Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/4zT1lGC4Dhhi_guoR1ibplAffPA.roa
File: 4zT1lGC4Dhhi_guoR1ibplAffPA.roa (raw, json)
Hash identifier: Awpr3PlffGGCiAASIUT5BtNyMAJLa+UNSoMkb8+xmDY=
Subject key identifier: E3:34:F5:94:60:B8:0E:18:62:FE:0B:A8:47:58:9B:A6:50:1F:7C:F0
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018D0B67C8021E27C57E3032A7F45A6E0C4E
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/4zT1lGC4Dhhi_guoR1ibplAffPA.roa
Signing time: Mon 15 Jan 2024 04:36:07 +0000
ROA not before: Mon 15 Jan 2024 04:36:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 89.249.206.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0b:67:c8:02:1e:27:c5:7e:30:32:a7:f4:5a:6e:0c:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jan 15 04:36:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e334f59460b80e1862fe0ba847589ba6501f7cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6c:e8:34:ac:1a:c7:6f:16:57:75:b0:62:00:
b6:93:95:96:f4:71:25:26:0a:f3:c0:d2:9f:9c:5e:
b9:9c:c3:80:16:d6:ce:f7:42:bb:98:0e:8b:94:7e:
6e:12:bf:22:50:15:bd:76:66:e9:2a:24:53:be:83:
04:a5:39:64:29:b1:2a:49:61:53:ef:2f:4f:84:77:
9f:5e:fb:74:ca:f6:c2:75:03:48:ea:02:6c:45:69:
bc:b3:85:b3:06:fe:9c:81:9f:6a:e1:58:ea:ac:0e:
0d:be:19:1e:ba:1d:b4:97:7a:73:8c:71:8e:ae:ea:
81:b3:fb:3d:de:17:c4:9a:35:c2:fc:04:67:35:7d:
33:ce:7f:27:37:52:5e:5c:5f:d1:2e:c5:41:0c:5c:
99:81:a4:93:74:63:85:34:86:6e:40:0c:1f:f2:c4:
9d:d3:62:c9:2c:7a:39:bd:4a:e6:49:eb:de:5a:6d:
e5:7e:16:7e:0e:07:a5:39:7f:fb:6a:42:ce:85:ab:
d4:f9:60:34:27:8d:9f:5d:56:5e:23:4a:6f:8a:97:
26:b1:47:2f:34:62:0c:bb:0a:3f:ac:e9:59:b1:72:
bf:49:69:4c:07:ef:7c:d3:18:38:6a:cd:9f:ee:ba:
7a:88:b9:fb:65:66:5d:a7:07:99:cf:ec:39:ce:8c:
d8:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:34:F5:94:60:B8:0E:18:62:FE:0B:A8:47:58:9B:A6:50:1F:7C:F0
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/4zT1lGC4Dhhi_guoR1ibplAffPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.206.0/23
Signature Algorithm: sha256WithRSAEncryption
77:a8:9e:07:09:94:5f:f7:8e:38:04:6d:bb:d2:cb:2f:1e:bb:
d2:14:59:c3:67:ec:7e:d6:18:0b:d0:9e:e7:c5:df:c4:7e:f2:
96:c3:48:e4:f2:73:59:43:e3:4f:ac:b0:a0:d2:66:4d:fb:63:
25:82:33:86:a9:12:5a:c6:85:00:39:9b:27:78:da:2e:d0:f8:
53:d8:7a:61:05:bc:ea:99:ff:87:44:18:36:38:9c:ed:1f:f3:
d3:1c:56:1a:c3:0f:2b:44:69:dd:7d:44:40:e6:0f:2e:ab:0c:
be:62:14:50:4d:8a:fb:ea:8d:df:e4:ef:be:e0:99:6b:9f:a9:
0b:48:79:55:f1:29:c1:fb:70:a3:68:ff:39:25:48:8c:cc:fc:
b7:a9:70:94:c0:4f:df:9b:2c:bc:67:4d:fb:a7:57:2b:bc:72:
d2:88:ec:2f:f4:63:87:9b:84:04:54:b4:8e:0d:b3:71:5d:a6:
71:11:9b:0f:9f:ba:e2:e6:df:d0:97:35:98:62:ea:e2:9e:5a:
cf:32:74:84:a9:4f:f2:6b:7c:18:ee:db:56:39:f6:7e:bb:5e:
2d:fe:02:de:d9:fe:ef:02:20:78:61:42:28:76:0f:9b:d0:d3:
07:16:2d:29:9e:a2:2f:9a:62:90:d0:44:34:bb:ef:87:2b:1a:
be:ad:ed:90
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0LZ8gCHifFfjAyp/RabgxOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNzIyZTQ1MTNhMzk2NzhkOGFiMjNiMmQ2NDk3NzUzNDA1
MThjYjkwHhcNMjQwMTE1MDQzNjA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzM0ZjU5NDYwYjgwZTE4NjJmZTBiYTg0NzU4OWJhNjUwMWY3Y2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02zoNKwax28WV3WwYgC2k5WW9HEl
JgrzwNKfnF65nMOAFtbO90K7mA6LlH5uEr8iUBW9dmbpKiRTvoMEpTlkKbEqSWFT
7y9PhHefXvt0yvbCdQNI6gJsRWm8s4WzBv6cgZ9q4VjqrA4Nvhkeuh20l3pzjHGO
ruqBs/s93hfEmjXC/ARnNX0zzn8nN1JeXF/RLsVBDFyZgaSTdGOFNIZuQAwf8sSd
02LJLHo5vUrmSeveWm3lfhZ+DgelOX/7akLOhavU+WA0J42fXVZeI0pvipcmsUcv
NGIMuwo/rOlZsXK/SWlMB+980xg4as2f7rp6iLn7ZWZdpweZz+w5zozYNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOM09ZRguA4YYv4LqEdYm6ZQH3zwMB8GA1UdIwQY
MBaAFA1yLkUTo5Z42KsjstZJd1NAUYy5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDIt
MzQyNWIxMjVlYWE3LzEvNHpUMWxHQzREaGhpX2d1b1IxaWJwbEFmZlBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDItMzQyNWIxMjVlYWE3
LzEvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBWfnOMA0G
CSqGSIb3DQEBCwUAA4IBAQB3qJ4HCZRf9444BG270ssvHrvSFFnDZ+x+1hgL0J7n
xd/EfvKWw0jk8nNZQ+NPrLCg0mZN+2MlgjOGqRJaxoUAOZsneNou0PhT2HphBbzq
mf+HRBg2OJztH/PTHFYaww8rRGndfURA5g8uqwy+YhRQTYr76o3f5O++4Jlrn6kL
SHlV8SnB+3CjaP85JUiMzPy3qXCUwE/fmyy8Z037p1crvHLSiOwv9GOHm4QEVLSO
DbNxXaZxEZsPn7ri5t/QlzWYYurinlrPMnSEqU/ya3wY7ttWOfZ+u14t/gLe2f7v
AiB4YUIodg+b0NMHFi0pnqIvmmKQ0EQ0u++HKxq+re2Q
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:20 2025 by rpki-client