Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/97913c-748e-4fd1-9194-208fcfdfb201/1/r9G-_dHHL9vy_JauLrKE_Oc80uU.roa
File: r9G-_dHHL9vy_JauLrKE_Oc80uU.roa (raw, json)
Hash identifier: p+Bswdsd/fXlOvu6VtSu83QYCLoXYVYJkhdlMJd9h+A=
Subject key identifier: AF:D1:BE:FD:D1:C7:2F:DB:F2:FC:96:AE:2E:B2:84:FC:E7:3C:D2:E5
Certificate issuer: /CN=7cac8d7f4b75170607bfcf8439c2e1d03a21410d
Certificate serial: 1B4EAD3F
Authority key identifier: 7C:AC:8D:7F:4B:75:17:06:07:BF:CF:84:39:C2:E1:D0:3A:21:41:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKyNf0t1FwYHv8-EOcLh0DohQQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/97913c-748e-4fd1-9194-208fcfdfb201/1/r9G-_dHHL9vy_JauLrKE_Oc80uU.roa
Signing time: Sat 01 Jan 2022 13:55:13 +0000
ROA not before: Sat 01 Jan 2022 13:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57795
IP address blocks: 31.25.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458140991 (0x1b4ead3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cac8d7f4b75170607bfcf8439c2e1d03a21410d
Validity
Not Before: Jan 1 13:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afd1befdd1c72fdbf2fc96ae2eb284fce73cd2e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1b:3a:2a:aa:cc:72:20:12:9f:d0:f2:80:85:
63:33:4e:e9:6d:d3:d7:07:fe:8d:d5:67:2c:ba:49:
03:82:09:a8:93:98:76:c9:eb:52:d4:fc:89:08:6d:
01:f7:c2:81:99:68:0d:0a:21:2c:eb:de:fe:d9:d4:
3d:ee:16:16:cb:90:c3:d7:15:80:ef:21:d8:4b:6f:
6c:34:ec:d0:b8:15:71:1b:b2:ca:ef:28:a7:0a:44:
14:3e:95:1c:35:65:81:4d:2a:0a:16:9a:4e:5a:dc:
8f:80:62:7a:b3:dd:f6:79:7a:20:c8:1d:61:82:0a:
72:82:2b:1f:12:85:6f:6c:cf:28:1d:0b:ca:06:07:
0e:9e:a0:d7:2e:05:e6:2a:47:df:f9:6c:55:9e:9f:
d2:c0:4b:5a:62:7d:f5:f3:b3:d3:7b:21:56:89:92:
76:69:b0:91:fb:92:48:6e:05:83:31:c0:d7:76:eb:
21:2d:9c:fc:cb:54:2f:d0:af:0f:fb:18:a3:62:36:
57:e9:73:33:89:96:a8:42:40:4c:b9:0a:29:0a:b2:
a2:58:58:c5:ac:90:6d:c5:72:ab:a3:a3:a2:54:1a:
88:a1:b4:a9:a3:b3:e7:e2:bc:e2:8e:f3:3b:ad:2e:
01:b0:56:02:1f:2d:1f:50:e9:d5:65:ef:11:4a:18:
11:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D1:BE:FD:D1:C7:2F:DB:F2:FC:96:AE:2E:B2:84:FC:E7:3C:D2:E5
X509v3 Authority Key Identifier:
keyid:7C:AC:8D:7F:4B:75:17:06:07:BF:CF:84:39:C2:E1:D0:3A:21:41:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKyNf0t1FwYHv8-EOcLh0DohQQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/97913c-748e-4fd1-9194-208fcfdfb201/1/r9G-_dHHL9vy_JauLrKE_Oc80uU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/97913c-748e-4fd1-9194-208fcfdfb201/1/fKyNf0t1FwYHv8-EOcLh0DohQQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.56.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:d9:57:ca:0c:fe:53:80:66:2f:15:52:41:82:6d:c5:68:34:
ed:28:15:63:20:d7:dc:96:0e:c9:c3:26:ff:b7:38:12:d0:3c:
3b:8d:37:97:32:53:3f:48:16:21:87:13:ac:ee:21:7f:3a:ed:
da:76:17:9d:bf:c0:c0:14:38:30:2d:ea:15:90:38:a3:52:2a:
b6:9d:b7:9c:e0:bb:7d:08:33:84:9a:c1:e3:d9:07:81:03:2e:
e5:06:91:1d:26:31:bb:c2:af:a1:7f:22:d4:f2:6c:a0:8d:b6:
d8:30:fe:40:09:f6:c6:bf:ec:23:73:d4:07:ee:15:9d:2c:12:
6e:6a:d1:be:57:0c:ee:68:27:04:e5:cb:ee:fd:b8:7e:db:b9:
b5:ca:47:29:e4:eb:46:f7:30:d4:9f:9f:40:f9:6c:b6:2f:c3:
11:76:a9:dc:46:26:e5:b1:cf:a3:a5:7f:e4:f4:99:19:af:68:
b6:fd:d9:90:b4:60:f8:d1:9d:f4:14:d9:5f:3e:8a:4c:ba:bc:
ef:de:61:ee:da:3d:d4:6d:0c:02:96:f8:58:d7:67:62:09:ad:
83:35:59:68:58:0b:97:4c:80:9e:d1:7a:e1:5b:e1:99:70:d0:
9e:72:b6:6a:87:f0:9f:94:e8:26:08:8f:fe:95:e5:2a:56:a2:
07:08:04:9a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEG06tPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
Y2FjOGQ3ZjRiNzUxNzA2MDdiZmNmODQzOWMyZTFkMDNhMjE0MTBkMB4XDTIyMDEw
MTEzNTUxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWZkMWJlZmRkMWM3
MmZkYmYyZmM5NmFlMmViMjg0ZmNlNzNjZDJlNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQbOiqqzHIgEp/Q8oCFYzNO6W3T1wf+jdVnLLpJA4IJqJOY
dsnrUtT8iQhtAffCgZloDQohLOve/tnUPe4WFsuQw9cVgO8h2EtvbDTs0LgVcRuy
yu8opwpEFD6VHDVlgU0qChaaTlrcj4BierPd9nl6IMgdYYIKcoIrHxKFb2zPKB0L
ygYHDp6g1y4F5ipH3/lsVZ6f0sBLWmJ99fOz03shVomSdmmwkfuSSG4FgzHA13br
IS2c/MtUL9CvD/sYo2I2V+lzM4mWqEJATLkKKQqyolhYxayQbcVyq6OjolQaiKG0
qaOz5+K84o7zO60uAbBWAh8tH1Dp1WXvEUoYEWMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSv0b790ccv2/L8lq4usoT85zzS5TAfBgNVHSMEGDAWgBR8rI1/S3UXBge/
z4Q5wuHQOiFBDTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZLeU5mMHQxRndZSHY4LUVPY0xoMERvaFFRMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvOTc5MTNjLTc0OGUtNGZkMS05MTk0LTIwOGZjZmRmYjIwMS8x
L3I5Ry1fZEhITDl2eV9KYXVMcktFX09jODB1VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
OTc5MTNjLTc0OGUtNGZkMS05MTk0LTIwOGZjZmRmYjIwMS8xL2ZLeU5mMHQxRndZ
SHY4LUVPY0xoMERvaFFRMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB8ZODANBgkqhkiG9w0BAQsFAAOC
AQEAHtlXygz+U4BmLxVSQYJtxWg07SgVYyDX3JYOycMm/7c4EtA8O403lzJTP0gW
IYcTrO4hfzrt2nYXnb/AwBQ4MC3qFZA4o1Iqtp23nOC7fQgzhJrB49kHgQMu5QaR
HSYxu8KvoX8i1PJsoI222DD+QAn2xr/sI3PUB+4VnSwSbmrRvlcM7mgnBOXL7v24
ftu5tcpHKeTrRvcw1J+fQPlsti/DEXap3EYm5bHPo6V/5PSZGa9otv3ZkLRg+NGd
9BTZXz6KTLq8795h7to91G0MApb4WNdnYgmtgzVZaFgLl0yAntF64VvhmXDQnnK2
aofwn5ToJgiP/pXlKlaiBwgEmg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org