Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/720e23-e85e-4884-8686-afc60413ec87/1/__CDJ1VQocFKfa3_0fKM1lnCOS8.roa
File: __CDJ1VQocFKfa3_0fKM1lnCOS8.roa (raw, json)
Hash identifier: OF07aEnOhcAE7LyHK0R4l3i/Gb8ow82fDGlusNq8sbk=
Subject key identifier: FF:F0:83:27:55:50:A1:C1:4A:7D:AD:FF:D1:F2:8C:D6:59:C2:39:2F
Certificate issuer: /CN=3b599dbfdef3f7fa2fa739f77cdc8402055b0d0c
Certificate serial: 018B011DFC7BC6E4648474CC680B696214F1
Authority key identifier: 3B:59:9D:BF:DE:F3:F7:FA:2F:A7:39:F7:7C:DC:84:02:05:5B:0D:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1mdv97z9_ovpzn3fNyEAgVbDQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/720e23-e85e-4884-8686-afc60413ec87/1/__CDJ1VQocFKfa3_0fKM1lnCOS8.roa
Signing time: Thu 05 Oct 2023 18:33:44 +0000
ROA not before: Thu 05 Oct 2023 18:33:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49223
IP address blocks: 37.140.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:01:1d:fc:7b:c6:e4:64:84:74:cc:68:0b:69:62:14:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b599dbfdef3f7fa2fa739f77cdc8402055b0d0c
Validity
Not Before: Oct 5 18:33:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fff083275550a1c14a7dadffd1f28cd659c2392f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:45:92:ab:5f:d7:56:4e:97:73:55:7b:e0:81:
2a:a8:30:e6:50:76:88:e4:0c:c5:8a:17:e3:a8:92:
2d:a6:b8:00:52:1b:9b:1f:78:50:53:19:5e:fe:2b:
a1:1a:fa:75:a0:47:89:f8:c4:9c:b6:2b:1f:99:23:
3f:04:15:f8:d2:d0:41:ff:77:0d:b4:b4:81:f2:bf:
b0:5f:6b:06:fd:9e:d0:98:bc:6f:5d:92:c3:09:aa:
da:81:f9:d8:7b:09:5e:62:12:b9:66:27:55:92:d6:
83:89:b9:8b:a0:ef:d9:51:62:f0:7c:b0:e7:b1:1d:
53:a4:28:23:a0:4e:14:13:11:df:2e:aa:4b:31:a1:
e0:a3:67:d7:56:ca:ef:32:8c:3c:54:13:d8:99:31:
d1:56:67:fe:73:2a:fe:0a:29:35:1a:56:3d:7b:4f:
e1:06:1c:49:5a:4c:fc:d1:f1:4b:f9:a4:aa:6e:49:
fb:b0:7a:8d:d7:75:d0:2c:02:1d:a9:49:70:d9:8c:
a2:35:e2:44:d6:36:b6:2b:69:a2:60:7f:b5:a9:d6:
98:f4:01:1f:24:67:3d:c0:3d:3f:12:0e:b3:ed:ae:
de:e8:31:bc:17:57:74:40:e7:70:ed:60:cb:b5:82:
d4:eb:19:22:ac:6f:70:39:11:23:3f:cb:2d:cb:da:
d5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F0:83:27:55:50:A1:C1:4A:7D:AD:FF:D1:F2:8C:D6:59:C2:39:2F
X509v3 Authority Key Identifier:
keyid:3B:59:9D:BF:DE:F3:F7:FA:2F:A7:39:F7:7C:DC:84:02:05:5B:0D:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1mdv97z9_ovpzn3fNyEAgVbDQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/720e23-e85e-4884-8686-afc60413ec87/1/__CDJ1VQocFKfa3_0fKM1lnCOS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/720e23-e85e-4884-8686-afc60413ec87/1/O1mdv97z9_ovpzn3fNyEAgVbDQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.240.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:0b:50:a1:7f:ae:81:37:ac:14:72:10:34:0d:2e:ea:b6:a9:
df:a9:3b:84:19:4d:fe:94:8b:5c:d5:13:36:55:51:5c:9a:18:
f2:9e:87:1e:42:ba:48:c2:e0:ad:d3:af:c5:cd:20:cd:17:5c:
62:84:50:bd:74:58:e0:7b:1a:7c:96:39:09:1a:0f:6a:eb:bf:
ef:ab:0e:ac:ec:e2:c3:0e:3c:1a:00:b3:0b:b7:37:90:46:85:
79:69:2e:ad:a8:85:64:59:93:f8:a8:d2:42:d0:26:76:cf:95:
89:cb:dc:92:8d:5e:7d:d3:4f:fd:7a:9b:9d:53:de:77:89:24:
0e:a0:39:8f:19:81:28:75:57:29:0d:9c:f9:a4:e9:b6:94:f7:
e6:7f:7b:ed:4f:23:9d:8b:e0:20:ab:77:aa:e4:83:a6:61:c5:
ea:01:78:da:06:f2:3f:c4:bb:64:e9:e5:e1:c4:d5:66:91:cb:
1c:2d:d8:bb:07:11:c8:9e:b2:7f:4f:f4:68:d8:16:42:af:07:
1b:aa:b9:6e:2b:f3:0c:53:f0:14:3a:c3:40:23:41:3a:b8:9f:
98:5f:46:30:44:31:64:39:6a:c8:26:45:5b:ac:47:87:f4:e5:
8c:b5:7b:e0:98:84:c0:76:4c:56:83:01:9b:c7:25:76:00:21:
c4:55:c8:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsBHfx7xuRkhHTMaAtpYhTxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNTk5ZGJmZGVmM2Y3ZmEyZmE3MzlmNzdjZGM4NDAyMDU1
YjBkMGMwHhcNMjMxMDA1MTgzMzQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmYwODMyNzU1NTBhMWMxNGE3ZGFkZmZkMWYyOGNkNjU5YzIzOTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkWSq1/XVk6Xc1V74IEqqDDmUHaI
5AzFihfjqJItprgAUhubH3hQUxle/iuhGvp1oEeJ+MSctisfmSM/BBX40tBB/3cN
tLSB8r+wX2sG/Z7QmLxvXZLDCaragfnYewleYhK5ZidVktaDibmLoO/ZUWLwfLDn
sR1TpCgjoE4UExHfLqpLMaHgo2fXVsrvMow8VBPYmTHRVmf+cyr+Cik1GlY9e0/h
BhxJWkz80fFL+aSqbkn7sHqN13XQLAIdqUlw2YyiNeJE1ja2K2miYH+1qdaY9AEf
JGc9wD0/Eg6z7a7e6DG8F1d0QOdw7WDLtYLU6xkirG9wOREjP8sty9rVvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP/wgydVUKHBSn2t/9HyjNZZwjkvMB8GA1UdIwQY
MBaAFDtZnb/e8/f6L6c593zchAIFWw0MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzFtZHY5N3o5X292cHpuM2ZOeUVBZ1ZiRFF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MjBlMjMtZTg1ZS00ODg0LTg2ODYt
YWZjNjA0MTNlYzg3LzEvX19DREoxVlFvY0ZLZmEzXzBmS00xbG5DT1M4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MjBlMjMtZTg1ZS00ODg0LTg2ODYtYWZjNjA0MTNlYzg3
LzEvTzFtZHY5N3o5X292cHpuM2ZOeUVBZ1ZiRFF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJYzwMA0G
CSqGSIb3DQEBCwUAA4IBAQBNC1Chf66BN6wUchA0DS7qtqnfqTuEGU3+lItc1RM2
VVFcmhjynoceQrpIwuCt06/FzSDNF1xihFC9dFjgexp8ljkJGg9q67/vqw6s7OLD
DjwaALMLtzeQRoV5aS6tqIVkWZP4qNJC0CZ2z5WJy9ySjV5900/9epudU953iSQO
oDmPGYEodVcpDZz5pOm2lPfmf3vtTyOdi+Agq3eq5IOmYcXqAXjaBvI/xLtk6eXh
xNVmkcscLdi7BxHInrJ/T/Ro2BZCrwcbqrluK/MMU/AUOsNAI0E6uJ+YX0YwRDFk
OWrIJkVbrEeH9OWMtXvgmITAdkxWgwGbxyV2ACHEVci4
-----END CERTIFICATE-----
Generated at Sat Apr 19 18:02:29 2025 by rpki-client