Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/d40ddf-de5b-4e20-923c-480279cfb22b/1/MzwqNhN1cRimDdAfKrOVTOJPHIc.roa
File: MzwqNhN1cRimDdAfKrOVTOJPHIc.roa (raw, json)
Hash identifier: Auzhy939oOQlDaAT1vX4PizAMrUxYpQtu3j4q5EUVDA=
Subject key identifier: 33:3C:2A:36:13:75:71:18:A6:0D:D0:1F:2A:B3:95:4C:E2:4F:1C:87
Certificate issuer: /CN=db02e1cbf81efd6264c58f88560235cc474154e8
Certificate serial: 16C17288
Authority key identifier: DB:02:E1:CB:F8:1E:FD:62:64:C5:8F:88:56:02:35:CC:47:41:54:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wLhy_ge_WJkxY-IVgI1zEdBVOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/d40ddf-de5b-4e20-923c-480279cfb22b/1/MzwqNhN1cRimDdAfKrOVTOJPHIc.roa
Signing time: Tue 15 Feb 2022 07:53:54 +0000
ROA not before: Tue 15 Feb 2022 07:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25521
IP address blocks: 109.122.40.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 381776520 (0x16c17288)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db02e1cbf81efd6264c58f88560235cc474154e8
Validity
Not Before: Feb 15 07:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=333c2a3613757118a60dd01f2ab3954ce24f1c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4e:9d:7b:63:16:4e:4f:f9:1b:cf:f1:6b:47:
94:7c:3e:26:a8:5e:1c:2d:19:a9:da:0f:53:bb:c5:
f5:64:ad:e4:2d:8c:ea:52:00:90:cb:fb:da:e3:9e:
39:f0:7d:f6:0b:61:45:d1:31:7a:2c:ee:29:7c:29:
cb:8e:d6:d9:2a:63:48:ee:a8:58:f1:42:13:c0:81:
37:37:f0:65:bf:2c:a9:90:cc:e9:c6:cf:f4:87:11:
6f:11:98:af:6d:be:d2:fd:dd:84:c8:33:a4:8d:69:
20:33:a5:53:f1:ea:75:f4:dd:7e:13:2b:a0:d9:c4:
64:4c:18:26:96:ac:34:49:d2:57:dc:ec:02:27:e8:
ab:a6:99:eb:46:b3:db:c9:6e:58:03:65:0e:67:04:
fb:b9:46:1c:bc:74:c5:e2:7a:b0:35:e4:5d:c7:86:
30:7d:e6:06:22:88:75:96:37:45:2a:88:7e:5d:bf:
79:d5:bc:b5:ca:6a:4d:a1:19:d1:9c:a4:eb:91:77:
89:e9:4d:2b:81:73:2b:26:f7:a3:98:ba:41:57:9e:
88:1c:10:02:d0:1b:61:b2:0b:f5:48:2e:f5:4f:44:
55:65:e8:9d:5f:41:12:ec:4f:2b:dc:a0:8b:e2:0b:
87:09:f5:be:8e:29:7d:8b:bc:29:ee:34:16:ac:9d:
4d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:3C:2A:36:13:75:71:18:A6:0D:D0:1F:2A:B3:95:4C:E2:4F:1C:87
X509v3 Authority Key Identifier:
keyid:DB:02:E1:CB:F8:1E:FD:62:64:C5:8F:88:56:02:35:CC:47:41:54:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wLhy_ge_WJkxY-IVgI1zEdBVOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/d40ddf-de5b-4e20-923c-480279cfb22b/1/MzwqNhN1cRimDdAfKrOVTOJPHIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/d40ddf-de5b-4e20-923c-480279cfb22b/1/2wLhy_ge_WJkxY-IVgI1zEdBVOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.40.0/21
Signature Algorithm: sha256WithRSAEncryption
37:4e:cd:dc:97:d0:7c:33:be:29:6e:88:30:50:33:4c:28:0b:
68:ad:57:51:87:a7:da:36:16:be:e5:2e:ce:c4:71:a0:e4:38:
19:97:f1:63:53:e1:98:d6:e1:d2:c3:02:e8:eb:08:bf:9c:de:
9d:11:b8:75:c1:08:be:07:81:22:19:c7:c3:82:7f:d2:16:59:
51:ea:34:87:cc:71:83:06:20:2c:5b:01:ad:9c:d3:04:e5:80:
2c:3f:ef:cf:03:dc:4c:4e:b2:2a:db:27:19:e4:00:61:03:a1:
13:14:17:7c:ad:a2:b1:7e:aa:07:73:bc:09:84:4c:6c:f0:c8:
7e:4b:3b:26:50:09:00:bd:23:66:ab:5d:d6:c1:fd:86:29:15:
ee:14:6c:ef:35:5f:36:7d:c9:3d:17:46:23:44:3c:b8:ce:25:
42:2c:e8:43:b3:db:e4:78:ad:6e:3b:e4:ba:60:d5:e9:2c:25:
04:77:ac:a4:12:34:4f:a0:15:ee:a9:d8:49:4c:d5:df:c2:ea:
e5:ee:b4:49:f7:8f:28:5d:b2:e8:db:05:c5:47:ce:cb:5a:6e:
e1:07:07:5d:85:7a:d0:dd:35:f5:87:d2:f3:40:a7:32:fb:fc:
d4:b5:9a:18:ae:96:7b:c5:f5:d6:a9:41:43:e2:b3:5a:04:74:
a1:5a:4d:b8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFsFyiDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YjAyZTFjYmY4MWVmZDYyNjRjNThmODg1NjAyMzVjYzQ3NDE1NGU4MB4XDTIyMDIx
NTA3NTM1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzMzYzJhMzYxMzc1
NzExOGE2MGRkMDFmMmFiMzk1NGNlMjRmMWM4NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL5OnXtjFk5P+RvP8WtHlHw+JqheHC0ZqdoPU7vF9WSt5C2M
6lIAkMv72uOeOfB99gthRdExeizuKXwpy47W2SpjSO6oWPFCE8CBNzfwZb8sqZDM
6cbP9IcRbxGYr22+0v3dhMgzpI1pIDOlU/HqdfTdfhMroNnEZEwYJpasNEnSV9zs
Aifoq6aZ60az28luWANlDmcE+7lGHLx0xeJ6sDXkXceGMH3mBiKIdZY3RSqIfl2/
edW8tcpqTaEZ0Zyk65F3ielNK4FzKyb3o5i6QVeeiBwQAtAbYbIL9Ugu9U9EVWXo
nV9BEuxPK9ygi+ILhwn1vo4pfYu8Ke40FqydTdcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQzPCo2E3VxGKYN0B8qs5VM4k8chzAfBgNVHSMEGDAWgBTbAuHL+B79YmTF
j4hWAjXMR0FU6DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJ3TGh5X2dlX1dKa3hZLUlWZ0kxekVkQlZPZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGQvZDQwZGRmLWRlNWItNGUyMC05MjNjLTQ4MDI3OWNmYjIyYi8x
L016d3FOaE4xY1JpbURkQWZLck9WVE9KUEhJYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQv
ZDQwZGRmLWRlNWItNGUyMC05MjNjLTQ4MDI3OWNmYjIyYi8xLzJ3TGh5X2dlX1dK
a3hZLUlWZ0kxekVkQlZPZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA216KDANBgkqhkiG9w0BAQsFAAOC
AQEAN07N3JfQfDO+KW6IMFAzTCgLaK1XUYen2jYWvuUuzsRxoOQ4GZfxY1PhmNbh
0sMC6OsIv5zenRG4dcEIvgeBIhnHw4J/0hZZUeo0h8xxgwYgLFsBrZzTBOWALD/v
zwPcTE6yKtsnGeQAYQOhExQXfK2isX6qB3O8CYRMbPDIfks7JlAJAL0jZqtd1sH9
hikV7hRs7zVfNn3JPRdGI0Q8uM4lQizoQ7Pb5HitbjvkumDV6SwlBHespBI0T6AV
7qnYSUzV38Lq5e60SfePKF2y6NsFxUfOy1pu4QcHXYV60N019YfS80CnMvv81LWa
GK6We8X11qlBQ+KzWgR0oVpNuA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:36 2023 by rpki-client on console-ams.rpki-client.org