Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/48vbwqd0kM9YU_DxFPRhsko7wcg.roa
File: 48vbwqd0kM9YU_DxFPRhsko7wcg.roa (raw, json)
Hash identifier: Ioebo+nv8Etgm2wA9n3MYMsanXwaytJgtWKwUimi5Yo=
Subject key identifier: E3:CB:DB:C2:A7:74:90:CF:58:53:F0:F1:14:F4:61:B2:4A:3B:C1:C8
Certificate issuer: /CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Certificate serial: 01916ABE00A09AAAA1CA0AD0F009FABBE7B2
Authority key identifier: FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/48vbwqd0kM9YU_DxFPRhsko7wcg.roa
Signing time: Mon 19 Aug 2024 13:05:22 +0000
ROA not before: Mon 19 Aug 2024 13:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209565
IP address blocks: 46.21.251.0/24 maxlen: 24
212.126.113.0/24 maxlen: 24
212.126.114.0/24 maxlen: 24
212.126.116.0/24 maxlen: 24
212.126.120.0/24 maxlen: 24
212.126.121.0/24 maxlen: 24
212.126.122.0/23 maxlen: 23
212.126.122.0/24 maxlen: 24
212.126.123.0/24 maxlen: 24
212.126.126.0/24 maxlen: 24
2a04:2dc0:8::/48 maxlen: 48
2a04:2dc0:a::/48 maxlen: 48
2a04:2dc0:e::/48 maxlen: 48
2a04:2dc0:18::/48 maxlen: 48
2a04:2dc0:19::/48 maxlen: 48
2a04:2dc0:1b::/48 maxlen: 48
2a04:2dc0:1d::/48 maxlen: 48
2a04:2dc0:21::/48 maxlen: 48
2a04:2dc0:22::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6a:be:00:a0:9a:aa:a1:ca:0a:d0:f0:09:fa:bb:e7:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Validity
Not Before: Aug 19 13:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3cbdbc2a77490cf5853f0f114f461b24a3bc1c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bb:52:6a:f2:58:45:9a:26:e7:26:09:ac:df:
2c:90:e6:18:10:69:59:bc:e3:9c:0f:dd:c9:38:50:
73:57:41:be:35:3e:e2:57:65:f5:59:66:68:58:84:
40:40:d9:a9:3f:9a:da:bb:00:19:06:00:aa:a7:11:
dd:93:44:a9:92:06:5e:6b:37:a6:86:dc:05:a7:06:
de:fa:06:d8:69:7d:42:2d:5d:bc:fe:a0:13:c1:85:
7c:e3:88:6a:7b:d3:fb:b5:32:48:f6:1f:10:54:64:
bc:95:c2:e6:2d:36:be:81:58:37:0f:a8:08:c9:4a:
4b:e2:2d:02:f1:c7:06:67:0d:5a:fd:53:00:9a:84:
14:86:7a:97:97:cc:43:38:60:f5:72:f1:1b:4d:bc:
66:a0:d9:df:6d:29:8a:42:23:1c:fe:45:19:ed:b2:
85:8a:d8:8b:92:1d:23:88:58:4f:88:83:bb:10:d5:
c0:70:97:24:4a:68:39:b1:ba:a7:20:de:2f:25:cd:
e7:2d:73:4b:3a:d8:b9:17:a9:a4:a0:ef:23:b7:2e:
8e:14:5e:7f:bd:be:97:fa:39:b3:48:97:13:9e:a6:
54:af:b2:81:23:e4:0e:71:ce:88:b3:20:d7:33:7d:
4e:28:95:c4:bf:c6:65:5f:d2:02:f2:cd:f3:72:8b:
82:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CB:DB:C2:A7:74:90:CF:58:53:F0:F1:14:F4:61:B2:4A:3B:C1:C8
X509v3 Authority Key Identifier:
keyid:FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/48vbwqd0kM9YU_DxFPRhsko7wcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.21.251.0/24
212.126.113.0-212.126.114.255
212.126.116.0/24
212.126.120.0/22
212.126.126.0/24
IPv6:
2a04:2dc0:8::/48
2a04:2dc0:a::/48
2a04:2dc0:e::/48
2a04:2dc0:18::/47
2a04:2dc0:1b::/48
2a04:2dc0:1d::/48
2a04:2dc0:21::-2a04:2dc0:22:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
98:e4:9a:21:f9:ce:6d:96:95:93:9f:02:63:e1:ac:02:3b:f1:
82:ea:60:3c:c1:36:32:21:ea:21:ce:86:0e:58:2f:16:3f:6a:
28:f0:59:1b:5a:fb:b2:3b:02:f8:2a:5d:be:58:53:2c:7a:6f:
60:bf:5b:71:94:70:8b:34:26:1c:ac:5a:72:c0:79:ff:38:12:
f7:02:da:5f:9b:ef:6d:43:49:4e:66:8f:63:9b:07:ee:83:8e:
3c:0f:67:29:07:7c:1d:9c:cd:8c:eb:ef:b5:ad:39:f2:37:5b:
b4:1e:27:87:b6:14:7c:44:fe:01:0b:e6:40:01:ca:2d:6a:8c:
57:f8:27:0e:80:54:58:f9:bd:16:c2:0c:48:0f:e8:d4:9d:78:
b1:ca:ae:88:b5:1f:40:9d:0a:01:7a:0b:1d:3e:3b:1e:12:27:
aa:32:ea:ac:c8:c0:d8:18:e3:20:1b:97:39:8f:1c:3c:a8:d8:
3b:88:f9:ac:8b:a5:27:f6:1c:8e:85:72:3a:77:67:6f:83:ea:
8a:d2:09:73:05:0c:fe:36:3b:04:89:f4:d9:15:7d:a4:01:c4:
a4:c0:f2:f4:85:f5:00:f8:42:9f:d0:2a:47:68:5e:1a:4e:e9:
c2:5a:8a:f5:e2:42:78:f0:d2:46:5a:35:ee:7b:e2:50:ce:a3:
dc:e3:58:95
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgISAZFqvgCgmqqhygrQ8An6u+eyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhY2NiYjcyYWE5ODg0YTViZjhkMGU3NTc0MDRhMTdlNWUy
MzMyMmMwHhcNMjQwODE5MTMwNTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlM2NiZGJjMmE3NzQ5MGNmNTg1M2YwZjExNGY0NjFiMjRhM2JjMWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbtSavJYRZom5yYJrN8skOYYEGlZ
vOOcD93JOFBzV0G+NT7iV2X1WWZoWIRAQNmpP5rauwAZBgCqpxHdk0SpkgZeazem
htwFpwbe+gbYaX1CLV28/qATwYV844hqe9P7tTJI9h8QVGS8lcLmLTa+gVg3D6gI
yUpL4i0C8ccGZw1a/VMAmoQUhnqXl8xDOGD1cvEbTbxmoNnfbSmKQiMc/kUZ7bKF
itiLkh0jiFhPiIO7ENXAcJckSmg5sbqnIN4vJc3nLXNLOti5F6mkoO8jty6OFF5/
vb6X+jmzSJcTnqZUr7KBI+QOcc6IsyDXM31OKJXEv8ZlX9IC8s3zcouC7wIDAQAB
o4ICgDCCAnwwHQYDVR0OBBYEFOPL28KndJDPWFPw8RT0YbJKO8HIMB8GA1UdIwQY
MBaAFPrMu3KqmISlv40OdXQEoX5eIzIsMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1zeTdjcXFZaEtXX2pRNTFkQVNoZmw0ak1pdy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvZThjYjQ0LWE5NTQtNDY3Mi1iOWE0
LWE0OWU1YzY2MzNiZC8xLzQ4dmJ3cWQwa005WVVfRHhGUFJoc2tvN3djZy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTMvZThjYjQ0LWE5NTQtNDY3Mi1iOWE0LWE0OWU1YzY2MzNi
ZC8xLzEtc3k3Y3FxWWhLV19qUTUxZEFTaGZsNGpNaXcuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwgZMGCCsGAQUFBwEHAQH/BIGDMIGAMCwEAgABMCYDBAAu
FfswDAMEANR+cQMEANR+cgMEANR+dAMEAtR+eAMEANR+fjBQBAIAAjBKAwcAKgQt
wAAIAwcAKgQtwAAKAwcAKgQtwAAOAwcBKgQtwAAYAwcAKgQtwAAbAwcAKgQtwAAd
MBIDBwAqBC3AACEDBwAqBC3AACIwDQYJKoZIhvcNAQELBQADggEBAJjkmiH5zm2W
lZOfAmPhrAI78YLqYDzBNjIh6iHOhg5YLxY/aijwWRta+7I7AvgqXb5YUyx6b2C/
W3GUcIs0JhysWnLAef84EvcC2l+b721DSU5mj2ObB+6DjjwPZykHfB2czYzr77Wt
OfI3W7QeJ4e2FHxE/gEL5kAByi1qjFf4Jw6AVFj5vRbCDEgP6NSdeLHKroi1H0Cd
CgF6Cx0+Ox4SJ6oy6qzIwNgY4yAblzmPHDyo2DuI+ayLpSf2HI6Fcjp3Z2+D6orS
CXMFDP42OwSJ9NkVfaQBxKTA8vSF9QD4Qp/QKkdoXhpO6cJaivXiQnjw0kZaNe57
4lDOo9zjWJU=
-----END CERTIFICATE-----
Generated at Mon Apr 7 18:01:14 2025 by rpki-client