Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/fkR5WmIcFHMX9vbMvYbPLMEBnF8.roa
File: fkR5WmIcFHMX9vbMvYbPLMEBnF8.roa (raw, json)
Hash identifier: LDw0vtC+RfYsRYE+g6jPs7jBrSG0DSTurzu4DW+fWsA=
Subject key identifier: 7E:44:79:5A:62:1C:14:73:17:F6:F6:CC:BD:86:CF:2C:C1:01:9C:5F
Certificate issuer: /CN=de01c443831cf930b7478708d76a3cf44d89a162
Certificate serial: 018703BC0984FFE659B9111C3BC455704C2B
Authority key identifier: DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/fkR5WmIcFHMX9vbMvYbPLMEBnF8.roa
Signing time: Tue 21 Mar 2023 10:34:27 +0000
ROA not before: Tue 21 Mar 2023 10:34:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212835
IP address blocks: 185.42.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:03:bc:09:84:ff:e6:59:b9:11:1c:3b:c4:55:70:4c:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de01c443831cf930b7478708d76a3cf44d89a162
Validity
Not Before: Mar 21 10:34:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e44795a621c147317f6f6ccbd86cf2cc1019c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ec:c6:71:fe:4a:6f:26:52:55:56:2a:59:bc:
6f:e1:63:65:03:18:2b:aa:a4:9d:03:21:8b:3c:1a:
8e:f3:47:ee:eb:81:06:b3:95:0f:7f:31:8b:5b:30:
6f:d5:9c:5b:1b:a0:c9:38:b8:08:e6:a5:ce:f0:b2:
9d:a8:94:c6:81:dd:e0:38:96:86:7f:8f:be:d9:f6:
5d:81:ba:28:a8:0a:a9:43:cc:59:c5:f5:1f:54:3d:
0a:ea:ef:72:b4:6e:25:70:0b:54:25:af:12:ae:48:
c5:9a:76:0e:e8:45:3b:e0:72:22:04:b8:07:43:c0:
f9:1b:95:04:4f:85:5b:7a:42:99:7a:a4:1e:09:97:
a1:e2:47:f1:58:04:9c:d1:8e:d1:2e:70:b6:7b:59:
a1:22:c9:ca:e5:5e:c0:0e:53:32:35:f3:6c:d9:6d:
10:69:a6:13:39:f6:6e:f4:9c:ac:6f:d9:1c:ce:fb:
1e:49:38:9c:b6:29:0f:49:e1:2c:0d:77:8f:f1:2d:
48:8a:a0:49:ed:87:5c:b9:83:9e:fc:89:7e:f3:9c:
04:bf:0a:94:fb:9c:3f:1c:4f:e2:fe:9c:c0:97:86:
f8:3a:d4:5a:13:2c:da:47:ff:df:7a:cc:ff:7a:14:
14:9a:58:17:86:00:bf:18:b3:5d:03:7a:da:c1:17:
89:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:44:79:5A:62:1C:14:73:17:F6:F6:CC:BD:86:CF:2C:C1:01:9C:5F
X509v3 Authority Key Identifier:
keyid:DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/fkR5WmIcFHMX9vbMvYbPLMEBnF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/3gHEQ4Mc-TC3R4cI12o89E2JoWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.27.0/24
Signature Algorithm: sha256WithRSAEncryption
07:32:14:5b:f8:27:57:7f:03:05:6b:cf:23:bd:a9:4f:e2:7f:
66:91:16:92:83:15:88:66:4e:98:5e:d1:44:23:15:c2:d9:92:
0c:11:f2:d2:b7:b9:1e:45:b0:14:30:4c:0d:27:11:ab:60:25:
ae:54:34:62:88:8f:0c:6b:91:88:79:26:1c:67:e6:eb:3f:12:
4e:a2:3a:04:58:6d:51:52:24:51:8b:94:df:97:a9:05:ec:ce:
4d:a6:e7:b4:fc:29:2e:89:c7:bc:35:f6:97:ac:9c:db:63:c6:
35:d4:c5:ed:c2:04:a8:96:6c:38:27:7a:48:a7:8d:ee:9b:31:
8d:b0:a2:96:00:5b:65:fb:47:2b:c7:25:23:f8:38:bb:66:18:
01:19:a4:c8:5e:63:7b:a2:0e:3d:83:87:4c:15:33:71:68:87:
8c:63:7a:fa:ca:7e:a9:80:df:46:59:a4:a4:81:bb:71:62:f5:
56:a0:15:e7:96:5f:2a:37:54:e1:af:c2:6e:d6:34:bc:8f:5d:
a4:14:d7:81:68:0b:6f:4e:fc:40:1d:17:1c:79:f5:b3:43:09:
eb:5b:16:7c:77:7a:38:65:fc:f6:7d:e1:38:4c:e0:f5:1f:a4:
84:11:7a:da:6e:6a:2e:18:02:05:e8:f2:50:b4:22:0e:27:72:
c0:96:98:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcDvAmE/+ZZuREcO8RVcEwrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMDFjNDQzODMxY2Y5MzBiNzQ3ODcwOGQ3NmEzY2Y0NGQ4
OWExNjIwHhcNMjMwMzIxMTAzNDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTQ0Nzk1YTYyMWMxNDczMTdmNmY2Y2NiZDg2Y2YyY2MxMDE5YzVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+zGcf5KbyZSVVYqWbxv4WNlAxgr
qqSdAyGLPBqO80fu64EGs5UPfzGLWzBv1ZxbG6DJOLgI5qXO8LKdqJTGgd3gOJaG
f4++2fZdgbooqAqpQ8xZxfUfVD0K6u9ytG4lcAtUJa8SrkjFmnYO6EU74HIiBLgH
Q8D5G5UET4VbekKZeqQeCZeh4kfxWASc0Y7RLnC2e1mhIsnK5V7ADlMyNfNs2W0Q
aaYTOfZu9Jysb9kczvseSTictikPSeEsDXeP8S1IiqBJ7YdcuYOe/Il+85wEvwqU
+5w/HE/i/pzAl4b4OtRaEyzaR//fesz/ehQUmlgXhgC/GLNdA3rawReJbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH5EeVpiHBRzF/b2zL2GzyzBAZxfMB8GA1UdIwQY
MBaAFN4BxEODHPkwt0eHCNdqPPRNiaFiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2dIRVE0TWMtVEMzUjRjSTEybzg5RTJKb1dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8xY2I4Y2EtNTk5My00ZDE3LWE2MWUt
ZWU3MzI4YWRjYzdjLzEvZmtSNVdtSWNGSE1YOXZiTXZZYlBMTUVCbkY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy8xY2I4Y2EtNTk5My00ZDE3LWE2MWUtZWU3MzI4YWRjYzdj
LzEvM2dIRVE0TWMtVEMzUjRjSTEybzg5RTJKb1dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSobMA0G
CSqGSIb3DQEBCwUAA4IBAQAHMhRb+CdXfwMFa88jvalP4n9mkRaSgxWIZk6YXtFE
IxXC2ZIMEfLSt7keRbAUMEwNJxGrYCWuVDRiiI8Ma5GIeSYcZ+brPxJOojoEWG1R
UiRRi5Tfl6kF7M5Npue0/Ckuice8NfaXrJzbY8Y11MXtwgSolmw4J3pIp43umzGN
sKKWAFtl+0crxyUj+Di7ZhgBGaTIXmN7og49g4dMFTNxaIeMY3r6yn6pgN9GWaSk
gbtxYvVWoBXnll8qN1Thr8Ju1jS8j12kFNeBaAtvTvxAHRccefWzQwnrWxZ8d3o4
Zfz2feE4TOD1H6SEEXrabmouGAIF6PJQtCIOJ3LAlpiy
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:50:22 2025 by rpki-client