Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/a1c55b-ac96-4963-89ad-7ca11b7a0a6e/1/NSgVkNtz4vXn6TugJyJieS3VZlE.roa
File: NSgVkNtz4vXn6TugJyJieS3VZlE.roa (raw, json)
Hash identifier: q2DTHklCC8Ebz1ZP/4YhNYZXFPN2CaOvtGxbdnD9VVg=
Subject key identifier: 35:28:15:90:DB:73:E2:F5:E7:E9:3B:A0:27:22:62:79:2D:D5:66:51
Certificate issuer: /CN=6af2af2fe2a3efe54a14fa09262030acd0711d78
Certificate serial: 0185715554FFA4CEEEBB6DB3173C6B0951AE
Authority key identifier: 6A:F2:AF:2F:E2:A3:EF:E5:4A:14:FA:09:26:20:30:AC:D0:71:1D:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avKvL-Kj7-VKFPoJJiAwrNBxHXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/a1c55b-ac96-4963-89ad-7ca11b7a0a6e/1/NSgVkNtz4vXn6TugJyJieS3VZlE.roa
Signing time: Mon 02 Jan 2023 07:14:55 +0000
ROA not before: Mon 02 Jan 2023 07:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 80.243.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:54:ff:a4:ce:ee:bb:6d:b3:17:3c:6b:09:51:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6af2af2fe2a3efe54a14fa09262030acd0711d78
Validity
Not Before: Jan 2 07:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35281590db73e2f5e7e93ba0272262792dd56651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:12:b9:ce:e0:55:33:c8:14:84:58:fa:e5:4a:
93:f9:94:6c:fc:83:39:c4:a0:9b:7b:ff:af:fd:9c:
b2:7e:05:4b:d0:e3:f2:49:64:61:89:a4:7b:51:b7:
c6:0c:61:aa:59:f8:7f:1a:2b:d6:8f:90:1a:19:16:
39:52:be:27:03:a4:a7:6b:4f:c6:fd:43:68:ae:41:
31:e3:41:5a:12:e6:7f:ab:69:0c:16:e1:10:e2:4f:
f9:a7:88:5f:1d:0a:ae:f3:8c:be:c8:3f:1d:17:8a:
4a:05:ac:10:d7:21:27:bc:60:aa:42:e3:ee:20:a7:
4a:8a:ab:68:5c:18:09:f6:78:bd:ab:c5:ef:1a:00:
b2:fa:f1:27:57:76:e2:dd:34:62:76:31:9e:a6:3e:
12:1d:d5:92:30:62:e7:c0:94:72:8a:c5:3f:cb:88:
a7:f5:57:97:ac:5e:7b:e1:9f:5e:0a:c9:41:53:cc:
66:a3:a5:83:cf:ea:d1:62:98:ca:cd:99:28:5c:e7:
78:21:86:b8:a1:3d:cc:cf:7a:12:86:2e:29:43:77:
09:73:69:81:64:f5:0c:0f:be:f9:1b:ee:8e:ac:ad:
6c:5d:46:5a:41:46:b5:b8:c3:37:94:95:93:c1:71:
e9:b0:58:e3:af:f5:34:c3:56:22:35:b6:ce:9d:59:
a6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:28:15:90:DB:73:E2:F5:E7:E9:3B:A0:27:22:62:79:2D:D5:66:51
X509v3 Authority Key Identifier:
keyid:6A:F2:AF:2F:E2:A3:EF:E5:4A:14:FA:09:26:20:30:AC:D0:71:1D:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avKvL-Kj7-VKFPoJJiAwrNBxHXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/a1c55b-ac96-4963-89ad-7ca11b7a0a6e/1/NSgVkNtz4vXn6TugJyJieS3VZlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/a1c55b-ac96-4963-89ad-7ca11b7a0a6e/1/avKvL-Kj7-VKFPoJJiAwrNBxHXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.228.0/24
Signature Algorithm: sha256WithRSAEncryption
03:f1:77:df:75:5b:8d:6e:63:88:fe:b5:50:59:47:0f:e0:5c:
a8:df:c9:36:d9:2e:e0:93:8d:5b:d8:c5:2b:89:43:76:fd:f4:
c3:d0:33:a6:50:cc:f9:05:b4:b5:fa:51:b3:03:7d:8a:ea:03:
3b:9a:c7:79:09:e0:e8:0c:6a:0f:d9:04:86:6a:63:60:62:2e:
22:97:e6:f6:3e:ce:26:40:01:20:79:08:6d:00:f6:62:7f:4e:
c0:b6:24:49:07:4b:4f:02:e9:72:a0:64:e6:7c:64:57:8f:8a:
b1:a5:06:9b:ce:2f:4b:ba:5f:a4:21:4c:59:4a:c2:37:3c:c1:
a3:92:83:3d:6b:15:c4:19:6b:23:d3:41:69:b4:7c:eb:05:aa:
1f:c5:0c:63:4e:8d:49:cb:88:a9:cd:c8:04:03:c9:a3:06:8f:
08:99:b6:2d:f0:f6:c5:8b:28:c6:5c:89:d3:0f:5c:18:ba:4d:
fa:81:33:37:60:a3:82:72:db:59:33:2c:9b:9d:e7:12:49:e8:
7b:0d:85:7b:e3:71:24:97:af:b3:32:c0:f9:cb:ec:4e:fa:ef:
58:3b:99:1b:97:a1:01:1d:8d:9b:f2:b2:50:f8:20:21:77:29:
c5:88:99:72:63:2f:60:27:44:c5:a6:a2:4d:71:28:65:3b:40:
61:ff:ea:15
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxVVT/pM7uu22zFzxrCVGuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhZjJhZjJmZTJhM2VmZTU0YTE0ZmEwOTI2MjAzMGFjZDA3
MTFkNzgwHhcNMjMwMTAyMDcxNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNTI4MTU5MGRiNzNlMmY1ZTdlOTNiYTAyNzIyNjI3OTJkZDU2NjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkRK5zuBVM8gUhFj65UqT+ZRs/IM5
xKCbe/+v/ZyyfgVL0OPySWRhiaR7UbfGDGGqWfh/GivWj5AaGRY5Ur4nA6Sna0/G
/UNorkEx40FaEuZ/q2kMFuEQ4k/5p4hfHQqu84y+yD8dF4pKBawQ1yEnvGCqQuPu
IKdKiqtoXBgJ9ni9q8XvGgCy+vEnV3bi3TRidjGepj4SHdWSMGLnwJRyisU/y4in
9VeXrF574Z9eCslBU8xmo6WDz+rRYpjKzZkoXOd4IYa4oT3Mz3oShi4pQ3cJc2mB
ZPUMD775G+6OrK1sXUZaQUa1uMM3lJWTwXHpsFjjr/U0w1YiNbbOnVmmyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDUoFZDbc+L15+k7oCciYnkt1WZRMB8GA1UdIwQY
MBaAFGryry/io+/lShT6CSYgMKzQcR14MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXZLdkwtS2o3LVZLRlBvSkppQXdyTkJ4SFhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9hMWM1NWItYWM5Ni00OTYzLTg5YWQt
N2NhMTFiN2EwYTZlLzEvTlNnVmtOdHo0dlhuNlR1Z0p5SmllUzNWWmxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9hMWM1NWItYWM5Ni00OTYzLTg5YWQtN2NhMTFiN2EwYTZl
LzEvYXZLdkwtS2o3LVZLRlBvSkppQXdyTkJ4SFhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUPPkMA0G
CSqGSIb3DQEBCwUAA4IBAQAD8XffdVuNbmOI/rVQWUcP4Fyo38k22S7gk41b2MUr
iUN2/fTD0DOmUMz5BbS1+lGzA32K6gM7msd5CeDoDGoP2QSGamNgYi4il+b2Ps4m
QAEgeQhtAPZif07AtiRJB0tPAulyoGTmfGRXj4qxpQabzi9Lul+kIUxZSsI3PMGj
koM9axXEGWsj00FptHzrBaofxQxjTo1Jy4ipzcgEA8mjBo8ImbYt8PbFiyjGXInT
D1wYuk36gTM3YKOCcttZMyybnecSSeh7DYV743Ekl6+zMsD5y+xO+u9YO5kbl6EB
HY2b8rJQ+CAhdynFiJlyYy9gJ0TFpqJNcShlO0Bh/+oV
-----END CERTIFICATE-----
Generated at Wed Apr 23 03:57:10 2025 by rpki-client