Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f14e76-cacf-45ce-8080-2c2905c3c83f/1/rjZL2EjI9RkXtkykyQtSh9oj63w.roa
File: rjZL2EjI9RkXtkykyQtSh9oj63w.roa (raw, json)
Hash identifier: +jm6WUdfBWUwMAvo9gxqjK7ro2RMpv8hdQCw0gDOJA8=
Subject key identifier: AE:36:4B:D8:48:C8:F5:19:17:B6:4C:A4:C9:0B:52:87:DA:23:EB:7C
Certificate issuer: /CN=2c256b1d4abb21395d97263a5fa8d3a55391db61
Certificate serial: A44BEE
Authority key identifier: 2C:25:6B:1D:4A:BB:21:39:5D:97:26:3A:5F:A8:D3:A5:53:91:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LCVrHUq7ITldlyY6X6jTpVOR22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f14e76-cacf-45ce-8080-2c2905c3c83f/1/rjZL2EjI9RkXtkykyQtSh9oj63w.roa
Signing time: Sat 01 Jan 2022 01:57:28 +0000
ROA not before: Sat 01 Jan 2022 01:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 213.109.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10767342 (0xa44bee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c256b1d4abb21395d97263a5fa8d3a55391db61
Validity
Not Before: Jan 1 01:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae364bd848c8f51917b64ca4c90b5287da23eb7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:03:b8:8e:d3:a2:b6:2a:5a:9f:20:a9:2c:1d:
46:c9:1f:0f:f5:93:9b:4a:37:0e:ed:9a:fa:4b:9c:
8a:28:c0:1b:02:05:a6:f6:40:ea:a3:39:11:9c:6c:
8d:2b:7a:7c:76:96:48:af:b6:3e:57:3d:b9:ba:97:
7e:c1:b8:5b:55:f7:8e:45:aa:87:91:9a:3c:80:01:
c3:19:d4:df:63:58:ff:9f:54:2d:7c:97:52:25:91:
5c:57:42:00:12:78:36:92:80:2c:31:13:dc:50:d5:
de:a1:b1:11:c0:09:88:2d:da:47:cd:97:13:02:03:
47:46:be:cd:c2:0c:84:69:03:b0:26:53:d6:00:ae:
58:e5:ac:ad:01:75:c3:34:a0:22:5e:0e:19:70:4f:
57:d4:d2:f4:a6:28:be:49:f2:b2:04:1a:75:c7:9f:
d8:b5:de:16:6d:f8:f7:55:ea:83:d7:f6:4a:89:c8:
2c:f1:cc:5b:9a:72:39:2d:5f:d5:9d:9c:66:a2:72:
f3:ca:6f:55:d6:37:e0:2f:1f:42:75:1c:b9:50:4b:
6e:7a:fd:28:e3:c0:e2:8a:43:46:bd:a9:da:59:f3:
0f:cb:5e:77:a2:c2:44:69:85:c0:cc:d3:22:a1:e2:
2b:82:5d:5c:26:6c:e0:70:e4:57:bc:64:ed:7c:81:
7d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:36:4B:D8:48:C8:F5:19:17:B6:4C:A4:C9:0B:52:87:DA:23:EB:7C
X509v3 Authority Key Identifier:
keyid:2C:25:6B:1D:4A:BB:21:39:5D:97:26:3A:5F:A8:D3:A5:53:91:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LCVrHUq7ITldlyY6X6jTpVOR22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f14e76-cacf-45ce-8080-2c2905c3c83f/1/rjZL2EjI9RkXtkykyQtSh9oj63w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f14e76-cacf-45ce-8080-2c2905c3c83f/1/LCVrHUq7ITldlyY6X6jTpVOR22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.192.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:fa:78:08:c4:a0:60:67:69:a8:63:85:c7:3f:1c:d0:13:01:
5b:59:77:0d:5a:73:35:76:f1:1a:69:5c:07:15:54:0e:26:4a:
a3:01:d5:c7:c0:f0:93:72:ea:5a:e5:1c:8c:80:59:e4:29:82:
b5:81:53:de:3b:8c:86:99:d2:68:a9:80:4e:27:bd:62:c2:5d:
05:0d:33:42:cb:3e:e1:53:87:21:0d:c7:50:a6:72:d5:e8:bf:
4b:1c:3b:bf:be:f1:c1:4d:7e:d1:5b:61:ef:87:92:b1:f6:cd:
f9:98:c0:47:9e:1a:e6:97:d5:3e:ff:13:e7:96:94:57:23:e4:
c2:94:33:d0:b9:36:db:01:86:22:ae:ab:ef:42:6b:f1:4f:f5:
fa:97:64:80:ac:73:fc:08:13:ac:11:2d:ab:5a:bd:77:2e:25:
20:5b:53:16:0a:4b:8e:08:e3:56:40:2e:0a:30:ae:e3:63:6d:
94:48:04:69:e3:4e:40:12:db:43:28:6f:01:05:fa:a2:3e:ce:
a3:32:60:43:68:e2:f0:e7:fb:59:cb:79:7f:8f:27:54:e7:81:
02:70:6a:f0:a9:90:bc:73:40:c5:82:5b:01:08:c7:0e:97:e5:
65:76:67:68:29:68:a2:0a:40:2d:62:5d:11:c6:d5:c9:3e:ef:
67:da:8b:69
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAKRL7jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YzI1NmIxZDRhYmIyMTM5NWQ5NzI2M2E1ZmE4ZDNhNTUzOTFkYjYxMB4XDTIyMDEw
MTAxNTcyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWUzNjRiZDg0OGM4
ZjUxOTE3YjY0Y2E0YzkwYjUyODdkYTIzZWI3YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALEDuI7TorYqWp8gqSwdRskfD/WTm0o3Du2a+kuciijAGwIF
pvZA6qM5EZxsjSt6fHaWSK+2Plc9ubqXfsG4W1X3jkWqh5GaPIABwxnU32NY/59U
LXyXUiWRXFdCABJ4NpKALDET3FDV3qGxEcAJiC3aR82XEwIDR0a+zcIMhGkDsCZT
1gCuWOWsrQF1wzSgIl4OGXBPV9TS9KYovknysgQadcef2LXeFm3491Xqg9f2SonI
LPHMW5pyOS1f1Z2cZqJy88pvVdY34C8fQnUcuVBLbnr9KOPA4opDRr2p2lnzD8te
d6LCRGmFwMzTIqHiK4JdXCZs4HDkV7xk7XyBfZUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSuNkvYSMj1GRe2TKTJC1KH2iPrfDAfBgNVHSMEGDAWgBQsJWsdSrshOV2X
JjpfqNOlU5HbYTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xDVnJIVXE3SVRsZGx5WTZYNmpUcFZPUjIyRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTkvZjE0ZTc2LWNhY2YtNDVjZS04MDgwLTJjMjkwNWMzYzgzZi8x
L3JqWkwyRWpJOVJrWHRreWt5UXRTaDlvajYzdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTkv
ZjE0ZTc2LWNhY2YtNDVjZS04MDgwLTJjMjkwNWMzYzgzZi8xL0xDVnJIVXE3SVRs
ZGx5WTZYNmpUcFZPUjIyRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANVtwDANBgkqhkiG9w0BAQsFAAOC
AQEAPPp4CMSgYGdpqGOFxz8c0BMBW1l3DVpzNXbxGmlcBxVUDiZKowHVx8Dwk3Lq
WuUcjIBZ5CmCtYFT3juMhpnSaKmATie9YsJdBQ0zQss+4VOHIQ3HUKZy1ei/Sxw7
v77xwU1+0Vth74eSsfbN+ZjAR54a5pfVPv8T55aUVyPkwpQz0Lk22wGGIq6r70Jr
8U/1+pdkgKxz/AgTrBEtq1q9dy4lIFtTFgpLjgjjVkAuCjCu42NtlEgEaeNOQBLb
QyhvAQX6oj7OozJgQ2ji8Of7Wct5f48nVOeBAnBq8KmQvHNAxYJbAQjHDpflZXZn
aCloogpALWJdEcbVyT7vZ9qLaQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 09:08:17 2025 by rpki-client