Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/90dae6-c190-4eb8-b6a2-60a165560bdb/1/H-9aw5dhzEdn9bDnPNNKrDKdm2Y.roa
File: H-9aw5dhzEdn9bDnPNNKrDKdm2Y.roa (raw, json)
Hash identifier: TVzSQLA1Yg3yDf6f7gVv6DDHxkSC0EPJExFZMVCpu2E=
Subject key identifier: 1F:EF:5A:C3:97:61:CC:47:67:F5:B0:E7:3C:D3:4A:AC:32:9D:9B:66
Certificate issuer: /CN=36b87886d68b45a1e05efb11cab7dc4775e3fc5f
Certificate serial: 01CA6283
Authority key identifier: 36:B8:78:86:D6:8B:45:A1:E0:5E:FB:11:CA:B7:DC:47:75:E3:FC:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nrh4htaLRaHgXvsRyrfcR3Xj_F8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/90dae6-c190-4eb8-b6a2-60a165560bdb/1/H-9aw5dhzEdn9bDnPNNKrDKdm2Y.roa
Signing time: Sat 01 Jan 2022 16:03:27 +0000
ROA not before: Sat 01 Jan 2022 16:03:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 84.54.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30040707 (0x1ca6283)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36b87886d68b45a1e05efb11cab7dc4775e3fc5f
Validity
Not Before: Jan 1 16:03:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fef5ac39761cc4767f5b0e73cd34aac329d9b66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:76:7e:a5:42:8e:2d:f1:18:e1:c5:e7:b0:eb:
22:0d:7a:96:bb:1d:f5:81:8a:29:04:d2:28:53:8b:
a0:6c:27:d0:4a:d8:00:7c:bd:3a:02:00:57:4b:32:
4f:50:06:4e:b6:46:d0:3d:b5:df:09:92:1b:42:26:
ac:f9:68:6b:35:e4:43:f6:84:af:18:c9:96:0f:74:
06:84:e9:13:77:54:94:58:4f:3c:98:d5:37:9e:cf:
c0:3f:0c:fc:b7:9f:e9:0e:88:54:2d:0b:45:d7:8c:
79:ab:89:70:84:ec:bc:9e:16:b5:f1:7a:0e:e0:e0:
df:34:60:6b:33:24:59:20:3a:7a:92:2b:e6:6a:ce:
9f:27:a9:8a:ae:4f:af:db:70:94:6c:bc:78:02:77:
a5:d8:03:1e:01:b1:f4:81:3b:80:df:cc:eb:55:b3:
b4:a6:6c:aa:5b:3d:bd:c9:f9:3d:99:b7:a3:49:87:
81:c4:27:18:f6:95:cb:b7:74:47:76:ba:3c:56:ee:
c5:e3:ab:9b:80:ba:a9:ec:9c:c8:41:0d:2d:84:06:
c9:ea:1c:9e:31:3f:c6:36:62:d0:70:3d:47:d0:7c:
ee:82:2a:26:a3:3f:83:48:87:54:85:74:1a:d9:31:
8e:2a:7c:63:f8:40:fd:24:16:0a:c5:2b:cd:a6:93:
3b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:EF:5A:C3:97:61:CC:47:67:F5:B0:E7:3C:D3:4A:AC:32:9D:9B:66
X509v3 Authority Key Identifier:
keyid:36:B8:78:86:D6:8B:45:A1:E0:5E:FB:11:CA:B7:DC:47:75:E3:FC:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nrh4htaLRaHgXvsRyrfcR3Xj_F8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/90dae6-c190-4eb8-b6a2-60a165560bdb/1/H-9aw5dhzEdn9bDnPNNKrDKdm2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/90dae6-c190-4eb8-b6a2-60a165560bdb/1/Nrh4htaLRaHgXvsRyrfcR3Xj_F8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.32.0/24
Signature Algorithm: sha256WithRSAEncryption
67:53:fe:06:8a:78:6c:b0:4c:76:37:e1:2e:80:bf:16:00:35:
68:62:4e:ab:bb:0f:a9:d0:07:94:b5:ce:2f:8f:91:93:81:6e:
10:4e:4b:a2:4b:c8:11:4f:70:2b:2e:14:93:d0:1c:a1:08:b0:
32:37:67:53:0f:0e:1e:a4:e6:94:6d:a0:c5:6a:48:93:ba:9d:
22:ff:c5:e1:43:64:eb:b3:47:74:d8:53:60:de:a2:26:3e:91:
51:6e:8c:a2:91:b2:01:30:07:92:1c:d5:94:dc:ce:6e:28:a9:
8d:c5:f9:a7:44:30:0d:29:8e:dd:08:fd:6e:fa:3e:cd:7b:b4:
66:98:36:76:0e:4f:73:d4:36:68:8c:73:f6:b4:f5:f0:69:a3:
de:04:43:d5:a1:8b:6b:8f:f9:cb:90:f7:e3:85:b4:ca:4e:0c:
27:e3:b5:9b:9e:a7:cc:cc:24:a5:6e:0a:ba:2e:1c:db:d5:28:
3e:b1:eb:6f:2a:df:76:86:df:e3:75:b0:4c:22:e2:b4:90:71:
58:3d:77:be:d7:2e:19:70:40:39:9b:d7:26:43:96:0b:3a:3b:
4e:34:f7:44:1e:ed:f4:91:53:ca:41:c9:1d:70:19:12:54:b2:
db:5b:d4:b6:ea:e3:04:2e:14:79:ca:e2:9f:48:c3:88:ea:d4:
f5:65:cb:41
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAcpigzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NmI4Nzg4NmQ2OGI0NWExZTA1ZWZiMTFjYWI3ZGM0Nzc1ZTNmYzVmMB4XDTIyMDEw
MTE2MDMyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWZlZjVhYzM5NzYx
Y2M0NzY3ZjViMGU3M2NkMzRhYWMzMjlkOWI2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKh2fqVCji3xGOHF57DrIg16lrsd9YGKKQTSKFOLoGwn0ErY
AHy9OgIAV0syT1AGTrZG0D213wmSG0ImrPloazXkQ/aErxjJlg90BoTpE3dUlFhP
PJjVN57PwD8M/Lef6Q6IVC0LRdeMeauJcITsvJ4WtfF6DuDg3zRgazMkWSA6epIr
5mrOnyepiq5Pr9twlGy8eAJ3pdgDHgGx9IE7gN/M61WztKZsqls9vcn5PZm3o0mH
gcQnGPaVy7d0R3a6PFbuxeOrm4C6qeycyEENLYQGyeocnjE/xjZi0HA9R9B87oIq
JqM/g0iHVIV0Gtkxjip8Y/hA/SQWCsUrzaaTOxUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQf71rDl2HMR2f1sOc800qsMp2bZjAfBgNVHSMEGDAWgBQ2uHiG1otFoeBe
+xHKt9xHdeP8XzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05yaDRodGFMUmFIZ1h2c1J5cmZjUjNYal9GOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTMvOTBkYWU2LWMxOTAtNGViOC1iNmEyLTYwYTE2NTU2MGJkYi8x
L0gtOWF3NWRoekVkbjliRG5QTk5LckRLZG0yWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTMv
OTBkYWU2LWMxOTAtNGViOC1iNmEyLTYwYTE2NTU2MGJkYi8xL05yaDRodGFMUmFI
Z1h2c1J5cmZjUjNYal9GOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFQ2IDANBgkqhkiG9w0BAQsFAAOC
AQEAZ1P+Bop4bLBMdjfhLoC/FgA1aGJOq7sPqdAHlLXOL4+Rk4FuEE5LokvIEU9w
Ky4Uk9AcoQiwMjdnUw8OHqTmlG2gxWpIk7qdIv/F4UNk67NHdNhTYN6iJj6RUW6M
opGyATAHkhzVlNzObiipjcX5p0QwDSmO3Qj9bvo+zXu0Zpg2dg5Pc9Q2aIxz9rT1
8Gmj3gRD1aGLa4/5y5D344W0yk4MJ+O1m56nzMwkpW4Kui4c29UoPrHrbyrfdobf
43WwTCLitJBxWD13vtcuGXBAOZvXJkOWCzo7TjT3RB7t9JFTykHJHXAZElSy21vU
turjBC4Uecrin0jDiOrU9WXLQQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:51 2025 by rpki-client