Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Td_tAB3CrVbfHcSB5AhDEVY957M.roa
File: Td_tAB3CrVbfHcSB5AhDEVY957M.roa (raw, json)
Hash identifier: ag03Y22i3csGaCqrH3JCe57E7lAMqF8Kv55znGph8AU=
Subject key identifier: 4D:DF:ED:00:1D:C2:AD:56:DF:1D:C4:81:E4:08:43:11:56:3D:E7:B3
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 019422200A0729B8DB32E6ADD5C7A60DA971
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Td_tAB3CrVbfHcSB5AhDEVY957M.roa
Signing time: Wed 01 Jan 2025 13:48:32 +0000
ROA not before: Wed 01 Jan 2025 13:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215850
IP address blocks: 212.16.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:0a:07:29:b8:db:32:e6:ad:d5:c7:a6:0d:a9:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 1 13:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4ddfed001dc2ad56df1dc481e4084311563de7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1e:37:27:7b:10:2a:dc:0d:2e:44:50:62:78:
09:f9:94:9e:11:5f:9e:3e:4c:21:e4:01:12:f0:15:
22:23:7f:f3:47:e3:07:3f:4b:32:80:61:3c:78:cc:
eb:6c:81:f4:46:bf:a9:2a:a1:74:56:11:02:37:da:
b6:b4:5f:57:c5:7c:ea:a7:7f:48:11:0d:58:1c:7d:
90:3c:a9:4e:4d:c2:f2:8b:a1:14:d4:47:27:78:4d:
4e:4f:ac:ab:56:5c:4d:bb:98:fe:e7:b5:17:36:86:
ba:b5:ea:f9:17:47:db:2c:f1:58:18:fc:bf:bb:ac:
2b:71:4e:7e:8b:bb:0c:90:d0:ad:11:58:f2:9f:74:
dc:c8:03:1d:d9:54:71:3f:70:18:65:7b:bb:f9:48:
83:be:05:ee:70:8c:1c:d1:d4:fe:c8:ce:32:a8:4d:
d3:e0:3c:24:c9:f9:75:3b:83:56:3c:4d:5a:29:ff:
38:61:75:b0:89:0d:32:49:0f:49:99:0e:1f:46:33:
11:16:38:61:21:c7:a9:bd:de:be:76:82:14:85:f0:
b4:28:31:1c:24:ed:3f:c5:a4:b8:1e:b6:4a:29:b8:
f2:4a:b5:2a:ac:e2:07:88:77:f3:09:71:f3:78:e6:
c0:af:6e:0b:ec:9f:6c:50:53:be:53:a8:d4:7f:25:
65:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:DF:ED:00:1D:C2:AD:56:DF:1D:C4:81:E4:08:43:11:56:3D:E7:B3
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Td_tAB3CrVbfHcSB5AhDEVY957M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.89.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:92:a1:01:5b:45:8f:a2:66:5b:f9:de:55:57:92:a2:00:1e:
e5:74:77:d6:19:8c:07:a6:0a:3f:f8:0a:30:f7:05:03:18:b1:
73:b1:1c:7d:0e:e9:f0:4e:ca:11:70:05:59:8e:12:db:eb:77:
53:b8:0d:36:da:37:79:52:ce:2c:a6:7a:bd:85:d3:d3:e0:70:
23:cc:58:05:29:fb:e9:41:a6:d0:c0:98:e0:3c:16:a0:b0:af:
9e:bd:c0:95:2a:a5:c3:98:28:70:1f:b0:5f:15:83:8b:7c:a9:
d8:15:f7:e9:9f:a7:ca:7f:d7:82:9a:d4:45:57:bf:ee:b3:84:
0d:e5:13:c1:9a:25:8d:2c:f4:51:4c:57:16:2d:4e:fb:14:18:
dc:74:ac:84:46:6c:55:cd:16:fc:d6:83:8c:0f:77:0f:59:a8:
45:86:7b:52:98:0c:f6:6e:89:f2:46:ab:03:de:dd:b2:be:f4:
23:a4:d9:da:dd:e4:7e:1e:a7:76:a5:37:4b:a1:94:67:06:81:
c8:56:c8:b3:7d:d3:db:fd:64:3f:be:7e:24:c6:c8:ff:8b:07:
94:ea:bc:f3:4d:57:36:dd:0e:ef:9e:88:83:eb:04:21:f4:9a:
61:56:ee:fd:02:be:2c:1e:cb:27:32:1f:a9:b8:61:d9:29:c8:
bf:ef:b2:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiIAoHKbjbMuat1cemDalxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjUwMTAxMTM0ODMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGRmZWQwMDFkYzJhZDU2ZGYxZGM0ODFlNDA4NDMxMTU2M2RlN2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsB43J3sQKtwNLkRQYngJ+ZSeEV+e
Pkwh5AES8BUiI3/zR+MHP0sygGE8eMzrbIH0Rr+pKqF0VhECN9q2tF9XxXzqp39I
EQ1YHH2QPKlOTcLyi6EU1EcneE1OT6yrVlxNu5j+57UXNoa6ter5F0fbLPFYGPy/
u6wrcU5+i7sMkNCtEVjyn3TcyAMd2VRxP3AYZXu7+UiDvgXucIwc0dT+yM4yqE3T
4Dwkyfl1O4NWPE1aKf84YXWwiQ0ySQ9JmQ4fRjMRFjhhIcepvd6+doIUhfC0KDEc
JO0/xaS4HrZKKbjySrUqrOIHiHfzCXHzeObAr24L7J9sUFO+U6jUfyVlXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE3f7QAdwq1W3x3EgeQIQxFWPeezMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvVGRfdEFCM0NyVmJmSGNTQjVBaERFVlk5NTdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BBZMA0G
CSqGSIb3DQEBCwUAA4IBAQCikqEBW0WPomZb+d5VV5KiAB7ldHfWGYwHpgo/+Aow
9wUDGLFzsRx9DunwTsoRcAVZjhLb63dTuA022jd5Us4spnq9hdPT4HAjzFgFKfvp
QabQwJjgPBagsK+evcCVKqXDmChwH7BfFYOLfKnYFffpn6fKf9eCmtRFV7/us4QN
5RPBmiWNLPRRTFcWLU77FBjcdKyERmxVzRb81oOMD3cPWahFhntSmAz2bonyRqsD
3t2yvvQjpNna3eR+Hqd2pTdLoZRnBoHIVsizfdPb/WQ/vn4kxsj/iweU6rzzTVc2
3Q7vnoiD6wQh9JphVu79Ar4sHssnMh+puGHZKci/77LQ
-----END CERTIFICATE-----
Generated at Sat Apr 12 08:28:32 2025 by rpki-client