Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/tjsho0FafZCvDsyUOMcngK_nNzQ.roa
File: tjsho0FafZCvDsyUOMcngK_nNzQ.roa (raw, json)
Hash identifier: saKPBeWUr4cWOpEk2DpOwbYogOJ7cNyXTRMh8glWKNo=
Subject key identifier: B6:3B:21:A3:41:5A:7D:90:AF:0E:CC:94:38:C7:27:80:AF:E7:37:34
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 01878EC9C8C2D0130FBF59E15988654DCDBD
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/tjsho0FafZCvDsyUOMcngK_nNzQ.roa
Signing time: Mon 17 Apr 2023 10:36:41 +0000
ROA not before: Mon 17 Apr 2023 10:36:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202973
IP address blocks: 45.15.157.0/24 maxlen: 24
217.196.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:c9:c8:c2:d0:13:0f:bf:59:e1:59:88:65:4d:cd:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Apr 17 10:36:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b63b21a3415a7d90af0ecc9438c72780afe73734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:92:50:ed:3a:d4:54:09:fb:e1:49:f5:e2:c1:
3f:8e:05:53:c3:21:66:c4:fe:e3:52:e7:b6:37:18:
42:5b:33:a5:c3:63:6d:8e:9f:e1:0c:dd:8f:80:de:
23:09:ff:4c:5e:ac:67:51:fc:f2:22:78:aa:c2:52:
89:f7:79:91:d8:d8:f5:d5:63:80:fc:0b:18:9c:9d:
67:22:2b:1e:ba:11:f1:6a:99:bb:46:1e:88:68:41:
86:97:ac:8c:41:0a:dd:bb:83:bf:e9:93:82:3d:65:
d5:70:6b:f8:64:28:e2:29:f0:46:09:d4:2d:b4:3b:
43:22:21:e2:30:ba:63:64:d8:fe:4b:9c:8c:a8:54:
fe:75:86:b3:24:9e:dc:18:54:5d:0b:1b:d1:44:46:
7a:72:f4:6c:a1:b2:43:1b:30:55:d7:b8:ee:4e:e9:
00:ca:f7:6f:85:8e:24:c0:af:bd:c0:0e:0b:6a:44:
c5:d1:b9:5e:4b:57:0b:aa:12:1a:25:d3:18:d2:e5:
d1:93:c6:43:49:99:32:de:76:86:41:ac:58:f4:b0:
4a:26:c6:79:ab:7c:4e:75:c4:28:4f:0a:1d:99:7f:
60:b3:96:08:80:ac:b3:33:4e:5f:42:72:0e:65:b1:
6b:c2:86:86:e6:89:6c:1b:03:ae:ca:7a:7a:04:05:
78:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:3B:21:A3:41:5A:7D:90:AF:0E:CC:94:38:C7:27:80:AF:E7:37:34
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/tjsho0FafZCvDsyUOMcngK_nNzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.157.0/24
217.196.96.0/24
Signature Algorithm: sha256WithRSAEncryption
14:2b:8b:8f:d2:c8:01:f9:b5:d0:6c:be:4c:a7:5c:5a:2d:99:
c0:29:6f:46:68:28:75:5b:4d:9a:84:63:87:19:c6:7d:d2:f8:
a7:b6:eb:bf:95:dc:78:ef:ba:ad:8a:a5:9e:2e:4a:40:87:75:
9a:d9:aa:3c:21:ee:09:e1:9e:8c:c6:b2:cd:ae:7d:46:6d:17:
39:57:64:1f:02:63:0d:55:c4:e8:b5:83:3e:dd:4a:b4:db:e8:
ae:14:2f:9f:f6:4d:49:c4:8f:f3:71:26:94:15:76:b2:36:16:
9c:d5:4b:12:41:0e:aa:fc:60:8d:41:e9:8e:dd:59:80:b7:cd:
17:71:41:20:f7:cf:cd:6f:12:f4:2f:d3:bd:93:f7:ac:30:fd:
57:40:64:3b:ea:a8:84:2d:d5:36:72:d3:22:91:99:21:f5:fc:
81:36:c0:87:ee:ec:81:ed:90:72:f9:c2:06:1e:00:6b:c7:01:
bb:97:9c:10:d9:dc:be:94:2b:44:f9:f2:cb:d8:b9:1b:c9:e9:
d0:d7:f5:65:b3:c9:e9:be:79:d1:d8:36:59:87:03:a6:a3:02:
8c:7c:64:ae:71:20:a6:62:a3:75:7a:6d:97:b8:a6:f4:04:89:
c5:a2:b9:23:a8:8c:90:70:40:0a:dd:31:aa:a6:f1:a5:83:e9:
a1:3a:51:96
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYeOycjC0BMPv1nhWYhlTc29MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMzA2NThmMTZkMmQ4OGQzNDE2NDU5MmZjZDRkZTEzMTMx
ZjE2OTUwHhcNMjMwNDE3MTAzNjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjNiMjFhMzQxNWE3ZDkwYWYwZWNjOTQzOGM3Mjc4MGFmZTczNzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpJQ7TrUVAn74Un14sE/jgVTwyFm
xP7jUue2NxhCWzOlw2Ntjp/hDN2PgN4jCf9MXqxnUfzyIniqwlKJ93mR2Nj11WOA
/AsYnJ1nIiseuhHxapm7Rh6IaEGGl6yMQQrdu4O/6ZOCPWXVcGv4ZCjiKfBGCdQt
tDtDIiHiMLpjZNj+S5yMqFT+dYazJJ7cGFRdCxvRREZ6cvRsobJDGzBV17juTukA
yvdvhY4kwK+9wA4LakTF0bleS1cLqhIaJdMY0uXRk8ZDSZky3naGQaxY9LBKJsZ5
q3xOdcQoTwodmX9gs5YIgKyzM05fQnIOZbFrwoaG5olsGwOuynp6BAV4xQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLY7IaNBWn2Qrw7MlDjHJ4Cv5zc0MB8GA1UdIwQY
MBaAFPAwZY8W0tiNNBZFkvzU3hMTHxaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOERCbGp4YlMySTAwRmtXU19OVGVFeE1mRnBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi82NjkzZTMtODljYS00NGExLWE4YjYt
ODk0ODA1Mjg5Y2MwLzEvdGpzaG8wRmFmWkN2RHN5VU9NY25nS19uTnpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi82NjkzZTMtODljYS00NGExLWE4YjYtODk0ODA1Mjg5Y2Mw
LzEvOERCbGp4YlMySTAwRmtXU19OVGVFeE1mRnBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQ+dAwQA
2cRgMA0GCSqGSIb3DQEBCwUAA4IBAQAUK4uP0sgB+bXQbL5Mp1xaLZnAKW9GaCh1
W02ahGOHGcZ90vintuu/ldx477qtiqWeLkpAh3Wa2ao8Ie4J4Z6MxrLNrn1GbRc5
V2QfAmMNVcTotYM+3Uq02+iuFC+f9k1JxI/zcSaUFXayNhac1UsSQQ6q/GCNQemO
3VmAt80XcUEg98/NbxL0L9O9k/esMP1XQGQ76qiELdU2ctMikZkh9fyBNsCH7uyB
7ZBy+cIGHgBrxwG7l5wQ2dy+lCtE+fLL2LkbyenQ1/Vls8npvnnR2DZZhwOmowKM
fGSucSCmYqN1em2XuKb0BInForkjqIyQcEAK3TGqpvGlg+mhOlGW
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:26 2025 by rpki-client