Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d93b3-7ddf-4d3a-a454-d56471e61c33/1/JEWTg1w0Y032-nab-lqSFtjErds.roa
File: JEWTg1w0Y032-nab-lqSFtjErds.roa (raw, json)
Hash identifier: YxXU3ppWreSH1MyQY8PI3iZ83o+zyCcnTNcLrmcmAk4=
Subject key identifier: 24:45:93:83:5C:34:63:4D:F6:FA:76:9B:FA:5A:92:16:D8:C4:AD:DB
Certificate issuer: /CN=cc4261880f82f38471a5717b8009c4fbda2df242
Certificate serial: 0182867CCCB2A238DD0DFD5E3F3E7B593AC3
Authority key identifier: CC:42:61:88:0F:82:F3:84:71:A5:71:7B:80:09:C4:FB:DA:2D:F2:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zEJhiA-C84RxpXF7gAnE-9ot8kI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d93b3-7ddf-4d3a-a454-d56471e61c33/1/JEWTg1w0Y032-nab-lqSFtjErds.roa
Signing time: Wed 10 Aug 2022 06:41:41 +0000
ROA not before: Wed 10 Aug 2022 06:41:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29066
IP address blocks: 83.150.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:86:7c:cc:b2:a2:38:dd:0d:fd:5e:3f:3e:7b:59:3a:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4261880f82f38471a5717b8009c4fbda2df242
Validity
Not Before: Aug 10 06:41:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=244593835c34634df6fa769bfa5a9216d8c4addb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bc:27:a9:4c:a2:95:f6:c0:ec:6a:66:7a:17:
72:2a:27:82:32:b4:1a:8d:fb:a8:2e:9c:75:b7:cd:
68:5a:a5:9f:f5:2b:a4:4b:d6:84:04:80:59:ac:b7:
7a:6f:b1:ff:61:78:8b:fe:1a:94:2c:a4:b1:f4:82:
b4:d1:55:12:84:3c:37:eb:cf:7c:f7:b1:85:cd:14:
d2:a1:df:fc:a0:7d:0b:58:7e:62:c0:5d:de:a2:f3:
67:80:12:80:ff:5f:f0:ed:b5:77:f0:88:14:97:fe:
0c:51:dd:d5:d7:35:b6:e0:7c:37:ca:58:ed:0b:31:
e1:09:c7:a3:35:5d:11:a2:31:7e:16:7f:5b:c0:1b:
4d:0d:15:e2:70:ce:c9:f9:07:f3:05:97:83:b4:4d:
c9:40:02:61:f0:43:fb:be:7e:68:f2:a7:9c:3c:94:
2c:5e:cf:94:fd:cb:97:b4:0d:87:cf:fe:d8:e2:fd:
3d:aa:7d:c3:e7:23:58:12:6e:25:8e:70:d6:a3:4d:
de:c1:4c:db:50:f7:33:04:b3:4e:ee:c0:cc:bc:05:
59:a9:c8:76:8b:85:8f:ae:c9:4e:93:20:d3:e9:93:
19:db:8b:d1:9c:ca:a3:ec:dc:84:72:ad:2b:8c:6b:
58:81:2e:42:8c:1a:d6:5e:6c:65:b6:2a:e5:83:3b:
8f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:45:93:83:5C:34:63:4D:F6:FA:76:9B:FA:5A:92:16:D8:C4:AD:DB
X509v3 Authority Key Identifier:
keyid:CC:42:61:88:0F:82:F3:84:71:A5:71:7B:80:09:C4:FB:DA:2D:F2:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zEJhiA-C84RxpXF7gAnE-9ot8kI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d93b3-7ddf-4d3a-a454-d56471e61c33/1/JEWTg1w0Y032-nab-lqSFtjErds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d93b3-7ddf-4d3a-a454-d56471e61c33/1/zEJhiA-C84RxpXF7gAnE-9ot8kI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.218.0/24
Signature Algorithm: sha256WithRSAEncryption
52:a1:2b:43:e4:86:57:30:bc:82:f4:c9:ae:3c:9c:fe:b9:34:
96:00:58:c3:3d:2b:88:df:7a:54:ff:e3:de:89:de:00:1c:08:
24:ec:6e:4d:aa:81:e4:1c:c9:44:b3:c6:74:60:19:3f:bf:13:
d9:6e:7c:21:fa:b5:d9:45:87:da:24:25:c4:fd:0c:34:8c:e6:
09:ae:26:55:22:61:87:fd:53:43:cd:ed:0e:c5:ac:68:c7:a9:
e9:93:c7:a3:22:72:7e:fa:2f:06:87:e4:ff:4f:66:b4:48:cb:
b2:0f:b0:79:e6:c6:bc:8f:70:3f:ac:b6:59:ab:c7:5c:5a:03:
fe:37:ad:1b:1c:68:2e:93:6d:1a:ec:43:46:bc:df:82:e1:40:
79:62:fa:aa:fa:3c:d8:85:9b:9f:a0:13:bd:82:8d:13:ad:4e:
93:2a:28:3d:fd:b4:a9:c2:1a:36:b3:06:59:3d:a7:51:f1:91:
48:e7:b3:e4:84:51:1a:49:da:db:af:b1:1f:61:39:2e:28:e8:
c4:72:a1:d3:e9:5f:bb:da:95:ac:c9:b4:54:1d:ac:fd:98:9d:
c8:4d:6c:b4:ab:4e:85:8a:ac:df:ff:1a:19:ee:86:44:ce:bb:
ff:59:a9:15:07:88:2e:12:72:5c:6a:57:57:45:b1:17:c6:af:
46:0b:ff:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKGfMyyojjdDf1ePz57WTrDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjNDI2MTg4MGY4MmYzODQ3MWE1NzE3YjgwMDljNGZiZGEy
ZGYyNDIwHhcNMjIwODEwMDY0MTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDQ1OTM4MzVjMzQ2MzRkZjZmYTc2OWJmYTVhOTIxNmQ4YzRhZGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLwnqUyilfbA7GpmehdyKieCMrQa
jfuoLpx1t81oWqWf9SukS9aEBIBZrLd6b7H/YXiL/hqULKSx9IK00VUShDw36898
97GFzRTSod/8oH0LWH5iwF3eovNngBKA/1/w7bV38IgUl/4MUd3V1zW24Hw3yljt
CzHhCcejNV0RojF+Fn9bwBtNDRXicM7J+QfzBZeDtE3JQAJh8EP7vn5o8qecPJQs
Xs+U/cuXtA2Hz/7Y4v09qn3D5yNYEm4ljnDWo03ewUzbUPczBLNO7sDMvAVZqch2
i4WPrslOkyDT6ZMZ24vRnMqj7NyEcq0rjGtYgS5CjBrWXmxltirlgzuP9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCRFk4NcNGNN9vp2m/pakhbYxK3bMB8GA1UdIwQY
MBaAFMxCYYgPgvOEcaVxe4AJxPvaLfJCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvekVKaGlBLUM4NFJ4cFhGN2dBbkUtOW90OGtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZDkzYjMtN2RkZi00ZDNhLWE0NTQt
ZDU2NDcxZTYxYzMzLzEvSkVXVGcxdzBZMDMyLW5hYi1scVNGdGpFcmRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83ZDkzYjMtN2RkZi00ZDNhLWE0NTQtZDU2NDcxZTYxYzMz
LzEvekVKaGlBLUM4NFJ4cFhGN2dBbkUtOW90OGtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU5baMA0G
CSqGSIb3DQEBCwUAA4IBAQBSoStD5IZXMLyC9MmuPJz+uTSWAFjDPSuI33pU/+Pe
id4AHAgk7G5NqoHkHMlEs8Z0YBk/vxPZbnwh+rXZRYfaJCXE/Qw0jOYJriZVImGH
/VNDze0Oxaxox6npk8ejInJ++i8Gh+T/T2a0SMuyD7B55sa8j3A/rLZZq8dcWgP+
N60bHGguk20a7ENGvN+C4UB5Yvqq+jzYhZufoBO9go0TrU6TKig9/bSpwho2swZZ
PadR8ZFI57PkhFEaSdrbr7EfYTkuKOjEcqHT6V+72pWsybRUHaz9mJ3ITWy0q06F
iqzf/xoZ7oZEzrv/WakVB4guEnJcaldXRbEXxq9GC//4
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:53:12 2025 by rpki-client