Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/O1mX2F5uOyV3QtGm_6D37INrzhs.roa
File: O1mX2F5uOyV3QtGm_6D37INrzhs.roa (raw, json)
Hash identifier: CNk+vDh+l/6msn7YN83rzJR2YQxW3ccixtv9tuxm5Gk=
Subject key identifier: 3B:59:97:D8:5E:6E:3B:25:77:42:D1:A6:FF:A0:F7:EC:83:6B:CE:1B
Certificate issuer: /CN=45dab507c08976cc29d177373de627a1ce86efae
Certificate serial: 0DB13B1D
Authority key identifier: 45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/O1mX2F5uOyV3QtGm_6D37INrzhs.roa
Signing time: Sat 01 Jan 2022 08:59:38 +0000
ROA not before: Sat 01 Jan 2022 08:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399734
IP address blocks: 83.231.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229718813 (0xdb13b1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45dab507c08976cc29d177373de627a1ce86efae
Validity
Not Before: Jan 1 08:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b5997d85e6e3b257742d1a6ffa0f7ec836bce1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4b:48:c2:97:91:ce:3e:22:00:57:ef:e5:90:
ff:e3:62:0a:89:bd:4a:93:f8:6f:2b:95:b2:24:b3:
5f:08:83:51:fb:7e:7d:ba:2d:d2:2b:bd:a0:f6:5c:
52:31:ee:9e:62:75:a2:ae:5e:48:7b:86:d8:99:dd:
57:58:0e:09:cf:c5:f8:61:b5:59:da:14:e8:85:53:
82:cb:ef:c2:34:fa:90:19:40:8b:5a:70:8a:bc:81:
43:c1:47:e4:c0:8d:40:cb:c7:47:cb:17:78:47:e9:
4c:6a:91:cb:b7:56:53:78:5d:48:c8:d8:69:d2:a2:
32:a3:8a:72:96:32:6f:6d:ec:67:0f:d1:2e:27:a2:
31:ac:cd:96:ed:b0:67:24:2a:91:31:04:e1:96:7d:
0a:9d:ee:9e:21:e8:96:a1:b0:38:d7:f1:07:8c:c5:
fb:0f:ea:b4:1f:ef:77:14:2a:1c:37:d3:56:78:38:
cd:17:91:6e:36:e1:56:9a:6b:87:41:93:ce:2a:8f:
7f:2e:68:43:f4:ea:04:b5:04:82:74:1d:53:53:5e:
d6:c4:52:17:c3:04:ad:c6:25:a8:6b:de:93:2a:85:
e9:3b:14:6b:c8:44:87:b7:0a:be:e4:69:d2:f4:e0:
40:61:0e:06:9f:0f:91:28:d0:84:7a:a3:16:86:2b:
66:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:59:97:D8:5E:6E:3B:25:77:42:D1:A6:FF:A0:F7:EC:83:6B:CE:1B
X509v3 Authority Key Identifier:
keyid:45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/O1mX2F5uOyV3QtGm_6D37INrzhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.231.238.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:bb:83:e1:7d:38:28:ee:e2:3d:41:cf:01:84:7d:ec:b1:07:
6f:58:8a:f4:99:9a:ec:ef:eb:99:01:70:8d:07:e3:7f:48:2a:
d9:2d:8e:88:18:8f:7f:4b:e6:3e:8f:e2:27:f9:5a:44:2c:bb:
ad:07:ac:36:53:e7:8e:d3:79:d6:0a:7c:85:95:e2:f9:b8:aa:
dc:20:c2:68:0a:c5:0b:31:00:a1:85:1e:b9:7b:8a:27:bb:36:
1a:e1:93:91:2c:48:45:ca:3f:45:db:39:02:0e:f9:b3:b9:31:
fe:4e:28:46:4b:1b:f1:4d:ae:79:22:19:6e:d6:22:54:69:1f:
08:3d:03:9b:4a:38:bd:ac:76:28:23:60:85:b7:34:ad:25:25:
4b:3e:4a:fc:53:eb:49:d9:e4:00:5b:32:7a:97:54:26:1d:f9:
e1:59:44:34:2a:2e:06:b4:23:16:9a:20:34:1c:1e:aa:20:97:
cc:b8:be:4a:52:e2:b7:ac:4b:d3:01:a4:25:9c:5d:38:83:cd:
e8:78:d6:3e:66:7a:41:a1:3b:70:a0:77:8f:40:68:58:96:6c:
a1:6f:76:9f:24:c8:42:8a:23:f9:da:cb:7d:12:53:54:83:b6:
da:e2:d1:b1:59:55:9c:1e:0a:d4:a0:b5:2f:c7:5c:a3:64:e2:
a2:89:03:c8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDbE7HTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NWRhYjUwN2MwODk3NmNjMjlkMTc3MzczZGU2MjdhMWNlODZlZmFlMB4XDTIyMDEw
MTA4NTkzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2I1OTk3ZDg1ZTZl
M2IyNTc3NDJkMWE2ZmZhMGY3ZWM4MzZiY2UxYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKRLSMKXkc4+IgBX7+WQ/+NiCom9SpP4byuVsiSzXwiDUft+
fbot0iu9oPZcUjHunmJ1oq5eSHuG2JndV1gOCc/F+GG1WdoU6IVTgsvvwjT6kBlA
i1pwiryBQ8FH5MCNQMvHR8sXeEfpTGqRy7dWU3hdSMjYadKiMqOKcpYyb23sZw/R
LieiMazNlu2wZyQqkTEE4ZZ9Cp3uniHolqGwONfxB4zF+w/qtB/vdxQqHDfTVng4
zReRbjbhVpprh0GTziqPfy5oQ/TqBLUEgnQdU1Ne1sRSF8MErcYlqGvekyqF6TsU
a8hEh7cKvuRp0vTgQGEOBp8PkSjQhHqjFoYrZosCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ7WZfYXm47JXdC0ab/oPfsg2vOGzAfBgNVHSMEGDAWgBRF2rUHwIl2zCnR
dzc95iehzobvrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JkcTFCOENKZHN3cDBYYzNQZVlub2M2Rzc2NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvOWFhNTAwLWYzYmQtNDc3Yi05MDgyLWFhMGIxMTU2NGEzMi8x
L08xbVgyRjV1T3lWM1F0R21fNkQzN0lOcnpocy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
OWFhNTAwLWYzYmQtNDc3Yi05MDgyLWFhMGIxMTU2NGEzMi8xL1JkcTFCOENKZHN3
cDBYYzNQZVlub2M2Rzc2NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFPn7jANBgkqhkiG9w0BAQsFAAOC
AQEATruD4X04KO7iPUHPAYR97LEHb1iK9Jma7O/rmQFwjQfjf0gq2S2OiBiPf0vm
Po/iJ/laRCy7rQesNlPnjtN51gp8hZXi+biq3CDCaArFCzEAoYUeuXuKJ7s2GuGT
kSxIRco/Rds5Ag75s7kx/k4oRksb8U2ueSIZbtYiVGkfCD0Dm0o4vax2KCNghbc0
rSUlSz5K/FPrSdnkAFsyepdUJh354VlENCouBrQjFpogNBweqiCXzLi+SlLit6xL
0wGkJZxdOIPN6HjWPmZ6QaE7cKB3j0BoWJZsoW92nyTIQooj+drLfRJTVIO22uLR
sVlVnB4K1KC1L8dco2TiookDyA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 14:58:43 2025 by rpki-client