Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/jEKReqto59nG8AZul_-pFIk0c2A.roa
File: jEKReqto59nG8AZul_-pFIk0c2A.roa (raw, json)
Hash identifier: pCnnyeB5jzENRzm+J9EyPzGI/iGhTmXt1MKvwk/ISm8=
Subject key identifier: 8C:42:91:7A:AB:68:E7:D9:C6:F0:06:6E:97:FF:A9:14:89:34:73:60
Certificate issuer: /CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Certificate serial: 01856FD539473AE9183490C7ADD7073DEA7C
Authority key identifier: 46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/jEKReqto59nG8AZul_-pFIk0c2A.roa
Signing time: Mon 02 Jan 2023 00:15:22 +0000
ROA not before: Mon 02 Jan 2023 00:15:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59985
IP address blocks: 185.63.68.0/23 maxlen: 23
2a04:f380::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:39:47:3a:e9:18:34:90:c7:ad:d7:07:3d:ea:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Validity
Not Before: Jan 2 00:15:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c42917aab68e7d9c6f0066e97ffa91489347360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2c:e0:dd:f7:73:87:5f:5e:97:6d:db:8a:33:
7d:13:14:6c:fa:94:ac:24:a1:fd:62:20:cc:98:77:
e4:1a:69:bf:b1:77:ab:75:c6:3f:22:4e:65:18:d5:
6c:ea:17:30:18:54:c9:20:ba:04:30:32:de:1a:90:
fe:1c:3f:d9:23:25:65:dd:46:cf:94:e7:b2:66:56:
4c:16:f0:4c:87:18:08:80:db:b0:d1:f3:d9:6c:83:
16:72:45:b2:e5:9d:8c:ea:0c:7f:f7:46:a4:d9:c2:
91:9c:ae:35:36:0e:e5:4b:ed:08:0d:f1:17:40:48:
69:2f:4c:00:ac:ad:ee:5b:c4:94:64:cf:cc:47:bd:
90:d9:76:53:83:f0:d5:f6:9d:1b:54:bd:48:72:d7:
f9:1b:14:9b:e5:bf:0a:f2:c3:9c:9e:8c:8f:88:e2:
71:9d:54:ed:c7:b9:51:af:c3:03:d4:0b:c4:27:3d:
01:1e:65:9b:f8:d2:99:3d:3a:aa:88:0c:a5:e8:01:
45:27:61:e8:8e:bb:c2:5a:34:14:8b:14:9c:07:51:
60:70:39:29:4b:60:90:7d:1d:67:22:07:ce:87:17:
d3:b7:0e:c4:6c:85:af:56:49:95:e0:1b:46:c8:d6:
de:f7:21:e5:86:a7:c4:a3:f6:b8:b8:53:c5:f6:de:
b3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:42:91:7A:AB:68:E7:D9:C6:F0:06:6E:97:FF:A9:14:89:34:73:60
X509v3 Authority Key Identifier:
keyid:46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/jEKReqto59nG8AZul_-pFIk0c2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.68.0/23
IPv6:
2a04:f380::/32
Signature Algorithm: sha256WithRSAEncryption
44:59:d2:11:c7:84:fe:33:1a:4e:eb:70:9e:73:c6:e4:93:c2:
26:0e:68:9b:6b:08:7d:b2:b2:91:20:b5:58:99:21:b8:07:01:
ba:20:54:9e:d0:41:d9:94:57:a3:23:32:fd:22:03:81:e5:ba:
6b:47:5e:e8:12:47:6d:5d:2b:a6:5a:ef:df:95:2c:4f:d8:8f:
5c:2f:ce:7a:42:28:8a:dc:96:c7:d4:24:16:ba:69:02:fd:13:
95:bb:24:a5:8d:50:75:6f:a9:32:6f:7a:4f:69:c6:29:62:b5:
14:ac:ac:9a:ea:e1:fb:dd:20:02:d0:b6:51:68:3b:ae:fd:bc:
e5:e1:5c:d4:81:2d:5b:7e:4f:b1:18:72:51:84:e2:8d:8a:a0:
2b:32:98:86:4a:d6:80:30:ba:00:f4:fc:9d:0d:42:e8:60:8e:
e6:1d:51:85:44:c6:13:36:4f:e3:24:aa:c7:92:1c:95:a2:fd:
d6:cc:19:e7:24:14:22:da:57:f6:2e:6b:4e:fc:aa:dc:8b:32:
e6:ce:38:6c:7e:28:30:ac:8d:af:c4:6c:e3:a2:0a:0e:a6:4e:
3b:85:96:40:47:10:c0:b3:12:c8:ed:16:9b:c0:76:05:02:6a:
f5:70:51:24:4d:b0:f4:e7:c3:3e:6b:f4:61:6a:3a:83:f5:ea:
26:d4:8b:94
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVv1TlHOukYNJDHrdcHPep8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NDUyOGQ5MDgwYzY2NWRiMDU1MWQ4YWQ4YjBmNzFmN2Ji
NzY5OTYwHhcNMjMwMTAyMDAxNTIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzQyOTE3YWFiNjhlN2Q5YzZmMDA2NmU5N2ZmYTkxNDg5MzQ3MzYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvizg3fdzh19el23bijN9ExRs+pSs
JKH9YiDMmHfkGmm/sXerdcY/Ik5lGNVs6hcwGFTJILoEMDLeGpD+HD/ZIyVl3UbP
lOeyZlZMFvBMhxgIgNuw0fPZbIMWckWy5Z2M6gx/90ak2cKRnK41Ng7lS+0IDfEX
QEhpL0wArK3uW8SUZM/MR72Q2XZTg/DV9p0bVL1Ictf5GxSb5b8K8sOcnoyPiOJx
nVTtx7lRr8MD1AvEJz0BHmWb+NKZPTqqiAyl6AFFJ2HojrvCWjQUixScB1FgcDkp
S2CQfR1nIgfOhxfTtw7EbIWvVkmV4BtGyNbe9yHlhqfEo/a4uFPF9t6z3wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFIxCkXqraOfZxvAGbpf/qRSJNHNgMB8GA1UdIwQY
MBaAFEZFKNkIDGZdsFUditiw9x97t2mWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmtVbzJRZ01abDJ3VlIySzJMRDNIM3UzYVpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC80NTg1MmYtOGZhZS00NDFkLWIxMGMt
MGExYmY1YmYwY2EyLzEvakVLUmVxdG81OW5HOEFadWxfLXBGSWswYzJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC80NTg1MmYtOGZhZS00NDFkLWIxMGMtMGExYmY1YmYwY2Ey
LzEvUmtVbzJRZ01abDJ3VlIySzJMRDNIM3UzYVpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBuT9EMA0E
AgACMAcDBQAqBPOAMA0GCSqGSIb3DQEBCwUAA4IBAQBEWdIRx4T+MxpO63Cec8bk
k8ImDmibawh9srKRILVYmSG4BwG6IFSe0EHZlFejIzL9IgOB5bprR17oEkdtXSum
Wu/flSxP2I9cL856QiiK3JbH1CQWumkC/ROVuySljVB1b6kyb3pPacYpYrUUrKya
6uH73SAC0LZRaDuu/bzl4VzUgS1bfk+xGHJRhOKNiqArMpiGStaAMLoA9PydDULo
YI7mHVGFRMYTNk/jJKrHkhyVov3WzBnnJBQi2lf2LmtO/KrcizLmzjhsfigwrI2v
xGzjogoOpk47hZZARxDAsxLI7RabwHYFAmr1cFEkTbD058M+a/RhajqD9eom1IuU
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:54 2025 by rpki-client