Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/dM8mYQoCK29JH12kFsZ_9vTK4Ro.roa
File: dM8mYQoCK29JH12kFsZ_9vTK4Ro.roa (raw, json)
Hash identifier: pKhYXTfYkpGibT9L+hdTTi4hKDyIuNLyLc+4FRDCwZM=
Subject key identifier: 74:CF:26:61:0A:02:2B:6F:49:1F:5D:A4:16:C6:7F:F6:F4:CA:E1:1A
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018D4AAC753FFF4E37020DE1DC44EB8953B9
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/dM8mYQoCK29JH12kFsZ_9vTK4Ro.roa
Signing time: Sat 27 Jan 2024 11:27:12 +0000
ROA not before: Sat 27 Jan 2024 11:27:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 89.249.192.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:4a:ac:75:3f:ff:4e:37:02:0d:e1:dc:44:eb:89:53:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jan 27 11:27:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74cf26610a022b6f491f5da416c67ff6f4cae11a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:55:eb:08:fe:3a:3f:7e:13:17:df:1f:bb:40:
12:db:f5:57:d5:de:e7:5f:c1:6c:51:f0:a9:02:12:
ec:bf:88:d2:0a:b0:6d:f3:8a:6e:28:07:ae:cb:a2:
18:4b:c8:c3:9f:be:44:74:66:52:e9:be:08:26:d2:
ec:1b:7a:d1:3c:eb:fb:7c:7a:54:da:3f:fb:81:4b:
9e:5b:51:d6:17:f7:ca:bb:a8:0f:1d:6c:c8:0d:04:
21:ee:b1:a4:77:21:b6:ce:cd:46:08:a1:7e:24:dd:
e5:d9:9c:d1:ae:21:3b:bd:ba:b4:c0:c0:5a:b1:d5:
f5:a5:1f:c8:64:78:e4:23:f8:92:56:bc:7a:bc:82:
ef:1d:73:03:53:f5:e0:3f:ff:aa:34:a6:ed:1b:06:
2c:f9:2a:3f:97:5a:b4:4b:60:18:80:32:8b:41:e0:
e3:fa:19:fc:fb:39:45:f6:fe:bc:af:67:32:f8:cf:
0f:9d:e2:70:99:ab:5a:79:20:75:79:02:46:23:13:
ce:7c:f7:01:a8:e8:db:8c:1c:9c:02:cf:05:10:7f:
0d:82:17:cd:fb:4a:e1:c1:e0:4f:32:15:3f:b5:83:
e3:65:9b:89:0a:8a:85:bc:c0:f6:67:4f:cd:91:ba:
cd:17:45:0c:44:54:36:f1:a9:b4:00:31:0f:e7:7a:
ae:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CF:26:61:0A:02:2B:6F:49:1F:5D:A4:16:C6:7F:F6:F4:CA:E1:1A
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/dM8mYQoCK29JH12kFsZ_9vTK4Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.192.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:6e:e8:a4:12:d5:f9:1a:9e:dc:4d:ce:55:8b:15:b8:03:71:
a2:a5:49:ed:77:18:5d:1d:54:30:fa:7f:b1:d0:b8:60:93:fe:
60:93:f4:8f:35:54:35:0d:11:be:4f:4c:ac:18:24:3d:64:e9:
b8:af:b4:42:6b:9f:d0:bf:c5:2e:e1:06:0a:db:df:bb:b5:2f:
56:9f:4a:24:ef:1a:57:a4:97:37:bb:46:06:45:5b:c0:f6:e5:
c8:ae:d0:b0:3c:04:38:3f:52:06:d7:1b:9a:8a:17:c3:4a:3e:
ea:9c:df:bd:0f:f5:5a:b4:d2:f2:46:a2:0a:8d:60:11:c0:80:
0e:05:80:6b:84:bd:27:7f:fc:ad:dc:e4:b2:28:e4:54:5c:38:
81:16:30:dd:d9:8a:a8:28:36:5a:89:3d:93:02:01:0c:27:60:
7a:f7:6b:ba:27:a1:d7:d1:97:e9:0c:d7:35:b1:7c:c3:a9:79:
bc:d7:57:c5:e5:c1:06:48:07:52:ff:8c:b8:6a:21:9e:8b:7c:
4e:f1:eb:39:fa:73:a6:d8:19:00:41:6d:62:c5:d6:f7:35:46:
34:86:92:28:27:64:dd:57:53:79:60:47:65:b2:a6:f2:86:2f:
f7:0b:29:c7:22:e6:92:b4:6f:67:bb:09:f0:17:da:20:0b:8c:
33:4f:8c:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1KrHU//043Ag3h3ETriVO5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNzIyZTQ1MTNhMzk2NzhkOGFiMjNiMmQ2NDk3NzUzNDA1
MThjYjkwHhcNMjQwMTI3MTEyNzEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NGNmMjY2MTBhMDIyYjZmNDkxZjVkYTQxNmM2N2ZmNmY0Y2FlMTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVXrCP46P34TF98fu0AS2/VX1d7n
X8FsUfCpAhLsv4jSCrBt84puKAeuy6IYS8jDn75EdGZS6b4IJtLsG3rRPOv7fHpU
2j/7gUueW1HWF/fKu6gPHWzIDQQh7rGkdyG2zs1GCKF+JN3l2ZzRriE7vbq0wMBa
sdX1pR/IZHjkI/iSVrx6vILvHXMDU/XgP/+qNKbtGwYs+So/l1q0S2AYgDKLQeDj
+hn8+zlF9v68r2cy+M8PneJwmataeSB1eQJGIxPOfPcBqOjbjBycAs8FEH8NghfN
+0rhweBPMhU/tYPjZZuJCoqFvMD2Z0/NkbrNF0UMRFQ28am0ADEP53qu+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHTPJmEKAitvSR9dpBbGf/b0yuEaMB8GA1UdIwQY
MBaAFA1yLkUTo5Z42KsjstZJd1NAUYy5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDIt
MzQyNWIxMjVlYWE3LzEvZE04bVlRb0NLMjlKSDEya0ZzWl85dlRLNFJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDItMzQyNWIxMjVlYWE3
LzEvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDWfnAMA0G
CSqGSIb3DQEBCwUAA4IBAQA6buikEtX5Gp7cTc5VixW4A3GipUntdxhdHVQw+n+x
0Lhgk/5gk/SPNVQ1DRG+T0ysGCQ9ZOm4r7RCa5/Qv8Uu4QYK29+7tS9Wn0ok7xpX
pJc3u0YGRVvA9uXIrtCwPAQ4P1IG1xuaihfDSj7qnN+9D/VatNLyRqIKjWARwIAO
BYBrhL0nf/yt3OSyKORUXDiBFjDd2YqoKDZaiT2TAgEMJ2B692u6J6HX0ZfpDNc1
sXzDqXm811fF5cEGSAdS/4y4aiGei3xO8es5+nOm2BkAQW1ixdb3NUY0hpIoJ2Td
V1N5YEdlsqbyhi/3CynHIuaStG9nuwnwF9ogC4wzT4xU
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:57 2025 by rpki-client