Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Bfo5h0xzmmk5tzkbkq4C6bYu7YI.roa
File: Bfo5h0xzmmk5tzkbkq4C6bYu7YI.roa (raw, json)
Hash identifier: 10xaDIh14LVL1UKhJ6NAqUdJr1ls9YmxQv5EgoInOgg=
Subject key identifier: 05:FA:39:87:4C:73:9A:69:39:B7:39:1B:92:AE:02:E9:B6:2E:ED:82
Certificate issuer: /CN=62fa765a393369c96d8d836f23f76e67489c7dde
Certificate serial: 0185B6DF58F7B08694CD695F589D8A22E34F
Authority key identifier: 62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Bfo5h0xzmmk5tzkbkq4C6bYu7YI.roa
Signing time: Sun 15 Jan 2023 19:19:28 +0000
ROA not before: Sun 15 Jan 2023 19:19:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48024
IP address blocks: 212.102.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b6:df:58:f7:b0:86:94:cd:69:5f:58:9d:8a:22:e3:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fa765a393369c96d8d836f23f76e67489c7dde
Validity
Not Before: Jan 15 19:19:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05fa39874c739a6939b7391b92ae02e9b62eed82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f6:a7:0a:cf:5d:b5:21:dc:03:4a:8e:49:90:
81:74:b1:44:3c:b4:8b:e4:0b:5f:9e:cc:b9:60:e1:
30:b2:16:f5:3f:52:e9:6b:45:9e:25:29:9f:27:a6:
0e:dd:17:3d:a6:c1:c2:ba:43:cb:30:24:20:d5:ef:
f6:ab:6c:1c:ff:83:52:17:3f:44:c6:a1:d7:1f:25:
63:1e:b7:03:81:e7:80:d8:97:98:f3:42:b6:12:f4:
21:3b:87:96:b8:c4:d6:8e:b8:c4:af:8e:7b:c6:0f:
e7:81:e4:ae:c0:0a:3a:42:89:8a:33:c4:27:f9:dd:
d5:7e:24:34:5b:1a:98:71:b3:b6:47:49:7f:22:22:
25:18:a7:53:af:19:29:36:88:a2:b9:62:7c:f4:96:
81:a0:8a:be:f1:27:47:23:8b:71:09:b6:22:9d:69:
26:0e:e3:e1:07:ae:f6:7b:51:29:11:dc:01:d0:c6:
29:08:b6:e0:30:e3:b3:f3:05:7f:9d:95:61:8d:54:
90:24:d7:ad:1d:a9:78:86:9e:b2:c8:e4:e5:6e:f0:
40:52:e9:6d:56:1b:89:77:6d:95:ca:1b:2a:b6:c0:
33:c5:48:02:44:41:01:af:fd:c0:3d:14:0c:44:db:
79:02:0f:04:3e:0c:90:38:47:76:d1:df:2e:91:e0:
63:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FA:39:87:4C:73:9A:69:39:B7:39:1B:92:AE:02:E9:B6:2E:ED:82
X509v3 Authority Key Identifier:
keyid:62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Bfo5h0xzmmk5tzkbkq4C6bYu7YI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Yvp2WjkzacltjYNvI_duZ0icfd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.102.114.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:12:e1:59:87:a4:ff:68:25:57:f9:16:e4:ae:22:4c:81:e4:
e6:34:da:6a:b6:76:51:1a:4d:20:f0:b0:1e:ba:e0:ca:9c:ef:
19:78:2a:01:99:c8:f9:f8:87:76:cb:f0:b3:5b:3b:88:12:0c:
dc:7b:0c:e8:79:7c:b9:b5:b3:ca:8f:a8:3a:a1:d0:d0:e5:5c:
6a:41:3c:e2:83:c7:3a:0a:73:c0:f5:80:ce:76:b3:20:b2:27:
65:9b:af:79:ae:db:9a:ee:df:a0:04:0f:cf:c0:32:81:01:fa:
ce:c5:c3:5d:4b:9f:fc:65:a0:f7:a9:a7:8e:f1:5a:53:4b:79:
18:f2:f1:69:66:82:35:b6:72:00:0e:3c:bc:37:65:bc:fb:95:
c8:33:86:8f:ce:69:d5:12:e0:35:39:58:2a:5c:1d:a7:b5:b7:
a7:03:5e:d0:05:0b:95:6b:a8:74:6a:5c:32:97:52:81:81:f5:
d9:6a:b6:43:92:12:ea:ad:76:87:52:9e:2d:af:89:1d:7c:8d:
cf:2f:e4:74:2e:7b:03:f0:a0:60:71:26:6e:8d:64:78:5f:a0:
19:b8:91:dc:90:13:d6:63:05:01:a2:2e:c9:93:d5:d5:91:d5:
c9:b1:42:16:57:ad:fd:f7:80:3b:53:be:a2:d8:ea:4c:94:9f:
66:b0:4c:bb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYW231j3sIaUzWlfWJ2KIuNPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmE3NjVhMzkzMzY5Yzk2ZDhkODM2ZjIzZjc2ZTY3NDg5
YzdkZGUwHhcNMjMwMTE1MTkxOTI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNWZhMzk4NzRjNzM5YTY5MzliNzM5MWI5MmFlMDJlOWI2MmVlZDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/anCs9dtSHcA0qOSZCBdLFEPLSL
5Atfnsy5YOEwshb1P1Lpa0WeJSmfJ6YO3Rc9psHCukPLMCQg1e/2q2wc/4NSFz9E
xqHXHyVjHrcDgeeA2JeY80K2EvQhO4eWuMTWjrjEr457xg/ngeSuwAo6QomKM8Qn
+d3VfiQ0WxqYcbO2R0l/IiIlGKdTrxkpNoiiuWJ89JaBoIq+8SdHI4txCbYinWkm
DuPhB672e1EpEdwB0MYpCLbgMOOz8wV/nZVhjVSQJNetHal4hp6yyOTlbvBAUult
VhuJd22VyhsqtsAzxUgCREEBr/3APRQMRNt5Ag8EPgyQOEd20d8ukeBjiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAX6OYdMc5ppObc5G5KuAum2Lu2CMB8GA1UdIwQY
MBaAFGL6dlo5M2nJbY2DbyP3bmdInH3eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXZwMldqa3phY2x0allOdklfZHVaMGljZmQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9hZGZmODAtYjIwNy00ZmJkLWJmNWUt
MDdkZDFiNGM1NWQ5LzEvQmZvNWgweHptbWs1dHprYmtxNEM2Yll1N1lJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi9hZGZmODAtYjIwNy00ZmJkLWJmNWUtMDdkZDFiNGM1NWQ5
LzEvWXZwMldqa3phY2x0allOdklfZHVaMGljZmQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GZyMA0G
CSqGSIb3DQEBCwUAA4IBAQANEuFZh6T/aCVX+RbkriJMgeTmNNpqtnZRGk0g8LAe
uuDKnO8ZeCoBmcj5+Id2y/CzWzuIEgzcewzoeXy5tbPKj6g6odDQ5VxqQTzig8c6
CnPA9YDOdrMgsidlm695rtua7t+gBA/PwDKBAfrOxcNdS5/8ZaD3qaeO8VpTS3kY
8vFpZoI1tnIADjy8N2W8+5XIM4aPzmnVEuA1OVgqXB2ntbenA17QBQuVa6h0alwy
l1KBgfXZarZDkhLqrXaHUp4tr4kdfI3PL+R0LnsD8KBgcSZujWR4X6AZuJHckBPW
YwUBoi7Jk9XVkdXJsUIWV63994A7U76i2OpMlJ9msEy7
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:15 2023 by rpki-client on console-ams.rpki-client.org