Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/7335d2-3c3f-4fca-8000-ccf9b89e22e2/1/2Bx_ZuBj3ywzIO5mlvk2Okv22hQ.roa
File: 2Bx_ZuBj3ywzIO5mlvk2Okv22hQ.roa (raw, json)
Hash identifier: guPg5C9izx8vPW7Ld4+sGxeIZUZPSLOzjQE1liVIecw=
Subject key identifier: D8:1C:7F:66:E0:63:DF:2C:33:20:EE:66:96:F9:36:3A:4B:F6:DA:14
Certificate issuer: /CN=d2e6ddda40d782559ee65e50f908e1689a65a800
Certificate serial: 019424B3BB90D82260E502B22CB5DA9EA9CF
Authority key identifier: D2:E6:DD:DA:40:D7:82:55:9E:E6:5E:50:F9:08:E1:68:9A:65:A8:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ubd2kDXglWe5l5Q-QjhaJplqAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/7335d2-3c3f-4fca-8000-ccf9b89e22e2/1/2Bx_ZuBj3ywzIO5mlvk2Okv22hQ.roa
Signing time: Thu 02 Jan 2025 01:49:06 +0000
ROA not before: Thu 02 Jan 2025 01:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211856
IP address blocks: 62.192.164.0/22 maxlen: 24
2a09:18c0::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:bb:90:d8:22:60:e5:02:b2:2c:b5:da:9e:a9:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2e6ddda40d782559ee65e50f908e1689a65a800
Validity
Not Before: Jan 2 01:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d81c7f66e063df2c3320ee6696f9363a4bf6da14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:06:65:c7:1e:68:7b:f8:cd:83:6b:5c:bb:a8:
7d:72:ff:0c:b2:48:18:89:26:89:27:51:dd:df:82:
1e:b1:da:bc:58:b5:23:a2:88:5f:c1:c9:62:76:64:
d0:2c:d3:57:65:8b:9e:dd:49:29:ad:35:30:d9:13:
52:44:d0:52:94:5a:b0:c1:d6:c2:bd:74:5c:de:0b:
56:40:9b:78:e6:0e:aa:17:8d:ea:2b:61:86:41:62:
1d:45:77:a6:a3:46:9f:9f:fd:55:f8:21:33:e5:ba:
f2:46:69:82:f5:1b:8e:41:75:28:c6:79:c4:30:65:
03:21:d1:1d:6b:4b:e1:3d:bf:2d:0e:1d:eb:17:03:
61:c8:e3:de:23:98:03:40:63:e9:51:51:01:f6:ac:
44:5e:d9:db:69:5a:d7:e3:fc:80:de:e7:2f:8d:fa:
be:cc:e0:f7:9f:b4:66:38:d5:c7:0f:b3:17:ae:75:
6a:3f:b1:e6:5f:15:e2:2f:02:09:f4:a3:78:e4:1e:
17:f5:45:4a:27:54:29:be:47:cd:e7:eb:ba:f1:2a:
2c:89:05:5d:84:57:f2:9b:2a:d5:e3:7e:e7:23:e2:
9f:67:65:e2:8d:84:ee:c3:fb:2f:32:eb:8a:3a:01:
31:5f:0a:a2:30:61:01:02:16:2b:69:f2:d9:6a:5c:
99:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:1C:7F:66:E0:63:DF:2C:33:20:EE:66:96:F9:36:3A:4B:F6:DA:14
X509v3 Authority Key Identifier:
keyid:D2:E6:DD:DA:40:D7:82:55:9E:E6:5E:50:F9:08:E1:68:9A:65:A8:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ubd2kDXglWe5l5Q-QjhaJplqAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/7335d2-3c3f-4fca-8000-ccf9b89e22e2/1/2Bx_ZuBj3ywzIO5mlvk2Okv22hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/7335d2-3c3f-4fca-8000-ccf9b89e22e2/1/0ubd2kDXglWe5l5Q-QjhaJplqAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.164.0/22
IPv6:
2a09:18c0::/29
Signature Algorithm: sha256WithRSAEncryption
c2:21:30:c0:fc:0b:04:88:14:cf:06:1c:6d:58:fe:f6:6d:86:
cc:c5:f6:50:93:80:83:ec:7b:b8:69:1b:c8:d1:84:bf:4f:c3:
58:3a:62:ac:74:46:db:04:0f:11:d7:f7:fe:39:2f:d4:46:1f:
51:e6:74:13:5b:ce:d2:09:5b:7e:b4:f9:d8:36:8b:81:fc:d1:
a1:72:2e:53:a2:96:b5:73:53:fb:fd:86:f2:2e:7f:fd:0d:ab:
d5:17:50:5c:43:ed:4c:52:7f:63:0a:6a:51:08:4c:c7:77:cd:
db:43:ec:27:6a:a2:f2:e3:7b:4a:c0:aa:37:65:67:7f:eb:77:
2b:44:55:fd:84:f5:f9:09:d1:3e:91:21:cc:2a:22:98:bd:93:
cf:8c:c5:9d:6b:9a:db:17:06:36:57:e9:1e:35:45:37:72:4d:
49:17:d2:81:bd:22:0e:43:f6:ca:ec:1d:67:0a:30:68:79:b1:
ac:e3:59:aa:ee:91:52:15:70:01:7c:a8:ee:3f:b3:12:52:53:
50:c8:ed:b4:54:cf:d1:97:c7:1b:86:b2:72:ed:9f:ae:61:41:
6c:d7:c8:a4:30:d0:3d:96:95:8d:3e:d0:77:6a:c6:b4:d2:7b:
1c:fb:ad:95:46:a7:43:7c:1c:b6:e3:1a:a6:fb:d3:a1:94:5c:
68:2a:73:d8
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQks7uQ2CJg5QKyLLXanqnPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyZTZkZGRhNDBkNzgyNTU5ZWU2NWU1MGY5MDhlMTY4OWE2
NWE4MDAwHhcNMjUwMTAyMDE0OTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODFjN2Y2NmUwNjNkZjJjMzMyMGVlNjY5NmY5MzYzYTRiZjZkYTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgwZlxx5oe/jNg2tcu6h9cv8MskgY
iSaJJ1Hd34Iesdq8WLUjoohfwclidmTQLNNXZYue3UkprTUw2RNSRNBSlFqwwdbC
vXRc3gtWQJt45g6qF43qK2GGQWIdRXemo0afn/1V+CEz5bryRmmC9RuOQXUoxnnE
MGUDIdEda0vhPb8tDh3rFwNhyOPeI5gDQGPpUVEB9qxEXtnbaVrX4/yA3ucvjfq+
zOD3n7RmONXHD7MXrnVqP7HmXxXiLwIJ9KN45B4X9UVKJ1QpvkfN5+u68SosiQVd
hFfymyrV437nI+KfZ2XijYTuw/svMuuKOgExXwqiMGEBAhYrafLZalyZBwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFNgcf2bgY98sMyDuZpb5NjpL9toUMB8GA1UdIwQY
MBaAFNLm3dpA14JVnuZeUPkI4WiaZagAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHViZDJrRFhnbFdlNWw1US1RamhhSnBscUFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi83MzM1ZDItM2MzZi00ZmNhLTgwMDAt
Y2NmOWI4OWUyMmUyLzEvMkJ4X1p1QmozeXd6SU81bWx2azJPa3YyMmhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi83MzM1ZDItM2MzZi00ZmNhLTgwMDAtY2NmOWI4OWUyMmUy
LzEvMHViZDJrRFhnbFdlNWw1US1RamhhSnBscUFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCPsCkMA0E
AgACMAcDBQMqCRjAMA0GCSqGSIb3DQEBCwUAA4IBAQDCITDA/AsEiBTPBhxtWP72
bYbMxfZQk4CD7Hu4aRvI0YS/T8NYOmKsdEbbBA8R1/f+OS/URh9R5nQTW87SCVt+
tPnYNouB/NGhci5Topa1c1P7/YbyLn/9DavVF1BcQ+1MUn9jCmpRCEzHd83bQ+wn
aqLy43tKwKo3ZWd/63crRFX9hPX5CdE+kSHMKiKYvZPPjMWda5rbFwY2V+keNUU3
ck1JF9KBvSIOQ/bK7B1nCjBoebGs41mq7pFSFXABfKjuP7MSUlNQyO20VM/Rl8cb
hrJy7Z+uYUFs18ikMNA9lpWNPtB3asa00nsc+62VRqdDfBy24xqm+9OhlFxoKnPY
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:42 2025 by rpki-client on console.sobornost.net