Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/2W1PLn86809UKJuQPzzg4uOOgjA.roa
File: 2W1PLn86809UKJuQPzzg4uOOgjA.roa (raw, json)
Hash identifier: Tn5Nl1HbGK6IVtKBU9sfOA8ROCShL30IKpftb58txHQ=
Subject key identifier: D9:6D:4F:2E:7F:3A:F3:4F:54:28:9B:90:3F:3C:E0:E2:E3:8E:82:30
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 04A8B945
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/2W1PLn86809UKJuQPzzg4uOOgjA.roa
Signing time: Sun 06 Mar 2022 20:51:23 +0000
ROA not before: Sun 06 Mar 2022 20:51:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209642
IP address blocks: 2.59.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78166341 (0x4a8b945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Mar 6 20:51:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d96d4f2e7f3af34f54289b903f3ce0e2e38e8230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c4:dc:f4:6e:36:3d:b8:eb:8f:fc:bd:20:46:
db:2d:4c:df:b9:96:d9:d9:e0:36:d0:b3:83:f5:0e:
8f:ab:27:87:63:22:12:bc:e4:5c:da:09:2b:e2:de:
a7:94:94:0e:2a:b8:b1:ae:a1:cb:cc:a6:41:4c:62:
64:7b:a4:23:e3:26:4c:b0:bd:a4:7c:89:78:6e:39:
3a:a3:33:b9:ff:d8:3e:e3:fc:74:b0:3b:bd:2f:d0:
9c:5c:e1:a8:e0:bf:0f:b7:db:1d:bc:6d:21:d3:45:
08:6a:b5:6e:47:e0:b3:e9:fd:6e:3e:82:69:97:e7:
ae:e6:37:68:c9:3e:70:1e:8f:b1:77:66:50:c4:4e:
2c:e3:be:55:9e:80:68:8c:21:ce:3d:73:2e:4e:47:
98:cd:12:41:bc:f3:30:2a:28:fe:fd:15:6e:c5:6c:
2b:c9:fd:7f:f8:67:a2:b6:fd:76:2b:f5:4c:1f:7b:
a7:b4:7d:2b:0e:f3:01:64:b0:2f:ee:40:bb:2d:0e:
ba:21:a6:61:a9:a4:91:9a:de:80:f3:72:2e:a1:ab:
eb:70:08:f0:58:ca:53:2b:43:1c:d0:86:16:be:19:
dd:a3:b0:b2:4a:b8:6b:d4:1f:a6:c0:07:ea:dd:c3:
b9:b7:58:fc:82:f0:29:a0:51:5f:35:4c:1a:46:63:
ee:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6D:4F:2E:7F:3A:F3:4F:54:28:9B:90:3F:3C:E0:E2:E3:8E:82:30
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/2W1PLn86809UKJuQPzzg4uOOgjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.63.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:60:1e:2a:b4:27:50:b0:63:26:76:5e:1e:40:2c:6d:7e:e0:
4e:16:f4:61:b8:11:ec:97:de:6d:eb:60:22:14:55:aa:79:ad:
02:2d:43:b6:e4:ba:07:39:38:1d:13:2c:e0:cc:10:f7:89:2e:
3f:34:72:bf:63:bd:9e:86:26:24:14:56:b8:86:70:ea:0e:95:
52:85:4b:b9:69:84:dc:05:70:43:b9:f5:61:cb:f1:2f:e4:cc:
a8:81:93:0f:0e:ac:bf:6e:22:6d:ad:1a:4e:50:17:b2:45:09:
da:6f:f5:6f:f6:2f:ef:e3:1a:04:fc:c9:15:a7:17:52:80:3b:
4b:82:7f:a2:90:f4:1b:2a:62:83:10:ec:08:22:17:7f:df:dc:
63:bc:a0:c8:2f:93:ce:34:a2:c8:ed:32:e4:11:96:ba:39:a9:
63:3e:7f:cc:8b:94:ba:3a:47:f8:8e:d1:13:70:54:8b:f4:c4:
25:15:06:dd:db:7d:6b:8a:ff:99:6f:c3:3b:e0:20:f3:1e:73:
06:b3:e4:02:83:b8:f1:e2:a1:f4:b5:20:88:66:6f:55:b8:0d:
44:ad:20:55:3b:d4:64:e5:12:20:b1:80:25:36:23:f4:26:b3:
ff:06:48:f9:fa:ba:5c:06:9c:03:67:27:9e:48:ef:65:48:fb:
8f:9b:aa:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBKi5RTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MjQwMzkzOTkwMTdmYTA5M2RjOGQ1MDM3OTlmNmNhNDAzZjBiZDA1MB4XDTIyMDMw
NjIwNTEyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDk2ZDRmMmU3ZjNh
ZjM0ZjU0Mjg5YjkwM2YzY2UwZTJlMzhlODIzMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMTE3PRuNj2464/8vSBG2y1M37mW2dngNtCzg/UOj6snh2Mi
ErzkXNoJK+Lep5SUDiq4sa6hy8ymQUxiZHukI+MmTLC9pHyJeG45OqMzuf/YPuP8
dLA7vS/QnFzhqOC/D7fbHbxtIdNFCGq1bkfgs+n9bj6CaZfnruY3aMk+cB6PsXdm
UMROLOO+VZ6AaIwhzj1zLk5HmM0SQbzzMCoo/v0VbsVsK8n9f/hnorb9div1TB97
p7R9Kw7zAWSwL+5Auy0OuiGmYamkkZregPNyLqGr63AI8FjKUytDHNCGFr4Z3aOw
skq4a9QfpsAH6t3DubdY/ILwKaBRXzVMGkZj7nUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTZbU8ufzrzT1Qom5A/PODi446CMDAfBgNVHSMEGDAWgBRiQDk5kBf6CT3I
1QN5n2ykA/C9BTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lrQTVPWkFYLWdrOXlOVURlWjlzcEFQd3ZRVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDcvZWIyMzlhLTMzYzgtNGRiZC1iYzk2LTMyNTk0OTZlN2M1Zi8x
LzJXMVBMbjg2ODA5VUtKdVFQenpnNHVPT2dqQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcv
ZWIyMzlhLTMzYzgtNGRiZC1iYzk2LTMyNTk0OTZlN2M1Zi8xL1lrQTVPWkFYLWdr
OXlOVURlWjlzcEFQd3ZRVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAI7PzANBgkqhkiG9w0BAQsFAAOC
AQEAPmAeKrQnULBjJnZeHkAsbX7gThb0YbgR7JfebetgIhRVqnmtAi1DtuS6Bzk4
HRMs4MwQ94kuPzRyv2O9noYmJBRWuIZw6g6VUoVLuWmE3AVwQ7n1YcvxL+TMqIGT
Dw6sv24iba0aTlAXskUJ2m/1b/Yv7+MaBPzJFacXUoA7S4J/opD0GypigxDsCCIX
f9/cY7ygyC+TzjSiyO0y5BGWujmpYz5/zIuUujpH+I7RE3BUi/TEJRUG3dt9a4r/
mW/DO+Ag8x5zBrPkAoO48eKh9LUgiGZvVbgNRK0gVTvUZOUSILGAJTYj9Caz/wZI
+fq6XAacA2cnnkjvZUj7j5uqLg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:44:22 2025 by rpki-client