Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7728b2-971d-4d19-8bf7-03808c8f4375/1/efFlOwoqV6r1QlmTgVZ0Cph62Wg.roa
File: efFlOwoqV6r1QlmTgVZ0Cph62Wg.roa (raw, json)
Hash identifier: 5Q5OIEPVJjxXwqMT1rNwPBF/VV92ISNy4C/VUcXElw4=
Subject key identifier: 79:F1:65:3B:0A:2A:57:AA:F5:42:59:93:81:56:74:0A:98:7A:D9:68
Certificate issuer: /CN=34e3cebaf70c3ed1a7658b223ad221198597d93b
Certificate serial: 018964C05709185021B6B9757FF4C0A857A7
Authority key identifier: 34:E3:CE:BA:F7:0C:3E:D1:A7:65:8B:22:3A:D2:21:19:85:97:D9:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NOPOuvcMPtGnZYsiOtIhGYWX2Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7728b2-971d-4d19-8bf7-03808c8f4375/1/efFlOwoqV6r1QlmTgVZ0Cph62Wg.roa
Signing time: Mon 17 Jul 2023 16:47:53 +0000
ROA not before: Mon 17 Jul 2023 16:47:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59729
IP address blocks: 212.18.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:57:09:18:50:21:b6:b9:75:7f:f4:c0:a8:57:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34e3cebaf70c3ed1a7658b223ad221198597d93b
Validity
Not Before: Jul 17 16:47:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79f1653b0a2a57aaf54259938156740a987ad968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:de:c9:c0:6a:db:9a:76:ce:ba:a1:56:26:e2:
9b:a9:9b:cb:f1:82:45:6d:3d:1e:1c:ee:dd:0e:5e:
c9:5b:fe:42:2d:bb:0e:4f:48:6a:7b:86:0d:37:13:
dc:e8:0b:54:5b:2f:8c:35:c9:5b:9b:21:3c:c5:37:
aa:8d:1d:91:fa:e8:e3:c1:58:3a:1d:d5:10:36:d5:
24:c3:87:f9:25:e9:61:b5:e5:c5:b0:b2:02:53:a0:
af:df:a4:4c:bb:7e:c1:34:b5:0a:4c:37:53:1a:82:
48:14:be:fd:6e:0b:2c:a9:70:96:86:18:42:f2:9b:
05:7e:51:52:9d:36:3d:3d:8b:d3:d5:28:0d:15:1f:
d5:3b:ef:39:9d:a2:95:33:ce:63:c4:ca:07:60:39:
7f:43:56:a3:b0:fb:71:e1:37:08:83:d6:4c:d1:3c:
f1:65:93:36:1d:a6:b2:cd:36:42:11:05:9e:f1:db:
76:26:24:6d:92:0f:a7:92:d9:4b:91:e3:3e:5b:03:
e1:07:43:fe:39:d5:25:d2:14:07:32:83:fd:0f:33:
d1:c1:94:14:c7:8b:b2:4f:5a:e3:0a:91:f1:29:47:
b5:fe:01:d4:a0:e0:a4:39:27:54:9a:a8:c5:52:c6:
29:72:cc:2a:92:7b:52:1e:8c:da:95:78:1a:85:f1:
c3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F1:65:3B:0A:2A:57:AA:F5:42:59:93:81:56:74:0A:98:7A:D9:68
X509v3 Authority Key Identifier:
keyid:34:E3:CE:BA:F7:0C:3E:D1:A7:65:8B:22:3A:D2:21:19:85:97:D9:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NOPOuvcMPtGnZYsiOtIhGYWX2Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7728b2-971d-4d19-8bf7-03808c8f4375/1/efFlOwoqV6r1QlmTgVZ0Cph62Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7728b2-971d-4d19-8bf7-03808c8f4375/1/NOPOuvcMPtGnZYsiOtIhGYWX2Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.120.0/24
Signature Algorithm: sha256WithRSAEncryption
83:11:84:62:54:e0:b4:26:a7:1c:cd:3d:9b:2f:3c:1f:c2:c2:
7e:8d:72:b9:6e:0f:6c:b1:30:2f:25:24:fd:87:ae:49:98:65:
94:6a:a9:d4:1f:bd:fd:40:1a:98:5e:70:36:d4:ae:0f:c7:2d:
f6:98:79:e8:ef:0c:01:34:09:4a:b9:54:4b:7c:20:72:e4:fe:
23:17:39:de:c5:bc:ce:fd:ad:56:24:a8:1c:73:fc:d9:07:80:
c6:14:b8:fa:02:40:50:06:98:2d:02:88:e2:68:b8:6f:e5:a9:
c2:89:b0:16:25:7f:fa:33:d3:58:99:5e:66:21:b9:76:f2:55:
9c:b7:bb:f1:13:d9:86:f8:c1:d5:ea:6f:48:48:b2:8c:58:c7:
41:2c:b0:53:04:db:b7:3b:3d:7d:72:aa:73:fc:ab:e7:11:38:
96:5f:bb:fb:9c:19:6d:02:c3:3b:4e:a3:f2:53:ce:ef:9c:fd:
1b:d0:c5:ad:2b:92:7d:ce:74:b4:60:8e:30:81:4b:a2:99:86:
64:bd:91:d8:27:f7:e5:d1:24:22:34:90:a9:b5:87:da:7c:3a:
47:d5:b0:c4:68:f6:00:f2:67:d3:d1:88:4e:64:59:c3:bd:be:
83:cc:1a:eb:25:57:ce:bb:21:d0:ba:f4:66:77:24:fa:91:c1:
96:66:72:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlkwFcJGFAhtrl1f/TAqFenMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ZTNjZWJhZjcwYzNlZDFhNzY1OGIyMjNhZDIyMTE5ODU5
N2Q5M2IwHhcNMjMwNzE3MTY0NzUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWYxNjUzYjBhMmE1N2FhZjU0MjU5OTM4MTU2NzQwYTk4N2FkOTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl97JwGrbmnbOuqFWJuKbqZvL8YJF
bT0eHO7dDl7JW/5CLbsOT0hqe4YNNxPc6AtUWy+MNclbmyE8xTeqjR2R+ujjwVg6
HdUQNtUkw4f5JelhteXFsLICU6Cv36RMu37BNLUKTDdTGoJIFL79bgssqXCWhhhC
8psFflFSnTY9PYvT1SgNFR/VO+85naKVM85jxMoHYDl/Q1ajsPtx4TcIg9ZM0Tzx
ZZM2HaayzTZCEQWe8dt2JiRtkg+nktlLkeM+WwPhB0P+OdUl0hQHMoP9DzPRwZQU
x4uyT1rjCpHxKUe1/gHUoOCkOSdUmqjFUsYpcswqkntSHozalXgahfHDAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHnxZTsKKleq9UJZk4FWdAqYetloMB8GA1UdIwQY
MBaAFDTjzrr3DD7Rp2WLIjrSIRmFl9k7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTk9QT3V2Y01QdEduWllzaU90SWhHWVdYMlRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS83NzI4YjItOTcxZC00ZDE5LThiZjct
MDM4MDhjOGY0Mzc1LzEvZWZGbE93b3FWNnIxUWxtVGdWWjBDcGg2MldnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS83NzI4YjItOTcxZC00ZDE5LThiZjctMDM4MDhjOGY0Mzc1
LzEvTk9QT3V2Y01QdEduWllzaU90SWhHWVdYMlRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BJ4MA0G
CSqGSIb3DQEBCwUAA4IBAQCDEYRiVOC0JqcczT2bLzwfwsJ+jXK5bg9ssTAvJST9
h65JmGWUaqnUH739QBqYXnA21K4Pxy32mHno7wwBNAlKuVRLfCBy5P4jFznexbzO
/a1WJKgcc/zZB4DGFLj6AkBQBpgtAojiaLhv5anCibAWJX/6M9NYmV5mIbl28lWc
t7vxE9mG+MHV6m9ISLKMWMdBLLBTBNu3Oz19cqpz/KvnETiWX7v7nBltAsM7TqPy
U87vnP0b0MWtK5J9znS0YI4wgUuimYZkvZHYJ/fl0SQiNJCptYfafDpH1bDEaPYA
8mfT0YhOZFnDvb6DzBrrJVfOuyHQuvRmdyT6kcGWZnJQ
-----END CERTIFICATE-----
Generated at Mon Apr 21 19:19:55 2025 by rpki-client