Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/nO2DISCKoX95cbSl-4IE1IdCmBM.roa
File: nO2DISCKoX95cbSl-4IE1IdCmBM.roa (raw, json)
Hash identifier: RSdRSi7lQ1Dk0PK2vlKk4Ff47FnbPUTG14kEWbAzlVs=
Subject key identifier: 9C:ED:83:21:20:8A:A1:7F:79:71:B4:A5:FB:82:04:D4:87:42:98:13
Certificate issuer: /CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e
Certificate serial: 019422FBF2A5B18322BA70740E391444EAD3
Authority key identifier: 16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/nO2DISCKoX95cbSl-4IE1IdCmBM.roa
Signing time: Wed 01 Jan 2025 17:48:44 +0000
ROA not before: Wed 01 Jan 2025 17:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5065
IP address blocks: 62.112.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:f2:a5:b1:83:22:ba:70:74:0e:39:14:44:ea:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e
Validity
Not Before: Jan 1 17:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ced8321208aa17f7971b4a5fb8204d487429813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:93:7e:23:ad:d8:6a:f7:5c:a9:85:aa:d3:60:
85:8d:bf:f4:07:92:57:16:56:32:e3:88:a0:9c:db:
56:35:51:7e:69:b2:1e:41:1b:94:9c:b8:14:5c:54:
ab:9d:8b:72:7e:0d:0c:03:20:8d:ac:d5:94:2e:02:
77:b5:87:d5:db:28:02:c3:69:6d:02:ce:c3:36:32:
a3:cc:a6:db:04:5a:fd:7a:26:0b:d6:30:fe:34:9d:
b7:eb:78:5a:38:a8:90:48:66:d9:77:27:0e:76:56:
ee:3e:b3:6c:9a:60:52:c8:e0:64:6e:dc:13:bd:fb:
60:38:28:86:7f:33:cd:39:4b:7a:fb:90:b6:9f:c0:
1f:05:da:c8:bc:eb:90:3b:1e:e1:79:1a:74:68:aa:
13:8b:34:c0:52:9a:99:da:7a:36:9b:7d:19:77:34:
11:84:47:dc:6c:77:63:5e:27:f5:7e:b4:61:49:4f:
19:c0:4e:43:b1:ac:82:9e:ba:ea:5e:2b:12:01:65:
38:ba:96:6a:2a:4f:7f:19:19:73:fc:78:f6:bd:00:
9a:8a:21:17:79:23:18:4f:25:a7:b3:ec:fd:cf:c7:
bc:9a:1a:28:06:f7:92:9d:3f:8c:c5:2a:0b:e4:6c:
03:0a:33:da:96:fa:91:ba:ad:59:38:2a:33:51:01:
17:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:ED:83:21:20:8A:A1:7F:79:71:B4:A5:FB:82:04:D4:87:42:98:13
X509v3 Authority Key Identifier:
keyid:16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/nO2DISCKoX95cbSl-4IE1IdCmBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.205.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:af:6e:db:19:d9:b8:05:ba:81:c0:8b:04:dc:42:2f:be:04:
45:9f:9d:21:78:ba:c1:ef:91:a4:8d:4a:24:94:80:09:82:06:
ee:a7:b9:17:55:d4:f5:a8:50:5e:17:1f:ca:64:64:53:e8:94:
8c:74:0f:77:5b:0f:b1:fd:d3:5a:97:2b:10:d4:0c:56:d8:59:
b8:fb:cd:ea:66:45:7e:54:b6:dc:7b:6e:c2:a7:bc:d6:aa:ac:
88:69:10:b0:9f:9c:f6:e7:7a:66:cd:e8:73:83:1a:34:33:19:
16:07:ed:cb:b7:dc:2e:74:11:9d:b0:eb:49:5d:77:4e:2a:69:
3b:2e:bd:06:69:fd:93:6c:50:bd:9f:9e:dd:11:3a:af:62:9b:
21:f0:15:9e:4b:50:94:6a:82:48:52:05:4c:e1:4a:57:f0:6a:
8f:ed:c6:56:4f:0a:43:27:4d:35:17:bb:0b:3d:40:10:01:92:
99:74:94:ed:6c:f4:a2:1d:ac:c2:b3:e2:d2:df:58:c3:b2:9c:
96:eb:06:1f:eb:53:eb:08:2b:b9:66:42:98:fe:99:17:07:d7:
0e:b2:7c:b2:77:74:f3:c9:34:c4:59:46:ba:33:37:f0:b8:97:
f1:3f:2d:45:4b:cb:03:d1:1b:45:c2:93:66:46:8d:fd:aa:73:
d7:8e:fe:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi+/KlsYMiunB0DjkUROrTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2NmFmYzUxYzkyMmZkODQyZmVjNWIwY2JiZDI2ZWJkYmQx
YTE2MWUwHhcNMjUwMTAxMTc0ODQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Y2VkODMyMTIwOGFhMTdmNzk3MWI0YTVmYjgyMDRkNDg3NDI5ODEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA95N+I63YavdcqYWq02CFjb/0B5JX
FlYy44ignNtWNVF+abIeQRuUnLgUXFSrnYtyfg0MAyCNrNWULgJ3tYfV2ygCw2lt
As7DNjKjzKbbBFr9eiYL1jD+NJ2363haOKiQSGbZdycOdlbuPrNsmmBSyOBkbtwT
vftgOCiGfzPNOUt6+5C2n8AfBdrIvOuQOx7heRp0aKoTizTAUpqZ2no2m30ZdzQR
hEfcbHdjXif1frRhSU8ZwE5DsayCnrrqXisSAWU4upZqKk9/GRlz/Hj2vQCaiiEX
eSMYTyWns+z9z8e8mhooBveSnT+MxSoL5GwDCjPalvqRuq1ZOCozUQEXXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJztgyEgiqF/eXG0pfuCBNSHQpgTMB8GA1UdIwQY
MBaAFBZq/FHJIv2EL+xbDLvSbr29GhYeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRm1yOFVja2lfWVF2N0ZzTXU5SnV2YjBhRmg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy84OGM0NTQtY2JhYS00M2ZkLWIzYzEt
MTNiOTExMGNlMjBjLzEvbk8yRElTQ0tvWDk1Y2JTbC00SUUxSWRDbUJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy84OGM0NTQtY2JhYS00M2ZkLWIzYzEtMTNiOTExMGNlMjBj
LzEvRm1yOFVja2lfWVF2N0ZzTXU5SnV2YjBhRmg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPnDNMA0G
CSqGSIb3DQEBCwUAA4IBAQBKr27bGdm4BbqBwIsE3EIvvgRFn50heLrB75GkjUok
lIAJggbup7kXVdT1qFBeFx/KZGRT6JSMdA93Ww+x/dNalysQ1AxW2Fm4+83qZkV+
VLbce27Cp7zWqqyIaRCwn5z253pmzehzgxo0MxkWB+3Lt9wudBGdsOtJXXdOKmk7
Lr0Gaf2TbFC9n57dETqvYpsh8BWeS1CUaoJIUgVM4UpX8GqP7cZWTwpDJ001F7sL
PUAQAZKZdJTtbPSiHazCs+LS31jDspyW6wYf61PrCCu5ZkKY/pkXB9cOsnyyd3Tz
yTTEWUa6MzfwuJfxPy1FS8sD0RtFwpNmRo39qnPXjv5e
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:52:09 2025 by rpki-client