Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/7e184c-79f0-44a1-8898-01a3d82835a5/1/U-jaI5ijE_Laobe0CzDZG8htUgE.roa
File: U-jaI5ijE_Laobe0CzDZG8htUgE.roa (raw, json)
Hash identifier: IYvxhvaIsLVr+p1oHKhNjA4l/aQEKkd9tkzdqNRNGMs=
Subject key identifier: 53:E8:DA:23:98:A3:13:F2:DA:A1:B7:B4:0B:30:D9:1B:C8:6D:52:01
Certificate issuer: /CN=678ecfed974d5610812bd46c085885e179280666
Certificate serial: 08F59FF7
Authority key identifier: 67:8E:CF:ED:97:4D:56:10:81:2B:D4:6C:08:58:85:E1:79:28:06:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z47P7ZdNVhCBK9RsCFiF4XkoBmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/7e184c-79f0-44a1-8898-01a3d82835a5/1/U-jaI5ijE_Laobe0CzDZG8htUgE.roa
Signing time: Sat 01 Jan 2022 15:04:17 +0000
ROA not before: Sat 01 Jan 2022 15:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 2.56.60.0/24 maxlen: 24
2.56.61.0/24 maxlen: 24
2.56.62.0/24 maxlen: 24
2.56.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150314999 (0x8f59ff7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=678ecfed974d5610812bd46c085885e179280666
Validity
Not Before: Jan 1 15:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53e8da2398a313f2daa1b7b40b30d91bc86d5201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:32:b6:7c:d6:a9:5f:cf:f6:cb:20:33:72:ff:
9f:97:9f:5c:ab:a1:d4:fb:3f:af:b2:04:06:f4:1f:
49:99:d1:f8:d3:00:63:6c:e3:3c:c9:04:25:a1:20:
4e:42:a4:3b:e5:de:61:93:0b:4d:1a:bb:0c:de:a2:
07:87:bf:33:3d:0b:12:ee:81:a9:8e:b7:ee:22:bc:
56:d1:fe:f6:42:98:bc:f7:a2:45:c5:cd:40:5c:47:
5c:78:d8:8e:21:e0:93:c0:a5:ff:17:a8:f8:b0:34:
2c:ae:22:ce:cd:c6:06:4b:17:17:da:7e:b0:ce:00:
95:15:a0:19:17:85:25:a2:3a:fc:3b:f2:e4:dc:0c:
02:07:62:7a:a5:85:e3:c5:0b:75:bf:de:b8:6c:51:
5b:3e:fd:59:1d:d5:a2:6a:59:3d:24:31:00:3e:fc:
22:04:30:65:43:7f:ae:d3:95:fb:14:a5:2d:a9:dd:
b3:2d:99:7f:04:9e:3a:0c:9e:62:b3:eb:73:85:a7:
dd:65:1d:f9:81:a5:62:9a:3c:ef:34:01:74:20:9d:
6f:8c:ee:fb:ed:90:89:7a:02:0f:ba:0a:fe:ac:4b:
e9:4c:c8:35:a1:28:5a:5e:16:55:11:40:a9:cb:78:
ba:14:fb:43:1d:d5:a9:f9:2e:e9:90:e2:77:46:71:
43:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E8:DA:23:98:A3:13:F2:DA:A1:B7:B4:0B:30:D9:1B:C8:6D:52:01
X509v3 Authority Key Identifier:
keyid:67:8E:CF:ED:97:4D:56:10:81:2B:D4:6C:08:58:85:E1:79:28:06:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z47P7ZdNVhCBK9RsCFiF4XkoBmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7e184c-79f0-44a1-8898-01a3d82835a5/1/U-jaI5ijE_Laobe0CzDZG8htUgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7e184c-79f0-44a1-8898-01a3d82835a5/1/Z47P7ZdNVhCBK9RsCFiF4XkoBmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.60.0/22
Signature Algorithm: sha256WithRSAEncryption
d8:ea:07:8b:35:09:16:5b:7b:6f:34:a1:a2:fa:84:fa:21:d6:
ec:9f:a3:a6:0b:05:28:69:9d:bc:63:05:72:e5:98:93:ba:1f:
b3:98:0a:bb:e9:fa:26:33:a9:25:13:16:d3:41:e0:43:d2:ed:
7c:12:dd:72:b8:0d:f9:d9:11:58:fc:1f:18:08:e8:8f:13:28:
be:03:92:12:3c:4e:de:b5:44:09:48:e2:d6:b3:c5:84:87:20:
70:f0:fe:6c:46:e6:ba:f8:16:fb:72:07:91:35:84:29:70:4d:
5b:31:38:89:b5:4b:ca:39:bc:70:9c:c2:69:cf:67:45:68:2c:
41:e0:c6:1f:37:e1:54:c0:11:41:0d:28:a1:36:0d:6c:fa:e3:
b0:71:f8:83:2c:b7:dc:bb:4e:6a:09:22:50:d2:a4:bc:db:da:
42:f8:53:c1:46:57:92:c5:70:1a:f3:cb:08:d7:02:a8:9a:85:
2e:e3:d3:f1:51:46:05:a6:63:9b:0d:20:6a:2b:21:cc:0a:c1:
a4:6e:6d:3c:94:2d:a1:fa:ff:ae:8e:66:03:78:88:85:f2:0f:
6d:38:06:98:bf:39:a6:cc:bd:fe:37:8c:3c:ce:69:7b:50:3e:
1b:02:2e:b3:df:40:27:6b:7d:46:22:f4:7e:04:3b:44:47:c9:
3a:20:08:4b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECPWf9zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NzhlY2ZlZDk3NGQ1NjEwODEyYmQ0NmMwODU4ODVlMTc5MjgwNjY2MB4XDTIyMDEw
MTE1MDQxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTNlOGRhMjM5OGEz
MTNmMmRhYTFiN2I0MGIzMGQ5MWJjODZkNTIwMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMkytnzWqV/P9ssgM3L/n5efXKuh1Ps/r7IEBvQfSZnR+NMA
Y2zjPMkEJaEgTkKkO+XeYZMLTRq7DN6iB4e/Mz0LEu6BqY637iK8VtH+9kKYvPei
RcXNQFxHXHjYjiHgk8Cl/xeo+LA0LK4izs3GBksXF9p+sM4AlRWgGReFJaI6/Dvy
5NwMAgdieqWF48ULdb/euGxRWz79WR3VompZPSQxAD78IgQwZUN/rtOV+xSlLand
sy2ZfwSeOgyeYrPrc4Wn3WUd+YGlYpo87zQBdCCdb4zu++2QiXoCD7oK/qxL6UzI
NaEoWl4WVRFAqct4uhT7Qx3Vqfku6ZDid0ZxQ4kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRT6NojmKMT8tqht7QLMNkbyG1SATAfBgNVHSMEGDAWgBRnjs/tl01WEIEr
1GwIWIXheSgGZjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1o0N1A3WmROVmhDQks5UnNDRmlGNFhrb0JtWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvN2UxODRjLTc5ZjAtNDRhMS04ODk4LTAxYTNkODI4MzVhNS8x
L1UtamFJNWlqRV9MYW9iZTBDekRaRzhodFVnRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
N2UxODRjLTc5ZjAtNDRhMS04ODk4LTAxYTNkODI4MzVhNS8xL1o0N1A3WmROVmhD
Qks5UnNDRmlGNFhrb0JtWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgI4PDANBgkqhkiG9w0BAQsFAAOC
AQEA2OoHizUJFlt7bzShovqE+iHW7J+jpgsFKGmdvGMFcuWYk7ofs5gKu+n6JjOp
JRMW00HgQ9LtfBLdcrgN+dkRWPwfGAjojxMovgOSEjxO3rVECUji1rPFhIcgcPD+
bEbmuvgW+3IHkTWEKXBNWzE4ibVLyjm8cJzCac9nRWgsQeDGHzfhVMARQQ0ooTYN
bPrjsHH4gyy33LtOagkiUNKkvNvaQvhTwUZXksVwGvPLCNcCqJqFLuPT8VFGBaZj
mw0gaishzArBpG5tPJQtofr/ro5mA3iIhfIPbTgGmL85psy9/jeMPM5pe1A+GwIu
s99AJ2t9RiL0fgQ7REfJOiAISw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:08:57 2025 by rpki-client