Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/ktrF2gqek1l2S5DlmMv9fiDHxLY.roa
File: ktrF2gqek1l2S5DlmMv9fiDHxLY.roa (raw, json)
Hash identifier: AUuRpvbBsibg3u6PR7B4/iAEFFgTf4UYZfuiRvfKqz8=
Subject key identifier: 92:DA:C5:DA:0A:9E:93:59:76:4B:90:E5:98:CB:FD:7E:20:C7:C4:B6
Certificate issuer: /CN=cd9233f6a88d08f6559c2206b1bff2655b122231
Certificate serial: 37B7D709
Authority key identifier: CD:92:33:F6:A8:8D:08:F6:55:9C:22:06:B1:BF:F2:65:5B:12:22:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZIz9qiNCPZVnCIGsb_yZVsSIjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/ktrF2gqek1l2S5DlmMv9fiDHxLY.roa
Signing time: Sat 01 Jan 2022 13:58:57 +0000
ROA not before: Sat 01 Jan 2022 13:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41535
IP address blocks: 109.120.162.0/24 maxlen: 24
109.120.167.0/24 maxlen: 24
109.120.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934795017 (0x37b7d709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9233f6a88d08f6559c2206b1bff2655b122231
Validity
Not Before: Jan 1 13:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92dac5da0a9e9359764b90e598cbfd7e20c7c4b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:43:1e:9b:2b:54:d8:76:08:c9:ee:a0:38:28:
59:75:30:5c:22:79:50:7c:cd:75:36:8a:b3:a6:5d:
5a:05:71:c1:22:aa:b4:c1:69:f7:d4:11:d7:25:aa:
45:7b:05:f9:85:c3:00:e9:72:d6:5e:65:a8:f0:ef:
cb:0e:29:1f:a0:6e:86:68:84:7e:73:d0:03:a8:ec:
ac:4c:35:4d:ce:cf:33:ec:98:9d:62:42:1a:71:da:
6f:66:e4:47:40:91:73:e7:ba:07:ef:69:61:6c:64:
ae:3a:32:21:d2:1e:0c:03:23:d1:1d:4e:4e:d0:9f:
7e:33:f8:48:a0:56:d2:ab:a1:85:ee:63:db:9c:c4:
c4:22:10:ba:3b:a1:fd:d0:20:5f:17:ce:09:ad:ae:
26:18:06:b4:30:e3:af:01:51:2f:dd:8c:ce:17:09:
94:1e:46:bb:18:f5:aa:af:07:bf:ca:1e:67:80:46:
11:eb:9f:fc:16:ba:8a:96:37:45:02:32:c9:a0:8d:
71:11:31:13:71:b0:34:65:a5:d3:a2:4b:63:5e:b8:
c9:d0:b7:e4:87:e8:87:9f:70:a3:32:f8:0e:63:1d:
4f:05:9c:1c:1f:7d:63:26:95:47:09:24:4b:7f:f1:
7d:89:6e:ca:bc:54:00:26:8f:d1:a4:d2:a4:3a:8e:
9d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DA:C5:DA:0A:9E:93:59:76:4B:90:E5:98:CB:FD:7E:20:C7:C4:B6
X509v3 Authority Key Identifier:
keyid:CD:92:33:F6:A8:8D:08:F6:55:9C:22:06:B1:BF:F2:65:5B:12:22:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZIz9qiNCPZVnCIGsb_yZVsSIjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/ktrF2gqek1l2S5DlmMv9fiDHxLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/zZIz9qiNCPZVnCIGsb_yZVsSIjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.120.162.0/24
109.120.167.0/24
109.120.172.0/24
Signature Algorithm: sha256WithRSAEncryption
68:76:fd:de:b8:04:b5:01:d0:6f:fd:e8:23:a3:aa:7f:fc:69:
aa:c3:b7:e3:69:83:29:cb:b3:04:33:8a:ec:6a:b2:95:e0:d5:
3b:53:f5:8c:ba:a3:ac:a4:11:e0:f7:ff:88:d9:3b:37:f3:d6:
db:05:69:f4:47:b7:60:70:98:fe:a0:74:a5:00:12:92:26:58:
83:b0:56:d0:6b:19:cc:32:c2:d0:dd:12:63:74:4c:55:21:a9:
1b:56:f6:a9:93:62:33:27:8c:45:81:5c:70:60:d3:d1:e4:77:
e6:ba:8e:38:9a:f9:6c:60:ab:52:1f:28:f5:54:ad:67:80:0a:
d8:a5:f3:36:17:e1:91:e9:cb:3c:1e:eb:39:e1:fa:ec:04:89:
fe:5b:b4:48:7a:8a:b5:51:54:2e:3c:73:b2:97:ba:83:65:dd:
69:88:ed:6f:8a:d8:49:8c:86:03:09:90:7a:43:af:93:b3:e2:
06:eb:e9:23:50:69:f9:25:0f:47:ec:c8:20:c1:66:21:b6:19:
a4:c5:46:9e:f2:94:98:ac:3d:ef:8d:1f:6b:19:b7:87:fc:23:
74:15:be:57:0b:a7:68:d5:b6:44:3f:95:de:52:fd:1d:c9:1d:
17:6d:ee:b0:00:f1:dd:96:ba:79:70:f2:ce:e5:c7:b4:c1:5f:
ea:f3:38:a1
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEN7fXCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZDkyMzNmNmE4OGQwOGY2NTU5YzIyMDZiMWJmZjI2NTViMTIyMjMxMB4XDTIyMDEw
MTEzNTg1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTJkYWM1ZGEwYTll
OTM1OTc2NGI5MGU1OThjYmZkN2UyMGM3YzRiNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALZDHpsrVNh2CMnuoDgoWXUwXCJ5UHzNdTaKs6ZdWgVxwSKq
tMFp99QR1yWqRXsF+YXDAOly1l5lqPDvyw4pH6BuhmiEfnPQA6jsrEw1Tc7PM+yY
nWJCGnHab2bkR0CRc+e6B+9pYWxkrjoyIdIeDAMj0R1OTtCffjP4SKBW0quhhe5j
25zExCIQujuh/dAgXxfOCa2uJhgGtDDjrwFRL92MzhcJlB5Guxj1qq8Hv8oeZ4BG
Eeuf/Ba6ipY3RQIyyaCNcRExE3GwNGWl06JLY164ydC35Ifoh59wozL4DmMdTwWc
HB99YyaVRwkkS3/xfYluyrxUACaP0aTSpDqOnbkCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSS2sXaCp6TWXZLkOWYy/1+IMfEtjAfBgNVHSMEGDAWgBTNkjP2qI0I9lWc
Igaxv/JlWxIiMTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3paSXo5cWlOQ1BaVm5DSUdzYl95WlZzU0lqRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmEvMGExMTZmLTVhMGItNDU2Ni05ZjQ0LWI4MzdiZjlkNGM1Zi8x
L2t0ckYyZ3FlazFsMlM1RGxtTXY5ZmlESHhMWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmEv
MGExMTZmLTVhMGItNDU2Ni05ZjQ0LWI4MzdiZjlkNGM1Zi8xL3paSXo5cWlOQ1Ba
Vm5DSUdzYl95WlZzU0lqRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAG14ogMEAG14pwMEAG14rDANBgkq
hkiG9w0BAQsFAAOCAQEAaHb93rgEtQHQb/3oI6Oqf/xpqsO342mDKcuzBDOK7Gqy
leDVO1P1jLqjrKQR4Pf/iNk7N/PW2wVp9Ee3YHCY/qB0pQASkiZYg7BW0GsZzDLC
0N0SY3RMVSGpG1b2qZNiMyeMRYFccGDT0eR35rqOOJr5bGCrUh8o9VStZ4AK2KXz
NhfhkenLPB7rOeH67ASJ/lu0SHqKtVFULjxzspe6g2XdaYjtb4rYSYyGAwmQekOv
k7PiBuvpI1Bp+SUPR+zIIMFmIbYZpMVGnvKUmKw9740faxm3h/wjdBW+VwunaNW2
RD+V3lL9HckdF23usADx3Za6eXDyzuXHtMFf6vM4oQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:30 2024 by rpki-client on console-fra.rpki-client.org