Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/tzK04gs2QWdGkmPOxcIJ7O89Pa0.roa
File: tzK04gs2QWdGkmPOxcIJ7O89Pa0.roa (raw, json)
Hash identifier: c/EnpCuozOUYVClxONo4ish8u2CS6ZGPowUUX+Csd6Q=
Subject key identifier: B7:32:B4:E2:0B:36:41:67:46:92:63:CE:C5:C2:09:EC:EF:3D:3D:AD
Certificate issuer: /CN=79ee11d8c4297bec54bd305430ca4772dfac847a
Certificate serial: 01942521766EEFF24747331B9CBEE3966198
Authority key identifier: 79:EE:11:D8:C4:29:7B:EC:54:BD:30:54:30:CA:47:72:DF:AC:84:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ee4R2MQpe-xUvTBUMMpHct-shHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/tzK04gs2QWdGkmPOxcIJ7O89Pa0.roa
Signing time: Thu 02 Jan 2025 03:48:57 +0000
ROA not before: Thu 02 Jan 2025 03:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15576
IP address blocks: 185.62.104.0/22 maxlen: 24
2a13:7440::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:76:6e:ef:f2:47:47:33:1b:9c:be:e3:96:61:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79ee11d8c4297bec54bd305430ca4772dfac847a
Validity
Not Before: Jan 2 03:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b732b4e20b364167469263cec5c209ecef3d3dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:57:92:b1:fa:30:b4:12:f6:59:84:7d:9b:d1:
81:7c:c9:7c:84:1a:10:2f:77:a7:6a:09:73:da:35:
c2:1d:98:cb:92:ba:38:b2:c7:fd:ce:30:c1:45:bf:
92:b0:e6:2e:0b:cc:ea:e7:41:b3:9c:fe:cf:a9:8b:
c1:c8:5a:b8:5b:a3:c3:9f:2e:97:1e:e2:36:9f:3c:
a2:cb:60:b6:72:3e:8b:e0:d9:5e:62:97:7e:c5:5a:
f3:fe:88:83:24:30:28:fd:9a:d0:38:09:c4:e4:45:
01:67:8a:74:b5:b0:fe:1d:b7:82:1b:4a:d1:d1:3b:
9a:4b:9f:74:e4:88:4f:49:cf:02:f8:5d:ef:d5:f1:
d8:0d:1d:b7:d9:57:29:f8:12:2e:19:96:ba:e6:16:
44:21:4e:e8:f3:58:29:2f:5b:f6:80:1a:8e:fb:b6:
fb:23:a9:53:74:50:ca:1e:70:e0:bd:fd:98:1d:11:
26:02:5e:c7:da:6d:16:97:69:90:5c:47:15:5d:73:
af:05:40:4e:04:7a:95:4a:09:eb:b7:e4:aa:7a:17:
70:e9:2c:9e:53:0f:c1:b1:1b:36:1b:de:79:6d:88:
09:5d:21:98:24:02:ba:d0:2f:75:b4:d8:9c:85:74:
e4:27:bb:f1:00:18:6d:d1:a8:1f:6c:67:ad:ce:1b:
ad:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:32:B4:E2:0B:36:41:67:46:92:63:CE:C5:C2:09:EC:EF:3D:3D:AD
X509v3 Authority Key Identifier:
keyid:79:EE:11:D8:C4:29:7B:EC:54:BD:30:54:30:CA:47:72:DF:AC:84:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee4R2MQpe-xUvTBUMMpHct-shHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/tzK04gs2QWdGkmPOxcIJ7O89Pa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/ee4R2MQpe-xUvTBUMMpHct-shHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.104.0/22
IPv6:
2a13:7440::/29
Signature Algorithm: sha256WithRSAEncryption
8d:30:84:e0:fc:3e:9a:5f:bc:57:1c:92:f0:e9:ee:2c:f7:cd:
b2:18:81:74:81:40:aa:8f:29:23:90:e4:98:c8:5c:a7:68:ca:
8e:20:b5:2e:27:a9:31:24:f6:6a:31:98:97:9b:6e:c1:40:5b:
75:77:80:03:1a:05:18:67:fb:30:7d:fb:f3:3b:d1:98:d7:00:
35:f0:0d:4e:58:80:c1:c6:13:e1:ee:25:51:69:24:91:60:a2:
c2:5d:b0:a0:d5:bc:13:4e:3c:a5:8c:e4:06:b7:fd:65:db:e8:
5d:49:6f:0f:36:9c:16:4f:82:3c:cf:f7:99:d3:e1:e5:ac:42:
f9:63:3e:71:40:d8:c5:eb:f2:1d:f6:f8:a6:f6:02:35:17:66:
c4:fd:31:bd:e5:34:b1:51:40:bc:cb:95:63:2b:1e:8b:5b:31:
41:3a:cc:83:18:0e:e7:b3:2f:10:31:3e:42:26:5d:fc:e9:bb:
b2:c2:11:d2:aa:23:6a:ad:cc:e7:3e:83:cc:08:cb:c9:f5:ed:
23:81:af:79:2f:8f:e5:ad:cc:3f:a7:26:5b:a9:f5:70:88:6a:
3a:96:70:27:71:6f:c6:a1:7d:fc:cc:d6:67:68:72:25:0b:74:
e8:84:b4:cb:7d:a5:57:15:4d:a5:8c:d0:7e:51:6a:a0:93:d3:
35:17:69:02
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQlIXZu7/JHRzMbnL7jlmGYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5ZWUxMWQ4YzQyOTdiZWM1NGJkMzA1NDMwY2E0NzcyZGZh
Yzg0N2EwHhcNMjUwMTAyMDM0ODU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzMyYjRlMjBiMzY0MTY3NDY5MjYzY2VjNWMyMDllY2VmM2QzZGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwleSsfowtBL2WYR9m9GBfMl8hBoQ
L3enaglz2jXCHZjLkro4ssf9zjDBRb+SsOYuC8zq50GznP7PqYvByFq4W6PDny6X
HuI2nzyiy2C2cj6L4NleYpd+xVrz/oiDJDAo/ZrQOAnE5EUBZ4p0tbD+HbeCG0rR
0TuaS5905IhPSc8C+F3v1fHYDR232Vcp+BIuGZa65hZEIU7o81gpL1v2gBqO+7b7
I6lTdFDKHnDgvf2YHREmAl7H2m0Wl2mQXEcVXXOvBUBOBHqVSgnrt+Sqehdw6Sye
Uw/BsRs2G955bYgJXSGYJAK60C91tNichXTkJ7vxABht0agfbGetzhutyQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLcytOILNkFnRpJjzsXCCezvPT2tMB8GA1UdIwQY
MBaAFHnuEdjEKXvsVL0wVDDKR3LfrIR6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWU0UjJNUXBlLXhVdlRCVU1NcEhjdC1zaEhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9mODViM2QtNjI0ZS00YjFhLWFkMzMt
MTBhMjA2ZGE3YjZiLzEvdHpLMDRnczJRV2RHa21QT3hjSUo3Tzg5UGEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9mODViM2QtNjI0ZS00YjFhLWFkMzMtMTBhMjA2ZGE3YjZi
LzEvZWU0UjJNUXBlLXhVdlRCVU1NcEhjdC1zaEhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuT5oMA0E
AgACMAcDBQMqE3RAMA0GCSqGSIb3DQEBCwUAA4IBAQCNMITg/D6aX7xXHJLw6e4s
982yGIF0gUCqjykjkOSYyFynaMqOILUuJ6kxJPZqMZiXm27BQFt1d4ADGgUYZ/sw
ffvzO9GY1wA18A1OWIDBxhPh7iVRaSSRYKLCXbCg1bwTTjyljOQGt/1l2+hdSW8P
NpwWT4I8z/eZ0+HlrEL5Yz5xQNjF6/Id9vim9gI1F2bE/TG95TSxUUC8y5VjKx6L
WzFBOsyDGA7nsy8QMT5CJl386buywhHSqiNqrcznPoPMCMvJ9e0jga95L4/lrcw/
pyZbqfVwiGo6lnAncW/GoX38zNZnaHIlC3TohLTLfaVXFU2ljNB+UWqgk9M1F2kC
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:56:46 2025 by rpki-client