Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/q4MJmbv0rPhu3KiyT7yh8d-fZWY.roa
File: q4MJmbv0rPhu3KiyT7yh8d-fZWY.roa (raw, json)
Hash identifier: FS24BD1qqmnHt0fWABZDLSRmhHe/4xEhBL3FhzuNQzc=
Subject key identifier: AB:83:09:99:BB:F4:AC:F8:6E:DC:A8:B2:4F:BC:A1:F1:DF:9F:65:66
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 01821F2DAC5D32167542CA6CD07B51834410
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/q4MJmbv0rPhu3KiyT7yh8d-fZWY.roa
Signing time: Thu 21 Jul 2022 05:14:23 +0000
ROA not before: Thu 21 Jul 2022 05:14:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 212.113.116.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:2d:ac:5d:32:16:75:42:ca:6c:d0:7b:51:83:44:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Jul 21 05:14:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab830999bbf4acf86edca8b24fbca1f1df9f6566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a2:eb:17:10:a1:31:17:c5:e8:7a:79:ce:d6:
2f:bc:a8:8e:fa:30:23:0d:8b:aa:57:a1:63:1c:5c:
9c:67:4c:12:c2:16:25:bd:c0:5f:e8:2a:49:5e:0d:
2f:2d:6c:e3:73:9f:3e:d6:d8:39:16:17:f8:b2:9b:
aa:54:3f:30:71:c4:e1:c6:54:5b:fe:5a:53:b8:05:
f9:5e:71:4e:8a:59:67:08:02:1d:5f:47:58:e4:56:
e0:77:59:79:f0:2e:8c:62:45:35:74:f9:4a:ee:3d:
d8:1b:4b:50:d0:a1:90:98:79:eb:d7:91:cc:0a:3d:
c9:1b:a9:03:c5:cf:06:1c:79:9d:f0:ba:fa:89:fe:
13:17:4e:13:f1:6f:20:74:fa:09:54:40:15:89:7c:
a3:fe:7b:fd:2a:a9:4b:3d:df:33:36:9a:23:f6:25:
00:a4:16:b0:64:b0:b4:77:77:3f:58:53:83:1b:ed:
33:1c:b5:cc:83:24:7f:f1:52:a6:d1:19:6b:23:86:
d3:95:1c:81:b4:0e:0d:f8:91:98:67:b0:bb:38:9e:
02:95:92:52:b8:df:ab:b0:49:0f:5f:b5:b2:88:b0:
55:5d:27:d8:38:86:af:ed:06:42:fd:4f:34:20:b1:
4a:8b:c8:1b:31:8e:e2:26:47:96:54:f1:26:b5:1d:
3c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:83:09:99:BB:F4:AC:F8:6E:DC:A8:B2:4F:BC:A1:F1:DF:9F:65:66
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/q4MJmbv0rPhu3KiyT7yh8d-fZWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.116.0/22
Signature Algorithm: sha256WithRSAEncryption
34:f6:da:0a:dc:6c:ce:e0:3c:12:0c:e1:23:df:c9:0e:f2:84:
ef:9d:34:74:a6:28:bb:70:e0:35:a9:6b:0f:d5:33:5c:5b:40:
51:fb:dc:4b:96:5b:c6:9e:91:5a:69:08:9f:9d:b0:39:4f:1f:
d5:97:59:18:6c:57:76:6f:62:82:aa:cf:a5:4e:60:f9:01:b8:
3b:6a:f5:f4:c6:79:4b:b7:ef:f8:c8:29:42:d2:92:72:22:db:
ee:c2:8e:a9:bf:6d:62:9b:76:e4:c6:a9:9e:98:2a:75:46:9c:
4c:c3:36:7b:13:21:b7:50:51:ed:f3:4a:81:06:7b:53:af:22:
8f:18:6c:12:eb:1a:4f:b7:a7:80:a8:1d:78:54:68:eb:bd:43:
5a:75:45:ec:82:60:73:bc:0c:d5:f7:f5:5f:c9:c1:ea:d2:46:
81:11:70:6f:e4:c0:f3:ce:f0:73:a7:f5:47:75:26:7c:e0:81:
b4:7c:ce:34:ab:23:8b:13:ba:8b:20:af:f0:ab:12:c0:80:e1:
0a:ba:e1:cc:64:a8:10:5d:a8:de:0b:74:a4:1a:bf:10:1c:4b:
ac:5b:06:da:3e:97:33:cb:91:66:47:2d:c6:c9:1a:8a:cb:d1:
0d:53:b3:3f:37:fa:d1:27:58:e4:b5:69:f9:c3:41:e8:55:b2:
66:a7:a1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:16 2025 by rpki-client