Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/1102c7-cb89-4d2a-840c-5c4a039e812f/1/HOxx8XHol-iyKL-VyW4H7kx827Y.roa
File: HOxx8XHol-iyKL-VyW4H7kx827Y.roa (raw, json)
Hash identifier: aUyAzsrM7wux6+oPFBS/PJlf8e1n6S/EXM9GC8Aw/yM=
Subject key identifier: 1C:EC:71:F1:71:E8:97:E8:B2:28:BF:95:C9:6E:07:EE:4C:7C:DB:B6
Certificate issuer: /CN=34f838d3a9de854c98af8320c3deb0041e239e8d
Certificate serial: 0181F46A8DB0D111B12D8B866482642DBCA6
Authority key identifier: 34:F8:38:D3:A9:DE:85:4C:98:AF:83:20:C3:DE:B0:04:1E:23:9E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPg406nehUyYr4Mgw96wBB4jno0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/1102c7-cb89-4d2a-840c-5c4a039e812f/1/HOxx8XHol-iyKL-VyW4H7kx827Y.roa
Signing time: Tue 12 Jul 2022 21:57:12 +0000
ROA not before: Tue 12 Jul 2022 21:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 213.109.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f4:6a:8d:b0:d1:11:b1:2d:8b:86:64:82:64:2d:bc:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34f838d3a9de854c98af8320c3deb0041e239e8d
Validity
Not Before: Jul 12 21:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cec71f171e897e8b228bf95c96e07ee4c7cdbb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:53:42:1b:1e:1e:39:4a:61:5a:96:91:1e:9b:
77:a4:f3:b7:9a:a9:83:7c:46:96:96:d1:57:98:d9:
99:38:f8:2d:ef:d6:43:42:e4:0a:a2:72:27:34:3b:
0d:d1:dd:f3:ee:a2:ea:d3:81:f0:26:92:1c:3d:19:
67:10:5f:d6:db:de:82:ad:9e:45:cf:19:d4:57:3f:
e6:c2:b0:a7:55:b2:e0:4e:aa:5b:b2:4f:79:bd:da:
fb:3f:11:8c:68:a4:72:41:4f:3a:2b:84:d3:27:a7:
f9:5e:ff:8d:48:7b:f5:bc:ee:55:c8:51:5f:b4:24:
4b:03:a2:3f:fc:b7:de:34:9e:80:6d:1d:9a:bd:6b:
89:a7:b6:d4:da:a1:1f:cb:21:29:a6:95:ad:92:da:
d0:d9:14:1a:c7:3a:04:f5:45:1f:43:92:0d:d3:0b:
6a:1a:34:04:82:6e:68:8d:87:ec:7d:80:6e:33:d7:
af:cd:e1:07:e3:25:11:03:e4:0d:48:75:d8:07:05:
d4:e8:a6:0e:4f:48:22:21:c5:61:c2:37:df:ff:a3:
52:de:c0:4f:3b:b4:c8:e2:76:5e:fa:9d:67:c9:2a:
75:b0:9b:b7:44:bc:d0:b8:b6:fb:ac:e1:14:2c:c1:
52:b0:18:f1:dc:70:f4:d6:ab:47:d0:85:62:f9:82:
8d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:EC:71:F1:71:E8:97:E8:B2:28:BF:95:C9:6E:07:EE:4C:7C:DB:B6
X509v3 Authority Key Identifier:
keyid:34:F8:38:D3:A9:DE:85:4C:98:AF:83:20:C3:DE:B0:04:1E:23:9E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPg406nehUyYr4Mgw96wBB4jno0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1102c7-cb89-4d2a-840c-5c4a039e812f/1/HOxx8XHol-iyKL-VyW4H7kx827Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1102c7-cb89-4d2a-840c-5c4a039e812f/1/NPg406nehUyYr4Mgw96wBB4jno0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.153.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:93:8c:b1:ee:88:8b:ee:ea:39:5e:26:32:e7:29:a2:1e:fe:
09:a1:44:1c:f0:27:0a:6d:2d:88:65:28:07:e2:83:b2:26:1b:
52:d5:c7:e1:1f:33:c1:97:a8:6e:e7:1d:7e:7a:7c:72:ee:60:
a3:6b:1d:b4:02:1f:f5:c1:62:7f:2b:df:7c:66:44:ec:e9:b1:
3d:57:50:88:dc:cb:ed:5c:c2:24:91:87:c2:f5:b9:0a:82:12:
dc:67:b8:71:d2:3f:3a:40:0f:76:27:19:61:8a:cb:3a:a1:8e:
67:eb:a4:7f:95:b0:99:e4:62:69:05:cc:f7:64:71:00:83:82:
30:e1:0a:c1:30:bf:fc:e6:95:5c:87:dd:66:87:c4:49:94:03:
fa:7c:23:13:f9:e2:6d:7a:17:e4:8a:b5:2c:d9:7b:e0:d0:71:
f2:82:2a:a8:66:91:5a:ed:47:6a:fb:13:f7:c2:59:a8:1f:64:
43:f7:d5:ad:07:dd:34:42:75:46:d1:92:c6:06:72:4d:36:ca:
67:a3:88:5a:f3:1f:a8:4b:2e:21:7e:d3:6e:fc:1a:78:b7:4f:
1e:56:91:cf:3e:ea:41:b4:ee:7e:d5:ae:70:e4:79:0b:27:0e:
b0:3e:f0:3b:9d:87:6f:3d:68:a5:0c:da:5a:e8:43:b3:07:47:
b3:76:7e:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYH0ao2w0RGxLYuGZIJkLbymMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ZjgzOGQzYTlkZTg1NGM5OGFmODMyMGMzZGViMDA0MWUy
MzllOGQwHhcNMjIwNzEyMjE1NzEyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxY2VjNzFmMTcxZTg5N2U4YjIyOGJmOTVjOTZlMDdlZTRjN2NkYmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVNCGx4eOUphWpaRHpt3pPO3mqmD
fEaWltFXmNmZOPgt79ZDQuQKonInNDsN0d3z7qLq04HwJpIcPRlnEF/W296CrZ5F
zxnUVz/mwrCnVbLgTqpbsk95vdr7PxGMaKRyQU86K4TTJ6f5Xv+NSHv1vO5VyFFf
tCRLA6I//LfeNJ6AbR2avWuJp7bU2qEfyyEpppWtktrQ2RQaxzoE9UUfQ5IN0wtq
GjQEgm5ojYfsfYBuM9evzeEH4yURA+QNSHXYBwXU6KYOT0giIcVhwjff/6NS3sBP
O7TI4nZe+p1nySp1sJu3RLzQuLb7rOEULMFSsBjx3HD01qtH0IVi+YKN1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBzscfFx6Jfosii/lcluB+5MfNu2MB8GA1UdIwQY
MBaAFDT4ONOp3oVMmK+DIMPesAQeI56NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlBnNDA2bmVoVXlZcjRNZ3c5NndCQjRqbm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMTAyYzctY2I4OS00ZDJhLTg0MGMt
NWM0YTAzOWU4MTJmLzEvSE94eDhYSG9sLWl5S0wtVnlXNEg3a3g4MjdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8xMTAyYzctY2I4OS00ZDJhLTg0MGMtNWM0YTAzOWU4MTJm
LzEvTlBnNDA2bmVoVXlZcjRNZ3c5NndCQjRqbm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1W2ZMA0G
CSqGSIb3DQEBCwUAA4IBAQDCk4yx7oiL7uo5XiYy5ymiHv4JoUQc8CcKbS2IZSgH
4oOyJhtS1cfhHzPBl6hu5x1+enxy7mCjax20Ah/1wWJ/K998ZkTs6bE9V1CI3Mvt
XMIkkYfC9bkKghLcZ7hx0j86QA92Jxlhiss6oY5n66R/lbCZ5GJpBcz3ZHEAg4Iw
4QrBML/85pVch91mh8RJlAP6fCMT+eJtehfkirUs2Xvg0HHygiqoZpFa7Udq+xP3
wlmoH2RD99WtB900QnVG0ZLGBnJNNspno4ha8x+oSy4hftNu/Bp4t08eVpHPPupB
tO5+1a5w5HkLJw6wPvA7nYdvPWilDNpa6EOzB0ezdn6C
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:40 2024 by rpki-client on console-ams.rpki-client.org