Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c65eae-e4ee-462a-aa56-0ce30699ad78/1/hVw-JXaMZZctMe1gEM9zOefSn18.roa
File: hVw-JXaMZZctMe1gEM9zOefSn18.roa (raw, json)
Hash identifier: u+PRJ6ZbmVqvX5aDJEdlYkCfVgh6LRPcMBefM7YT2ZY=
Subject key identifier: 85:5C:3E:25:76:8C:65:97:2D:31:ED:60:10:CF:73:39:E7:D2:9F:5F
Certificate issuer: /CN=d3ac8e30a183155f85989e249b5eee069187fd3f
Certificate serial: AD3E9C
Authority key identifier: D3:AC:8E:30:A1:83:15:5F:85:98:9E:24:9B:5E:EE:06:91:87:FD:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/06yOMKGDFV-FmJ4km17uBpGH_T8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c65eae-e4ee-462a-aa56-0ce30699ad78/1/hVw-JXaMZZctMe1gEM9zOefSn18.roa
Signing time: Sat 01 Jan 2022 00:50:27 +0000
ROA not before: Sat 01 Jan 2022 00:50:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 109.107.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11353756 (0xad3e9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3ac8e30a183155f85989e249b5eee069187fd3f
Validity
Not Before: Jan 1 00:50:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=855c3e25768c65972d31ed6010cf7339e7d29f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:31:e4:24:c5:c6:a6:8a:e3:11:c4:73:ac:f9:
7b:e7:a7:f5:c1:64:0e:55:3f:85:d8:0c:f6:e1:96:
e9:3f:6c:c3:1b:45:ba:4a:21:09:cb:a3:40:51:1c:
90:3b:17:5b:1c:47:e0:be:a6:14:4c:dd:e4:3f:77:
9d:65:79:c8:d8:42:a8:db:00:db:b7:bd:3c:67:6a:
62:ab:30:74:fe:29:ab:9a:b6:28:ca:70:a8:29:d6:
4c:70:54:5b:ec:35:bc:b9:7f:43:18:cd:1e:54:9b:
b0:1e:07:69:bb:8c:f9:55:af:84:1c:e5:37:66:0a:
eb:2c:d0:67:81:ed:49:50:c2:4a:b9:4a:06:8b:74:
ff:b2:d2:c1:a1:a9:06:d8:57:e8:62:c2:89:15:af:
57:35:8e:9a:de:79:e6:59:3b:0e:fa:b8:cf:77:74:
b1:7a:35:a7:5b:96:10:e1:dc:ca:d0:21:fd:52:4e:
3d:58:e0:e9:0c:b8:ae:0d:dd:19:cf:ef:08:97:6c:
bc:2a:53:46:29:12:d8:ed:1d:d5:05:66:4e:18:93:
05:1e:65:d8:b6:ab:d8:bb:70:f2:f6:f8:75:76:de:
4b:43:60:12:7e:08:ff:31:f2:17:06:c5:14:40:e5:
74:52:79:2d:30:00:a1:2c:3c:51:72:3a:04:8c:4c:
7d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5C:3E:25:76:8C:65:97:2D:31:ED:60:10:CF:73:39:E7:D2:9F:5F
X509v3 Authority Key Identifier:
keyid:D3:AC:8E:30:A1:83:15:5F:85:98:9E:24:9B:5E:EE:06:91:87:FD:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/06yOMKGDFV-FmJ4km17uBpGH_T8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c65eae-e4ee-462a-aa56-0ce30699ad78/1/hVw-JXaMZZctMe1gEM9zOefSn18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c65eae-e4ee-462a-aa56-0ce30699ad78/1/06yOMKGDFV-FmJ4km17uBpGH_T8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.147.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:df:91:54:29:c7:fb:5a:75:12:dc:e8:d3:d9:8f:49:8e:b8:
62:e6:83:f6:fe:b4:1b:7f:91:87:5f:79:42:08:e9:dc:cd:f4:
d9:74:4a:c6:a7:7c:af:f1:bf:ff:2b:4c:97:ef:4d:d9:ad:02:
43:3e:40:f2:08:37:7f:15:5e:62:c3:bf:7d:eb:a1:e9:d3:8c:
b1:91:03:d6:6d:c3:0a:ff:ef:e2:e5:b0:19:b3:b4:cb:6b:d1:
1e:2d:71:98:52:5a:1d:c5:2a:25:8f:07:ba:c7:c8:0c:0c:ef:
18:9e:fa:bf:d8:66:6e:c5:a8:66:ce:1f:02:16:36:c3:64:9e:
9e:37:4e:b0:cf:2b:6f:53:06:f0:4e:f4:db:7a:b7:9c:5e:c2:
7d:18:f4:da:52:75:d4:5d:45:25:a5:92:26:0f:e5:a1:51:75:
9e:a8:3a:c0:0d:b5:eb:47:bf:f2:6c:3c:21:3f:d2:62:37:e9:
17:e7:84:42:6c:b8:32:f6:7d:0d:95:c1:b4:4c:0b:55:eb:7c:
3f:71:8f:e9:6c:ea:83:da:b0:e3:72:40:d8:f6:50:9e:40:f1:
7c:54:6d:55:d1:92:ea:c4:89:88:22:14:f6:af:16:03:5c:7f:
28:51:99:44:d3:4e:c3:92:6d:fd:0f:cf:c6:aa:c1:6b:7d:ea:
ff:59:a1:bd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAK0+nDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
M2FjOGUzMGExODMxNTVmODU5ODllMjQ5YjVlZWUwNjkxODdmZDNmMB4XDTIyMDEw
MTAwNTAyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODU1YzNlMjU3Njhj
NjU5NzJkMzFlZDYwMTBjZjczMzllN2QyOWY1ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOQx5CTFxqaK4xHEc6z5e+en9cFkDlU/hdgM9uGW6T9swxtF
ukohCcujQFEckDsXWxxH4L6mFEzd5D93nWV5yNhCqNsA27e9PGdqYqswdP4pq5q2
KMpwqCnWTHBUW+w1vLl/QxjNHlSbsB4HabuM+VWvhBzlN2YK6yzQZ4HtSVDCSrlK
Bot0/7LSwaGpBthX6GLCiRWvVzWOmt555lk7Dvq4z3d0sXo1p1uWEOHcytAh/VJO
PVjg6Qy4rg3dGc/vCJdsvCpTRikS2O0d1QVmThiTBR5l2Lar2Ltw8vb4dXbeS0Ng
En4I/zHyFwbFFEDldFJ5LTAAoSw8UXI6BIxMfeUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSFXD4ldoxlly0x7WAQz3M559KfXzAfBgNVHSMEGDAWgBTTrI4woYMVX4WY
niSbXu4GkYf9PzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzA2eU9NS0dERlYtRm1KNGttMTd1QnBHSF9UOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTgvYzY1ZWFlLWU0ZWUtNDYyYS1hYTU2LTBjZTMwNjk5YWQ3OC8x
L2hWdy1KWGFNWlpjdE1lMWdFTTl6T2VmU24xOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTgv
YzY1ZWFlLWU0ZWUtNDYyYS1hYTU2LTBjZTMwNjk5YWQ3OC8xLzA2eU9NS0dERlYt
Rm1KNGttMTd1QnBHSF9UOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1rkzANBgkqhkiG9w0BAQsFAAOC
AQEATt+RVCnH+1p1Etzo09mPSY64YuaD9v60G3+Rh195Qgjp3M302XRKxqd8r/G/
/ytMl+9N2a0CQz5A8gg3fxVeYsO/feuh6dOMsZED1m3DCv/v4uWwGbO0y2vRHi1x
mFJaHcUqJY8HusfIDAzvGJ76v9hmbsWoZs4fAhY2w2SenjdOsM8rb1MG8E7023q3
nF7CfRj02lJ11F1FJaWSJg/loVF1nqg6wA2160e/8mw8IT/SYjfpF+eEQmy4MvZ9
DZXBtEwLVet8P3GP6Wzqg9qw43JA2PZQnkDxfFRtVdGS6sSJiCIU9q8WA1x/KFGZ
RNNOw5Jt/Q/PxqrBa33q/1mhvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:15 2024 by rpki-client on console-ams.rpki-client.org