Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/0433e3-bd61-4d13-847a-d90c6177e402/1/dXMPZ44H3EK1ymUiEeV-kdVqljI.roa
File: dXMPZ44H3EK1ymUiEeV-kdVqljI.roa (raw, json)
Hash identifier: Z4FUo52Ap+7Yha/WP9YTa5vSQDQbjhKN2zcbF3wPUtg=
Subject key identifier: 75:73:0F:67:8E:07:DC:42:B5:CA:65:22:11:E5:7E:91:D5:6A:96:32
Certificate issuer: /CN=27fdce9db6af9b8133a32617eef4e046444efdd4
Certificate serial: 01942747A66672E2680449AAB44121A48D64
Authority key identifier: 27:FD:CE:9D:B6:AF:9B:81:33:A3:26:17:EE:F4:E0:46:44:4E:FD:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_3Onbavm4EzoyYX7vTgRkRO_dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/0433e3-bd61-4d13-847a-d90c6177e402/1/dXMPZ44H3EK1ymUiEeV-kdVqljI.roa
Signing time: Thu 02 Jan 2025 13:49:54 +0000
ROA not before: Thu 02 Jan 2025 13:49:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60274
IP address blocks: 207.244.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:a6:66:72:e2:68:04:49:aa:b4:41:21:a4:8d:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27fdce9db6af9b8133a32617eef4e046444efdd4
Validity
Not Before: Jan 2 13:49:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=75730f678e07dc42b5ca652211e57e91d56a9632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:78:1d:6b:31:7a:2a:44:0f:01:1b:16:eb:95:
f9:50:f1:08:81:c6:dc:43:3e:6b:7c:4c:58:c5:8f:
e4:91:9f:78:87:78:5a:88:a5:f4:54:59:e0:67:45:
7a:7b:d2:a6:ba:64:f3:67:bf:fb:e7:e8:4a:a1:6a:
c2:a6:c9:13:29:21:bf:3e:bb:69:4e:39:62:3e:7f:
05:4b:39:c3:af:fb:93:5a:73:59:4b:2a:1a:ac:da:
e0:43:23:7c:5d:7e:ef:19:ab:ac:b5:79:4c:5f:6e:
f4:4c:c1:a0:4f:a0:bd:af:4f:53:45:db:b8:7c:59:
ab:73:05:63:86:f9:31:46:39:6d:de:99:d5:d4:eb:
b5:fb:4d:f7:80:10:fa:0f:07:11:da:2f:82:06:f8:
77:50:9b:c0:77:11:1e:37:c2:4c:84:97:7c:c2:f0:
e3:78:f9:bd:dd:b5:f0:48:06:cf:2e:9f:29:45:9d:
f2:b1:48:e3:c1:d8:4a:95:87:87:16:c4:45:e9:91:
d0:13:5a:00:86:eb:5b:a1:0d:cd:90:24:77:e0:0e:
c5:89:64:52:f7:66:6f:9e:66:60:0b:75:7c:0a:17:
02:c2:a7:0b:c4:26:c8:ae:3a:51:f3:d4:2d:f1:a7:
e8:48:26:44:8c:27:59:9a:f9:78:b2:56:21:a4:5f:
44:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:73:0F:67:8E:07:DC:42:B5:CA:65:22:11:E5:7E:91:D5:6A:96:32
X509v3 Authority Key Identifier:
keyid:27:FD:CE:9D:B6:AF:9B:81:33:A3:26:17:EE:F4:E0:46:44:4E:FD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_3Onbavm4EzoyYX7vTgRkRO_dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/0433e3-bd61-4d13-847a-d90c6177e402/1/dXMPZ44H3EK1ymUiEeV-kdVqljI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/0433e3-bd61-4d13-847a-d90c6177e402/1/J_3Onbavm4EzoyYX7vTgRkRO_dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.244.220.0/24
Signature Algorithm: sha256WithRSAEncryption
97:40:21:8b:8e:db:33:fd:9c:04:f7:39:24:c7:e8:57:a7:ee:
bf:71:0e:02:a0:96:e8:89:39:6d:57:fe:b5:5c:33:8a:ea:08:
db:e2:61:e8:c8:8e:f4:64:65:57:bd:f8:08:4e:32:b9:ab:f1:
8d:18:6b:9c:62:12:70:a0:0a:2f:72:4a:92:91:a1:c1:cc:a4:
9c:fa:ad:55:74:56:42:70:3f:7d:67:3a:da:8c:80:d4:9e:ab:
0f:5f:63:6a:60:a6:57:5a:78:25:ee:46:ab:24:25:f1:7c:d2:
b9:05:32:89:c6:e4:44:f6:14:1e:93:60:ee:f2:98:07:09:55:
e1:1a:25:30:a9:87:f5:81:51:40:be:43:1d:a3:c5:07:88:50:
2a:90:22:57:2c:0c:65:3b:fb:24:86:6d:87:b9:3a:18:07:a9:
c2:61:76:76:23:45:97:5b:a6:03:d8:90:7a:7f:5d:fe:50:8a:
b0:16:ea:64:57:95:cf:a7:e8:d3:6b:26:95:ee:5e:05:53:3b:
49:f4:c2:0e:3a:19:a2:0d:25:7d:19:03:a0:8f:c6:ad:a0:74:
5a:ab:01:5a:21:a9:5a:a2:24:b8:7f:69:c0:a5:77:7f:4e:68:
d4:c3:f7:df:6c:ca:7e:eb:e3:e5:49:52:eb:a5:6a:c8:d2:13:
ce:00:ed:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnR6ZmcuJoBEmqtEEhpI1kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3ZmRjZTlkYjZhZjliODEzM2EzMjYxN2VlZjRlMDQ2NDQ0
ZWZkZDQwHhcNMjUwMTAyMTM0OTU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTczMGY2NzhlMDdkYzQyYjVjYTY1MjIxMWU1N2U5MWQ1NmE5NjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2XgdazF6KkQPARsW65X5UPEIgcbc
Qz5rfExYxY/kkZ94h3haiKX0VFngZ0V6e9KmumTzZ7/75+hKoWrCpskTKSG/Prtp
TjliPn8FSznDr/uTWnNZSyoarNrgQyN8XX7vGaustXlMX270TMGgT6C9r09TRdu4
fFmrcwVjhvkxRjlt3pnV1Ou1+033gBD6DwcR2i+CBvh3UJvAdxEeN8JMhJd8wvDj
ePm93bXwSAbPLp8pRZ3ysUjjwdhKlYeHFsRF6ZHQE1oAhutboQ3NkCR34A7FiWRS
92ZvnmZgC3V8ChcCwqcLxCbIrjpR89Qt8afoSCZEjCdZmvl4slYhpF9EDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHVzD2eOB9xCtcplIhHlfpHVapYyMB8GA1UdIwQY
MBaAFCf9zp22r5uBM6MmF+704EZETv3UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSl8zT25iYXZtNEV6b3lZWDd2VGdSa1JPX2RRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy8wNDMzZTMtYmQ2MS00ZDEzLTg0N2Et
ZDkwYzYxNzdlNDAyLzEvZFhNUFo0NEgzRUsxeW1VaUVlVi1rZFZxbGpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy8wNDMzZTMtYmQ2MS00ZDEzLTg0N2EtZDkwYzYxNzdlNDAy
LzEvSl8zT25iYXZtNEV6b3lZWDd2VGdSa1JPX2RRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAz/TcMA0G
CSqGSIb3DQEBCwUAA4IBAQCXQCGLjtsz/ZwE9zkkx+hXp+6/cQ4CoJboiTltV/61
XDOK6gjb4mHoyI70ZGVXvfgITjK5q/GNGGucYhJwoAovckqSkaHBzKSc+q1VdFZC
cD99ZzrajIDUnqsPX2NqYKZXWngl7karJCXxfNK5BTKJxuRE9hQek2Du8pgHCVXh
GiUwqYf1gVFAvkMdo8UHiFAqkCJXLAxlO/skhm2HuToYB6nCYXZ2I0WXW6YD2JB6
f13+UIqwFupkV5XPp+jTayaV7l4FUztJ9MIOOhmiDSV9GQOgj8atoHRaqwFaIala
oiS4f2nApXd/TmjUw/ffbMp+6+PlSVLrpWrI0hPOAO18
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:03:01 2025 by rpki-client