Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/v8B0XymDsDwFk4EheTvmyFAGwJs.roa
File: v8B0XymDsDwFk4EheTvmyFAGwJs.roa (raw, json)
Hash identifier: 2Sumr5UCj/aVcvZwZsTjtIP9S7UyCPo52PV1EU9ZOsM=
Subject key identifier: BF:C0:74:5F:29:83:B0:3C:05:93:81:21:79:3B:E6:C8:50:06:C0:9B
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018CC8DE341E998A142FD21F62E4B05E855A
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/v8B0XymDsDwFk4EheTvmyFAGwJs.roa
Signing time: Tue 02 Jan 2024 06:30:54 +0000
ROA not before: Tue 02 Jan 2024 06:30:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 89.249.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:34:1e:99:8a:14:2f:d2:1f:62:e4:b0:5e:85:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jan 2 06:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfc0745f2983b03c05938121793be6c85006c09b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:73:45:de:b6:8f:6f:59:2b:db:44:f1:d4:
64:15:e6:00:12:11:a1:05:64:ac:c6:ce:36:be:b9:
39:6d:5c:e6:5c:d8:b2:8a:89:17:e0:48:6e:f5:93:
9e:f8:76:92:b8:b1:37:60:94:83:14:dc:c1:6b:d8:
5e:e7:f4:b4:3a:65:a1:40:4e:91:cc:a5:d9:ec:35:
7c:99:f2:27:60:a1:5f:26:db:83:86:43:b0:0d:73:
3f:c7:09:a3:e3:a0:e6:03:56:7c:88:37:ea:5d:6b:
5e:63:a8:41:b7:eb:51:70:cd:fe:3a:e9:9c:14:40:
bc:e9:62:48:36:0a:b3:92:51:ad:d0:a7:fd:51:05:
81:6f:6b:3b:ce:fd:27:43:e9:66:94:b3:77:7b:a1:
70:6b:8d:7a:0c:75:14:96:0a:cd:64:0d:a1:ea:75:
1d:38:7a:d2:bf:e3:6e:13:45:b6:54:56:7e:40:b1:
aa:19:5e:05:d1:7e:d5:7c:d2:08:d3:aa:94:0a:48:
e6:34:6d:28:68:bc:be:e6:b6:86:ce:61:79:1e:6f:
36:87:16:1e:6a:df:e5:15:d3:13:39:06:76:9c:76:
08:a5:44:a0:ca:96:34:cd:fb:56:8a:a3:f8:18:36:
bc:96:52:d8:df:83:70:25:7e:8c:36:0f:67:3a:6d:
02:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C0:74:5F:29:83:B0:3C:05:93:81:21:79:3B:E6:C8:50:06:C0:9B
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/v8B0XymDsDwFk4EheTvmyFAGwJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.205.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:da:6c:96:e4:58:1e:59:ec:c6:ad:e1:be:aa:36:c3:ce:3b:
41:fc:78:24:3f:be:59:29:4c:31:da:94:a7:8c:47:be:73:2a:
d0:56:9e:77:33:5c:79:d6:99:60:cf:d7:fb:5d:ec:9c:f2:35:
1d:7d:7b:7d:dc:93:86:fa:57:c0:c7:e9:7f:7f:74:2f:bc:50:
eb:12:5b:41:a6:43:ac:a0:c5:2b:39:eb:34:cb:68:2d:6d:01:
14:7a:c9:a2:53:0e:4d:30:d3:5b:9b:1c:7e:c4:64:da:a5:f2:
d4:1b:4b:e9:ca:2e:8d:3d:58:61:0e:02:38:2d:b5:e7:01:36:
58:93:a2:e4:59:ab:0a:fc:d1:cd:55:61:f7:2a:ff:ac:0e:ad:
cc:b1:54:8a:bc:8a:a8:c7:80:12:eb:7d:1a:7f:95:33:ef:b0:
33:5f:68:c8:dd:82:88:9c:cc:8a:aa:47:da:52:6b:41:f8:c7:
0d:6e:47:6c:fb:fb:31:e0:1e:a3:97:e7:fc:9f:87:be:d3:db:
24:b1:15:9e:fe:29:75:54:14:aa:b3:30:5b:f6:39:3c:8c:0f:
68:5e:4c:97:88:e0:31:82:34:a9:c1:ba:d8:69:bc:1f:18:20:
46:31:10:ea:a7:b6:27:ca:ce:5d:4d:a5:46:76:97:50:9b:0b:
60:a7:35:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI3jQemYoUL9IfYuSwXoVaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNzIyZTQ1MTNhMzk2NzhkOGFiMjNiMmQ2NDk3NzUzNDA1
MThjYjkwHhcNMjQwMTAyMDYzMDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmMwNzQ1ZjI5ODNiMDNjMDU5MzgxMjE3OTNiZTZjODUwMDZjMDliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokxzRd62j29ZK9tE8dRkFeYAEhGh
BWSsxs42vrk5bVzmXNiyiokX4Ehu9ZOe+HaSuLE3YJSDFNzBa9he5/S0OmWhQE6R
zKXZ7DV8mfInYKFfJtuDhkOwDXM/xwmj46DmA1Z8iDfqXWteY6hBt+tRcM3+Oumc
FEC86WJINgqzklGt0Kf9UQWBb2s7zv0nQ+lmlLN3e6Fwa416DHUUlgrNZA2h6nUd
OHrSv+NuE0W2VFZ+QLGqGV4F0X7VfNII06qUCkjmNG0oaLy+5raGzmF5Hm82hxYe
at/lFdMTOQZ2nHYIpUSgypY0zftWiqP4GDa8llLY34NwJX6MNg9nOm0CKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL/AdF8pg7A8BZOBIXk75shQBsCbMB8GA1UdIwQY
MBaAFA1yLkUTo5Z42KsjstZJd1NAUYy5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDIt
MzQyNWIxMjVlYWE3LzEvdjhCMFh5bURzRHdGazRFaGVUdm15RkFHd0pzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDItMzQyNWIxMjVlYWE3
LzEvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWfnNMA0G
CSqGSIb3DQEBCwUAA4IBAQB62myW5FgeWezGreG+qjbDzjtB/HgkP75ZKUwx2pSn
jEe+cyrQVp53M1x51plgz9f7Xeyc8jUdfXt93JOG+lfAx+l/f3QvvFDrEltBpkOs
oMUrOes0y2gtbQEUesmiUw5NMNNbmxx+xGTapfLUG0vpyi6NPVhhDgI4LbXnATZY
k6LkWasK/NHNVWH3Kv+sDq3MsVSKvIqox4AS630af5Uz77AzX2jI3YKInMyKqkfa
UmtB+McNbkds+/sx4B6jl+f8n4e+09sksRWe/il1VBSqszBb9jk8jA9oXkyXiOAx
gjSpwbrYabwfGCBGMRDqp7Ynys5dTaVGdpdQmwtgpzW2
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:27 2025 by rpki-client