Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/JSaFolOqDnw7AHr0B_zg9owSNSQ.roa
File: JSaFolOqDnw7AHr0B_zg9owSNSQ.roa (raw, json)
Hash identifier: vUwtK/frXzWb+ehE6Gdrd7eglrc2+wzp5TB6SIFGyi4=
Subject key identifier: 25:26:85:A2:53:AA:0E:7C:3B:00:7A:F4:07:FC:E0:F6:8C:12:35:24
Certificate issuer: /CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Certificate serial: 01848A2447C4C74D2D474D2E7C70AB23BDFB
Authority key identifier: 72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/JSaFolOqDnw7AHr0B_zg9owSNSQ.roa
Signing time: Fri 18 Nov 2022 09:49:04 +0000
ROA not before: Fri 18 Nov 2022 09:49:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 213.232.116.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:24:47:c4:c7:4d:2d:47:4d:2e:7c:70:ab:23:bd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Validity
Not Before: Nov 18 09:49:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=252685a253aa0e7c3b007af407fce0f68c123524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3a:1f:62:89:6c:b9:8f:e6:a3:68:a3:2e:72:
8e:cc:c1:62:12:74:ff:4e:54:c4:be:8e:11:4c:85:
85:c9:3b:29:69:da:2b:fd:de:0b:19:fd:d8:a5:ed:
97:c5:0d:b0:44:f4:17:7b:77:97:6c:0d:91:a7:34:
fc:cc:a4:c7:fa:5a:66:53:c7:fa:96:a2:cb:bf:e3:
95:36:75:0f:0a:bc:47:7b:b5:1f:a1:1e:eb:6e:32:
08:77:15:01:b4:0b:cb:f4:e9:f4:44:85:46:df:13:
d8:de:32:f3:11:6c:2d:72:c6:b0:5e:a5:19:d3:1a:
00:77:94:68:a4:c9:87:6c:7c:ca:ad:d4:4c:e5:8c:
01:5d:e2:fa:fb:06:9d:ab:28:49:b6:36:db:7d:09:
87:5c:e0:b7:ba:5d:61:6e:7d:76:41:d7:15:53:a1:
9f:19:ab:ed:ea:57:40:33:6a:19:3f:5f:27:42:f6:
f6:49:9e:c2:e0:09:19:0e:8d:53:8f:7a:9a:cd:f6:
04:d9:24:5b:68:1b:bb:78:34:89:04:8d:33:6e:ce:
ab:01:15:ad:24:ab:25:43:40:ff:3c:64:6e:b9:9c:
78:65:b5:80:8f:15:d7:c5:59:23:45:46:c0:ac:0d:
6a:64:12:db:93:fc:16:23:2c:d9:32:0f:96:e2:02:
77:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:26:85:A2:53:AA:0E:7C:3B:00:7A:F4:07:FC:E0:F6:8C:12:35:24
X509v3 Authority Key Identifier:
keyid:72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/JSaFolOqDnw7AHr0B_zg9owSNSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/cntIdqLREFjC5qd5_OrF8ECDtMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.116.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:81:69:84:fd:08:5a:e5:c1:4e:38:ff:c9:7b:f7:7d:b4:38:
50:67:e4:32:46:ee:fa:26:72:23:e3:4c:bd:f6:94:c2:4b:e9:
52:2d:4d:b8:e2:89:bd:9c:65:c7:59:ef:cf:27:1b:42:21:4c:
a7:e4:06:2e:53:12:4b:db:02:6d:aa:05:fc:93:af:f5:f3:a3:
0f:b1:ba:8e:ab:4d:28:98:90:53:cf:14:f3:65:eb:9e:c1:80:
76:1d:ba:56:dd:9a:33:64:89:6f:8e:b9:ec:32:b5:ad:b8:0f:
b6:29:fa:f9:49:b1:fa:7e:8f:aa:dd:bc:92:c7:d4:c2:e0:68:
ee:a2:79:37:7c:69:9f:b7:27:19:ca:65:67:11:5e:05:09:7c:
2e:3a:ae:7c:25:33:94:13:1c:9a:85:30:8e:b8:f5:20:27:f4:
ad:1a:91:89:f8:b7:4c:73:99:4e:70:d3:00:e7:64:db:40:ae:
5e:ac:a9:c2:6f:aa:bb:e5:5e:32:a0:b9:fa:aa:3f:3d:5e:02:
d3:26:32:f2:03:d7:1d:63:f8:63:06:47:19:a5:31:ca:fc:f5:
06:b8:c2:65:72:5f:c9:80:f5:f5:6d:6c:b5:78:73:0f:14:1e:
1f:2c:08:f6:e1:56:fb:c2:86:68:50:5c:2f:f1:4d:11:af:82:
e0:db:43:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSKJEfEx00tR00ufHCrI737MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyN2I0ODc2YTJkMTEwNThjMmU2YTc3OWZjZWFjNWYwNDA4
M2I0YzIwHhcNMjIxMTE4MDk0OTA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTI2ODVhMjUzYWEwZTdjM2IwMDdhZjQwN2ZjZTBmNjhjMTIzNTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArDofYolsuY/mo2ijLnKOzMFiEnT/
TlTEvo4RTIWFyTspador/d4LGf3Ype2XxQ2wRPQXe3eXbA2RpzT8zKTH+lpmU8f6
lqLLv+OVNnUPCrxHe7UfoR7rbjIIdxUBtAvL9On0RIVG3xPY3jLzEWwtcsawXqUZ
0xoAd5RopMmHbHzKrdRM5YwBXeL6+wadqyhJtjbbfQmHXOC3ul1hbn12QdcVU6Gf
Gavt6ldAM2oZP18nQvb2SZ7C4AkZDo1Tj3qazfYE2SRbaBu7eDSJBI0zbs6rARWt
JKslQ0D/PGRuuZx4ZbWAjxXXxVkjRUbArA1qZBLbk/wWIyzZMg+W4gJ31wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCUmhaJTqg58OwB69Af84PaMEjUkMB8GA1UdIwQY
MBaAFHJ7SHai0RBYwuanefzqxfBAg7TCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY250SWRxTFJFRmpDNXFkNV9PckY4RUNEdE1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9hZWVhMTAtNzIwOC00ZDVjLTg1Yjkt
OWUzNTA4OWZhNzhmLzEvSlNhRm9sT3FEbnc3QUhyMEJfemc5b3dTTlNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC9hZWVhMTAtNzIwOC00ZDVjLTg1YjktOWUzNTA4OWZhNzhm
LzEvY250SWRxTFJFRmpDNXFkNV9PckY4RUNEdE1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1eh0MA0G
CSqGSIb3DQEBCwUAA4IBAQBsgWmE/Qha5cFOOP/Je/d9tDhQZ+QyRu76JnIj40y9
9pTCS+lSLU244om9nGXHWe/PJxtCIUyn5AYuUxJL2wJtqgX8k6/186MPsbqOq00o
mJBTzxTzZeuewYB2HbpW3ZozZIlvjrnsMrWtuA+2Kfr5SbH6fo+q3bySx9TC4Gju
onk3fGmftycZymVnEV4FCXwuOq58JTOUExyahTCOuPUgJ/StGpGJ+LdMc5lOcNMA
52TbQK5erKnCb6q75V4yoLn6qj89XgLTJjLyA9cdY/hjBkcZpTHK/PUGuMJlcl/J
gPX1bWy1eHMPFB4fLAj24Vb7woZoUFwv8U0Rr4Lg20MG
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:17:47 2025 by rpki-client