Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/9IZwYhXAa66JK5SSnqUTXoDFuvo.roa
File: 9IZwYhXAa66JK5SSnqUTXoDFuvo.roa (raw, json)
Hash identifier: jLo7Ree7oni66ml0QpMX3Xh8A2mA/h4OM3dVsFVdkXw=
Subject key identifier: F4:86:70:62:15:C0:6B:AE:89:2B:94:92:9E:A5:13:5E:80:C5:BA:FA
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 0458703A
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/9IZwYhXAa66JK5SSnqUTXoDFuvo.roa
Signing time: Thu 12 May 2022 14:20:02 +0000
ROA not before: Thu 12 May 2022 14:20:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 213.225.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72904762 (0x458703a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: May 12 14:20:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f486706215c06bae892b94929ea5135e80c5bafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:38:62:53:53:ea:d6:cb:0a:1e:69:c7:c6:df:
c5:0c:c9:29:12:4e:6e:ae:15:f4:b9:cf:36:92:a2:
2f:ae:f4:d9:ca:39:46:b7:52:39:6a:4b:d0:e7:56:
5c:07:f0:53:d3:f4:1a:7c:2d:12:08:0c:91:9c:1c:
31:7a:d3:62:c8:c6:db:6a:62:5d:df:cf:1d:ed:5c:
44:a5:c9:d1:c9:bf:0c:fb:83:08:2a:fb:a1:d0:08:
67:fb:af:39:dc:41:76:6e:b4:b8:76:5d:90:3b:93:
da:e7:a3:3b:10:86:02:82:a5:56:cf:bf:ff:ab:84:
19:8d:ea:44:43:c1:2f:d3:69:72:e7:a5:e2:3f:a7:
93:a0:20:f3:f4:ec:64:4f:c9:ae:d3:38:a1:7c:38:
d5:76:a1:00:f3:3f:5c:26:7e:04:91:dd:2a:02:81:
8d:4f:a4:21:96:04:2b:1a:a6:a4:4a:6f:b6:d4:08:
9a:a7:74:d9:b9:04:9b:cb:20:c1:01:5c:c7:35:9b:
14:fb:4d:ee:e4:26:f4:7d:b8:1b:d7:0f:6f:3e:96:
df:8a:a7:1a:c7:64:50:87:64:e1:0e:e6:72:88:12:
31:0f:d8:88:6e:a2:4c:17:6c:4e:3a:9d:06:c9:8e:
bd:b3:68:82:27:71:9e:5f:a8:de:15:84:87:1e:0d:
2e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:86:70:62:15:C0:6B:AE:89:2B:94:92:9E:A5:13:5E:80:C5:BA:FA
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/9IZwYhXAa66JK5SSnqUTXoDFuvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.225.238.0/24
Signature Algorithm: sha256WithRSAEncryption
54:cc:71:00:79:42:d6:fd:ac:a5:f1:1d:fb:50:56:ea:82:60:
c0:0a:cd:6c:69:69:f7:9c:51:dd:61:58:a2:5a:95:99:96:4c:
99:2b:96:78:c8:0c:40:1b:60:5d:02:e0:e3:d8:0e:78:93:42:
17:97:af:ff:d6:2d:7e:69:fb:41:73:67:03:6d:b1:7a:d5:14:
4a:45:7b:b0:39:55:4e:94:a6:00:ff:0f:df:df:c5:78:46:00:
9a:d7:5c:e8:00:41:e8:06:f2:8b:19:b3:05:f8:fd:b7:5a:e2:
bf:86:fa:80:18:68:5e:e1:96:74:1c:f8:87:4b:af:a3:d9:75:
6d:bb:6d:76:76:53:7b:ed:e0:17:36:bb:80:90:23:50:a4:bc:
4b:4e:7a:18:4e:db:aa:1a:05:c9:f1:87:8c:0b:8c:1f:c4:80:
cb:d9:94:a0:f8:6f:06:3d:9b:b6:44:49:ae:8b:6a:41:39:58:
6b:6e:08:39:02:cb:09:67:44:31:dc:5d:90:d1:83:a5:d2:e5:
ed:3c:25:7f:0d:ad:2c:d5:45:68:27:0e:5d:f4:4b:6b:19:56:
3d:e3:68:e8:49:34:38:5d:cd:f9:23:52:29:04:28:78:1e:c2:
6e:e1:cc:95:13:82:ad:bb:80:0c:2a:5e:f4:c5:e5:aa:f5:82:
59:2b:87:68
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBFhwOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTgxNGNmMmNhM2UxNzk5MzQ5Y2NkNGM3ZTZhNzZkNjNmODM0YTNkMB4XDTIyMDUx
MjE0MjAwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjQ4NjcwNjIxNWMw
NmJhZTg5MmI5NDkyOWVhNTEzNWU4MGM1YmFmYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIw4YlNT6tbLCh5px8bfxQzJKRJObq4V9LnPNpKiL6702co5
RrdSOWpL0OdWXAfwU9P0GnwtEggMkZwcMXrTYsjG22piXd/PHe1cRKXJ0cm/DPuD
CCr7odAIZ/uvOdxBdm60uHZdkDuT2uejOxCGAoKlVs+//6uEGY3qREPBL9Npcuel
4j+nk6Ag8/TsZE/JrtM4oXw41XahAPM/XCZ+BJHdKgKBjU+kIZYEKxqmpEpvttQI
mqd02bkEm8sgwQFcxzWbFPtN7uQm9H24G9cPbz6W34qnGsdkUIdk4Q7mcogSMQ/Y
iG6iTBdsTjqdBsmOvbNogidxnl+o3hWEhx4NLl0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT0hnBiFcBrrokrlJKepRNegMW6+jAfBgNVHSMEGDAWgBQhgUzyyj4XmTSc
zUx+anbWP4NKPTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lZRk04c28tRjVrMG5NMU1mbXAyMWotRFNqMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvMDFmODUzLWQ0NDUtNGFjZS1hOGQ4LTIyNzAxYjRiYjQwNy8x
LzlJWndZaFhBYTY2Sks1U1NucVVUWG9ERnV2by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
MDFmODUzLWQ0NDUtNGFjZS1hOGQ4LTIyNzAxYjRiYjQwNy8xL0lZRk04c28tRjVr
MG5NMU1mbXAyMWotRFNqMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANXh7jANBgkqhkiG9w0BAQsFAAOC
AQEAVMxxAHlC1v2spfEd+1BW6oJgwArNbGlp95xR3WFYolqVmZZMmSuWeMgMQBtg
XQLg49gOeJNCF5ev/9Ytfmn7QXNnA22xetUUSkV7sDlVTpSmAP8P39/FeEYAmtdc
6ABB6AbyixmzBfj9t1riv4b6gBhoXuGWdBz4h0uvo9l1bbttdnZTe+3gFza7gJAj
UKS8S056GE7bqhoFyfGHjAuMH8SAy9mUoPhvBj2btkRJrotqQTlYa24IOQLLCWdE
MdxdkNGDpdLl7Twlfw2tLNVFaCcOXfRLaxlWPeNo6Ek0OF3N+SNSKQQoeB7CbuHM
lROCrbuADCpe9MXlqvWCWSuHaA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:33:02 2025 by rpki-client