Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/2d168b-7fcc-45fb-aa3e-b6adfd604855/1/33tQCTO5lQt8wj6qHBbFW1cbGto.roa
File: 33tQCTO5lQt8wj6qHBbFW1cbGto.roa (raw, json)
Hash identifier: sTEolqzI8aUE+cW4mc6SXtWC8fnNrSXdtdqWw8MvONM=
Subject key identifier: DF:7B:50:09:33:B9:95:0B:7C:C2:3E:AA:1C:16:C5:5B:57:1B:1A:DA
Certificate issuer: /CN=f8f393fc2725d2460b6a2b981746d476340be06d
Certificate serial: 075B7634
Authority key identifier: F8:F3:93:FC:27:25:D2:46:0B:6A:2B:98:17:46:D4:76:34:0B:E0:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-POT_Ccl0kYLaiuYF0bUdjQL4G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/2d168b-7fcc-45fb-aa3e-b6adfd604855/1/33tQCTO5lQt8wj6qHBbFW1cbGto.roa
Signing time: Sat 01 Jan 2022 01:03:23 +0000
ROA not before: Sat 01 Jan 2022 01:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51088
IP address blocks: 185.34.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123434548 (0x75b7634)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f393fc2725d2460b6a2b981746d476340be06d
Validity
Not Before: Jan 1 01:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df7b500933b9950b7cc23eaa1c16c55b571b1ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d8:4f:32:9e:ac:57:1b:07:41:2e:2f:33:87:
36:7c:be:52:4e:38:58:9d:17:f4:d6:5e:79:3c:1e:
06:5c:03:71:97:25:ea:3e:34:20:72:ae:f6:00:f1:
12:72:ba:88:33:b7:7d:43:d8:b2:b1:6f:6a:2e:fe:
2d:ab:30:84:44:1e:65:84:6f:89:6f:4a:23:30:1f:
ec:01:36:53:66:96:89:a0:f5:71:a4:10:cb:87:a0:
cb:95:80:7d:12:30:9c:c5:72:49:04:65:94:07:2d:
f7:86:26:8e:6f:e1:b8:25:0c:29:3f:99:92:5f:00:
06:96:f1:66:41:56:1d:86:15:e0:98:83:e2:66:07:
ec:f2:f1:99:96:f8:82:91:1e:4f:2c:5d:07:0e:f4:
64:4c:e0:68:85:64:8e:e4:ce:54:99:b7:1b:e2:2b:
ef:0c:2e:01:35:48:cc:10:53:cd:fe:be:62:a9:de:
33:19:50:39:11:15:e7:a1:69:3b:a8:fd:65:f3:5b:
cd:6d:0d:24:cf:06:12:9a:85:0a:99:ea:1d:c8:12:
dc:13:10:cf:50:9c:99:1c:c0:ec:50:ba:37:5f:24:
e0:f7:ad:1b:b8:b7:ec:51:78:0b:96:49:51:62:27:
a7:a6:e7:e1:59:07:f2:c7:76:87:85:b1:86:6a:aa:
b6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:7B:50:09:33:B9:95:0B:7C:C2:3E:AA:1C:16:C5:5B:57:1B:1A:DA
X509v3 Authority Key Identifier:
keyid:F8:F3:93:FC:27:25:D2:46:0B:6A:2B:98:17:46:D4:76:34:0B:E0:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-POT_Ccl0kYLaiuYF0bUdjQL4G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/2d168b-7fcc-45fb-aa3e-b6adfd604855/1/33tQCTO5lQt8wj6qHBbFW1cbGto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/2d168b-7fcc-45fb-aa3e-b6adfd604855/1/1-POT_Ccl0kYLaiuYF0bUdjQL4G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.220.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:ae:cc:16:79:1f:d3:b1:a7:da:16:9d:24:87:61:85:63:72:
8e:98:4c:e1:71:50:b6:f2:a5:3f:e8:35:29:88:56:8a:43:10:
8c:45:09:cc:0d:24:d4:3c:83:88:4e:54:fa:98:5d:f8:ae:eb:
38:e7:9b:e1:5d:1f:74:fe:78:b0:f7:99:f7:44:ab:88:0c:d0:
5b:94:6e:d9:36:a2:39:d8:66:69:61:36:b8:16:20:42:d8:e4:
27:06:21:8b:a8:2c:d1:b0:72:b6:17:2a:b2:f5:d8:3b:84:9b:
76:99:27:e6:be:43:65:5a:5b:38:2a:d1:6d:0f:e7:ad:06:df:
3e:99:8e:dd:fa:6c:54:1c:a8:07:88:cf:aa:5c:ea:42:c5:81:
16:53:9b:b6:a9:de:bf:9a:78:98:25:bf:12:fd:ad:c8:d9:6f:
40:bf:ee:f2:e7:26:b5:67:5d:bf:4e:0b:55:6f:f5:45:99:03:
10:92:98:37:1c:e2:e4:38:ce:aa:15:90:53:30:82:f9:b4:89:
13:5d:a0:e8:39:11:a5:be:ab:50:dc:02:05:e7:a2:a0:5e:12:
39:ca:55:9e:e9:1b:85:3c:2d:93:c9:6b:f3:85:15:ce:67:0a:
ed:b5:e9:7d:1c:c8:f3:28:03:a6:f2:46:32:b8:af:67:b2:94:
6f:22:93:da
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEB1t2NDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGYzOTNmYzI3MjVkMjQ2MGI2YTJiOTgxNzQ2ZDQ3NjM0MGJlMDZkMB4XDTIyMDEw
MTAxMDMyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGY3YjUwMDkzM2I5
OTUwYjdjYzIzZWFhMWMxNmM1NWI1NzFiMWFkYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANzYTzKerFcbB0EuLzOHNny+Uk44WJ0X9NZeeTweBlwDcZcl
6j40IHKu9gDxEnK6iDO3fUPYsrFvai7+LaswhEQeZYRviW9KIzAf7AE2U2aWiaD1
caQQy4egy5WAfRIwnMVySQRllAct94Ymjm/huCUMKT+Zkl8ABpbxZkFWHYYV4JiD
4mYH7PLxmZb4gpEeTyxdBw70ZEzgaIVkjuTOVJm3G+Ir7wwuATVIzBBTzf6+Yqne
MxlQOREV56FpO6j9ZfNbzW0NJM8GEpqFCpnqHcgS3BMQz1CcmRzA7FC6N18k4Pet
G7i37FF4C5ZJUWInp6bn4VkH8sd2h4WxhmqqtlcCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBTfe1AJM7mVC3zCPqocFsVbVxsa2jAfBgNVHSMEGDAWgBT485P8JyXSRgtq
K5gXRtR2NAvgbTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtUE9UX0NjbDBrWUxhaXVZRjBiVWRqUUw0RzAuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzk4LzJkMTY4Yi03ZmNjLTQ1ZmItYWEzZS1iNmFkZmQ2MDQ4NTUv
MS8zM3RRQ1RPNWxRdDh3ajZxSEJiRlcxY2JHdG8ucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk4
LzJkMTY4Yi03ZmNjLTQ1ZmItYWEzZS1iNmFkZmQ2MDQ4NTUvMS8xLVBPVF9DY2ww
a1lMYWl1WUYwYlVkalFMNEcwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuSLcMA0GCSqGSIb3DQEBCwUA
A4IBAQDSrswWeR/TsafaFp0kh2GFY3KOmEzhcVC28qU/6DUpiFaKQxCMRQnMDSTU
PIOITlT6mF34rus455vhXR90/niw95n3RKuIDNBblG7ZNqI52GZpYTa4FiBC2OQn
BiGLqCzRsHK2Fyqy9dg7hJt2mSfmvkNlWls4KtFtD+etBt8+mY7d+mxUHKgHiM+q
XOpCxYEWU5u2qd6/mniYJb8S/a3I2W9Av+7y5ya1Z12/TgtVb/VFmQMQkpg3HOLk
OM6qFZBTMIL5tIkTXaDoORGlvqtQ3AIF56KgXhI5ylWe6RuFPC2TyWvzhRXOZwrt
tel9HMjzKAOm8kYyuK9nspRvIpPa
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:42:38 2025 by rpki-client