Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/STtVn-gDRJE5WV1Q6Rrxy7cywjM.roa
File: STtVn-gDRJE5WV1Q6Rrxy7cywjM.roa (raw, json)
Hash identifier: tDPhS5VOmMzGduf5roX1wRW7mpE0G5ZdLsmnbFNdkT0=
Subject key identifier: 49:3B:55:9F:E8:03:44:91:39:59:5D:50:E9:1A:F1:CB:B7:32:C2:33
Certificate issuer: /CN=74733e08ddc25367be6f3ad8a6cefd18e75eed82
Certificate serial: 018572B439C1FD9497832097A261DA387E74
Authority key identifier: 74:73:3E:08:DD:C2:53:67:BE:6F:3A:D8:A6:CE:FD:18:E7:5E:ED:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHM-CN3CU2e-bzrYps79GOde7YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/STtVn-gDRJE5WV1Q6Rrxy7cywjM.roa
Signing time: Mon 02 Jan 2023 13:38:11 +0000
ROA not before: Mon 02 Jan 2023 13:38:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205124
IP address blocks: 149.62.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:39:c1:fd:94:97:83:20:97:a2:61:da:38:7e:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74733e08ddc25367be6f3ad8a6cefd18e75eed82
Validity
Not Before: Jan 2 13:38:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=493b559fe803449139595d50e91af1cbb732c233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:00:a4:1a:81:ca:6b:f7:c0:8e:f5:9d:f8:ca:
36:ce:94:0c:28:11:f6:ea:9a:d5:fa:8b:a5:f1:16:
6f:54:0d:e2:8a:8a:a1:6e:f0:2a:60:9d:30:1d:61:
ea:54:62:ba:03:11:3e:1a:ef:27:b8:05:f1:84:24:
00:4b:c5:de:8a:78:6b:ea:46:11:ba:1f:ac:75:d2:
d7:ab:27:50:c2:36:b9:c7:70:95:9d:1e:2e:e4:d6:
1b:de:aa:df:f9:d4:1e:7c:fd:b8:42:8f:2d:64:24:
bd:55:ee:d5:8e:73:c5:fb:33:6c:af:ef:e3:09:8d:
83:8a:de:42:32:12:e1:f2:bf:cd:d3:e0:73:f1:6f:
d8:85:b5:70:5b:fa:ab:7d:8b:f4:dd:4a:38:5b:5d:
9f:6a:d4:50:45:46:1b:43:79:89:58:86:ca:97:85:
42:35:39:60:1a:7a:ab:42:64:0d:83:4b:bd:37:2c:
f3:aa:00:f3:a1:7c:74:2b:02:d6:49:2f:a3:4c:9b:
52:16:f3:23:01:d6:3a:51:bd:d8:42:0b:31:66:e0:
ad:0d:45:f7:2a:d8:b6:20:4b:a9:80:52:92:c0:f9:
79:f9:4d:01:b8:37:73:36:62:40:04:e8:62:b4:4f:
d8:56:af:39:15:e6:dc:98:67:07:df:7d:ae:4b:37:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3B:55:9F:E8:03:44:91:39:59:5D:50:E9:1A:F1:CB:B7:32:C2:33
X509v3 Authority Key Identifier:
keyid:74:73:3E:08:DD:C2:53:67:BE:6F:3A:D8:A6:CE:FD:18:E7:5E:ED:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHM-CN3CU2e-bzrYps79GOde7YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/STtVn-gDRJE5WV1Q6Rrxy7cywjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/dHM-CN3CU2e-bzrYps79GOde7YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.62.32.0/22
Signature Algorithm: sha256WithRSAEncryption
39:d5:27:61:fb:8d:1d:7e:11:2d:ac:5b:3f:15:3d:4e:3f:2a:
46:97:b7:ea:82:8c:e9:67:2d:48:48:9b:b0:60:f1:81:51:70:
87:ba:42:71:96:54:e9:ae:25:05:68:71:0c:ce:fa:2c:1b:db:
2f:54:3b:1d:f7:d2:92:56:24:10:f1:62:7b:78:08:65:a4:37:
5a:fe:3a:c8:b3:ad:8c:e8:8b:83:c1:58:4f:90:39:98:dc:68:
3b:b4:14:24:24:7f:7b:b6:28:b5:c1:52:b2:dc:50:89:ca:ae:
59:8c:1e:b8:87:eb:58:5b:f2:62:68:f4:2f:18:23:37:51:cd:
5e:cf:87:1e:2c:b6:18:14:c4:ff:fa:db:cc:09:90:90:28:8b:
5c:59:a3:32:11:d8:09:df:63:f9:c5:92:50:e5:af:7e:32:ad:
bc:6e:3b:4b:aa:0b:71:e3:dd:51:34:19:0d:7a:79:7d:16:70:
37:4b:32:70:27:70:94:25:ce:ed:ee:04:c3:8b:68:43:b2:95:
b8:0c:73:d6:5f:ba:66:9c:12:fd:b3:d6:bc:f9:f1:89:4e:f3:
11:63:4c:c3:80:e8:fb:60:04:7f:3d:76:a5:86:36:0a:4a:ee:
89:06:58:fe:8f:5a:19:94:19:e1:d7:a5:74:f5:3c:3b:84:4e:
c8:c3:b3:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVytDnB/ZSXgyCXomHaOH50MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NzMzZTA4ZGRjMjUzNjdiZTZmM2FkOGE2Y2VmZDE4ZTc1
ZWVkODIwHhcNMjMwMTAyMTMzODExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTNiNTU5ZmU4MDM0NDkxMzk1OTVkNTBlOTFhZjFjYmI3MzJjMjMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmACkGoHKa/fAjvWd+Mo2zpQMKBH2
6prV+oul8RZvVA3iioqhbvAqYJ0wHWHqVGK6AxE+Gu8nuAXxhCQAS8Xeinhr6kYR
uh+sddLXqydQwja5x3CVnR4u5NYb3qrf+dQefP24Qo8tZCS9Ve7VjnPF+zNsr+/j
CY2Dit5CMhLh8r/N0+Bz8W/YhbVwW/qrfYv03Uo4W12fatRQRUYbQ3mJWIbKl4VC
NTlgGnqrQmQNg0u9NyzzqgDzoXx0KwLWSS+jTJtSFvMjAdY6Ub3YQgsxZuCtDUX3
Kti2IEupgFKSwPl5+U0BuDdzNmJABOhitE/YVq85FebcmGcH332uSzewfwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEk7VZ/oA0SROVldUOka8cu3MsIzMB8GA1UdIwQY
MBaAFHRzPgjdwlNnvm862KbO/RjnXu2CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEhNLUNOM0NVMmUtYnpyWXBzNzlHT2RlN1lJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83ZjFjODktNmFiMy00Mjg1LTk4ZWIt
YzkxOGUyZjcyOWFhLzEvU1R0Vm4tZ0RSSkU1V1YxUTZScnh5N2N5d2pNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83ZjFjODktNmFiMy00Mjg1LTk4ZWItYzkxOGUyZjcyOWFh
LzEvZEhNLUNOM0NVMmUtYnpyWXBzNzlHT2RlN1lJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClT4gMA0G
CSqGSIb3DQEBCwUAA4IBAQA51Sdh+40dfhEtrFs/FT1OPypGl7fqgozpZy1ISJuw
YPGBUXCHukJxllTpriUFaHEMzvosG9svVDsd99KSViQQ8WJ7eAhlpDda/jrIs62M
6IuDwVhPkDmY3Gg7tBQkJH97tii1wVKy3FCJyq5ZjB64h+tYW/JiaPQvGCM3Uc1e
z4ceLLYYFMT/+tvMCZCQKItcWaMyEdgJ32P5xZJQ5a9+Mq28bjtLqgtx491RNBkN
enl9FnA3SzJwJ3CUJc7t7gTDi2hDspW4DHPWX7pmnBL9s9a8+fGJTvMRY0zDgOj7
YAR/PXalhjYKSu6JBlj+j1oZlBnh16V09Tw7hE7Iw7PZ
-----END CERTIFICATE-----
Generated at Wed Apr 16 06:44:12 2025 by rpki-client