Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/M1JW_FKXqFnt6Im00lE7zjh_jCo.roa
File: M1JW_FKXqFnt6Im00lE7zjh_jCo.roa (raw, json)
Hash identifier: vOsH4Wy7uW8mjyCfxBJ6jJ4GPqxod09m04HGmvnUFqw=
Subject key identifier: 33:52:56:FC:52:97:A8:59:ED:E8:89:B4:D2:51:3B:CE:38:7F:8C:2A
Certificate issuer: /CN=572bc93f1580fc95274d983940f3efaede304ae5
Certificate serial: 01941F8C56369978800A4A548737E7E2C3B2
Authority key identifier: 57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/M1JW_FKXqFnt6Im00lE7zjh_jCo.roa
Signing time: Wed 01 Jan 2025 01:47:58 +0000
ROA not before: Wed 01 Jan 2025 01:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200887
IP address blocks: 185.244.236.0/24 maxlen: 24
2a13:1580::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:56:36:99:78:80:0a:4a:54:87:37:e7:e2:c3:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572bc93f1580fc95274d983940f3efaede304ae5
Validity
Not Before: Jan 1 01:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=335256fc5297a859ede889b4d2513bce387f8c2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b5:7b:01:04:1c:fc:39:7a:85:b4:4d:95:36:
5a:1a:38:5e:b3:05:39:33:4f:4e:1f:08:b5:7f:b9:
cc:a7:74:9f:6c:59:90:ba:3f:8e:2a:e3:8e:89:88:
ee:c5:76:d6:12:27:84:0b:30:ae:71:32:b9:1f:a8:
ee:ce:d3:fc:c0:91:63:52:98:47:9b:17:b6:52:86:
64:29:b7:1d:5a:02:e1:40:b5:be:28:6c:c0:ef:b6:
ff:fa:92:ab:76:db:60:bb:d7:7a:03:5a:25:77:80:
e7:27:2f:6a:d8:6b:06:bc:e3:61:0e:b2:37:41:55:
03:b7:ed:98:ff:40:8d:7c:8b:2d:9e:d7:9c:02:64:
3d:7a:1a:2d:df:f9:23:ef:50:6a:9c:e7:d3:a7:5b:
0b:d1:07:b9:87:60:27:a4:8a:41:20:e6:7b:6b:85:
fd:96:0b:80:26:e3:96:85:db:03:ca:ab:1c:15:05:
75:96:35:33:19:bc:6a:5f:37:63:df:65:0b:50:5d:
84:6c:4a:c8:b3:77:69:73:44:cb:7a:f6:b9:60:fb:
45:02:3f:1a:8c:34:c4:e3:ae:fb:13:e5:37:17:eb:
69:f6:2e:2e:fe:77:3f:1a:22:a9:7e:10:91:1c:a6:
1f:61:d0:62:fc:ef:58:94:b4:60:ec:b3:0b:ef:87:
7d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:52:56:FC:52:97:A8:59:ED:E8:89:B4:D2:51:3B:CE:38:7F:8C:2A
X509v3 Authority Key Identifier:
keyid:57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/M1JW_FKXqFnt6Im00lE7zjh_jCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/VyvJPxWA_JUnTZg5QPPvrt4wSuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.236.0/24
IPv6:
2a13:1580::/29
Signature Algorithm: sha256WithRSAEncryption
14:9b:3b:d5:9d:be:d9:0d:98:c2:e8:a0:f3:b9:c4:c2:9d:1c:
0c:7b:ad:f9:c8:af:5f:b6:da:d1:2d:65:58:59:3e:d9:7a:36:
15:97:86:cd:46:08:fd:aa:98:56:9c:52:ca:53:ac:88:0a:8f:
40:d1:8f:49:f4:79:8b:05:af:0d:5a:a1:04:71:de:5d:9d:4b:
69:09:08:be:97:6a:5a:61:ff:45:e8:ea:ed:5b:1c:99:97:c1:
24:31:96:76:40:b3:85:19:f7:fd:78:e7:fe:76:ef:99:2c:59:
cc:d7:c2:23:9d:fb:f0:e8:42:52:59:06:ae:e4:6f:29:b9:85:
59:d0:cc:29:9e:0a:9b:44:10:82:f8:8e:36:87:c9:40:4c:de:
d9:fd:a0:55:19:c5:67:91:bd:3d:27:39:8a:16:22:66:a4:73:
6d:1d:84:be:e3:20:b0:f8:c1:15:ce:03:3e:a4:46:44:f3:d5:
9e:0a:fe:c6:c5:c1:81:02:eb:c4:ff:eb:71:e5:70:ed:ff:27:
8c:fd:7b:16:ff:47:0a:d3:a2:d3:76:46:00:ba:a3:ba:39:d7:
62:10:26:03:64:9c:ee:fb:62:9b:2c:fb:00:58:90:e3:10:60:
c3:fe:98:bc:d0:46:8a:1c:77:d9:31:d5:ee:c2:24:25:39:12:
d4:e3:b4:77
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQfjFY2mXiACkpUhzfn4sOyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MmJjOTNmMTU4MGZjOTUyNzRkOTgzOTQwZjNlZmFlZGUz
MDRhZTUwHhcNMjUwMTAxMDE0NzU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzUyNTZmYzUyOTdhODU5ZWRlODg5YjRkMjUxM2JjZTM4N2Y4YzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybV7AQQc/Dl6hbRNlTZaGjheswU5
M09OHwi1f7nMp3SfbFmQuj+OKuOOiYjuxXbWEieECzCucTK5H6juztP8wJFjUphH
mxe2UoZkKbcdWgLhQLW+KGzA77b/+pKrdttgu9d6A1old4DnJy9q2GsGvONhDrI3
QVUDt+2Y/0CNfIstntecAmQ9ehot3/kj71BqnOfTp1sL0Qe5h2AnpIpBIOZ7a4X9
lguAJuOWhdsDyqscFQV1ljUzGbxqXzdj32ULUF2EbErIs3dpc0TLeva5YPtFAj8a
jDTE4677E+U3F+tp9i4u/nc/GiKpfhCRHKYfYdBi/O9YlLRg7LML74d9tQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFDNSVvxSl6hZ7eiJtNJRO844f4wqMB8GA1UdIwQY
MBaAFFcryT8VgPyVJ02YOUDz767eMErlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnl2SlB4V0FfSlVuVFpnNVFQUHZydDR3U3VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yOWY1NWMtNjAzMi00MWMyLWJhYTQt
MTA4MGU4NjVlYzZjLzEvTTFKV19GS1hxRm50NkltMDBsRTd6amhfakNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8yOWY1NWMtNjAzMi00MWMyLWJhYTQtMTA4MGU4NjVlYzZj
LzEvVnl2SlB4V0FfSlVuVFpnNVFQUHZydDR3U3VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAufTsMA0E
AgACMAcDBQMqExWAMA0GCSqGSIb3DQEBCwUAA4IBAQAUmzvVnb7ZDZjC6KDzucTC
nRwMe635yK9fttrRLWVYWT7ZejYVl4bNRgj9qphWnFLKU6yICo9A0Y9J9HmLBa8N
WqEEcd5dnUtpCQi+l2paYf9F6OrtWxyZl8EkMZZ2QLOFGff9eOf+du+ZLFnM18Ij
nfvw6EJSWQau5G8puYVZ0MwpngqbRBCC+I42h8lATN7Z/aBVGcVnkb09JzmKFiJm
pHNtHYS+4yCw+MEVzgM+pEZE89WeCv7GxcGBAuvE/+tx5XDt/yeM/XsW/0cK06LT
dkYAuqO6OddiECYDZJzu+2KbLPsAWJDjEGDD/pi80EaKHHfZMdXuwiQlORLU47R3
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:13 2025 by rpki-client