Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/tCAzKxpLrkmFMZR4RRCQd9p1ADo.roa
File: tCAzKxpLrkmFMZR4RRCQd9p1ADo.roa (raw, json)
Hash identifier: SCXqn9Sk4hWHzAcns5LvAAZM9YZ7kblGiEWX7nVj190=
Subject key identifier: B4:20:33:2B:1A:4B:AE:49:85:31:94:78:45:10:90:77:DA:75:00:3A
Certificate issuer: /CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Certificate serial: 0194266B469F52684D5A0B2F2102CBF49135
Authority key identifier: 92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/tCAzKxpLrkmFMZR4RRCQd9p1ADo.roa
Signing time: Thu 02 Jan 2025 09:49:12 +0000
ROA not before: Thu 02 Jan 2025 09:49:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15868
IP address blocks: 213.222.228.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:46:9f:52:68:4d:5a:0b:2f:21:02:cb:f4:91:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Validity
Not Before: Jan 2 09:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b420332b1a4bae498531947845109077da75003a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:65:ec:62:b3:81:c6:c9:f2:06:54:e7:89:c8:
dd:ae:60:43:e9:3e:85:4b:89:11:9a:a7:7f:01:3e:
03:3d:d7:2e:01:3f:00:df:76:0e:c7:e6:c7:12:2a:
9b:36:99:f5:9f:f7:60:68:7d:a7:13:71:23:1f:02:
6d:82:26:63:bb:99:43:0a:0e:aa:55:e0:69:06:7e:
7a:c8:93:16:de:36:42:a8:b8:e8:02:ba:65:8f:4b:
a5:02:0c:e4:55:e0:bc:71:86:f8:20:bb:4f:ce:8a:
1b:35:b4:0d:58:50:d9:8e:59:0c:f6:dc:eb:8e:13:
3c:b7:57:85:4e:85:d6:4b:66:ce:64:9f:34:85:38:
15:f6:26:91:6f:1f:02:5c:ca:31:66:4e:30:c2:78:
49:1d:06:9e:61:39:e0:8f:01:ad:64:52:9c:a3:41:
21:c3:c1:79:b7:f2:af:67:4d:85:1b:f4:14:69:a1:
b1:9e:03:3f:5a:80:c9:3b:22:c5:bb:db:b4:9a:e9:
01:6f:36:e1:ce:b8:d1:c5:4b:3a:a5:c5:4b:17:36:
ac:16:57:b2:d4:d5:1f:4b:68:54:d9:ec:bb:ad:35:
a3:15:da:0e:6b:37:bb:4c:b5:fd:89:cc:4f:53:4f:
3d:5f:97:26:45:62:a9:2d:03:a6:9f:f1:da:67:e4:
64:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:20:33:2B:1A:4B:AE:49:85:31:94:78:45:10:90:77:DA:75:00:3A
X509v3 Authority Key Identifier:
keyid:92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/tCAzKxpLrkmFMZR4RRCQd9p1ADo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/kvSxwL-61GuBHu5Wihj7qhSp1oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.222.228.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:bd:0b:42:19:45:6a:d6:dc:0e:1c:c5:63:22:ab:4e:3e:0b:
20:1c:38:62:b6:23:2c:94:10:61:44:5b:b8:7d:8b:7a:f9:d4:
c3:26:ac:86:4c:b4:0f:6d:eb:ec:13:94:18:f4:b8:99:76:57:
7c:d4:99:58:cc:10:09:76:10:1d:24:bb:fb:64:41:ba:5b:ed:
a8:bc:71:92:6d:ff:c7:83:82:aa:ea:df:31:65:0e:9c:7d:68:
5c:a7:12:dd:17:20:f4:c3:b7:3d:a2:5d:11:fc:3c:57:1f:0f:
33:b9:47:d4:47:5c:8d:47:e0:58:eb:56:59:de:0a:e8:97:0f:
b6:be:73:e4:30:7e:11:19:4f:20:65:55:2c:49:9a:3e:a4:d4:
99:a7:e5:43:e4:19:96:99:85:21:28:39:26:04:c6:67:e3:9c:
c4:9b:18:89:5a:48:85:e0:76:7f:73:8f:fa:7b:9c:4e:6a:8e:
e5:e8:fd:24:a0:63:9e:8e:5f:70:f8:ad:a3:b5:dc:46:7e:a5:
d2:82:c5:67:b9:e6:c0:29:0c:a7:66:d1:67:7d:e0:0a:e1:ba:
dd:19:09:bd:1f:aa:50:d0:51:23:8d:11:a3:66:f3:74:cb:22:
d3:2b:69:3f:2e:18:d6:b4:d3:20:3d:f6:de:1a:03:1d:f3:fd:
ec:e7:eb:15
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQma0afUmhNWgsvIQLL9JE1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZjRiMWMwYmZiYWQ0NmI4MTFlZWU1NjhhMThmYmFhMTRh
OWQ2ODcwHhcNMjUwMTAyMDk0OTEyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDIwMzMyYjFhNGJhZTQ5ODUzMTk0Nzg0NTEwOTA3N2RhNzUwMDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6GXsYrOBxsnyBlTnicjdrmBD6T6F
S4kRmqd/AT4DPdcuAT8A33YOx+bHEiqbNpn1n/dgaH2nE3EjHwJtgiZju5lDCg6q
VeBpBn56yJMW3jZCqLjoArplj0ulAgzkVeC8cYb4ILtPzoobNbQNWFDZjlkM9tzr
jhM8t1eFToXWS2bOZJ80hTgV9iaRbx8CXMoxZk4wwnhJHQaeYTngjwGtZFKco0Eh
w8F5t/KvZ02FG/QUaaGxngM/WoDJOyLFu9u0mukBbzbhzrjRxUs6pcVLFzasFley
1NUfS2hU2ey7rTWjFdoOaze7TLX9icxPU089X5cmRWKpLQOmn/HaZ+RkQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLQgMysaS65JhTGUeEUQkHfadQA6MB8GA1UdIwQY
MBaAFJL0scC/utRrgR7uVooY+6oUqdaHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3ZTeHdMLTYxR3VCSHU1V2loajdxaFNwMW9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi80Zjg1MTQtMmUyMC00OTM1LTk5NWMt
YTA4NGY3NmM4ZTJiLzEvdENBekt4cExya21GTVpSNFJSQ1FkOXAxQURvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi80Zjg1MTQtMmUyMC00OTM1LTk5NWMtYTA4NGY3NmM4ZTJi
LzEva3ZTeHdMLTYxR3VCSHU1V2loajdxaFNwMW9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1d7kMA0G
CSqGSIb3DQEBCwUAA4IBAQBMvQtCGUVq1twOHMVjIqtOPgsgHDhitiMslBBhRFu4
fYt6+dTDJqyGTLQPbevsE5QY9LiZdld81JlYzBAJdhAdJLv7ZEG6W+2ovHGSbf/H
g4Kq6t8xZQ6cfWhcpxLdFyD0w7c9ol0R/DxXHw8zuUfUR1yNR+BY61ZZ3grolw+2
vnPkMH4RGU8gZVUsSZo+pNSZp+VD5BmWmYUhKDkmBMZn45zEmxiJWkiF4HZ/c4/6
e5xOao7l6P0koGOejl9w+K2jtdxGfqXSgsVnuebAKQynZtFnfeAK4brdGQm9H6pQ
0FEjjRGjZvN0yyLTK2k/LhjWtNMgPfbeGgMd8/3s5+sV
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net