Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/vOtmCtnOqRBJUrceayGL7YWN-8k.roa
File: vOtmCtnOqRBJUrceayGL7YWN-8k.roa (raw, json)
Hash identifier: 446FdHZGQRRlIMbs12w7LjFwTnJBu/qfLR/IagJIarg=
Subject key identifier: BC:EB:66:0A:D9:CE:A9:10:49:52:B7:1E:6B:21:8B:ED:85:8D:FB:C9
Certificate issuer: /CN=2e5d76a1b3b05de4248feb1cb56f0f1b5851bbba
Certificate serial: 0185EBD48B9E08C903BF9A9AB0A7B834FC77
Authority key identifier: 2E:5D:76:A1:B3:B0:5D:E4:24:8F:EB:1C:B5:6F:0F:1B:58:51:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ll12obOwXeQkj-sctW8PG1hRu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/vOtmCtnOqRBJUrceayGL7YWN-8k.roa
Signing time: Thu 26 Jan 2023 02:07:33 +0000
ROA not before: Thu 26 Jan 2023 02:07:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43607
IP address blocks: 209.16.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:eb:d4:8b:9e:08:c9:03:bf:9a:9a:b0:a7:b8:34:fc:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e5d76a1b3b05de4248feb1cb56f0f1b5851bbba
Validity
Not Before: Jan 26 02:07:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bceb660ad9cea9104952b71e6b218bed858dfbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:07:45:c1:0b:a0:46:5a:8d:37:26:64:a0:e0:
69:fb:72:10:8f:0e:5f:82:21:0e:45:fb:e2:c6:1e:
a4:f0:ba:39:fa:6d:00:ae:66:db:6e:96:a6:b3:32:
28:f5:38:4c:09:2d:87:38:6e:72:b9:a7:f4:b3:aa:
6d:da:7a:ce:6b:23:ff:ae:88:49:87:04:1c:fc:97:
71:fd:34:9f:47:4f:78:27:2a:b1:ab:34:ba:4d:69:
26:32:4d:52:d4:43:2a:a4:a5:64:7b:a7:f4:85:da:
79:bc:d8:0b:b0:3a:05:f7:38:00:05:d0:d6:81:36:
f7:29:e5:72:9f:ad:fb:13:31:08:21:fd:13:8f:56:
db:99:d9:22:bf:79:28:dd:1f:f0:c3:08:be:f9:ca:
f2:e6:53:2e:85:ea:2f:73:b9:73:a6:39:81:c2:0f:
87:04:87:ba:13:76:cc:91:e4:1c:53:96:dc:c1:ec:
47:24:25:57:10:a1:38:5d:39:ac:f3:45:cd:ea:af:
71:0d:d2:94:29:c9:94:9f:37:a9:7d:a6:ef:74:70:
0c:05:9b:7c:24:d4:74:fe:c2:c2:e4:f1:8f:d1:93:
d0:56:61:ce:b3:27:03:82:b9:93:04:df:94:84:57:
18:e1:93:7c:9a:8d:93:35:50:0a:f8:6c:a4:0c:8c:
eb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:EB:66:0A:D9:CE:A9:10:49:52:B7:1E:6B:21:8B:ED:85:8D:FB:C9
X509v3 Authority Key Identifier:
keyid:2E:5D:76:A1:B3:B0:5D:E4:24:8F:EB:1C:B5:6F:0F:1B:58:51:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ll12obOwXeQkj-sctW8PG1hRu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/vOtmCtnOqRBJUrceayGL7YWN-8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/Ll12obOwXeQkj-sctW8PG1hRu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.16.145.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:f1:04:bf:61:02:9e:98:89:cc:61:be:10:0c:93:ca:92:9e:
8a:58:44:a3:3a:46:87:95:08:d5:a9:73:2a:f7:5c:76:23:ef:
f0:2c:bc:18:11:af:57:e4:95:ac:16:61:39:98:b0:a2:75:e8:
57:52:d5:9d:92:67:36:82:01:80:04:6f:d3:81:d4:ca:ba:aa:
94:ca:71:e2:bf:b3:76:94:45:d4:d6:84:bc:04:ca:55:ff:c0:
39:cd:55:8f:a9:6a:ad:6c:70:3e:07:da:bd:bf:19:70:7b:47:
88:9e:74:ff:82:91:54:34:69:03:f0:7c:bd:ec:be:30:ab:88:
8e:57:7b:40:92:66:67:97:60:26:1c:0d:84:8e:5c:ed:ff:3f:
3b:5e:cd:16:25:5a:c8:fe:79:ab:58:ed:c4:e3:f1:b4:6a:d7:
15:b3:dc:97:16:af:ab:c4:34:c9:36:b4:4c:42:20:09:f4:95:
96:f2:fd:88:49:fe:39:72:1c:7c:f0:c9:03:51:67:c7:2a:ae:
84:92:1f:62:94:ea:e8:e5:9c:19:45:0a:8d:48:b0:15:dd:4c:
d5:4b:61:75:76:73:38:1a:08:ae:fc:15:d3:84:cd:fd:c3:e9:
e2:0b:d9:5f:42:22:ba:7d:45:c5:aa:ac:cf:af:75:35:83:45:
18:1c:5b:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXr1IueCMkDv5qasKe4NPx3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlNWQ3NmExYjNiMDVkZTQyNDhmZWIxY2I1NmYwZjFiNTg1
MWJiYmEwHhcNMjMwMTI2MDIwNzMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2ViNjYwYWQ5Y2VhOTEwNDk1MmI3MWU2YjIxOGJlZDg1OGRmYmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgdFwQugRlqNNyZkoOBp+3IQjw5f
giEORfvixh6k8Lo5+m0ArmbbbpamszIo9ThMCS2HOG5yuaf0s6pt2nrOayP/rohJ
hwQc/Jdx/TSfR094JyqxqzS6TWkmMk1S1EMqpKVke6f0hdp5vNgLsDoF9zgABdDW
gTb3KeVyn637EzEIIf0Tj1bbmdkiv3ko3R/wwwi++cry5lMuheovc7lzpjmBwg+H
BIe6E3bMkeQcU5bcwexHJCVXEKE4XTms80XN6q9xDdKUKcmUnzepfabvdHAMBZt8
JNR0/sLC5PGP0ZPQVmHOsycDgrmTBN+UhFcY4ZN8mo2TNVAK+GykDIzrkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLzrZgrZzqkQSVK3Hmshi+2FjfvJMB8GA1UdIwQY
MBaAFC5ddqGzsF3kJI/rHLVvDxtYUbu6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGwxMm9iT3dYZVFrai1zY3RXOFBHMWhSdTdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYjBiYmEtZjA5NS00MjNlLTkyZDIt
Nzk5NWJmNjA4MDNiLzEvdk90bUN0bk9xUkJKVXJjZWF5R0w3WVdOLThrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9iYjBiYmEtZjA5NS00MjNlLTkyZDItNzk5NWJmNjA4MDNi
LzEvTGwxMm9iT3dYZVFrai1zY3RXOFBHMWhSdTdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0RCRMA0G
CSqGSIb3DQEBCwUAA4IBAQBc8QS/YQKemInMYb4QDJPKkp6KWESjOkaHlQjVqXMq
91x2I+/wLLwYEa9X5JWsFmE5mLCidehXUtWdkmc2ggGABG/TgdTKuqqUynHiv7N2
lEXU1oS8BMpV/8A5zVWPqWqtbHA+B9q9vxlwe0eInnT/gpFUNGkD8Hy97L4wq4iO
V3tAkmZnl2AmHA2Ejlzt/z87Xs0WJVrI/nmrWO3E4/G0atcVs9yXFq+rxDTJNrRM
QiAJ9JWW8v2ISf45chx88MkDUWfHKq6Ekh9ilOro5ZwZRQqNSLAV3UzVS2F1dnM4
Ggiu/BXThM39w+niC9lfQiK6fUXFqqzPr3U1g0UYHFuI
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:12 2024 by rpki-client on console-ams.rpki-client.org