Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/PBw9riwRFoXXLWbeth7SHgiqpsQ.roa
File: PBw9riwRFoXXLWbeth7SHgiqpsQ.roa (raw, json)
Hash identifier: YzbahYcvlG1chE9REoDUMdOX7rCXw2YaI4s5t0ndX5U=
Subject key identifier: 3C:1C:3D:AE:2C:11:16:85:D7:2D:66:DE:B6:1E:D2:1E:08:AA:A6:C4
Certificate issuer: /CN=62fa765a393369c96d8d836f23f76e67489c7dde
Certificate serial: 0970262A
Authority key identifier: 62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/PBw9riwRFoXXLWbeth7SHgiqpsQ.roa
Signing time: Fri 25 Feb 2022 16:23:13 +0000
ROA not before: Fri 25 Feb 2022 16:23:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 212.102.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158344746 (0x970262a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fa765a393369c96d8d836f23f76e67489c7dde
Validity
Not Before: Feb 25 16:23:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c1c3dae2c111685d72d66deb61ed21e08aaa6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:29:ab:97:0e:7a:3d:9a:b7:f5:69:11:12:26:
8f:e9:b2:79:05:1b:b8:7f:33:66:89:db:54:ea:f0:
93:d8:ba:2f:eb:50:7a:10:66:65:a7:0a:64:5a:26:
2e:ba:bb:03:25:15:f8:ac:2d:44:8f:4c:d0:7c:41:
44:b2:4e:4a:40:e5:5c:52:cf:a9:2f:b6:a6:67:61:
1f:79:85:d2:51:f7:db:ab:d7:cd:c0:0d:15:f9:a5:
d5:c3:dd:bc:47:47:fd:71:5a:9a:5f:e3:58:09:b4:
10:11:c6:af:ef:d5:e8:17:da:d4:b4:f7:c8:c1:d8:
ad:f4:15:27:65:46:b6:ca:71:2d:77:ec:d4:21:50:
18:4d:bd:24:f2:2a:6e:2c:ff:1e:87:32:57:9a:21:
8c:fb:97:d3:ab:10:31:81:10:97:9e:47:da:35:a2:
97:fd:25:46:b8:e9:4a:e4:a5:5c:33:77:c6:5f:d3:
ff:6d:c0:52:e3:c0:1a:94:e6:a0:17:23:05:13:ec:
f8:fe:f0:35:d4:61:c3:f0:e2:60:98:f0:71:18:83:
a2:e3:b5:04:17:f8:f7:99:37:56:29:8a:b3:37:f0:
ef:27:70:6d:b7:58:15:66:59:85:12:1e:db:c8:28:
24:06:da:f0:f3:ba:d8:e7:47:26:4b:99:57:51:36:
c6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1C:3D:AE:2C:11:16:85:D7:2D:66:DE:B6:1E:D2:1E:08:AA:A6:C4
X509v3 Authority Key Identifier:
keyid:62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/PBw9riwRFoXXLWbeth7SHgiqpsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Yvp2WjkzacltjYNvI_duZ0icfd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.102.114.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:9a:19:63:cb:65:5a:a4:61:19:d7:29:98:f5:b5:cf:67:ab:
4b:1a:f1:df:58:cd:71:3e:a0:6d:f1:b2:57:da:81:2c:c6:7f:
bd:e9:36:c7:55:04:bb:b6:1f:2e:b7:97:ed:ce:99:d8:79:5c:
61:2b:ee:40:d8:65:3f:e7:04:72:58:07:86:1f:73:89:4e:af:
f3:79:9b:1e:f0:aa:27:aa:3e:f0:0c:6c:bc:c4:78:32:84:c8:
ed:b9:51:08:71:cb:fa:e2:63:b8:ab:94:e0:33:bb:66:b2:7a:
15:d6:cf:6f:8b:a2:39:0c:09:f1:c1:1d:09:f9:b9:ef:45:21:
8a:49:39:64:3e:73:b1:b8:a4:98:4a:dc:e6:57:5e:38:3e:45:
a5:0a:bd:09:a6:6e:ae:1f:99:8f:94:4b:14:c6:24:1f:94:2c:
ea:ad:01:de:83:52:a4:31:41:53:de:f4:77:35:7c:c8:a5:07:
01:c4:3a:8d:55:82:22:d3:42:7b:b9:d7:29:76:03:90:cd:92:
e2:1c:ef:be:84:b5:c4:98:fd:95:f7:90:54:51:c4:f6:e6:47:
1c:97:ba:f1:6d:69:b5:f6:00:70:cd:d9:42:fa:c2:07:3e:7c:
02:c7:d0:ae:09:b1:a9:88:d7:69:81:df:3a:87:8f:77:dc:45:
7d:bf:d9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 14:36:21 2025 by rpki-client