Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/uSMMxWq7RVzh6co444kO-OcjNlM.roa
File: uSMMxWq7RVzh6co444kO-OcjNlM.roa (raw, json)
Hash identifier: 5ccrKSzDHyVqdoFiAD45OEqdTsi1m0lOCoI4KjOHmMQ=
Subject key identifier: B9:23:0C:C5:6A:BB:45:5C:E1:E9:CA:38:E3:89:0E:F8:E7:23:36:53
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 018A2F3ECCCD1AECFF80A869DAD621B27460
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/uSMMxWq7RVzh6co444kO-OcjNlM.roa
Signing time: Sat 26 Aug 2023 00:29:19 +0000
ROA not before: Sat 26 Aug 2023 00:29:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 212.116.226.0/23 maxlen: 24
212.116.243.0/24 maxlen: 24
212.116.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2f:3e:cc:cd:1a:ec:ff:80:a8:69:da:d6:21:b2:74:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Aug 26 00:29:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9230cc56abb455ce1e9ca38e3890ef8e7233653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7b:43:ff:18:bf:89:00:4f:d2:6e:40:52:86:
7b:81:3b:07:3f:25:5d:95:2c:d1:8c:00:40:2d:9d:
48:bb:be:d1:14:1b:e0:34:3f:16:3d:ad:e7:ea:40:
21:73:22:61:c5:0b:f4:8d:de:f7:a6:56:e6:13:49:
35:0a:a9:f7:9a:ec:20:a1:5f:d6:00:ce:82:8c:35:
a8:e0:7b:79:89:5e:4a:4f:bb:08:60:bf:ca:67:83:
fd:01:8a:0b:72:0e:d4:9c:27:8b:07:26:cf:f3:f9:
ce:9b:3f:47:a0:16:93:c8:1e:e0:12:ee:50:90:7c:
2e:d5:22:3f:c5:79:18:be:ee:7e:78:e4:d4:a8:d9:
9c:bc:d6:a1:cf:cc:6f:8d:46:72:42:e0:13:9a:9f:
dd:4d:8c:35:a8:da:98:b6:3e:6c:2b:a8:6d:7a:58:
d4:b7:fc:6a:60:3e:93:42:0b:63:54:82:d0:f2:de:
2f:f3:67:5a:c4:5c:43:a0:ab:b5:77:f7:7e:d6:95:
69:24:8f:48:9c:63:93:10:b9:0f:be:96:f9:fc:8b:
95:b2:29:96:ea:3c:95:0c:3d:c9:f9:98:8b:35:bb:
59:bb:5f:4e:57:30:df:a8:e1:f9:51:a7:10:da:26:
f8:39:b7:a9:b8:a0:ac:0c:77:ab:7b:89:94:1c:fd:
47:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:23:0C:C5:6A:BB:45:5C:E1:E9:CA:38:E3:89:0E:F8:E7:23:36:53
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/uSMMxWq7RVzh6co444kO-OcjNlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.116.226.0/23
212.116.243.0/24
212.116.252.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:25:ac:fe:47:a8:f7:73:2b:62:2a:a0:3a:00:e3:cf:00:b3:
92:76:2d:21:e8:45:ba:db:96:18:cb:d4:12:a3:20:4d:5d:56:
68:17:a3:cf:0c:da:69:8e:04:45:02:fd:54:66:26:d1:5b:2e:
f5:9e:55:65:6f:3b:49:ec:77:23:96:f5:a5:94:29:4c:77:25:
34:f1:e3:a2:a9:91:3a:88:e5:79:55:47:aa:6b:d7:e7:1c:35:
6f:d9:a0:36:86:1b:07:b4:d6:35:fa:63:28:fd:36:2e:eb:b5:
9a:83:f5:19:32:63:1f:81:1f:69:d4:a4:00:79:74:ff:a6:be:
7a:78:fc:fe:77:a8:a0:98:9e:03:6e:2e:39:9e:68:1f:c3:9b:
76:65:97:b8:6d:b2:63:37:5b:8d:28:34:2e:7c:9b:f5:e1:1f:
48:20:d1:04:1b:a9:5c:c6:e7:91:37:e9:d0:dd:5a:6c:f0:3c:
ff:f0:3f:3c:88:6f:5f:0a:a3:1d:2a:fa:0b:46:74:bd:15:e8:
0e:5c:88:e7:89:d9:22:80:3c:ca:b7:68:de:49:c9:c0:c4:58:
ad:31:07:7b:10:16:fc:01:6a:76:ef:95:0d:2a:93:fc:6d:ed:
6c:93:c3:66:8f:96:10:85:ff:24:d5:18:1c:f5:52:8b:3b:9f:
56:3d:a4:06
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYovPszNGuz/gKhp2tYhsnRgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMDk4ZTQ1ZWY0YmI1ZDE4ZGJjODZjNWExMzVmNTdlYmNi
ZTAwNWQwHhcNMjMwODI2MDAyOTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTIzMGNjNTZhYmI0NTVjZTFlOWNhMzhlMzg5MGVmOGU3MjMzNjUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj3tD/xi/iQBP0m5AUoZ7gTsHPyVd
lSzRjABALZ1Iu77RFBvgND8WPa3n6kAhcyJhxQv0jd73plbmE0k1Cqn3muwgoV/W
AM6CjDWo4Ht5iV5KT7sIYL/KZ4P9AYoLcg7UnCeLBybP8/nOmz9HoBaTyB7gEu5Q
kHwu1SI/xXkYvu5+eOTUqNmcvNahz8xvjUZyQuATmp/dTYw1qNqYtj5sK6hteljU
t/xqYD6TQgtjVILQ8t4v82daxFxDoKu1d/d+1pVpJI9InGOTELkPvpb5/IuVsimW
6jyVDD3J+ZiLNbtZu19OVzDfqOH5UacQ2ib4ObepuKCsDHere4mUHP1H5wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFLkjDMVqu0Vc4enKOOOJDvjnIzZTMB8GA1UdIwQY
MBaAFDsJjkXvS7XRjbyGxaE19X68vgBdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3dtT1JlOUx0ZEdOdkliRm9UWDFmcnktQUYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi85NTRkMzEtZjc0Yy00NjdiLTkwMTMt
ZTEyYjE2NDIxNWI5LzEvdVNNTXhXcTdSVnpoNmNvNDQ0a08tT2NqTmxNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi85NTRkMzEtZjc0Yy00NjdiLTkwMTMtZTEyYjE2NDIxNWI5
LzEvT3dtT1JlOUx0ZEdOdkliRm9UWDFmcnktQUYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQB1HTiAwQA
1HTzAwQC1HT8MA0GCSqGSIb3DQEBCwUAA4IBAQB8Jaz+R6j3cytiKqA6AOPPALOS
di0h6EW625YYy9QSoyBNXVZoF6PPDNppjgRFAv1UZibRWy71nlVlbztJ7HcjlvWl
lClMdyU08eOiqZE6iOV5VUeqa9fnHDVv2aA2hhsHtNY1+mMo/TYu67Wag/UZMmMf
gR9p1KQAeXT/pr56ePz+d6igmJ4Dbi45nmgfw5t2ZZe4bbJjN1uNKDQufJv14R9I
INEEG6lcxueRN+nQ3Vps8Dz/8D88iG9fCqMdKvoLRnS9FegOXIjnidkigDzKt2je
ScnAxFitMQd7EBb8AWp275UNKpP8be1sk8Nmj5YQhf8k1Rgc9VKLO59WPaQG
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:24 2025 by rpki-client