Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/dJzxFPF8MFAfBmGKgcym9DMO2hg.roa
File: dJzxFPF8MFAfBmGKgcym9DMO2hg.roa (raw, json)
Hash identifier: tVMlhiJmpLiphCrRqUaNrBS+v+OwnoAMJS5rU6M4qd8=
Subject key identifier: 74:9C:F1:14:F1:7C:30:50:1F:06:61:8A:81:CC:A6:F4:33:0E:DA:18
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0195D8FF12A908D39D0429E3D198134EA3DC
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/dJzxFPF8MFAfBmGKgcym9DMO2hg.roa
Signing time: Thu 27 Mar 2025 19:05:49 +0000
ROA not before: Thu 27 Mar 2025 19:05:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 151.243.8.0/23 maxlen: 23
151.243.204.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d8:ff:12:a9:08:d3:9d:04:29:e3:d1:98:13:4e:a3:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Mar 27 19:05:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=749cf114f17c30501f06618a81cca6f4330eda18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:55:62:34:08:dd:88:52:48:fc:2e:82:51:b7:
6c:3c:9a:72:32:e8:49:12:52:f7:f2:da:e0:e1:b5:
c4:91:e9:6b:28:3a:57:17:cf:ff:ee:c0:3c:9f:4c:
73:33:81:6c:85:d7:2a:48:e8:6f:ca:4f:98:20:6d:
6c:be:ae:03:0d:72:00:76:05:17:78:d9:07:0b:cd:
05:da:29:dd:b9:d5:90:83:d1:72:7d:ab:3c:41:b6:
d7:1a:9a:e0:74:05:bc:a9:5b:12:31:22:06:99:bf:
15:57:8a:3f:91:49:04:7e:48:42:d2:e5:05:03:02:
b2:6a:82:4c:84:f7:b8:ca:1d:a8:24:b0:ea:55:83:
26:25:23:5a:77:75:6c:44:0b:71:a5:15:c0:7f:f5:
8b:2b:5f:54:85:b6:3d:2a:d4:b0:b8:0d:81:32:64:
15:03:09:54:13:74:98:01:d0:da:fe:f2:b4:59:13:
a8:5f:ad:2e:b5:82:92:bf:23:48:a9:91:b8:06:10:
44:aa:da:92:46:b0:cf:05:7c:a9:07:9f:d3:52:a9:
d8:58:23:92:c7:5d:bd:b1:d3:6c:55:26:4d:8d:63:
8c:d3:53:59:85:fc:14:1b:f0:a9:9e:3b:50:13:6d:
ba:8e:bc:ca:94:4e:e5:8b:6c:20:86:6b:bb:f6:ae:
9b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:9C:F1:14:F1:7C:30:50:1F:06:61:8A:81:CC:A6:F4:33:0E:DA:18
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/dJzxFPF8MFAfBmGKgcym9DMO2hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.8.0/23
151.243.204.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:3d:5b:7d:b1:67:28:f5:3e:43:0e:ba:69:d2:21:7f:a6:8d:
9a:3e:74:09:8c:35:14:a5:a6:2a:cd:48:57:96:25:0b:97:aa:
b7:a8:75:d5:da:ce:1c:e0:ce:b2:b9:b8:d2:89:63:32:bc:14:
7e:22:b7:5f:ef:23:dc:74:20:e1:e5:2e:86:67:56:bb:19:fb:
a9:3b:45:01:1d:1c:f2:dc:03:08:0f:dc:b4:d7:fb:4f:21:99:
87:2d:68:76:cc:10:8d:c5:d1:b5:5b:43:bb:82:64:b6:8b:7d:
e1:02:f0:e4:93:a2:e8:6d:87:4a:89:6a:a2:7d:a5:9c:da:c5:
d4:ef:4d:46:d9:7d:d2:77:5b:4f:00:5f:b1:26:c2:af:9c:e0:
8d:1f:e8:90:e8:d5:66:be:86:ad:b1:ee:2a:9a:94:2e:b9:8c:
a2:00:85:64:b2:19:c8:c7:e9:6b:f6:2f:34:e3:23:d1:ec:55:
d7:8b:63:83:85:e9:ab:af:19:d8:c6:16:de:77:25:98:67:05:
40:7d:92:49:fc:ef:18:95:97:88:b9:5d:25:a0:a3:2a:f1:89:
a9:a2:70:2a:92:a3:fa:82:20:c8:fd:8e:2e:b6:e7:37:54:fd:
88:53:fe:78:bd:ef:76:01:4a:34:ba:f1:f1:8f:a3:70:f6:3c:
0b:c2:29:d6
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZXY/xKpCNOdBCnj0ZgTTqPcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjUwMzI3MTkwNTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDljZjExNGYxN2MzMDUwMWYwNjYxOGE4MWNjYTZmNDMzMGVkYTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlViNAjdiFJI/C6CUbdsPJpyMuhJ
ElL38trg4bXEkelrKDpXF8//7sA8n0xzM4FshdcqSOhvyk+YIG1svq4DDXIAdgUX
eNkHC80F2indudWQg9Fyfas8QbbXGprgdAW8qVsSMSIGmb8VV4o/kUkEfkhC0uUF
AwKyaoJMhPe4yh2oJLDqVYMmJSNad3VsRAtxpRXAf/WLK19UhbY9KtSwuA2BMmQV
AwlUE3SYAdDa/vK0WROoX60utYKSvyNIqZG4BhBEqtqSRrDPBXypB5/TUqnYWCOS
x129sdNsVSZNjWOM01NZhfwUG/CpnjtQE226jrzKlE7li2wghmu79q6b2wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHSc8RTxfDBQHwZhioHMpvQzDtoYMB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvZEp6eEZQRjhNRkFmQm1HS2djeW05RE1PMmhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBl/MIAwQB
l/PMMA0GCSqGSIb3DQEBCwUAA4IBAQCsPVt9sWco9T5DDrpp0iF/po2aPnQJjDUU
paYqzUhXliULl6q3qHXV2s4c4M6yubjSiWMyvBR+Irdf7yPcdCDh5S6GZ1a7Gfup
O0UBHRzy3AMID9y01/tPIZmHLWh2zBCNxdG1W0O7gmS2i33hAvDkk6LobYdKiWqi
faWc2sXU701G2X3Sd1tPAF+xJsKvnOCNH+iQ6NVmvoatse4qmpQuuYyiAIVkshnI
x+lr9i804yPR7FXXi2ODhemrrxnYxhbedyWYZwVAfZJJ/O8YlZeIuV0loKMq8Ymp
onAqkqP6giDI/Y4utuc3VP2IU/54ve92AUo0uvHxj6Nw9jwLwinW
-----END CERTIFICATE-----
Generated at Fri Apr 11 17:35:28 2025 by rpki-client