Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/MeXxI68VhswcyZ_-8X4oKdOf0H8.roa
File: MeXxI68VhswcyZ_-8X4oKdOf0H8.roa (raw, json)
Hash identifier: 1gypIegK+DwFU8AfmSnmwgdymeASNHDoZfd5S59cDLg=
Subject key identifier: 31:E5:F1:23:AF:15:86:CC:1C:C9:9F:FE:F1:7E:28:29:D3:9F:D0:7F
Certificate issuer: /CN=8d29a41e6f507a37458a49643a7be5790758f726
Certificate serial: 0185708CE18F514B41BD43E283C6C00315E6
Authority key identifier: 8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/MeXxI68VhswcyZ_-8X4oKdOf0H8.roa
Signing time: Mon 02 Jan 2023 03:35:59 +0000
ROA not before: Mon 02 Jan 2023 03:35:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50599
IP address blocks: 212.7.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:e1:8f:51:4b:41:bd:43:e2:83:c6:c0:03:15:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d29a41e6f507a37458a49643a7be5790758f726
Validity
Not Before: Jan 2 03:35:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31e5f123af1586cc1cc99ffef17e2829d39fd07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9d:86:fa:68:43:20:19:99:62:6d:ae:b1:32:
fe:68:8f:1d:37:16:b5:eb:62:08:ac:a6:63:24:b9:
37:2d:50:99:1d:40:48:ac:28:d3:f7:cd:5a:af:49:
11:85:54:53:c4:90:1c:37:cb:d6:0e:a5:a0:ab:61:
94:e9:77:65:c4:b3:1c:40:ea:d3:4f:17:df:5e:16:
75:48:b0:ca:44:2c:c0:62:5f:5a:03:24:d3:29:47:
ae:35:a5:60:4f:1f:b2:ee:08:53:b5:5e:1f:35:62:
b0:f0:a8:fa:93:46:5f:4f:33:9f:cf:64:cc:88:8c:
2b:b6:d1:5a:e9:62:79:e4:65:7e:04:9f:ce:75:c2:
ad:5d:a7:95:53:88:63:d2:1f:f9:8e:05:75:dc:77:
0b:b5:98:0b:a6:f6:cb:81:21:15:62:61:c8:cb:43:
30:e4:48:40:8e:3f:62:dc:f2:ba:8a:5a:19:2f:28:
1e:b1:fc:cd:c3:a9:bd:a1:15:01:1e:c9:f9:08:cc:
70:73:00:71:b3:09:11:f8:5b:30:ac:eb:d5:a7:56:
ce:89:32:d4:33:77:91:6c:d0:03:9b:9e:59:27:7d:
53:c3:1a:bd:b7:48:fa:b9:48:1a:4c:17:a0:96:5a:
1e:8a:f5:47:06:d4:0b:54:d0:c7:92:94:13:5a:c4:
84:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E5:F1:23:AF:15:86:CC:1C:C9:9F:FE:F1:7E:28:29:D3:9F:D0:7F
X509v3 Authority Key Identifier:
keyid:8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/MeXxI68VhswcyZ_-8X4oKdOf0H8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/jSmkHm9QejdFiklkOnvleQdY9yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.7.213.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:8f:58:0a:a4:58:8f:b4:be:24:98:dd:9f:25:f2:e1:f3:cb:
88:0e:ee:00:54:c6:1c:95:45:b1:72:ec:a7:b5:4b:cc:93:aa:
53:38:9d:a4:05:7e:75:75:9e:52:17:da:de:16:e7:41:95:c7:
14:bf:f0:05:10:54:9e:21:27:48:6e:e2:b2:9b:ec:29:8f:f8:
37:35:25:bd:b6:45:80:8b:75:af:84:30:34:fc:ab:7c:ca:12:
e0:23:06:4e:85:6f:3e:44:43:34:eb:ab:15:c2:0c:a1:92:f2:
fc:24:a0:71:05:ce:e3:04:a6:4a:bc:40:8b:2a:04:d5:9f:0d:
0d:c1:96:3c:bb:18:c2:a2:76:6f:bf:d5:ac:06:4f:8c:82:c3:
0b:50:a8:d4:8d:87:b9:d2:89:c3:a1:cf:10:35:63:a8:d8:2c:
57:78:5a:38:72:28:fa:f1:ea:57:4b:68:c0:c0:61:a2:4f:7a:
6c:99:fa:af:ae:1b:e7:14:64:3c:ea:3d:cd:67:74:f3:6f:54:
fe:33:3c:58:8b:99:21:c9:4b:1a:86:b1:3a:74:38:b2:ef:7f:
63:3b:9c:88:20:a9:3a:05:5e:82:0d:c0:7b:e7:b4:f4:f8:47:
cd:da:72:e9:6d:a0:12:86:7d:2b:6c:05:23:5e:85:25:ee:1b:
f7:98:83:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwjOGPUUtBvUPig8bAAxXmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMjlhNDFlNmY1MDdhMzc0NThhNDk2NDNhN2JlNTc5MDc1
OGY3MjYwHhcNMjMwMTAyMDMzNTU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMWU1ZjEyM2FmMTU4NmNjMWNjOTlmZmVmMTdlMjgyOWQzOWZkMDdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl52G+mhDIBmZYm2usTL+aI8dNxa1
62IIrKZjJLk3LVCZHUBIrCjT981ar0kRhVRTxJAcN8vWDqWgq2GU6XdlxLMcQOrT
TxffXhZ1SLDKRCzAYl9aAyTTKUeuNaVgTx+y7ghTtV4fNWKw8Kj6k0ZfTzOfz2TM
iIwrttFa6WJ55GV+BJ/OdcKtXaeVU4hj0h/5jgV13HcLtZgLpvbLgSEVYmHIy0Mw
5EhAjj9i3PK6iloZLygesfzNw6m9oRUBHsn5CMxwcwBxswkR+FswrOvVp1bOiTLU
M3eRbNADm55ZJ31Twxq9t0j6uUgaTBeglloeivVHBtQLVNDHkpQTWsSE1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDHl8SOvFYbMHMmf/vF+KCnTn9B/MB8GA1UdIwQY
MBaAFI0ppB5vUHo3RYpJZDp75XkHWPcmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalNta0htOVFlamRGaWtsa09udmxlUWRZOXlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9iNWI0NWQtNzc4MC00MzRiLWE5MTIt
ZWZiOWEwNGQzY2FhLzEvTWVYeEk2OFZoc3djeVpfLThYNG9LZE9mMEg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9iNWI0NWQtNzc4MC00MzRiLWE5MTItZWZiOWEwNGQzY2Fh
LzEvalNta0htOVFlamRGaWtsa09udmxlUWRZOXlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1AfVMA0G
CSqGSIb3DQEBCwUAA4IBAQAcj1gKpFiPtL4kmN2fJfLh88uIDu4AVMYclUWxcuyn
tUvMk6pTOJ2kBX51dZ5SF9reFudBlccUv/AFEFSeISdIbuKym+wpj/g3NSW9tkWA
i3WvhDA0/Kt8yhLgIwZOhW8+REM066sVwgyhkvL8JKBxBc7jBKZKvECLKgTVnw0N
wZY8uxjConZvv9WsBk+MgsMLUKjUjYe50onDoc8QNWOo2CxXeFo4cij68epXS2jA
wGGiT3psmfqvrhvnFGQ86j3NZ3Tzb1T+MzxYi5khyUsahrE6dDiy739jO5yIIKk6
BV6CDcB757T0+EfN2nLpbaAShn0rbAUjXoUl7hv3mIOy
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:56 2025 by rpki-client