Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/653e8b-1f78-4c37-b254-73676526053b/1/HYGzGwzZzQ0DAUnSGMk54b-2z0k.roa
File: HYGzGwzZzQ0DAUnSGMk54b-2z0k.roa (raw, json)
Hash identifier: GIpdp0HuKnEs2qpbF1X/g+8O1n9ruuPcZuxuRXZ90O8=
Subject key identifier: 1D:81:B3:1B:0C:D9:CD:0D:03:01:49:D2:18:C9:39:E1:BF:B6:CF:49
Certificate issuer: /CN=af3b13fc9a60400172561b0a520df16cb251cf95
Certificate serial: 7BABB4
Authority key identifier: AF:3B:13:FC:9A:60:40:01:72:56:1B:0A:52:0D:F1:6C:B2:51:CF:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzsT_JpgQAFyVhsKUg3xbLJRz5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/653e8b-1f78-4c37-b254-73676526053b/1/HYGzGwzZzQ0DAUnSGMk54b-2z0k.roa
Signing time: Sat 01 Jan 2022 02:58:35 +0000
ROA not before: Sat 01 Jan 2022 02:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 212.23.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8104884 (0x7babb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3b13fc9a60400172561b0a520df16cb251cf95
Validity
Not Before: Jan 1 02:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d81b31b0cd9cd0d030149d218c939e1bfb6cf49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2c:86:c5:fe:20:a6:82:20:96:6a:99:58:d8:
e1:08:0a:1c:12:49:9e:68:99:99:73:c8:bf:e9:9a:
95:c8:0d:fd:63:b9:e5:d6:eb:96:bc:55:24:f0:32:
e0:fe:37:f0:89:bf:31:5d:e3:f7:2e:64:dd:1e:29:
15:b0:00:42:b8:c5:71:02:32:28:3e:1b:da:94:80:
29:37:32:77:fe:65:ee:42:c3:35:a8:40:67:5f:fe:
34:53:56:b2:8d:f1:2e:16:ff:71:ea:49:f7:ab:f0:
8f:9b:12:da:74:26:d9:d0:0a:13:29:f0:a1:5b:a2:
f5:25:0a:01:d9:dd:09:87:5b:17:31:57:51:ef:02:
ba:33:33:a1:3d:f0:c4:1b:58:81:c4:bc:fb:f9:49:
fc:3c:6c:16:66:55:fa:bf:4a:8f:55:ff:cd:28:f3:
df:fe:23:04:e3:7a:30:0b:60:2b:c0:19:34:71:72:
75:1e:1d:5b:8a:e0:68:76:90:3c:10:8b:ab:8a:51:
57:6a:37:00:66:70:d0:da:68:c3:1c:9c:34:28:33:
37:54:9f:9e:72:69:f0:59:4a:fb:dd:1c:1f:ad:fa:
94:ed:ff:df:ae:86:ba:78:69:3e:57:7c:0a:a9:70:
7e:d5:3c:ab:72:20:9f:06:09:b8:16:8a:fe:34:60:
23:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:81:B3:1B:0C:D9:CD:0D:03:01:49:D2:18:C9:39:E1:BF:B6:CF:49
X509v3 Authority Key Identifier:
keyid:AF:3B:13:FC:9A:60:40:01:72:56:1B:0A:52:0D:F1:6C:B2:51:CF:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzsT_JpgQAFyVhsKUg3xbLJRz5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/653e8b-1f78-4c37-b254-73676526053b/1/HYGzGwzZzQ0DAUnSGMk54b-2z0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/653e8b-1f78-4c37-b254-73676526053b/1/rzsT_JpgQAFyVhsKUg3xbLJRz5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.201.0/24
Signature Algorithm: sha256WithRSAEncryption
94:b1:15:27:b3:39:de:4b:23:71:f6:e9:42:ff:15:8b:c1:c1:
27:85:a7:1d:ee:97:48:65:ea:97:82:97:9f:55:c9:3c:cd:b3:
ba:1f:ae:82:a4:bc:db:6c:be:61:0a:84:82:61:0c:c4:af:3a:
0c:a6:d8:e0:37:17:5a:47:e6:1e:f5:62:2b:96:a1:74:fc:60:
30:c9:1b:77:41:11:a7:1a:4f:5b:2e:de:4d:4e:e1:33:56:8f:
77:f1:94:1d:2e:4e:a8:3b:94:47:cc:e2:d9:3d:86:8b:81:9e:
da:0c:ff:ec:eb:25:95:da:2c:6b:37:c0:1c:9f:03:00:f7:75:
e0:48:67:84:bc:6d:83:4f:18:6b:64:3d:cd:78:af:fa:a6:01:
75:21:59:9d:73:79:78:d7:78:9d:cd:12:08:5c:b7:4d:86:ca:
eb:ac:05:a5:bd:be:87:0b:c1:93:dd:a8:8c:e1:6b:76:b5:50:
86:17:63:e5:c8:71:38:c5:c1:d1:b6:1e:e4:b5:bd:25:59:e3:
2c:3c:78:4a:16:1a:78:e9:07:c7:84:ee:f8:59:6a:b7:be:bb:
af:17:b1:87:26:fa:e3:b5:3c:12:58:7e:84:df:54:65:21:f3:
1d:23:fa:08:cd:0c:5e:21:bc:e9:2b:df:d7:d3:c0:c3:67:ee:
78:35:8d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:41:07 2025 by rpki-client