Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/1-yKYajfg5LY4mvNwPfafD3WCloA.roa
File: 1-yKYajfg5LY4mvNwPfafD3WCloA.roa (raw, json)
Hash identifier: WHC+36zJ+PfduDAkHrQdjdBbj6qnsfp62GV4AEEhmh8=
Subject key identifier: FB:22:98:6A:37:E0:E4:B6:38:9A:F3:70:3D:F6:9F:0F:75:82:96:80
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 019426D8EBC4ECD3B7A2771CC6722CA41DA7
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/1-yKYajfg5LY4mvNwPfafD3WCloA.roa
Signing time: Thu 02 Jan 2025 11:48:57 +0000
ROA not before: Thu 02 Jan 2025 11:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28714
IP address blocks: 129.233.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:eb:c4:ec:d3:b7:a2:77:1c:c6:72:2c:a4:1d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 2 11:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fb22986a37e0e4b6389af3703df69f0f75829680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1c:21:56:a1:56:7d:ba:50:40:53:95:ce:a7:
b5:ef:90:fc:21:92:96:06:07:2a:34:9c:0b:fb:32:
d7:47:69:68:c6:71:75:98:0d:ad:f4:05:63:ad:02:
34:fc:62:ca:3a:56:92:36:c8:94:30:2e:7d:cf:ea:
75:b4:88:89:d5:b9:14:86:8d:bf:44:b3:2c:3d:a1:
d9:87:2c:45:37:3f:8d:39:a7:f5:c4:22:9b:b7:ba:
80:e0:f0:87:c1:30:4a:0a:13:5a:ad:0a:1a:f9:f5:
0f:8f:77:06:f8:e8:a5:cb:9c:d6:51:42:3a:77:f6:
c0:bb:ff:a1:6f:51:63:8a:41:57:19:db:a2:f8:fb:
98:62:98:22:97:d4:20:78:2c:73:53:c6:e9:05:59:
a6:fb:2d:cb:b4:ee:44:46:ca:7d:f4:d4:d1:03:f3:
03:f3:84:9a:2e:1b:9e:6e:3f:66:15:85:22:bc:95:
81:21:9a:a8:f4:11:f6:9d:53:44:f6:32:a5:28:c7:
97:58:b5:b9:0b:29:78:15:db:c4:5d:a7:9d:72:9c:
52:50:a2:6f:54:8e:74:00:75:4b:56:fb:10:36:40:
38:f0:de:61:27:62:f7:36:00:0f:f1:96:0a:64:e1:
04:1f:2f:03:05:6a:1b:89:0d:78:fe:b5:3c:d3:61:
b1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:22:98:6A:37:E0:E4:B6:38:9A:F3:70:3D:F6:9F:0F:75:82:96:80
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/1-yKYajfg5LY4mvNwPfafD3WCloA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.233.217.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:48:a1:43:af:1a:8c:43:9c:06:90:d2:88:f5:2c:c0:1a:fa:
68:ec:7a:3a:44:07:d0:7b:3e:9e:d3:0e:0d:10:c7:50:5f:66:
e3:0f:87:cf:05:81:64:4a:a3:ff:60:9c:2e:c3:10:e6:30:69:
01:4f:d9:d8:fc:09:37:98:69:22:de:0f:49:36:80:1d:bc:8c:
f0:52:d1:43:0f:a7:d0:3e:f8:e6:6b:70:7d:07:9b:a8:1a:cb:
68:c8:3c:32:d0:d9:d6:d3:48:f1:4d:44:ba:89:0e:1f:fa:32:
7c:96:e1:3a:c4:80:e9:83:c2:32:fe:90:01:b9:45:58:5f:99:
f5:9a:87:ac:fc:ea:dc:50:85:96:b3:d1:fc:8b:f3:87:1e:d7:
9c:4d:cd:1b:d6:57:80:f4:9b:1e:d1:12:9c:5d:4a:36:e2:59:
4b:db:bc:aa:a6:23:e8:66:2a:ac:46:ce:27:88:af:ba:41:39:
97:3e:0d:4d:71:f1:04:22:ba:20:17:6a:98:1f:b9:c3:3f:c2:
56:a5:0b:54:11:6c:7e:c3:11:e6:59:bc:f3:5a:9e:d3:7f:a0:
37:21:9d:85:15:29:f3:80:4b:ec:92:26:d3:e0:04:03:c5:5f:
91:5e:51:3c:32:08:44:3c:0d:71:c5:e6:f7:5b:16:cb:bb:d3:
ec:9b:03:a2
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQm2OvE7NO3onccxnIspB2nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2YTc1ODI2ZTk5MTIyNWE0MjlmZjhhMWU3ZmZkYzgwNDY2
NDIwZGYwHhcNMjUwMTAyMTE0ODU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjIyOTg2YTM3ZTBlNGI2Mzg5YWYzNzAzZGY2OWYwZjc1ODI5NjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxwhVqFWfbpQQFOVzqe175D8IZKW
BgcqNJwL+zLXR2loxnF1mA2t9AVjrQI0/GLKOlaSNsiUMC59z+p1tIiJ1bkUho2/
RLMsPaHZhyxFNz+NOaf1xCKbt7qA4PCHwTBKChNarQoa+fUPj3cG+Oily5zWUUI6
d/bAu/+hb1FjikFXGdui+PuYYpgil9QgeCxzU8bpBVmm+y3LtO5ERsp99NTRA/MD
84SaLhuebj9mFYUivJWBIZqo9BH2nVNE9jKlKMeXWLW5Cyl4FdvEXaedcpxSUKJv
VI50AHVLVvsQNkA48N5hJ2L3NgAP8ZYKZOEEHy8DBWobiQ14/rU802GxywIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPsimGo34OS2OJrzcD32nw91gpaAMB8GA1UdIwQY
MBaAFHanWCbpkSJaQp/4oef/3IBGZCDfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTct
YWQ4ZmJlYWE4ZGQ5LzEvMS15S1lhamZnNUxZNG12TndQZmFmRDNXQ2xvQS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNDkvMWQzM2NhLThkMWMtNDljMC1iZTk3LWFkOGZiZWFhOGRk
OS8xL2RxZFlKdW1SSWxwQ25faWg1X19jZ0Vaa0lOOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIHp2TAN
BgkqhkiG9w0BAQsFAAOCAQEAbEihQ68ajEOcBpDSiPUswBr6aOx6OkQH0Hs+ntMO
DRDHUF9m4w+HzwWBZEqj/2CcLsMQ5jBpAU/Z2PwJN5hpIt4PSTaAHbyM8FLRQw+n
0D745mtwfQebqBrLaMg8MtDZ1tNI8U1EuokOH/oyfJbhOsSA6YPCMv6QAblFWF+Z
9ZqHrPzq3FCFlrPR/Ivzhx7XnE3NG9ZXgPSbHtESnF1KNuJZS9u8qqYj6GYqrEbO
J4ivukE5lz4NTXHxBCK6IBdqmB+5wz/CVqULVBFsfsMR5lm881qe03+gNyGdhRUp
84BL7JIm0+AEA8VfkV5RPDIIRDwNccXm91sWy7vT7JsDog==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:20 2025 by rpki-client