Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/72KwjG_RLmNGutc2ne2HELjVxFg.roa
File: 72KwjG_RLmNGutc2ne2HELjVxFg.roa (raw, json)
Hash identifier: /KKSJH03bRUz909vgUWjBH0dH40j4kTvvlFerKfY0vc=
Subject key identifier: EF:62:B0:8C:6F:D1:2E:63:46:BA:D7:36:9D:ED:87:10:B8:D5:C4:58
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 01880453EEA32736FC02F2DB0C7A407C493D
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/72KwjG_RLmNGutc2ne2HELjVxFg.roa
Signing time: Wed 10 May 2023 06:23:09 +0000
ROA not before: Wed 10 May 2023 06:23:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134121
IP address blocks: 212.115.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:04:53:ee:a3:27:36:fc:02:f2:db:0c:7a:40:7c:49:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: May 10 06:23:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef62b08c6fd12e6346bad7369ded8710b8d5c458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f7:90:bd:c8:85:a7:30:11:06:3f:72:87:f7:
2d:82:da:34:66:c8:61:1c:e3:2f:7e:90:aa:9a:99:
e8:b5:77:3b:8a:11:7b:e0:8f:d1:7f:cb:e7:6a:4a:
44:d5:06:dc:50:c1:09:20:6d:f1:07:bc:96:f6:eb:
59:10:ee:77:25:30:8d:9b:4a:1f:aa:16:8e:ed:fe:
af:cc:51:9f:53:06:e7:09:5e:f6:e7:b7:5d:12:72:
2d:ce:23:35:0e:ba:56:51:ab:f4:d5:7a:dd:d2:98:
61:e2:c2:c9:66:4a:bf:84:bb:c4:f1:af:57:71:a4:
63:cd:15:98:e2:2c:e4:c5:e4:42:84:a6:82:b1:ec:
69:bf:d7:4e:25:5d:51:12:97:fd:7d:a6:94:58:8f:
2f:76:52:ac:24:73:f5:f5:e4:9d:57:31:c3:eb:6a:
e5:ff:fe:b5:95:b7:7c:f8:5c:55:38:a0:21:1b:f5:
5c:e2:3a:62:cf:78:d0:00:db:a3:8f:f9:7a:2a:7e:
79:33:22:c7:90:b9:ac:3a:8e:69:97:e9:6b:25:9e:
94:31:d0:4c:8b:d5:fb:7b:57:34:33:67:84:51:ce:
18:88:9f:79:41:4e:d9:e7:b1:91:88:8b:e7:5c:18:
ff:24:72:40:1c:e6:78:a7:2e:7b:b8:68:4d:c7:b9:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:62:B0:8C:6F:D1:2E:63:46:BA:D7:36:9D:ED:87:10:B8:D5:C4:58
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/72KwjG_RLmNGutc2ne2HELjVxFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.115.52.0/22
Signature Algorithm: sha256WithRSAEncryption
68:2a:75:ff:b9:c0:36:fe:86:49:20:b4:8f:f6:95:92:56:24:
1c:ab:00:d2:d6:5a:a3:99:e2:d9:a2:fc:1f:40:2a:4d:75:f8:
db:a6:55:0f:ec:fd:22:57:00:78:75:2e:6a:f4:21:c9:59:74:
14:72:ff:f0:0f:d9:39:f9:7a:1a:f9:d6:b1:a5:89:88:a0:2f:
52:de:8a:e7:31:c3:d6:27:b1:81:80:80:2d:2e:4b:11:43:62:
7b:85:cd:41:93:00:41:8b:da:dc:60:69:b0:aa:bd:f5:28:17:
23:4e:63:7e:9d:47:a2:43:a4:cf:8b:fc:b5:19:f1:fc:7a:43:
bd:61:e5:14:57:da:6e:1d:74:2e:c7:14:82:c5:f6:0c:f7:89:
96:2a:d3:91:de:31:1b:f9:19:0d:cc:60:2e:e3:f4:0b:08:65:
d6:19:6f:fd:2b:5c:3e:25:c9:99:24:b6:8d:59:10:05:02:b6:
78:35:eb:48:79:ce:56:23:f5:0e:fc:85:a6:19:92:36:bd:77:
ff:26:62:ed:65:c2:13:d6:b8:7d:58:b0:69:a0:70:af:e5:23:
f9:a2:9f:5e:8f:07:75:5f:ff:5f:91:32:f5:a0:98:9b:bd:2f:
0d:a3:4f:c9:de:ca:3b:72:ab:fd:17:7b:f3:8e:99:98:32:2f:
0b:ae:59:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:09 2025 by rpki-client