Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/3OIwRMjLcZNdst5r__dfXWcD_IY.roa
File: 3OIwRMjLcZNdst5r__dfXWcD_IY.roa (raw, json)
Hash identifier: BHtHKSaZjVsrYNvzbllDbAF9lw6leYGPb2N/kFUM5ac=
Subject key identifier: DC:E2:30:44:C8:CB:71:93:5D:B2:DE:6B:FF:F7:5F:5D:67:03:FC:86
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8B1121B6D5E0F8024FF1D559E0CBFB
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/3OIwRMjLcZNdst5r__dfXWcD_IY.roa
Signing time: Sun 01 Jan 2023 13:35:08 +0000
ROA not before: Sun 01 Jan 2023 13:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204483
IP address blocks: 212.243.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8b:11:21:b6:d5:e0:f8:02:4f:f1:d5:59:e0:cb:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dce23044c8cb71935db2de6bfff75f5d6703fc86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:47:3b:16:fe:11:9d:7d:a2:3e:e0:d5:f2:e5:
b0:42:bd:1d:95:7b:12:94:68:11:4e:8a:92:97:ba:
40:10:eb:d0:8e:41:1a:88:33:fe:40:e9:55:ca:77:
38:02:99:c5:3d:9b:de:9c:02:e1:1b:70:30:4b:37:
18:82:f0:ce:2c:18:8f:4b:ea:55:b8:b6:2b:40:34:
83:b2:82:49:41:04:99:33:77:05:3c:f0:c0:d7:a6:
6f:4d:5e:fa:5c:4a:24:0b:fa:fe:b6:85:ed:f3:22:
e0:57:03:5d:bd:fb:7e:f5:50:fd:28:6a:8b:f5:ee:
e0:da:56:0a:36:73:ba:95:5b:b7:10:5a:05:44:fd:
ad:b8:99:b5:8b:50:a9:99:aa:6f:31:0f:bd:7d:e9:
05:fb:1e:da:a7:c3:08:b6:ec:a9:d1:5b:46:c4:05:
c2:6d:b3:ab:6d:76:05:01:e8:54:b6:5e:e1:34:96:
67:e1:89:d3:2c:ad:67:ff:8f:86:27:ab:65:b3:6a:
c6:ed:2f:3c:3a:19:ed:48:63:be:32:d1:9c:9f:bb:
09:7d:27:40:d4:86:f9:5a:b2:94:f3:cd:33:44:28:
5d:c2:35:38:d4:75:c0:ce:17:6f:ce:46:2b:9e:ca:
43:70:c5:48:65:14:3f:c8:f3:b8:a3:84:0b:80:59:
c6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E2:30:44:C8:CB:71:93:5D:B2:DE:6B:FF:F7:5F:5D:67:03:FC:86
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/3OIwRMjLcZNdst5r__dfXWcD_IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.243.124.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:51:4c:76:89:5e:c6:f1:bc:ae:db:71:c5:97:fc:1c:15:ca:
7b:59:3f:b9:ca:79:a2:da:62:56:ec:ea:5c:8d:a2:4c:54:62:
dd:03:db:bd:79:ae:20:58:21:fa:95:01:ce:08:a3:5c:9f:20:
f9:e9:40:c5:f7:07:59:9b:00:25:98:e7:b1:5f:19:b4:f9:f7:
32:6e:e2:1a:26:99:79:2b:1c:29:98:46:2b:39:f2:2e:30:92:
e1:b9:be:53:f8:2d:99:c7:a1:02:ab:ce:80:e8:fe:3c:9e:1f:
3c:ec:f3:f5:ec:25:2f:10:29:1f:1d:66:05:dd:c9:b8:88:57:
25:0e:2d:37:ca:bb:56:56:a9:e0:39:3c:0e:5d:d4:25:53:32:
73:30:14:83:96:34:6b:dc:7f:e9:04:0c:c4:bd:cb:90:9f:33:
e2:55:fc:d8:ab:d2:8b:78:1c:3b:b0:3d:f7:83:4b:53:34:a7:
b3:f5:38:65:18:51:f3:2f:21:6e:47:75:9f:8d:a9:db:66:64:
07:e0:c4:46:e4:89:68:34:96:1b:58:1d:a3:28:9b:61:18:43:
a3:86:10:1d:5f:5e:9d:06:a0:4a:0f:e1:93:a3:a0:31:4b:48:
7b:ed:a9:fe:a1:3c:37:76:33:c2:c3:ad:b5:71:01:a0:e5:6a:
ab:07:72:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtixEhttXg+AJP8dVZ4Mv7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy
MDRjOGQwHhcNMjMwMTAxMTMzNTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkY2UyMzA0NGM4Y2I3MTkzNWRiMmRlNmJmZmY3NWY1ZDY3MDNmYzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUc7Fv4RnX2iPuDV8uWwQr0dlXsS
lGgRToqSl7pAEOvQjkEaiDP+QOlVync4ApnFPZvenALhG3AwSzcYgvDOLBiPS+pV
uLYrQDSDsoJJQQSZM3cFPPDA16ZvTV76XEokC/r+toXt8yLgVwNdvft+9VD9KGqL
9e7g2lYKNnO6lVu3EFoFRP2tuJm1i1CpmapvMQ+9fekF+x7ap8MItuyp0VtGxAXC
bbOrbXYFAehUtl7hNJZn4YnTLK1n/4+GJ6tls2rG7S88OhntSGO+MtGcn7sJfSdA
1Ib5WrKU880zRChdwjU41HXAzhdvzkYrnspDcMVIZRQ/yPO4o4QLgFnGNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNziMETIy3GTXbLea//3X11nA/yGMB8GA1UdIwQY
MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt
YmQxOTI2NzZjOWJiLzEvM09Jd1JNakxjWk5kc3Q1cl9fZGZYV2NEX0lZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi
LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1PN8MA0G
CSqGSIb3DQEBCwUAA4IBAQBaUUx2iV7G8byu23HFl/wcFcp7WT+5ynmi2mJW7Opc
jaJMVGLdA9u9ea4gWCH6lQHOCKNcnyD56UDF9wdZmwAlmOexXxm0+fcybuIaJpl5
KxwpmEYrOfIuMJLhub5T+C2Zx6ECq86A6P48nh887PP17CUvECkfHWYF3cm4iFcl
Di03yrtWVqngOTwOXdQlUzJzMBSDljRr3H/pBAzEvcuQnzPiVfzYq9KLeBw7sD33
g0tTNKez9ThlGFHzLyFuR3WfjanbZmQH4MRG5IloNJYbWB2jKJthGEOjhhAdX16d
BqBKD+GTo6AxS0h77an+oTw3djPCw621cQGg5WqrB3Ki
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:31:38 2025 by rpki-client