Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/jy4S6ooeZwzUz3AWulP5W9bLuBo.roa
File: jy4S6ooeZwzUz3AWulP5W9bLuBo.roa (raw, json)
Hash identifier: 6WfEtACrntjzlHIbK1cnsoP6u8Og5pmckuntutYw3jE=
Subject key identifier: 8F:2E:12:EA:8A:1E:67:0C:D4:CF:70:16:BA:53:F9:5B:D6:CB:B8:1A
Certificate issuer: /CN=35c96065093998ba42cfba11bf0d17d3ac403d40
Certificate serial: 0189C0093E6C41659079FC4DAA0D85D73034
Authority key identifier: 35:C9:60:65:09:39:98:BA:42:CF:BA:11:BF:0D:17:D3:AC:40:3D:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NclgZQk5mLpCz7oRvw0X06xAPUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/jy4S6ooeZwzUz3AWulP5W9bLuBo.roa
Signing time: Fri 04 Aug 2023 10:12:58 +0000
ROA not before: Fri 04 Aug 2023 10:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 83.142.200.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c0:09:3e:6c:41:65:90:79:fc:4d:aa:0d:85:d7:30:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35c96065093998ba42cfba11bf0d17d3ac403d40
Validity
Not Before: Aug 4 10:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f2e12ea8a1e670cd4cf7016ba53f95bd6cbb81a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7a:11:af:57:8b:de:e1:b2:b0:cc:72:11:3b:
9b:f7:d9:ef:17:13:1f:39:17:51:ce:4c:57:4a:42:
51:00:65:96:15:1d:92:d5:97:a9:01:1f:7a:9a:dc:
40:f6:89:96:0f:76:8f:3b:31:21:c3:cb:c9:86:31:
79:8a:be:86:04:20:84:6d:6e:6b:af:7f:24:1c:39:
8c:d0:ca:a0:9b:55:7c:59:6a:1f:e1:a7:7a:0c:43:
aa:6c:ca:8c:79:5a:c0:e6:ca:ad:bc:e5:7d:93:dc:
7b:d1:08:4c:8a:88:b3:8f:1a:ee:0e:5d:60:19:bc:
76:bd:d3:bd:e7:8e:99:93:58:19:a9:77:87:99:38:
a1:99:9f:c2:39:97:31:f9:c5:ee:76:44:9f:4d:f1:
eb:e3:ea:75:01:c2:ec:e1:a1:34:1c:cf:ca:54:3d:
72:ce:54:23:f9:9d:5e:8c:5a:5f:08:67:69:22:63:
d9:0d:33:5c:b4:a7:79:98:e0:4b:20:12:ac:f1:5b:
a1:62:f7:3e:df:cb:c8:e3:b1:dc:ec:90:2a:31:9a:
1f:ee:4e:0e:96:cd:e1:86:a1:5d:b9:0d:9f:63:9f:
54:3c:06:8e:bf:2f:5e:b7:58:6d:4c:6a:33:a1:dc:
b0:3b:52:54:74:1c:81:85:f7:d1:f4:d2:98:be:3b:
d0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2E:12:EA:8A:1E:67:0C:D4:CF:70:16:BA:53:F9:5B:D6:CB:B8:1A
X509v3 Authority Key Identifier:
keyid:35:C9:60:65:09:39:98:BA:42:CF:BA:11:BF:0D:17:D3:AC:40:3D:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NclgZQk5mLpCz7oRvw0X06xAPUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/jy4S6ooeZwzUz3AWulP5W9bLuBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/NclgZQk5mLpCz7oRvw0X06xAPUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.142.200.0/21
Signature Algorithm: sha256WithRSAEncryption
6b:69:82:f1:39:30:94:41:5e:eb:a9:22:bf:a2:91:96:63:46:
2e:dc:17:53:d9:47:69:c0:cf:bf:0e:f3:78:c2:f7:de:f3:6d:
22:e3:3d:26:b9:72:98:50:31:a7:4c:c6:3e:ef:9a:11:d3:63:
66:b7:d5:38:f8:28:f6:7b:00:be:60:4f:a7:63:5a:aa:a3:6a:
2f:8d:1d:3f:75:8d:32:bb:89:e6:a6:f1:5f:e1:2e:6d:18:17:
e1:b7:f0:7f:50:7a:6b:1d:12:18:4d:f8:0e:12:9c:e2:69:2f:
65:3c:a7:28:73:ec:bc:e9:09:d3:00:87:1a:a8:c8:b0:06:3a:
da:51:02:55:54:99:98:25:bc:0d:f4:fe:42:1d:23:62:21:38:
d1:2e:75:c8:8e:f0:46:f2:e8:a9:5d:e2:db:2d:ef:f3:65:33:
6d:75:7c:3c:4a:19:9b:ef:69:80:19:44:e9:d3:ac:cb:92:00:
ca:97:65:45:fb:f4:35:10:74:73:98:0b:44:77:01:fc:8f:91:
14:2d:fb:a7:e8:83:b5:7f:10:d7:15:1c:3a:86:87:d0:a7:57:
a6:9e:ee:7e:b3:eb:a5:dc:6b:55:f2:00:3f:49:85:ce:d5:d8:
b2:42:29:42:9b:c0:35:7b:2f:e5:d2:1d:37:16:3a:1b:88:6e:
1c:6c:9b:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnACT5sQWWQefxNqg2F1zA0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1Yzk2MDY1MDkzOTk4YmE0MmNmYmExMWJmMGQxN2QzYWM0
MDNkNDAwHhcNMjMwODA0MTAxMjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjJlMTJlYThhMWU2NzBjZDRjZjcwMTZiYTUzZjk1YmQ2Y2JiODFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlnoRr1eL3uGysMxyETub99nvFxMf
ORdRzkxXSkJRAGWWFR2S1ZepAR96mtxA9omWD3aPOzEhw8vJhjF5ir6GBCCEbW5r
r38kHDmM0Mqgm1V8WWof4ad6DEOqbMqMeVrA5sqtvOV9k9x70QhMioizjxruDl1g
Gbx2vdO9546Zk1gZqXeHmTihmZ/COZcx+cXudkSfTfHr4+p1AcLs4aE0HM/KVD1y
zlQj+Z1ejFpfCGdpImPZDTNctKd5mOBLIBKs8VuhYvc+38vI47Hc7JAqMZof7k4O
ls3hhqFduQ2fY59UPAaOvy9et1htTGozodywO1JUdByBhffR9NKYvjvQ0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI8uEuqKHmcM1M9wFrpT+VvWy7gaMB8GA1UdIwQY
MBaAFDXJYGUJOZi6Qs+6Eb8NF9OsQD1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmNsZ1pRazVtTHBDejdvUnZ3MFgwNnhBUFVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi82Mjc2NGItOWFhNi00ZjEyLWE3MWMt
NmJhYzM0OTg3MDE5LzEvank0UzZvb2Vad3pVejNBV3VsUDVXOWJMdUJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi82Mjc2NGItOWFhNi00ZjEyLWE3MWMtNmJhYzM0OTg3MDE5
LzEvTmNsZ1pRazVtTHBDejdvUnZ3MFgwNnhBUFVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDU47IMA0G
CSqGSIb3DQEBCwUAA4IBAQBraYLxOTCUQV7rqSK/opGWY0Yu3BdT2UdpwM+/DvN4
wvfe820i4z0muXKYUDGnTMY+75oR02Nmt9U4+Cj2ewC+YE+nY1qqo2ovjR0/dY0y
u4nmpvFf4S5tGBfht/B/UHprHRIYTfgOEpziaS9lPKcoc+y86QnTAIcaqMiwBjra
UQJVVJmYJbwN9P5CHSNiITjRLnXIjvBG8uipXeLbLe/zZTNtdXw8Shmb72mAGUTp
06zLkgDKl2VF+/Q1EHRzmAtEdwH8j5EULfun6IO1fxDXFRw6hofQp1emnu5+s+ul
3GtV8gA/SYXO1diyQilCm8A1ey/l0h03FjobiG4cbJu1
-----END CERTIFICATE-----
Generated at Thu Apr 17 02:24:28 2025 by rpki-client