Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/66dae3-7e17-4eaa-bc10-20b503cf8cac/1/WqvVnmac8Jn6g8PoRtIUGaPvaho.roa
File: WqvVnmac8Jn6g8PoRtIUGaPvaho.roa (raw, json)
Hash identifier: 3y8UefjxePj1iln+VCy0/SZia8SxSkiWsLJHhPQVWdw=
Subject key identifier: 5A:AB:D5:9E:66:9C:F0:99:FA:83:C3:E8:46:D2:14:19:A3:EF:6A:1A
Certificate issuer: /CN=d971d4b33924723dd64ee7172555353cad2d21f4
Certificate serial: 01A54C
Authority key identifier: D9:71:D4:B3:39:24:72:3D:D6:4E:E7:17:25:55:35:3C:AD:2D:21:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2XHUszkkcj3WTucXJVU1PK0tIfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/66dae3-7e17-4eaa-bc10-20b503cf8cac/1/WqvVnmac8Jn6g8PoRtIUGaPvaho.roa
Signing time: Wed 30 Mar 2022 05:25:21 +0000
ROA not before: Wed 30 Mar 2022 05:25:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35815
IP address blocks: 31.25.24.0/21 maxlen: 24
109.198.96.0/19 maxlen: 24
45.9.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107852 (0x1a54c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d971d4b33924723dd64ee7172555353cad2d21f4
Validity
Not Before: Mar 30 05:25:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5aabd59e669cf099fa83c3e846d21419a3ef6a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:23:19:cc:32:de:3a:bf:28:54:22:25:20:19:
89:d3:4f:79:0f:d4:75:95:f0:17:c5:55:95:74:ce:
6c:7e:cb:f4:89:98:e9:09:e9:08:82:c5:a7:54:61:
9b:76:a8:5f:a5:67:95:fd:5a:8d:37:53:74:77:de:
58:83:d6:6e:e9:f1:e0:09:8e:61:4e:0f:28:d0:ff:
70:0c:23:c8:84:28:3c:7d:45:26:46:73:dc:b1:bf:
8d:b2:87:57:88:22:b4:d5:e0:9e:ec:65:b2:76:49:
6e:ba:81:2b:f7:94:7c:90:01:66:a0:31:0a:d0:8a:
12:d7:8b:88:8d:8d:9b:55:cb:99:34:bf:f9:b6:85:
7a:74:8a:98:e1:95:7e:48:10:04:b6:d3:21:18:23:
56:f5:fa:d3:ea:f8:7e:e3:c2:12:7b:6c:99:cf:78:
8f:de:78:6b:d4:25:b7:26:23:8c:86:9b:ba:97:f7:
05:04:ee:e7:1d:93:50:4b:9e:cd:47:80:b0:a8:0d:
5e:a6:d0:7f:2b:fd:76:37:e8:df:54:9b:7b:3c:96:
be:70:09:35:fd:15:da:f7:cc:11:1a:aa:9c:8a:43:
57:56:de:84:71:7d:07:bd:ff:86:a1:27:e1:27:e7:
aa:80:0d:53:b7:ff:f8:6f:35:5e:cf:24:99:2f:74:
cd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AB:D5:9E:66:9C:F0:99:FA:83:C3:E8:46:D2:14:19:A3:EF:6A:1A
X509v3 Authority Key Identifier:
keyid:D9:71:D4:B3:39:24:72:3D:D6:4E:E7:17:25:55:35:3C:AD:2D:21:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2XHUszkkcj3WTucXJVU1PK0tIfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/66dae3-7e17-4eaa-bc10-20b503cf8cac/1/WqvVnmac8Jn6g8PoRtIUGaPvaho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/66dae3-7e17-4eaa-bc10-20b503cf8cac/1/2XHUszkkcj3WTucXJVU1PK0tIfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.24.0/21
45.9.212.0/22
109.198.96.0/19
Signature Algorithm: sha256WithRSAEncryption
9c:6f:0b:a2:b4:f3:4c:6a:b3:8b:e1:08:5d:3a:72:59:7e:24:
9b:9f:2e:77:9d:e4:1a:39:0f:50:ec:c6:eb:0e:9f:b6:b4:dc:
ba:c0:39:01:97:6e:aa:60:46:5a:75:f7:e8:13:49:1b:d4:65:
77:eb:36:93:df:7c:5b:5e:cc:19:32:02:40:e6:a7:6c:7a:de:
73:7c:cb:ca:9e:14:8a:8a:93:e6:18:73:86:c7:0a:99:e1:48:
da:a4:a7:b0:7e:91:64:9e:43:75:50:22:b7:12:ec:06:3b:90:
ca:dc:9d:72:ae:b7:fa:05:ca:da:27:bb:7e:39:bb:24:05:33:
6f:7b:0d:2d:bb:40:1c:48:e4:e1:73:e2:64:f2:09:df:0f:43:
17:8b:05:5d:9b:69:f3:85:54:78:df:95:f3:69:06:b6:b3:b4:
ba:6e:28:e6:f5:a8:df:fa:49:22:3c:33:d8:d4:1e:e0:22:1e:
da:9a:53:17:9e:08:80:fb:01:08:64:86:6a:06:92:f4:5d:ab:
37:91:8a:36:a0:40:e4:83:d7:6c:6f:dc:eb:15:8d:b9:95:08:
64:93:75:f2:7d:0d:7a:58:e0:6c:5d:cf:ea:4c:13:25:50:02:
75:f1:d9:85:4d:0e:f3:4f:38:42:ad:11:be:ab:34:91:75:8b:
dc:4e:32:3f
-----BEGIN CERTIFICATE-----
MIIE+jCCA+KgAwIBAgIDAaVMMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQ5
NzFkNGIzMzkyNDcyM2RkNjRlZTcxNzI1NTUzNTNjYWQyZDIxZjQwHhcNMjIwMzMw
MDUyNTIxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg1YWFiZDU5ZTY2OWNm
MDk5ZmE4M2MzZTg0NmQyMTQxOWEzZWY2YTFhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA8SMZzDLeOr8oVCIlIBmJ0095D9R1lfAXxVWVdM5sfsv0iZjp
CekIgsWnVGGbdqhfpWeV/VqNN1N0d95Yg9Zu6fHgCY5hTg8o0P9wDCPIhCg8fUUm
RnPcsb+NsodXiCK01eCe7GWydkluuoEr95R8kAFmoDEK0IoS14uIjY2bVcuZNL/5
toV6dIqY4ZV+SBAEttMhGCNW9frT6vh+48ISe2yZz3iP3nhr1CW3JiOMhpu6l/cF
BO7nHZNQS57NR4CwqA1eptB/K/12N+jfVJt7PJa+cAk1/RXa98wRGqqcikNXVt6E
cX0Hvf+GoSfhJ+eqgA1Tt//4bzVezySZL3TNGQIDAQABo4ICFTCCAhEwHQYDVR0O
BBYEFFqr1Z5mnPCZ+oPD6EbSFBmj72oaMB8GA1UdIwQYMBaAFNlx1LM5JHI91k7n
FyVVNTytLSH0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MlhIVXN6a2tjajNXVHVjWEpWVTFQSzB0SWZRLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wYi82NmRhZTMtN2UxNy00ZWFhLWJjMTAtMjBiNTAzY2Y4Y2FjLzEv
V3F2Vm5tYWM4Sm42ZzhQb1J0SVVHYVB2YWhvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi82
NmRhZTMtN2UxNy00ZWFhLWJjMTAtMjBiNTAzY2Y4Y2FjLzEvMlhIVXN6a2tjajNX
VHVjWEpWVTFQSzB0SWZRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsG
CCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDHxkYAwQCLQnUAwQFbcZgMA0GCSqG
SIb3DQEBCwUAA4IBAQCcbwuitPNMarOL4QhdOnJZfiSbny53neQaOQ9Q7MbrDp+2
tNy6wDkBl26qYEZadffoE0kb1GV36zaT33xbXswZMgJA5qdset5zfMvKnhSKipPm
GHOGxwqZ4UjapKewfpFknkN1UCK3EuwGO5DK3J1yrrf6BcraJ7t+ObskBTNvew0t
u0AcSOThc+Jk8gnfD0MXiwVdm2nzhVR435XzaQa2s7S6bijm9ajf+kkiPDPY1B7g
Ih7amlMXngiA+wEIZIZqBpL0Xas3kYo2oEDkg9dsb9zrFY25lQhkk3XyfQ16WOBs
Xc/qTBMlUAJ18dmFTQ7zTzhCrRG+qzSRdYvcTjI/
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:33 2023 by rpki-client on console-fra.rpki-client.org