Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UooZRbzeoHtmQPAq_yn9-m5l_Wo.roa
File: UooZRbzeoHtmQPAq_yn9-m5l_Wo.roa (raw, json)
Hash identifier: hfZOLj2TiYWoH7/fM5hlvtccy1bWP18GJ8R9Q2KFXbY=
Subject key identifier: 52:8A:19:45:BC:DE:A0:7B:66:40:F0:2A:FF:29:FD:FA:6E:65:FD:6A
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019507F5C86C434EB0814A308252EF75FCEB
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UooZRbzeoHtmQPAq_yn9-m5l_Wo.roa
Signing time: Sat 15 Feb 2025 04:55:02 +0000
ROA not before: Sat 15 Feb 2025 04:55:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 264459
IP address blocks: 151.243.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:07:f5:c8:6c:43:4e:b0:81:4a:30:82:52:ef:75:fc:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Feb 15 04:55:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=528a1945bcdea07b6640f02aff29fdfa6e65fd6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:71:63:35:a9:6d:7b:76:af:38:6a:4c:c1:24:
bb:82:4d:ea:72:4c:d9:84:4b:ab:a9:ed:d9:5f:60:
d4:16:1f:01:63:34:7c:99:47:d8:2a:87:56:c8:ce:
79:64:c8:87:9e:87:cf:ee:bc:78:26:64:45:02:2c:
6d:f2:6d:b9:1b:90:08:55:2d:de:cc:24:16:32:3e:
13:e5:aa:df:b2:80:ad:e1:1e:5e:7c:3a:9e:62:17:
fd:a6:62:5e:89:d9:d5:2b:51:76:8a:68:0b:0d:4a:
06:59:a3:52:99:12:1c:f9:aa:e4:1e:bb:70:97:46:
25:cc:16:f6:9e:1c:95:31:38:6b:c3:7b:ba:4d:32:
a7:f4:91:9b:c7:74:99:7c:68:1d:9c:c2:10:28:20:
03:9c:db:f7:f9:f3:d4:37:ee:d4:f7:d2:65:93:9d:
6a:50:f1:a6:d0:7d:aa:e1:27:e0:41:68:c9:80:da:
97:d9:74:a6:78:43:72:08:4a:23:61:12:38:84:d6:
e1:a4:93:6c:e7:de:47:b7:45:cc:04:cb:74:2a:45:
e9:97:a1:7d:48:cf:87:9b:3e:d3:c5:c8:8f:1c:05:
5e:af:03:0d:36:fa:f1:ae:f3:e7:6a:44:a0:7e:61:
9d:27:2b:a7:11:32:81:48:84:61:ef:b3:91:04:5d:
3d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:8A:19:45:BC:DE:A0:7B:66:40:F0:2A:FF:29:FD:FA:6E:65:FD:6A
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UooZRbzeoHtmQPAq_yn9-m5l_Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.51.0/24
Signature Algorithm: sha256WithRSAEncryption
32:aa:1a:3a:62:72:11:3a:82:1a:0c:78:40:e9:17:40:01:bb:
33:08:9f:c7:5d:d6:ce:33:cd:0f:2d:d1:2c:85:ec:09:22:49:
19:78:c6:ac:22:f9:d4:ec:f6:35:4a:64:25:e4:c9:e2:e8:c7:
fd:d9:41:73:54:05:74:69:82:21:d9:cf:32:67:fa:b4:84:a6:
03:77:9b:2a:67:0d:a6:da:ad:df:f4:11:20:d2:0b:4e:17:6c:
e9:87:18:81:ea:61:0b:d3:1d:02:81:d2:4b:50:4a:f6:da:ff:
74:04:5b:fd:d7:45:df:30:a1:d1:62:32:1b:ac:77:0d:d5:22:
5f:de:10:95:f0:bd:fa:18:ef:f9:5f:cb:76:97:01:43:0a:89:
8d:30:3f:92:ed:fc:2c:60:f7:16:47:14:0c:5f:41:d1:81:48:
03:2d:73:75:df:ad:47:01:d8:99:ae:c6:3c:31:fb:c6:74:b4:
73:74:6e:b2:32:f9:cb:18:b0:f8:ce:ad:d5:14:00:d7:12:82:
eb:d0:96:23:aa:61:9d:b3:c9:f4:cc:ed:86:9c:87:2d:1e:4c:
ac:ca:1a:dd:76:db:82:34:ec:1e:bf:eb:5d:9c:72:ea:0f:af:
f1:7d:99:1e:07:ac:34:93:5d:55:c2:e6:14:fb:2a:8c:cd:9f:
e0:e1:3d:ca
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUH9chsQ06wgUowglLvdfzrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjUwMjE1MDQ1NTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjhhMTk0NWJjZGVhMDdiNjY0MGYwMmFmZjI5ZmRmYTZlNjVmZDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXFjNalte3avOGpMwSS7gk3qckzZ
hEurqe3ZX2DUFh8BYzR8mUfYKodWyM55ZMiHnofP7rx4JmRFAixt8m25G5AIVS3e
zCQWMj4T5arfsoCt4R5efDqeYhf9pmJeidnVK1F2imgLDUoGWaNSmRIc+arkHrtw
l0YlzBb2nhyVMThrw3u6TTKn9JGbx3SZfGgdnMIQKCADnNv3+fPUN+7U99Jlk51q
UPGm0H2q4SfgQWjJgNqX2XSmeENyCEojYRI4hNbhpJNs595Ht0XMBMt0KkXpl6F9
SM+Hmz7TxciPHAVerwMNNvrxrvPnakSgfmGdJyunETKBSIRh77ORBF09SQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFKKGUW83qB7ZkDwKv8p/fpuZf1qMB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvVW9vWlJiemVvSHRtUVBBcV95bjktbTVsX1dvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/MzMA0G
CSqGSIb3DQEBCwUAA4IBAQAyqho6YnIROoIaDHhA6RdAAbszCJ/HXdbOM80PLdEs
hewJIkkZeMasIvnU7PY1SmQl5Mni6Mf92UFzVAV0aYIh2c8yZ/q0hKYDd5sqZw2m
2q3f9BEg0gtOF2zphxiB6mEL0x0CgdJLUEr22v90BFv910XfMKHRYjIbrHcN1SJf
3hCV8L36GO/5X8t2lwFDComNMD+S7fwsYPcWRxQMX0HRgUgDLXN1361HAdiZrsY8
MfvGdLRzdG6yMvnLGLD4zq3VFADXEoLr0JYjqmGds8n0zO2GnIctHkysyhrddtuC
NOwev+tdnHLqD6/xfZkeB6w0k11VwuYU+yqMzZ/g4T3K
-----END CERTIFICATE-----
Generated at Thu Apr 10 14:40:29 2025 by rpki-client