Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/tlR2ut5Pw7Dhbcz2UwbbR1F5_MA.roa
File: tlR2ut5Pw7Dhbcz2UwbbR1F5_MA.roa (raw, json)
Hash identifier: TFmQ19Y29zE1T24ecNd48n7uo1vZQUDZEBaF/xyLjEc=
Subject key identifier: B6:54:76:BA:DE:4F:C3:B0:E1:6D:CC:F6:53:06:DB:47:51:79:FC:C0
Certificate issuer: /CN=fb744006eac3084bf88f128349b0e733bb3d79e3
Certificate serial: 09DDFA4C
Authority key identifier: FB:74:40:06:EA:C3:08:4B:F8:8F:12:83:49:B0:E7:33:BB:3D:79:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3RABurDCEv4jxKDSbDnM7s9eeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/tlR2ut5Pw7Dhbcz2UwbbR1F5_MA.roa
Signing time: Thu 31 Mar 2022 09:44:40 +0000
ROA not before: Thu 31 Mar 2022 09:44:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44912
IP address blocks: 2.58.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165542476 (0x9ddfa4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb744006eac3084bf88f128349b0e733bb3d79e3
Validity
Not Before: Mar 31 09:44:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b65476bade4fc3b0e16dccf65306db475179fcc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:3a:20:21:e2:64:8a:31:e6:7f:89:49:36:30:
1c:ec:92:18:f3:10:76:09:15:7a:18:3f:d2:50:73:
66:6f:56:77:d0:11:b6:6a:5b:cc:39:d3:d2:72:09:
6b:6f:0c:02:35:8c:91:db:9a:7c:c7:13:0d:3f:de:
5c:01:74:2b:35:f0:0c:07:da:b0:d3:e3:1d:6e:56:
fe:8a:55:e0:40:19:2d:61:85:7d:cb:35:f1:68:4f:
1b:ae:6e:c8:d3:33:c8:19:8c:2a:51:ab:6a:b0:bf:
8d:13:19:26:be:39:a8:44:df:6a:cb:fc:66:82:78:
2b:85:4c:03:6f:bb:f5:a8:ae:46:5a:82:bd:a2:a5:
30:f5:7e:a0:32:52:bc:95:f9:95:d1:5f:74:e8:7b:
3c:9d:1d:96:b2:17:f3:76:c0:10:4b:66:88:46:0f:
71:96:22:fe:c6:f5:5a:4a:95:92:1a:61:31:99:bd:
e2:58:53:97:51:ce:c5:e1:0f:7b:eb:f5:cb:e1:e5:
3a:51:54:d5:a2:73:97:64:ec:00:4a:bd:4b:9c:09:
19:7b:ba:6b:7d:91:bd:13:12:ee:5f:a8:23:16:d5:
e3:95:c7:90:cd:ec:b7:cc:61:4c:ae:8f:65:af:90:
7b:aa:96:c5:98:0a:06:d7:e4:43:30:b2:8a:74:70:
40:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:54:76:BA:DE:4F:C3:B0:E1:6D:CC:F6:53:06:DB:47:51:79:FC:C0
X509v3 Authority Key Identifier:
keyid:FB:74:40:06:EA:C3:08:4B:F8:8F:12:83:49:B0:E7:33:BB:3D:79:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3RABurDCEv4jxKDSbDnM7s9eeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/tlR2ut5Pw7Dhbcz2UwbbR1F5_MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/1-3RABurDCEv4jxKDSbDnM7s9eeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.57.0/24
Signature Algorithm: sha256WithRSAEncryption
e9:4e:20:a7:28:7d:2c:b9:97:10:ec:f7:64:00:e2:22:dc:c8:
1a:43:5c:d3:b3:05:d6:28:a5:c2:eb:a6:c7:14:f8:9f:49:cf:
e4:a4:e3:71:53:92:e8:17:e0:06:2a:93:18:df:ca:71:1d:83:
5c:25:d1:b4:78:ca:57:49:01:c5:33:27:21:44:0a:2e:6c:af:
5e:21:8f:fc:f0:bd:59:2f:15:69:f4:47:70:5b:a7:2f:3b:a2:
a4:af:ab:61:47:ab:49:a0:76:5d:84:f9:e6:ea:93:ff:d5:86:
1f:dd:ac:9a:63:97:8a:85:a0:55:fd:97:c3:97:df:52:b8:16:
b3:ce:ef:fe:14:1b:dc:2c:fe:a6:17:f0:fe:a1:41:47:d3:18:
2e:59:c1:6f:c4:b7:83:df:43:1f:08:13:91:09:8b:31:87:83:
0f:4e:73:92:dd:28:19:f3:89:1d:64:47:0e:01:f6:e2:19:cc:
ed:b9:2c:d5:d0:88:24:87:8a:a1:29:0e:66:fc:d5:2f:f6:53:
06:43:d7:58:71:84:a6:a2:d8:73:a9:b3:14:83:ee:06:24:e6:
3e:2a:41:b6:07:41:44:6b:fc:75:4c:3d:b9:3c:d7:2f:de:01:
b6:1f:14:67:90:fd:bc:c7:13:1a:8e:2c:b8:7a:fa:8c:56:e8:
18:c1:4f:8b
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECd36TDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
Yjc0NDAwNmVhYzMwODRiZjg4ZjEyODM0OWIwZTczM2JiM2Q3OWUzMB4XDTIyMDMz
MTA5NDQ0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjY1NDc2YmFkZTRm
YzNiMGUxNmRjY2Y2NTMwNmRiNDc1MTc5ZmNjMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI06ICHiZIox5n+JSTYwHOySGPMQdgkVehg/0lBzZm9Wd9AR
tmpbzDnT0nIJa28MAjWMkduafMcTDT/eXAF0KzXwDAfasNPjHW5W/opV4EAZLWGF
fcs18WhPG65uyNMzyBmMKlGrarC/jRMZJr45qETfasv8ZoJ4K4VMA2+79aiuRlqC
vaKlMPV+oDJSvJX5ldFfdOh7PJ0dlrIX83bAEEtmiEYPcZYi/sb1WkqVkhphMZm9
4lhTl1HOxeEPe+v1y+HlOlFU1aJzl2TsAEq9S5wJGXu6a32RvRMS7l+oIxbV45XH
kM3st8xhTK6PZa+Qe6qWxZgKBtfkQzCyinRwQJECAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBS2VHa63k/DsOFtzPZTBttHUXn8wDAfBgNVHSMEGDAWgBT7dEAG6sMIS/iP
EoNJsOczuz154zAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtM1JBQnVyRENFdjRqeEtEU2JEbk03czllZU0uY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2ZlLzE3ODM2YS1kNjc4LTQxY2EtOGZiMi01ZWI3YmVmOWE3YTgv
MS90bFIydXQ1UHc3RGhiY3oyVXdiYlIxRjVfTUEucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Zl
LzE3ODM2YS1kNjc4LTQxY2EtOGZiMi01ZWI3YmVmOWE3YTgvMS8xLTNSQUJ1ckRD
RXY0anhLRFNiRG5NN3M5ZWVNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjo5MA0GCSqGSIb3DQEBCwUA
A4IBAQDpTiCnKH0suZcQ7PdkAOIi3MgaQ1zTswXWKKXC66bHFPifSc/kpONxU5Lo
F+AGKpMY38pxHYNcJdG0eMpXSQHFMychRAoubK9eIY/88L1ZLxVp9EdwW6cvO6Kk
r6thR6tJoHZdhPnm6pP/1YYf3ayaY5eKhaBV/ZfDl99SuBazzu/+FBvcLP6mF/D+
oUFH0xguWcFvxLeD30MfCBORCYsxh4MPTnOS3SgZ84kdZEcOAfbiGcztuSzV0Igk
h4qhKQ5m/NUv9lMGQ9dYcYSmothzqbMUg+4GJOY+KkG2B0FEa/x1TD25PNcv3gG2
HxRnkP28xxMajiy4evqMVugYwU+L
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:55 2025 by rpki-client