Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/e84c77-5272-412b-b3fd-c4de67e13eb0/1/8KOXqtfRQcQfrFeUaPvMr6e6gig.roa
File: 8KOXqtfRQcQfrFeUaPvMr6e6gig.roa (raw, json)
Hash identifier: CCijtGjj6a/qkGlzGNQotYLoFbUz3YQ68Q7BLTDAlPk=
Subject key identifier: F0:A3:97:AA:D7:D1:41:C4:1F:AC:57:94:68:FB:CC:AF:A7:BA:82:28
Certificate issuer: /CN=a2e68ae99c24b2073a0ac32803243c3bea1e67ce
Certificate serial: 019B7A5ACCCA41A31E6774FC54755FC89AFE
Authority key identifier: A2:E6:8A:E9:9C:24:B2:07:3A:0A:C3:28:03:24:3C:3B:EA:1E:67:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ouaK6Zwksgc6CsMoAyQ8O-oeZ84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/e84c77-5272-412b-b3fd-c4de67e13eb0/1/8KOXqtfRQcQfrFeUaPvMr6e6gig.roa
Signing time: Thu 01 Jan 2026 16:18:49 +0000
ROA not before: Thu 01 Jan 2026 16:18:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 204949
IP address blocks: 185.193.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7a:5a:cc:ca:41:a3:1e:67:74:fc:54:75:5f:c8:9a:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2e68ae99c24b2073a0ac32803243c3bea1e67ce
Validity
Not Before: Jan 1 16:18:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f0a397aad7d141c41fac579468fbccafa7ba8228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:15:48:14:8c:b3:3b:88:2f:00:e5:e2:c0:dd:
08:b2:5b:14:d0:53:13:61:19:dd:25:2b:14:1e:9a:
e4:ff:91:76:8b:42:46:ca:30:a1:16:67:48:10:d3:
02:67:52:c5:29:e8:04:bd:90:7b:93:af:94:0d:58:
d1:12:65:18:be:db:5b:c2:4a:d7:13:1f:08:57:45:
7d:0d:ab:5e:df:72:5f:8a:b6:2b:85:a4:ae:e2:8c:
ae:e9:fe:51:ff:35:a1:ca:11:7d:fb:71:90:14:48:
41:2c:96:c2:ed:7e:e0:75:b9:c7:ca:dd:91:12:ee:
4b:85:1f:d3:5b:a5:42:6f:c9:94:77:2a:d3:f8:67:
f2:d8:cd:41:27:eb:ab:46:84:c2:49:2f:45:b0:fd:
8c:c9:bb:5f:06:a6:27:aa:03:21:c4:d9:8f:bd:8c:
ab:64:4f:06:45:ed:32:45:20:84:d2:6e:1f:e5:0b:
2f:19:88:7b:c2:da:9e:d0:3d:42:84:41:5a:c7:ab:
eb:2b:40:05:f6:fe:59:0b:3f:db:b1:4a:00:52:47:
ba:25:bb:c6:f7:f3:a5:6c:15:7a:a4:11:92:a1:45:
7b:c3:4c:30:9f:58:ff:9c:74:5c:bd:f2:0f:fd:5c:
45:80:4c:08:4b:fd:13:e6:43:46:bc:29:27:2e:ff:
f1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A3:97:AA:D7:D1:41:C4:1F:AC:57:94:68:FB:CC:AF:A7:BA:82:28
X509v3 Authority Key Identifier:
keyid:A2:E6:8A:E9:9C:24:B2:07:3A:0A:C3:28:03:24:3C:3B:EA:1E:67:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ouaK6Zwksgc6CsMoAyQ8O-oeZ84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/e84c77-5272-412b-b3fd-c4de67e13eb0/1/8KOXqtfRQcQfrFeUaPvMr6e6gig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/e84c77-5272-412b-b3fd-c4de67e13eb0/1/ouaK6Zwksgc6CsMoAyQ8O-oeZ84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.243.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:f8:1d:16:a2:18:82:9c:13:13:df:dc:83:80:b8:99:6b:e4:
b9:ea:66:cc:a3:82:c4:f8:a7:97:bb:17:7c:14:7f:57:a6:88:
77:64:aa:33:bb:9e:77:c2:79:e9:c4:06:d3:b6:01:f8:83:4e:
94:08:e9:be:20:8a:a7:4a:ce:e4:5c:45:78:d4:c4:69:eb:ac:
94:32:93:ba:d9:a5:2b:b4:2c:67:c0:c8:c4:b0:86:51:96:21:
90:35:da:ae:20:84:84:2b:39:5b:0e:c4:c2:a7:05:2e:dd:50:
82:fc:05:57:76:2e:e5:a9:2e:2f:43:5c:6c:7b:4c:30:56:d9:
07:6a:df:4d:48:31:08:fe:87:f1:16:a8:47:65:9a:e4:44:29:
d7:77:76:d1:b1:5b:02:65:90:97:c0:ae:ef:8a:81:fb:b7:be:
63:da:c2:53:82:09:3b:31:f7:a6:b6:51:fd:40:ab:5a:10:ea:
4b:a1:21:50:28:aa:32:d6:9a:92:9f:25:8c:32:8d:f3:7c:b4:
b6:d7:6a:26:c6:bc:1d:93:c1:cf:80:0d:1c:58:6e:32:9b:bd:
cb:9f:91:e3:fa:a1:2e:db:3e:6b:54:9a:0e:81:cc:91:72:74:
a7:bb:9e:88:51:5a:46:13:20:53:f0:62:53:f3:0a:b1:2f:75:
56:00:c4:77
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZt6WszKQaMeZ3T8VHVfyJr+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZTY4YWU5OWMyNGIyMDczYTBhYzMyODAzMjQzYzNiZWEx
ZTY3Y2UwHhcNMjYwMTAxMTYxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMGEzOTdhYWQ3ZDE0MWM0MWZhYzU3OTQ2OGZiY2NhZmE3YmE4MjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhVIFIyzO4gvAOXiwN0IslsU0FMT
YRndJSsUHprk/5F2i0JGyjChFmdIENMCZ1LFKegEvZB7k6+UDVjREmUYvttbwkrX
Ex8IV0V9Date33JfirYrhaSu4oyu6f5R/zWhyhF9+3GQFEhBLJbC7X7gdbnHyt2R
Eu5LhR/TW6VCb8mUdyrT+Gfy2M1BJ+urRoTCSS9FsP2MybtfBqYnqgMhxNmPvYyr
ZE8GRe0yRSCE0m4f5QsvGYh7wtqe0D1ChEFax6vrK0AF9v5ZCz/bsUoAUke6JbvG
9/OlbBV6pBGSoUV7w0wwn1j/nHRcvfIP/VxFgEwIS/0T5kNGvCknLv/xbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPCjl6rX0UHEH6xXlGj7zK+nuoIoMB8GA1UdIwQY
MBaAFKLmiumcJLIHOgrDKAMkPDvqHmfOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3VhSzZad2tzZ2M2Q3NNb0F5UThPLW9lWjg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9lODRjNzctNTI3Mi00MTJiLWIzZmQt
YzRkZTY3ZTEzZWIwLzEvOEtPWHF0ZlJRY1FmckZlVWFQdk1yNmU2Z2lnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi9lODRjNzctNTI3Mi00MTJiLWIzZmQtYzRkZTY3ZTEzZWIw
LzEvb3VhSzZad2tzZ2M2Q3NNb0F5UThPLW9lWjg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucHzMA0G
CSqGSIb3DQEBCwUAA4IBAQCm+B0WohiCnBMT39yDgLiZa+S56mbMo4LE+KeXuxd8
FH9Xpoh3ZKozu553wnnpxAbTtgH4g06UCOm+IIqnSs7kXEV41MRp66yUMpO62aUr
tCxnwMjEsIZRliGQNdquIISEKzlbDsTCpwUu3VCC/AVXdi7lqS4vQ1xse0wwVtkH
at9NSDEI/ofxFqhHZZrkRCnXd3bRsVsCZZCXwK7vioH7t75j2sJTggk7MfemtlH9
QKtaEOpLoSFQKKoy1pqSnyWMMo3zfLS212omxrwdk8HPgA0cWG4ym73Ln5Hj+qEu
2z5rVJoOgcyRcnSnu56IUVpGEyBT8GJT8wqxL3VWAMR3
-----END CERTIFICATE-----
Generated at Mon Mar 2 21:07:12 2026 by rpki-client