Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/soDVXB4AsBibp4k3J2-kCjKlVpw.roa
File: soDVXB4AsBibp4k3J2-kCjKlVpw.roa (raw, json)
Hash identifier: COkK/8/SiDnBFLaGhNFFSPaF/0sDtNDj0pBVzMlGP0M=
Subject key identifier: B2:80:D5:5C:1E:00:B0:18:9B:A7:89:37:27:6F:A4:0A:32:A5:56:9C
Certificate issuer: /CN=2e5d76a1b3b05de4248feb1cb56f0f1b5851bbba
Certificate serial: 01862C27C6C45442E0D8311D904D1E8ADBE5
Authority key identifier: 2E:5D:76:A1:B3:B0:5D:E4:24:8F:EB:1C:B5:6F:0F:1B:58:51:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ll12obOwXeQkj-sctW8PG1hRu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/soDVXB4AsBibp4k3J2-kCjKlVpw.roa
Signing time: Tue 07 Feb 2023 13:54:09 +0000
ROA not before: Tue 07 Feb 2023 13:54:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12337
IP address blocks: 209.16.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2c:27:c6:c4:54:42:e0:d8:31:1d:90:4d:1e:8a:db:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e5d76a1b3b05de4248feb1cb56f0f1b5851bbba
Validity
Not Before: Feb 7 13:54:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b280d55c1e00b0189ba78937276fa40a32a5569c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:25:23:63:8b:ce:76:8b:cc:af:0d:b6:67:11:
cb:cc:e3:4c:16:de:d9:9e:66:b4:88:60:a7:46:48:
54:9a:ba:72:f2:0c:da:89:17:3a:8d:2f:31:b6:af:
ac:95:6a:ff:64:f6:44:57:9d:d5:43:a3:dd:94:9d:
30:46:b2:17:3a:9d:53:7b:15:d7:4f:3c:7d:f6:d3:
ef:33:fc:93:c4:03:02:93:e5:7a:fc:5d:0e:26:6d:
61:7d:af:40:a3:a1:ba:97:e3:8c:f3:b3:cd:57:41:
6c:48:dc:5c:48:24:74:de:41:cd:c3:55:88:ed:b3:
c6:a0:d1:a3:1c:cd:82:06:fc:d0:4a:84:13:0f:a4:
13:c0:6e:9d:ec:70:88:a9:60:72:f1:a3:dd:1c:02:
69:d3:40:5d:35:60:a7:3a:3b:fa:d4:eb:25:8c:7d:
9e:c0:24:9a:94:11:e8:1e:13:ba:ec:48:4b:2e:c9:
6c:c6:ac:d7:7f:a6:67:e4:c5:f1:40:c2:e4:fa:97:
3d:60:b3:6d:72:f5:fc:b2:52:84:e5:e5:7f:01:e9:
44:c1:88:af:71:23:79:54:3b:2b:6b:fe:ca:14:8a:
16:8d:d5:f2:b2:44:7b:15:02:ab:4d:89:60:69:e4:
e7:b6:79:f9:b6:e9:1d:46:b1:10:82:c7:b5:bc:86:
ac:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:80:D5:5C:1E:00:B0:18:9B:A7:89:37:27:6F:A4:0A:32:A5:56:9C
X509v3 Authority Key Identifier:
keyid:2E:5D:76:A1:B3:B0:5D:E4:24:8F:EB:1C:B5:6F:0F:1B:58:51:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ll12obOwXeQkj-sctW8PG1hRu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/soDVXB4AsBibp4k3J2-kCjKlVpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/Ll12obOwXeQkj-sctW8PG1hRu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.16.144.0/24
Signature Algorithm: sha256WithRSAEncryption
84:7d:4d:3f:e1:6a:99:89:8d:0a:27:5f:fa:17:82:59:38:36:
d7:8c:a9:97:19:e9:17:82:c2:ac:61:45:6c:a0:5d:4f:2b:8c:
bf:c4:8b:78:7e:42:ca:64:f5:8b:6a:a6:8f:59:6a:0e:0c:2d:
36:86:5b:f6:cb:8d:84:f0:c8:37:cb:af:13:b1:c2:4f:d5:94:
f9:e2:be:60:1d:e3:0c:c9:ad:ce:1c:37:39:a0:89:7c:d9:6d:
0c:e7:4e:66:b4:d2:17:ca:34:77:88:17:72:98:c1:a3:03:0f:
9c:9b:8f:7c:1a:13:dc:ff:91:7e:b9:0e:a7:8b:38:0b:cb:69:
e3:96:ee:1a:93:7b:a9:47:8e:cd:57:dc:d3:46:0e:31:f0:45:
ff:50:fa:ad:05:e4:5c:be:24:1e:ef:51:74:7c:5a:2e:4e:9a:
5f:ae:ec:03:a7:1f:b2:46:39:70:89:62:53:1c:4a:f8:16:f3:
0a:02:51:d3:70:73:53:ef:68:91:01:3e:12:17:fd:2f:56:94:
3b:fa:3e:ae:ec:d2:e4:4d:4e:70:64:ce:61:3b:1b:ef:d2:b6:
ff:1f:47:5f:0e:d4:f8:b2:16:38:1c:a1:ca:27:f7:8b:22:e7:
02:23:3d:f6:e2:43:6b:4f:f7:9d:96:18:31:b1:08:1f:72:c7:
9c:9c:0e:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYsJ8bEVELg2DEdkE0eitvlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlNWQ3NmExYjNiMDVkZTQyNDhmZWIxY2I1NmYwZjFiNTg1
MWJiYmEwHhcNMjMwMjA3MTM1NDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjgwZDU1YzFlMDBiMDE4OWJhNzg5MzcyNzZmYTQwYTMyYTU1NjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgCUjY4vOdovMrw22ZxHLzONMFt7Z
nma0iGCnRkhUmrpy8gzaiRc6jS8xtq+slWr/ZPZEV53VQ6PdlJ0wRrIXOp1TexXX
Tzx99tPvM/yTxAMCk+V6/F0OJm1hfa9Ao6G6l+OM87PNV0FsSNxcSCR03kHNw1WI
7bPGoNGjHM2CBvzQSoQTD6QTwG6d7HCIqWBy8aPdHAJp00BdNWCnOjv61OsljH2e
wCSalBHoHhO67EhLLslsxqzXf6Zn5MXxQMLk+pc9YLNtcvX8slKE5eV/AelEwYiv
cSN5VDsra/7KFIoWjdXyskR7FQKrTYlgaeTntnn5tukdRrEQgse1vIasPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLKA1VweALAYm6eJNydvpAoypVacMB8GA1UdIwQY
MBaAFC5ddqGzsF3kJI/rHLVvDxtYUbu6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGwxMm9iT3dYZVFrai1zY3RXOFBHMWhSdTdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYjBiYmEtZjA5NS00MjNlLTkyZDIt
Nzk5NWJmNjA4MDNiLzEvc29EVlhCNEFzQmlicDRrM0oyLWtDaktsVnB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9iYjBiYmEtZjA5NS00MjNlLTkyZDItNzk5NWJmNjA4MDNi
LzEvTGwxMm9iT3dYZVFrai1zY3RXOFBHMWhSdTdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0RCQMA0G
CSqGSIb3DQEBCwUAA4IBAQCEfU0/4WqZiY0KJ1/6F4JZODbXjKmXGekXgsKsYUVs
oF1PK4y/xIt4fkLKZPWLaqaPWWoODC02hlv2y42E8Mg3y68TscJP1ZT54r5gHeMM
ya3OHDc5oIl82W0M505mtNIXyjR3iBdymMGjAw+cm498GhPc/5F+uQ6nizgLy2nj
lu4ak3upR47NV9zTRg4x8EX/UPqtBeRcviQe71F0fFouTppfruwDpx+yRjlwiWJT
HEr4FvMKAlHTcHNT72iRAT4SF/0vVpQ7+j6u7NLkTU5wZM5hOxvv0rb/H0dfDtT4
shY4HKHKJ/eLIucCIz324kNrT/edlhgxsQgfcsecnA7U
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:47 2024 by rpki-client on console-fra.rpki-client.org