Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/yTO_EqHcFE0df6p7QwaY3LC-rGk.roa
File: yTO_EqHcFE0df6p7QwaY3LC-rGk.roa (raw, json)
Hash identifier: dXiT7lQrvUhrZ5Ks+aLFBT3+clNM4bJiiNMO9JKzyO8=
Subject key identifier: C9:33:BF:12:A1:DC:14:4D:1D:7F:AA:7B:43:06:98:DC:B0:BE:AC:69
Certificate issuer: /CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Certificate serial: 01856E38AB502F79AF6E3C473EDE3B0D2CA0
Authority key identifier: 72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/yTO_EqHcFE0df6p7QwaY3LC-rGk.roa
Signing time: Sun 01 Jan 2023 16:44:45 +0000
ROA not before: Sun 01 Jan 2023 16:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 213.232.116.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:ab:50:2f:79:af:6e:3c:47:3e:de:3b:0d:2c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Validity
Not Before: Jan 1 16:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c933bf12a1dc144d1d7faa7b430698dcb0beac69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:23:d4:a6:c8:dd:22:40:ba:b4:84:cf:7a:07:
4a:1d:d3:a5:48:85:32:58:25:df:27:3a:4e:34:81:
4d:72:20:76:ec:73:2c:ed:90:31:87:7c:8a:34:92:
0e:26:0d:87:75:2b:da:82:71:f2:68:97:53:91:4f:
38:0c:1d:4d:c5:cd:cc:16:ba:29:37:98:1a:35:1b:
ef:65:ec:ff:b9:29:cd:74:f2:2f:a3:6e:b6:33:5f:
df:99:f4:3d:35:f8:ff:b0:3c:83:35:c3:d0:7a:1c:
1e:ae:7a:72:c1:49:63:c5:dd:bd:dc:f5:7c:db:25:
e5:8c:33:a9:51:c2:2e:58:2d:7a:67:3d:20:e1:5c:
8d:b2:41:37:f9:ee:a6:5a:23:ce:7a:09:7f:10:1f:
45:cb:e9:06:ec:9d:58:ba:b1:bf:90:99:7a:1b:7b:
81:90:26:2d:64:f0:00:2f:48:e7:7a:0f:cc:23:76:
90:97:87:d3:1b:b0:93:a1:97:f0:79:53:48:5c:53:
69:86:de:88:40:95:62:39:58:76:b8:7f:20:48:32:
25:2d:24:9c:83:63:9c:32:ac:65:95:1b:5e:bc:80:
6b:be:09:9d:58:c2:c5:f4:c6:61:bf:7a:74:fe:eb:
3b:4f:1c:02:04:b7:2f:05:76:ec:bc:18:77:77:f0:
0a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:33:BF:12:A1:DC:14:4D:1D:7F:AA:7B:43:06:98:DC:B0:BE:AC:69
X509v3 Authority Key Identifier:
keyid:72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/yTO_EqHcFE0df6p7QwaY3LC-rGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/cntIdqLREFjC5qd5_OrF8ECDtMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.116.0/22
Signature Algorithm: sha256WithRSAEncryption
91:d4:61:64:91:73:22:58:52:69:5b:a5:29:15:62:48:6a:82:
6b:97:d4:fd:53:6d:b0:28:4f:c1:d1:b0:fa:33:61:87:66:aa:
fd:89:96:13:05:a8:2b:d4:4a:d2:4a:13:68:94:36:0c:e1:2d:
6a:57:26:1b:4e:45:ec:9b:12:07:3c:15:1e:a7:b0:4e:04:12:
02:05:c6:24:1e:0d:b4:45:a6:fd:80:e3:77:d6:01:bc:96:75:
ca:90:43:39:8a:40:5b:b2:aa:a6:cc:02:2c:99:59:56:bd:3d:
4d:bd:c7:fe:f8:1f:af:03:54:68:88:23:ce:30:90:f0:dd:09:
cb:1e:f1:7a:e2:a9:5e:e4:f8:83:5f:fa:6b:b0:b5:c6:28:c0:
f9:be:c8:5c:cf:2b:bf:64:27:cc:a0:e8:2b:44:ac:42:28:dd:
9b:aa:2e:73:9a:22:0e:de:7e:1e:f3:54:d9:6d:52:d1:49:45:
36:ce:74:bf:ee:1c:c2:47:8d:9c:86:ff:d5:7f:02:72:bf:72:
7f:a3:4e:47:86:50:b1:ac:63:57:12:99:69:c0:8b:82:32:fb:
db:e5:95:c6:f8:ff:59:f7:92:b2:ed:9d:64:e3:ae:2c:dc:3e:
8c:60:b8:af:c0:39:94:75:db:a3:c7:59:f3:05:82:a7:00:6a:
c0:36:50:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:09:59 2025 by rpki-client