Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/fc95d6-6394-45a9-ab55-b7f5bf9fbe3c/1/dYRM53_I8T4JFfYq0tJwgC8CXeA.roa
File: dYRM53_I8T4JFfYq0tJwgC8CXeA.roa (raw, json)
Hash identifier: Gh7MeCOXfsalO2U9zWEX7lWQ0TfE5s3rtgGXNhk10a8=
Subject key identifier: 75:84:4C:E7:7F:C8:F1:3E:09:15:F6:2A:D2:D2:70:80:2F:02:5D:E0
Certificate issuer: /CN=cbb2dc68053b291e7293bb46343b2925cd823b5d
Certificate serial: 0186B8D5BCF13FC4E694930E92835D2852D3
Authority key identifier: CB:B2:DC:68:05:3B:29:1E:72:93:BB:46:34:3B:29:25:CD:82:3B:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7LcaAU7KR5yk7tGNDspJc2CO10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/fc95d6-6394-45a9-ab55-b7f5bf9fbe3c/1/dYRM53_I8T4JFfYq0tJwgC8CXeA.roa
Signing time: Mon 06 Mar 2023 21:31:00 +0000
ROA not before: Mon 06 Mar 2023 21:31:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 213.109.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b8:d5:bc:f1:3f:c4:e6:94:93:0e:92:83:5d:28:52:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb2dc68053b291e7293bb46343b2925cd823b5d
Validity
Not Before: Mar 6 21:31:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75844ce77fc8f13e0915f62ad2d270802f025de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:18:67:24:c0:b9:b0:f0:76:d9:4b:49:6f:af:
49:cf:ad:78:4a:60:88:b0:1e:4c:85:f1:6e:ee:92:
3d:63:86:81:68:93:d6:fb:dc:cf:c0:8f:18:c6:78:
a8:b8:8e:67:f4:8c:4d:6e:f0:f6:63:ce:bf:38:df:
fe:52:26:14:73:fd:9b:4c:af:75:bc:69:ae:f8:1a:
6f:fe:c9:95:f1:ff:9e:19:18:8c:4c:f8:25:78:5c:
38:31:87:b9:c8:07:53:19:f3:be:47:f0:f9:17:56:
37:0f:22:5e:07:cd:ae:b5:6a:de:c6:72:aa:4d:ab:
a1:63:94:f5:bf:72:be:86:58:74:61:3b:9b:6f:0b:
b2:98:8d:41:b7:5f:c0:75:5c:f3:24:54:43:fb:af:
9b:eb:c5:29:b0:7f:f0:86:65:37:61:06:66:70:71:
da:ac:d1:b3:3e:f3:d4:c9:15:91:de:7c:eb:15:e6:
bc:d8:77:16:5f:58:58:9f:24:45:7c:37:bc:f5:59:
dd:46:44:90:6c:49:f1:be:14:a6:0f:2a:5f:e7:57:
7d:56:14:05:85:e3:2a:64:e2:1a:7f:f0:5e:9d:4a:
f9:7d:cc:19:71:48:f9:dd:4d:c7:89:ad:56:67:92:
20:7f:1e:6a:d3:e8:97:a5:f1:57:a1:9f:ce:7b:42:
51:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:84:4C:E7:7F:C8:F1:3E:09:15:F6:2A:D2:D2:70:80:2F:02:5D:E0
X509v3 Authority Key Identifier:
keyid:CB:B2:DC:68:05:3B:29:1E:72:93:BB:46:34:3B:29:25:CD:82:3B:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7LcaAU7KR5yk7tGNDspJc2CO10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/fc95d6-6394-45a9-ab55-b7f5bf9fbe3c/1/dYRM53_I8T4JFfYq0tJwgC8CXeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/fc95d6-6394-45a9-ab55-b7f5bf9fbe3c/1/y7LcaAU7KR5yk7tGNDspJc2CO10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.193.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:1b:9a:4c:64:46:e0:38:e5:88:cd:ab:b4:7b:49:e2:ef:44:
8c:ad:09:1a:0d:73:b5:be:f5:ef:00:44:f2:4c:df:1c:26:fa:
86:7f:b0:6d:7d:89:17:43:3e:fb:b3:d1:43:bb:e8:21:41:0e:
5b:cf:91:e1:3e:be:4d:45:17:b1:39:e4:d6:77:ea:16:89:8c:
60:80:c8:13:b9:d5:43:f1:d4:66:8f:24:d3:30:7b:93:3e:71:
81:5b:f5:4b:8f:95:b0:33:f2:d4:2d:08:ff:01:c6:79:5f:0f:
d5:28:85:33:d2:56:dc:36:a7:67:ca:54:d6:cc:9e:1e:29:e1:
63:29:89:1c:d4:e3:1d:de:cf:81:a4:d8:71:dd:19:40:14:da:
fd:de:cf:a6:b0:96:b4:d0:f2:80:0b:b9:ea:9e:33:e5:0a:b7:
43:d4:03:ad:11:fb:a8:4f:b5:7c:6d:b4:66:fb:0d:59:44:98:
cd:87:8f:a5:c0:a2:f2:2e:d5:99:04:1c:1a:1c:7e:ba:07:36:
61:5a:87:c4:69:8f:6f:8d:03:a5:01:88:26:28:3f:1d:13:62:
01:04:ac:fe:4c:06:e8:34:62:f7:d6:7a:91:68:ca:49:36:5e:
0a:01:b8:dc:cc:e5:75:84:01:63:f4:80:8a:36:73:5e:09:3e:
02:37:04:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYa41bzxP8TmlJMOkoNdKFLTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiYjJkYzY4MDUzYjI5MWU3MjkzYmI0NjM0M2IyOTI1Y2Q4
MjNiNWQwHhcNMjMwMzA2MjEzMTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTg0NGNlNzdmYzhmMTNlMDkxNWY2MmFkMmQyNzA4MDJmMDI1ZGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRhnJMC5sPB22UtJb69Jz614SmCI
sB5MhfFu7pI9Y4aBaJPW+9zPwI8YxniouI5n9IxNbvD2Y86/ON/+UiYUc/2bTK91
vGmu+Bpv/smV8f+eGRiMTPgleFw4MYe5yAdTGfO+R/D5F1Y3DyJeB82utWrexnKq
TauhY5T1v3K+hlh0YTubbwuymI1Bt1/AdVzzJFRD+6+b68UpsH/whmU3YQZmcHHa
rNGzPvPUyRWR3nzrFea82HcWX1hYnyRFfDe89VndRkSQbEnxvhSmDypf51d9VhQF
heMqZOIaf/BenUr5fcwZcUj53U3Hia1WZ5Igfx5q0+iXpfFXoZ/Oe0JRmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHWETOd/yPE+CRX2KtLScIAvAl3gMB8GA1UdIwQY
MBaAFMuy3GgFOykecpO7RjQ7KSXNgjtdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTdMY2FBVTdLUjV5azd0R05Ec3BKYzJDTzEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS9mYzk1ZDYtNjM5NC00NWE5LWFiNTUt
YjdmNWJmOWZiZTNjLzEvZFlSTTUzX0k4VDRKRmZZcTB0SndnQzhDWGVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS9mYzk1ZDYtNjM5NC00NWE5LWFiNTUtYjdmNWJmOWZiZTNj
LzEveTdMY2FBVTdLUjV5azd0R05Ec3BKYzJDTzEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1W3BMA0G
CSqGSIb3DQEBCwUAA4IBAQCqG5pMZEbgOOWIzau0e0ni70SMrQkaDXO1vvXvAETy
TN8cJvqGf7BtfYkXQz77s9FDu+ghQQ5bz5HhPr5NRRexOeTWd+oWiYxggMgTudVD
8dRmjyTTMHuTPnGBW/VLj5WwM/LULQj/AcZ5Xw/VKIUz0lbcNqdnylTWzJ4eKeFj
KYkc1OMd3s+BpNhx3RlAFNr93s+msJa00PKAC7nqnjPlCrdD1AOtEfuoT7V8bbRm
+w1ZRJjNh4+lwKLyLtWZBBwaHH66BzZhWofEaY9vjQOlAYgmKD8dE2IBBKz+TAbo
NGL31nqRaMpJNl4KAbjczOV1hAFj9ICKNnNeCT4CNwTq
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:33 2025 by rpki-client