Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/BUdHhATwY3C7X-LY6N5wDMOJfZs.roa
File: BUdHhATwY3C7X-LY6N5wDMOJfZs.roa (raw, json)
Hash identifier: hawJU0FKypjgrpPVrTt5yVcJDnzBjPzVzDo8GcNUZM0=
Subject key identifier: 05:47:47:84:04:F0:63:70:BB:5F:E2:D8:E8:DE:70:0C:C3:89:7D:9B
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 018610EE36311F361C384DEC0929AC12651B
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/BUdHhATwY3C7X-LY6N5wDMOJfZs.roa
Signing time: Thu 02 Feb 2023 07:01:32 +0000
ROA not before: Thu 02 Feb 2023 07:01:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200815
IP address blocks: 212.243.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:10:ee:36:31:1f:36:1c:38:4d:ec:09:29:ac:12:65:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Feb 2 07:01:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0547478404f06370bb5fe2d8e8de700cc3897d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c7:3f:b7:04:58:65:cf:de:48:4f:e8:0c:b9:
af:60:09:29:62:0d:37:8a:24:89:87:cb:22:0d:4d:
60:78:9d:3b:63:02:0c:41:e0:c9:28:fc:6a:40:bf:
77:65:d2:5d:2b:94:23:59:64:67:d1:38:26:04:dc:
d8:83:d5:d3:fc:e6:b3:51:2a:ae:6e:5b:1f:2b:39:
2e:ad:08:f1:c6:4b:00:26:79:8c:16:0c:1b:f7:bd:
52:cd:6c:57:23:e8:b9:03:4d:5c:b1:b3:c3:d1:45:
44:25:7a:58:67:12:b7:4d:33:7f:43:31:0a:6a:15:
71:d4:de:4b:f3:fc:fe:74:32:13:47:41:01:1d:c9:
53:65:ad:1c:f0:13:95:b7:d5:98:ea:95:37:5a:c6:
2f:0c:b4:1e:2b:b6:b1:cb:da:74:79:9d:3a:89:66:
69:fc:1b:60:ba:d0:7e:39:c6:ae:3f:7d:e4:2e:2f:
d3:34:37:e8:a3:9e:1a:1b:15:1b:0f:8e:27:01:d2:
29:87:ef:71:58:25:22:b0:1a:6b:41:cc:8e:34:4d:
34:2b:29:21:7f:a1:56:0a:54:13:ad:59:97:2b:9b:
6c:87:90:6a:f3:88:b7:b4:fc:5b:35:72:5f:bb:4e:
b3:f6:63:f0:b6:78:d4:fb:60:92:30:17:d0:ca:3d:
ca:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:47:47:84:04:F0:63:70:BB:5F:E2:D8:E8:DE:70:0C:C3:89:7D:9B
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/BUdHhATwY3C7X-LY6N5wDMOJfZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.243.66.0/24
Signature Algorithm: sha256WithRSAEncryption
61:e5:82:8c:f0:2d:c9:ee:8e:86:2c:7b:6f:59:c2:07:b2:c0:
4d:ea:5c:72:75:f6:0c:af:47:de:fa:8c:e0:e5:e0:88:00:4d:
0b:bf:2d:f7:fc:e2:34:35:08:cf:98:31:3f:cd:8b:4c:6e:f7:
f5:5a:48:54:95:df:26:f6:c1:1f:91:45:23:60:e0:f0:24:93:
2a:54:59:95:88:05:d4:44:21:ac:a8:df:fa:bf:6f:b0:0f:a7:
ae:a2:b3:85:20:25:22:0f:92:70:70:dc:2b:80:5e:38:49:5f:
e7:8d:cb:77:6d:eb:c8:55:50:7c:48:09:b3:d9:69:8f:32:88:
23:d5:f2:d3:dd:2b:76:46:81:81:64:87:39:b5:6d:ae:66:02:
9d:34:68:ab:c9:1d:a6:c6:ca:8e:fa:ac:5d:05:92:b2:ce:07:
5f:67:36:6e:2f:a8:48:c8:f9:38:ec:f9:05:d1:a0:f4:9a:6d:
58:8f:8f:c8:62:69:b1:ed:3a:bd:65:05:49:b8:aa:b4:ca:75:
d3:18:8a:39:be:08:cc:83:bc:f7:1d:d9:2e:b6:b5:d3:8b:47:
80:c0:3d:11:f5:77:7f:d6:31:c6:8d:aa:7f:87:59:3c:6e:b4:
1e:bc:3c:8b:3c:c0:60:9b:57:b4:b9:9c:5c:2b:dc:d3:e5:bf:
0f:3a:19:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:34:55 2025 by rpki-client