Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/BH0rvZKTKVNlCn8pAWwKVsov3cY.roa
File: BH0rvZKTKVNlCn8pAWwKVsov3cY.roa (raw, json)
Hash identifier: 3z6UbC1wnI2IFdeczHUfbwt7OeRr5C57/+/a7QrB2d4=
Subject key identifier: 04:7D:2B:BD:92:93:29:53:65:0A:7F:29:01:6C:0A:56:CA:2F:DD:C6
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50E2C151
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/BH0rvZKTKVNlCn8pAWwKVsov3cY.roa
Signing time: Sat 01 Jan 2022 16:01:56 +0000
ROA not before: Sat 01 Jan 2022 16:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202855
IP address blocks: 212.243.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1357037905 (0x50e2c151)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=047d2bbd92932953650a7f29016c0a56ca2fddc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:53:40:75:63:73:bc:99:1e:81:28:c3:66:a6:
4a:f6:9d:69:5e:24:fb:ee:a3:bf:2d:5a:64:aa:8f:
94:c6:03:00:c7:47:18:c2:5c:7d:5c:95:97:de:da:
0c:7b:cc:37:bd:bf:66:1b:57:3d:a6:6f:5d:d1:46:
9c:c5:cc:de:f9:d1:ff:20:a6:c2:68:01:6e:97:ab:
2f:11:3f:56:85:68:5b:37:13:50:65:2c:e5:5b:16:
65:07:fd:ae:39:2f:ee:93:ca:bb:4d:28:eb:c9:d3:
b3:b7:7f:d4:cc:b2:9c:ad:79:60:8e:1b:7d:fa:df:
b5:e2:4f:8b:04:20:14:e6:60:ce:1e:8b:70:ab:40:
2a:d2:ab:bc:6a:c9:bb:23:4e:a9:ec:00:1b:63:01:
96:c2:33:93:2f:a3:6c:8d:73:43:a6:17:07:92:f1:
08:73:b8:ab:13:38:fc:d2:21:cf:79:b3:1d:d6:9b:
83:98:3a:e0:76:cd:63:68:a1:57:59:58:d4:a1:c9:
61:65:b6:5a:7d:04:7a:ea:de:a8:af:95:b9:29:2a:
0a:e9:33:cf:3f:3a:c0:64:af:8c:a1:48:58:1a:3c:
a1:18:61:b3:56:b8:47:4b:5f:dd:76:db:2b:fa:c4:
29:80:93:c7:38:0f:32:b7:a1:7b:93:ca:8e:4d:d9:
be:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:7D:2B:BD:92:93:29:53:65:0A:7F:29:01:6C:0A:56:CA:2F:DD:C6
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/BH0rvZKTKVNlCn8pAWwKVsov3cY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.243.122.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:06:49:b3:dc:a0:89:c7:38:ca:51:95:08:00:72:1f:3a:d4:
c5:24:0f:df:05:fd:30:d5:36:8d:7f:87:4f:ac:9c:f2:40:82:
f1:87:36:e3:07:e6:29:06:19:0f:7c:a8:22:6a:82:aa:48:4c:
e6:1a:93:a6:16:b8:36:88:d9:8f:ae:4d:b1:0d:5f:1f:2b:2a:
ee:51:84:7c:75:29:0c:b4:f3:9b:b0:99:46:5a:1e:9b:a1:dc:
f6:3a:71:27:7d:2e:db:7b:ea:d9:68:f6:44:82:d6:5a:58:df:
38:47:b7:7c:2e:e4:d5:de:ed:e8:61:b1:b2:b6:f1:e8:07:c5:
c4:c6:71:34:ba:a0:22:87:45:72:0f:54:59:cd:ad:b7:f2:c9:
2e:e2:8d:e6:24:e1:82:57:fa:cf:2b:d0:3c:6e:f1:85:24:7e:
be:a6:c8:4e:9a:48:df:30:8a:f2:73:e4:8e:84:3e:a5:94:4b:
88:8d:68:5c:3d:7c:9f:98:5e:1c:bd:ad:61:3b:b1:c5:35:18:
2d:28:7e:a8:38:b7:0b:04:5d:8c:a0:7c:0b:54:c7:f3:00:e2:
75:d8:ad:74:99:db:27:89:1b:be:a6:f3:b4:05:84:47:ee:8d:
40:f5:ba:5e:67:71:a1:86:4d:30:d8:7d:a3:2a:51:64:d8:04:
7d:23:0e:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:24:52 2025 by rpki-client