Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/UKWXjtyN2Ec_H1oq-2Y0ClxQJKM.roa
File: UKWXjtyN2Ec_H1oq-2Y0ClxQJKM.roa (raw, json)
Hash identifier: U0LtUC+d8PeagyDgOCxh16zhxXaNDo5W5vdUeVkS3vE=
Subject key identifier: 50:A5:97:8E:DC:8D:D8:47:3F:1F:5A:2A:FB:66:34:0A:5C:50:24:A3
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 074A9171
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/UKWXjtyN2Ec_H1oq-2Y0ClxQJKM.roa
Signing time: Mon 02 May 2022 06:39:18 +0000
ROA not before: Mon 02 May 2022 06:39:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42599
IP address blocks: 2.59.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122327409 (0x74a9171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: May 2 06:39:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50a5978edc8dd8473f1f5a2afb66340a5c5024a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:2f:0b:3b:35:2a:96:32:7f:4b:9b:e7:44:20:
5f:c9:11:9d:b9:2f:af:a1:80:07:8f:51:52:3c:40:
9c:af:e9:c7:cf:db:2f:01:15:4a:81:5f:88:81:cd:
5d:31:a0:30:88:15:19:66:3a:20:45:6f:ea:9b:66:
eb:19:f5:93:31:0a:58:f7:e8:9e:2f:79:81:7f:c1:
e4:00:5d:be:9f:36:6c:c2:67:ca:06:cc:85:e5:47:
c8:1b:7d:15:f3:ac:8f:69:2a:e0:4f:2f:28:26:69:
d4:2e:73:bb:b0:1e:49:c6:45:e8:06:89:69:92:dc:
0f:a2:af:a9:b1:2a:24:38:0d:b1:10:51:ff:da:97:
5e:5b:e5:32:19:38:f9:46:87:10:81:8a:76:18:57:
0d:96:fd:aa:b8:d2:6b:07:e3:52:2c:21:38:bd:22:
df:60:d7:90:b2:67:ea:dc:a5:f9:5c:5f:b6:ae:7b:
b5:d0:34:18:5b:f4:29:1a:c0:af:85:4b:1b:1a:a1:
ed:87:98:68:07:cc:8a:b6:14:ba:74:94:b1:55:27:
67:66:1a:f7:1d:2a:53:0f:f1:62:10:d3:db:5a:bd:
d3:10:4b:db:e2:27:3a:87:3e:ee:42:19:46:b5:68:
05:42:ac:c4:11:54:db:2d:a6:32:bb:f6:14:58:2c:
d3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A5:97:8E:DC:8D:D8:47:3F:1F:5A:2A:FB:66:34:0A:5C:50:24:A3
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/UKWXjtyN2Ec_H1oq-2Y0ClxQJKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.13.0/24
Signature Algorithm: sha256WithRSAEncryption
68:25:91:47:07:2f:84:50:fe:1d:b8:77:5c:ec:10:a1:13:b4:
66:73:6e:3f:dd:c3:6d:54:53:c8:9e:b0:0c:2d:79:5c:51:42:
4e:34:81:ba:95:d5:87:55:0f:45:ce:47:aa:7e:ee:e3:17:6e:
88:63:7d:f0:e7:15:e1:b2:99:4e:84:d6:a8:94:cc:15:0c:40:
5c:bd:a0:c0:34:cb:2c:d4:fb:d5:fd:5d:b0:ad:2c:3e:eb:32:
30:7b:24:16:27:61:ae:7c:25:d6:a0:f4:62:33:3e:cf:48:9e:
4c:82:d8:9b:b5:d3:35:81:74:d5:f1:12:11:d2:61:09:e3:0e:
b2:38:4c:e1:e9:aa:ac:73:f4:56:83:18:b3:53:46:dd:d9:ed:
a5:ca:95:03:a5:39:4d:3d:e5:35:34:14:e2:ee:30:77:14:ea:
e5:a4:55:c6:09:4f:91:08:ab:7b:7a:82:d3:d1:d7:db:a2:5f:
9e:f6:d6:12:f7:7f:62:bd:bb:7b:a8:ea:a8:1e:4f:57:69:70:
7b:af:42:7c:1e:92:25:f0:41:a9:c7:a5:0e:35:6d:d6:48:3c:
2d:7d:f7:3b:68:cb:a6:5f:96:03:50:5d:e7:de:ec:ab:ce:83:
65:c9:9c:91:eb:7b:63:f0:df:da:fa:0b:ae:18:c1:33:fa:ad:
b0:f8:45:9b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB0qRcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
Yzc4MjFlMWJjYmY2ZTA3NGVhNDgxNGFhYTVjNjNlM2JhODEzYzVmMB4XDTIyMDUw
MjA2MzkxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTBhNTk3OGVkYzhk
ZDg0NzNmMWY1YTJhZmI2NjM0MGE1YzUwMjRhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPQvCzs1KpYyf0ub50QgX8kRnbkvr6GAB49RUjxAnK/px8/b
LwEVSoFfiIHNXTGgMIgVGWY6IEVv6ptm6xn1kzEKWPfoni95gX/B5ABdvp82bMJn
ygbMheVHyBt9FfOsj2kq4E8vKCZp1C5zu7AeScZF6AaJaZLcD6KvqbEqJDgNsRBR
/9qXXlvlMhk4+UaHEIGKdhhXDZb9qrjSawfjUiwhOL0i32DXkLJn6tyl+Vxftq57
tdA0GFv0KRrAr4VLGxqh7YeYaAfMirYUunSUsVUnZ2Ya9x0qUw/xYhDT21q90xBL
2+InOoc+7kIZRrVoBUKsxBFU2y2mMrv2FFgs01ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRQpZeO3I3YRz8fWir7ZjQKXFAkozAfBgNVHSMEGDAWgBTceCHhvL9uB06k
gUqqXGPjuoE8XzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNIZ2g0YnlfYmdkT3BJRktxbHhqNDdxQlBGOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmQvOWRhZmY0LWYxNTgtNDgwZi1iNDFmLWQ0OGI0MmVmMTU5Yi8x
L1VLV1hqdHlOMkVjX0gxb3EtMlkwQ2x4UUpLTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQv
OWRhZmY0LWYxNTgtNDgwZi1iNDFmLWQ0OGI0MmVmMTU5Yi8xLzNIZ2g0YnlfYmdk
T3BJRktxbHhqNDdxQlBGOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAI7DTANBgkqhkiG9w0BAQsFAAOC
AQEAaCWRRwcvhFD+Hbh3XOwQoRO0ZnNuP93DbVRTyJ6wDC15XFFCTjSBupXVh1UP
Rc5Hqn7u4xduiGN98OcV4bKZToTWqJTMFQxAXL2gwDTLLNT71f1dsK0sPusyMHsk
Fidhrnwl1qD0YjM+z0ieTILYm7XTNYF01fESEdJhCeMOsjhM4emqrHP0VoMYs1NG
3dntpcqVA6U5TT3lNTQU4u4wdxTq5aRVxglPkQire3qC09HX26JfnvbWEvd/Yr27
e6jqqB5PV2lwe69CfB6SJfBBqcelDjVt1kg8LX33O2jLpl+WA1Bd597sq86DZcmc
ket7Y/Df2voLrhjBM/qtsPhFmw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:30 2025 by rpki-client