Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/j0olIQi4DHtuJ3SNLB3CU67yThg.roa
File: j0olIQi4DHtuJ3SNLB3CU67yThg.roa (raw, json)
Hash identifier: /5JipvBuWQDcsiA9tm8Yo9sdhTxWtKitOeN0iC1PRuo=
Subject key identifier: 8F:4A:25:21:08:B8:0C:7B:6E:27:74:8D:2C:1D:C2:53:AE:F2:4E:18
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018570B0601E48D9CD50A8C3D82A9938F329
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/j0olIQi4DHtuJ3SNLB3CU67yThg.roa
Signing time: Mon 02 Jan 2023 04:14:45 +0000
ROA not before: Mon 02 Jan 2023 04:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22333
IP address blocks: 185.162.73.0/24 maxlen: 24
185.162.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:60:1e:48:d9:cd:50:a8:c3:d8:2a:99:38:f3:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 2 04:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f4a252108b80c7b6e27748d2c1dc253aef24e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:9e:42:f7:f1:d0:89:17:cf:7e:77:63:e2:
ef:61:3d:d9:f5:a8:2f:ae:b1:79:95:4e:24:5e:bb:
d4:0d:99:89:98:be:0d:5e:e5:c7:8e:20:ef:48:ec:
88:93:ca:eb:a8:6d:30:97:27:41:7d:0a:0c:27:99:
a1:e6:44:25:50:b7:d7:7e:a2:e2:bc:0a:6c:7b:bd:
ee:0f:cb:e1:26:23:a0:02:65:39:c0:44:f6:c8:b5:
4c:93:5c:81:f4:85:a1:84:37:45:09:99:d6:92:5f:
3a:4d:7e:84:66:5f:5e:22:27:8f:27:73:51:7f:aa:
98:25:a4:a7:38:77:50:2f:7e:2a:3a:87:ab:a5:96:
1e:7c:a4:b7:5d:99:28:e5:7b:1c:cd:f1:78:e5:89:
f8:e4:de:df:16:a4:25:c7:12:d9:3e:2d:cb:6b:79:
f4:f4:5e:1a:ab:ec:29:ce:0a:f2:63:9b:7e:d2:be:
21:68:5d:8b:2f:6a:5c:af:b2:d1:b4:a5:91:98:78:
68:24:ad:7a:ad:2e:e7:10:ce:5c:39:16:58:ba:6f:
66:b7:87:8a:38:1a:9d:95:f8:7f:85:c1:2a:bf:87:
ed:61:ff:5f:32:c8:91:54:3e:67:6d:89:50:68:aa:
99:12:b9:2b:9d:ca:b5:8e:c2:cf:0b:1f:a9:37:e3:
fc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:4A:25:21:08:B8:0C:7B:6E:27:74:8D:2C:1D:C2:53:AE:F2:4E:18
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/j0olIQi4DHtuJ3SNLB3CU67yThg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.72.0/23
Signature Algorithm: sha256WithRSAEncryption
55:9a:71:90:b1:06:41:e9:a9:7a:de:39:92:04:c9:12:38:6e:
c3:3e:8e:04:b8:99:6f:f9:08:79:94:77:27:45:d6:d2:27:85:
9b:b5:2c:36:52:78:c6:0b:45:8a:2c:d8:3b:89:66:86:ed:84:
38:43:85:4e:c7:ea:54:73:68:58:58:15:f9:bb:2f:a9:cb:f9:
03:63:17:10:f1:0b:00:97:7a:f3:51:cb:d3:06:da:b9:49:f1:
65:9b:9a:16:05:0d:2c:56:2f:8f:c0:40:39:5b:f7:f8:17:92:
5e:5a:8c:a4:c0:a6:dc:5a:c2:5f:27:72:b8:6d:fb:02:7a:60:
53:ce:89:00:46:30:7b:80:1a:14:9a:a1:6f:cc:5e:10:10:c9:
a5:d2:80:31:0a:65:24:2a:13:69:1e:39:cc:24:5b:c7:81:04:
61:49:6e:94:86:99:43:06:78:6a:16:24:9a:61:77:13:3c:11:
31:9c:93:ea:4e:f5:22:09:10:bb:a9:26:ab:21:68:c1:9c:11:
08:98:92:3c:98:86:00:1b:2b:c4:dd:54:bb:52:47:69:b4:8b:
14:21:ac:ab:e2:54:3e:7d:2c:51:01:f2:06:eb:59:11:50:2f:
a2:0b:6e:be:28:f3:02:b1:7f:a4:96:72:44:6d:ae:bc:f4:96:
bb:aa:4c:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwsGAeSNnNUKjD2CqZOPMpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMjRkZWZiYWFkZTkzZTk5OGUxM2E5NDIwMjlkZDU5M2I4
YjJlYTMwHhcNMjMwMTAyMDQxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjRhMjUyMTA4YjgwYzdiNmUyNzc0OGQyYzFkYzI1M2FlZjI0ZTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzOeQvfx0IkXz353Y+LvYT3Z9agv
rrF5lU4kXrvUDZmJmL4NXuXHjiDvSOyIk8rrqG0wlydBfQoMJ5mh5kQlULfXfqLi
vApse73uD8vhJiOgAmU5wET2yLVMk1yB9IWhhDdFCZnWkl86TX6EZl9eIiePJ3NR
f6qYJaSnOHdQL34qOoerpZYefKS3XZko5XsczfF45Yn45N7fFqQlxxLZPi3La3n0
9F4aq+wpzgryY5t+0r4haF2LL2pcr7LRtKWRmHhoJK16rS7nEM5cORZYum9mt4eK
OBqdlfh/hcEqv4ftYf9fMsiRVD5nbYlQaKqZErkrncq1jsLPCx+pN+P8OwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI9KJSEIuAx7bid0jSwdwlOu8k4YMB8GA1UdIwQY
MBaAFFMk3vuq3pPpmOE6lCAp3Vk7iy6jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXlUZS02cmVrLW1ZNFRxVUlDbmRXVHVMTHFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yOTRlODQtY2ZjNS00NWE0LWE1Y2Qt
MzNiNzQ1OTk3NWUwLzEvajBvbElRaTRESHR1SjNTTkxCM0NVNjd5VGhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8yOTRlODQtY2ZjNS00NWE0LWE1Y2QtMzNiNzQ1OTk3NWUw
LzEvVXlUZS02cmVrLW1ZNFRxVUlDbmRXVHVMTHFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuaJIMA0G
CSqGSIb3DQEBCwUAA4IBAQBVmnGQsQZB6al63jmSBMkSOG7DPo4EuJlv+Qh5lHcn
RdbSJ4WbtSw2UnjGC0WKLNg7iWaG7YQ4Q4VOx+pUc2hYWBX5uy+py/kDYxcQ8QsA
l3rzUcvTBtq5SfFlm5oWBQ0sVi+PwEA5W/f4F5JeWoykwKbcWsJfJ3K4bfsCemBT
zokARjB7gBoUmqFvzF4QEMml0oAxCmUkKhNpHjnMJFvHgQRhSW6UhplDBnhqFiSa
YXcTPBExnJPqTvUiCRC7qSarIWjBnBEImJI8mIYAGyvE3VS7UkdptIsUIayr4lQ+
fSxRAfIG61kRUC+iC26+KPMCsX+klnJEba689Ja7qkxq
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:20 2025 by rpki-client