Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0278d4-28df-45fd-9771-a33c684cb2a3/1/9NnkB0B4xHpySeSOLN_Bs1aC7mg.roa
File: 9NnkB0B4xHpySeSOLN_Bs1aC7mg.roa (raw, json)
Hash identifier: evK6Vq3EZDuja0uU4fWmhFk5GQWxx56YDiXKlBvVObY=
Subject key identifier: F4:D9:E4:07:40:78:C4:7A:72:49:E4:8E:2C:DF:C1:B3:56:82:EE:68
Certificate issuer: /CN=d78e527a8dde83f76ac7bd409ee6429ab8fd553b
Certificate serial: 169C54
Authority key identifier: D7:8E:52:7A:8D:DE:83:F7:6A:C7:BD:40:9E:E6:42:9A:B8:FD:55:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/145Seo3eg_dqx71AnuZCmrj9VTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0278d4-28df-45fd-9771-a33c684cb2a3/1/9NnkB0B4xHpySeSOLN_Bs1aC7mg.roa
Signing time: Wed 20 Apr 2022 13:33:27 +0000
ROA not before: Wed 20 Apr 2022 13:33:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208935
IP address blocks: 194.104.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1481812 (0x169c54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d78e527a8dde83f76ac7bd409ee6429ab8fd553b
Validity
Not Before: Apr 20 13:33:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4d9e4074078c47a7249e48e2cdfc1b35682ee68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9f:0d:a0:8c:d2:f1:4a:dc:c2:80:05:3d:f7:
8f:b8:d1:89:0c:aa:7e:cf:a7:1c:cc:06:2e:70:f6:
dc:fc:c6:68:e5:90:c1:5f:25:62:39:5c:40:d8:63:
b6:65:23:53:1a:51:af:95:d2:dd:97:4e:99:b5:e4:
cc:3c:da:67:83:8c:0b:a8:c1:4e:38:c9:d1:b1:b8:
d4:33:35:19:ed:3f:c5:8d:d7:e7:21:48:da:9a:54:
d5:5d:11:19:32:c9:39:63:b2:fa:f6:85:1e:2f:0b:
54:ed:00:93:92:fb:4f:4a:f9:8a:21:51:22:b5:4d:
c7:b1:cf:ff:65:a7:70:5e:bd:09:c5:da:2c:73:4c:
5e:a5:95:9c:33:a4:3a:b5:2d:af:6d:94:9d:85:de:
5b:00:7a:10:4d:93:79:47:a9:65:a6:f9:62:c0:b1:
29:ca:e0:8d:0d:70:52:9f:5c:9c:8c:7c:4d:ec:00:
56:b9:f4:bb:91:9b:71:d8:14:32:d1:82:d8:2b:57:
4f:9a:b9:c6:70:f7:73:f6:ca:f6:ca:a8:b4:3b:72:
71:23:6d:d8:77:82:30:b6:3f:00:fd:83:d8:87:23:
b1:d8:ee:be:b0:88:32:ca:69:cf:a4:1f:7c:c9:47:
f5:72:2b:0f:cb:a9:7d:36:db:51:ab:dc:08:8a:15:
ba:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D9:E4:07:40:78:C4:7A:72:49:E4:8E:2C:DF:C1:B3:56:82:EE:68
X509v3 Authority Key Identifier:
keyid:D7:8E:52:7A:8D:DE:83:F7:6A:C7:BD:40:9E:E6:42:9A:B8:FD:55:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/145Seo3eg_dqx71AnuZCmrj9VTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0278d4-28df-45fd-9771-a33c684cb2a3/1/9NnkB0B4xHpySeSOLN_Bs1aC7mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0278d4-28df-45fd-9771-a33c684cb2a3/1/145Seo3eg_dqx71AnuZCmrj9VTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.138.0/24
Signature Algorithm: sha256WithRSAEncryption
61:9c:7e:28:ea:f6:c1:91:0c:11:42:13:56:16:14:1d:0e:e1:
f4:e5:eb:91:1e:98:50:de:0f:33:cf:4b:84:7a:07:f1:64:0a:
ef:e2:93:71:ab:cf:71:ac:8a:2b:62:bc:23:77:2f:3d:93:9f:
6b:03:79:cd:cb:c2:6c:86:a3:32:6c:1d:4a:8f:cf:b8:0a:24:
8e:eb:2c:57:98:ff:2f:77:43:ae:49:57:76:4e:5f:b6:50:5d:
34:05:2b:ee:82:71:0a:e7:0b:d0:44:c2:37:c6:6d:d5:fb:cd:
75:2f:6d:91:a6:6c:4f:98:9a:32:9f:f1:3e:d9:8a:c5:b3:c2:
ba:4f:2d:ed:71:a9:9f:26:1a:88:a3:7c:b0:64:4e:c2:64:d0:
ee:89:aa:8a:1b:9d:f0:19:07:4c:1c:54:b8:93:92:10:8f:20:
b5:4a:be:be:d4:60:ee:66:79:6a:ed:1a:d4:2b:9e:77:0c:f9:
34:be:3a:20:29:c6:ef:c2:65:86:09:60:1c:91:5e:1d:06:7a:
2e:74:01:67:0c:a3:c5:6d:a5:89:e8:af:d7:28:16:16:1e:9e:
ad:28:95:59:51:55:e6:d2:d5:57:58:99:26:a3:94:f7:89:12:
4e:ba:66:3c:2c:4f:cd:c6:2f:af:f1:83:6a:53:45:a0:b9:eb:
4b:46:f3:d6
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDFpxUMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQ3
OGU1MjdhOGRkZTgzZjc2YWM3YmQ0MDllZTY0MjlhYjhmZDU1M2IwHhcNMjIwNDIw
MTMzMzI3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmNGQ5ZTQwNzQwNzhj
NDdhNzI0OWU0OGUyY2RmYzFiMzU2ODJlZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAlZ8NoIzS8UrcwoAFPfePuNGJDKp+z6cczAYucPbc/MZo5ZDB
XyViOVxA2GO2ZSNTGlGvldLdl06ZteTMPNpng4wLqMFOOMnRsbjUMzUZ7T/Fjdfn
IUjamlTVXREZMsk5Y7L69oUeLwtU7QCTkvtPSvmKIVEitU3Hsc//ZadwXr0Jxdos
c0xepZWcM6Q6tS2vbZSdhd5bAHoQTZN5R6llpvliwLEpyuCNDXBSn1ycjHxN7ABW
ufS7kZtx2BQy0YLYK1dPmrnGcPdz9sr2yqi0O3JxI23Yd4Iwtj8A/YPYhyOx2O6+
sIgyymnPpB98yUf1cisPy6l9NttRq9wIihW6GQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFPTZ5AdAeMR6cknkjizfwbNWgu5oMB8GA1UdIwQYMBaAFNeOUnqN3oP3ase9
QJ7mQpq4/VU7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MTQ1U2VvM2VnX2RxeDcxQW51WkNtcmo5VlRzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zNS8wMjc4ZDQtMjhkZi00NWZkLTk3NzEtYTMzYzY4NGNiMmEzLzEv
OU5ua0IwQjR4SHB5U2VTT0xOX0JzMWFDN21nLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8w
Mjc4ZDQtMjhkZi00NWZkLTk3NzEtYTMzYzY4NGNiMmEzLzEvMTQ1U2VvM2VnX2Rx
eDcxQW51WkNtcmo5VlRzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmiKMA0GCSqGSIb3DQEBCwUAA4IB
AQBhnH4o6vbBkQwRQhNWFhQdDuH05euRHphQ3g8zz0uEegfxZArv4pNxq89xrIor
Yrwjdy89k59rA3nNy8JshqMybB1Kj8+4CiSO6yxXmP8vd0OuSVd2Tl+2UF00BSvu
gnEK5wvQRMI3xm3V+811L22RpmxPmJoyn/E+2YrFs8K6Ty3tcamfJhqIo3ywZE7C
ZNDuiaqKG53wGQdMHFS4k5IQjyC1Sr6+1GDuZnlq7RrUK553DPk0vjogKcbvwmWG
CWAckV4dBnoudAFnDKPFbaWJ6K/XKBYWHp6tKJVZUVXm0tVXWJkmo5T3iRJOumY8
LE/Nxi+v8YNqU0WguetLRvPW
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:09 2023 by rpki-client on console-ams.rpki-client.org