2:da:99:
90:f2:3b:08:9a:1d:69:9c:d7:7c:e3:2a:ea:72:f1:
14:01:bb:aa:77:1d:94:e4:3b:a5:de:81:fc:5c:aa:
55:b7:eb:bc:f2:49:d2:8c:a1:3f:e9:8b:ad:39:3f:
a7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:7E:EB:EC:B0:1D:EC:80:87:2B:E0:F2:82:5D:0D:36:2F:72:D8:5B
X509v3 Authority Key Identifier:
keyid:DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/CH7r7LAd7ICHK-Dygl0NNi9y2Fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/3gHEQ4Mc-TC3R4cI12o89E2JoWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.26.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:4a:f7:13:b9:e8:2b:7b:bf:28:0b:87:94:93:eb:a8:a5:8c:
86:e9:52:48:c3:c0:29:48:99:a8:fd:2c:db:a4:eb:aa:fe:2c:
b0:e9:28:0a:d0:a9:5e:59:6c:46:36:ed:92:5c:da:b1:f5:a5:
26:7f:2f:3d:2d:57:b3:a8:36:79:b0:87:80:5e:2a:9a:41:54:
09:8c:69:88:b2:80:19:04:70:51:8d:e6:c2:f0:d9:c0:40:2d:
89:71:70:9d:b9:83:d8:d8:71:d9:ee:d9:a6:bf:c5:30:c0:d0:
92:10:1f:0b:11:c0:3e:7e:cc:9e:a0:a4:3b:b4:b4:e2:3a:d3:
3d:d0:e4:0a:f6:98:c1:04:54:e8:6f:39:62:27:74:f4:5d:82:
32:fb:ec:58:22:32:4a:7c:a8:bd:bb:3e:f4:0e:66:e7:b4:9d:
91:bf:e3:cb:fe:12:7c:47:2f:c8:f0:77:98:c7:f0:8f:f9:86:
38:4b:e3:d9:c7:08:64:f7:6f:0a:4e:d8:04:49:e2:9b:a1:99:
5b:2d:d7:6b:55:33:f7:b0:db:62:66:1d:20:a6:39:ea:90:2b:
ab:3b:7c:12:5e:fc:fb:e0:df:e9:d8:c0:c2:5e:1f:02:df:44:
a5:de:39:ab:48:2a:11:1a:03:15:57:ae:31:53:cf:29:43:81:
07:20:43:ae
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZK0uoqxUni0CQ4d6M0OYaCaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMDFjNDQzODMxY2Y5MzBiNzQ3ODcwOGQ3NmEzY2Y0NGQ4
OWExNjIwHhcNMjQxMDIyMTQ1NjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODdlZWJlY2IwMWRlYzgwODcyYmUwZjI4MjVkMGQzNjJmNzJkODViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcP+xmjvxlOAtPGsaOgJQXB6Vij7
B2x+JhxvKSJ/wRTxqO56aHKVEleKiaGdrV1YZL4waE/kMLDJRvXYcHVfh7pZGhq2
L3dWjJIQD1Hv05t912yoDzIFL8UhZhQoI9cYLV7T5TmOoLIdwglHbI7qjQPBMxjN
p0hSvmad8ZJFCaczfjSlhxIu2Sez30Uu/MNgJfs497EOOEdkZBpSLgl0r0CD1oPE
FvA80K9iEl3qT4wsQpBcZ0xayhS1VbiTfXO3nlukJY6X3SMmtF6X1AHi2pmQ8jsI
mh1pnNd84yrqcvEUAbuqdx2U5Dul3oH8XKpVt+u88knSjKE/6YutOT+nAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAh+6+ywHeyAhyvg8oJdDTYvcthbMB8GA1UdIwQY
MBaAFN4BxEODHPkwt0eHCNdqPPRNiaFiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2dIRVE0TWMtVEMzUjRjSTEybzg5RTJKb1dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8xY2I4Y2EtNTk5My00ZDE3LWE2MWUt
ZWU3MzI4YWRjYzdjLzEvQ0g3cjdMQWQ3SUNISy1EeWdsME5OaTl5MkZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy8xY2I4Y2EtNTk5My00ZDE3LWE2MWUtZWU3MzI4YWRjYzdj
LzEvM2dIRVE0TWMtVEMzUjRjSTEybzg5RTJKb1dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSoaMA0G
CSqGSIb3DQEBCwUAA4IBAQAqSvcTuegre78oC4eUk+uopYyG6VJIw8ApSJmo/Szb
pOuq/iyw6SgK0KleWWxGNu2SXNqx9aUmfy89LVezqDZ5sIeAXiqaQVQJjGmIsoAZ
BHBRjebC8NnAQC2JcXCduYPY2HHZ7tmmv8UwwNCSEB8LEcA+fsyeoKQ7tLTiOtM9
0OQK9pjBBFTobzliJ3T0XYIy++xYIjJKfKi9uz70DmbntJ2Rv+PL/hJ8Ry/I8HeY
x/CP+YY4S+PZxwhk928KTtgESeKboZlbLddrVTP3sNtiZh0gpjnqkCurO3wSXvz7
4N/p2MDCXh8C30Sl3jmrSCoRGgMVV64xU88pQ4EHIEOu
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:50:52 2025 by rpki-client