Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/xeSr0EX2uENr3qKH0r8GMWtsp1Q.roa
File: xeSr0EX2uENr3qKH0r8GMWtsp1Q.roa (raw, json)
Hash identifier: a4y8/8miNFKvu7mJqh3xC1WgKFPUBkL72BTnZtQTtKk=
Subject key identifier: C5:E4:AB:D0:45:F6:B8:43:6B:DE:A2:87:D2:BF:06:31:6B:6C:A7:54
Certificate issuer: /CN=0212a07ce793a5f0416027bf4aab8bd1ceaf0fce
Certificate serial: 018C3463BFC14076C4326A4AE2118E85DCCF
Authority key identifier: 02:12:A0:7C:E7:93:A5:F0:41:60:27:BF:4A:AB:8B:D1:CE:AF:0F:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhKgfOeTpfBBYCe_SquL0c6vD84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/xeSr0EX2uENr3qKH0r8GMWtsp1Q.roa
Signing time: Mon 04 Dec 2023 10:33:21 +0000
ROA not before: Mon 04 Dec 2023 10:33:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44901
IP address blocks: 194.40.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:34:63:bf:c1:40:76:c4:32:6a:4a:e2:11:8e:85:dc:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0212a07ce793a5f0416027bf4aab8bd1ceaf0fce
Validity
Not Before: Dec 4 10:33:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5e4abd045f6b8436bdea287d2bf06316b6ca754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fc:9a:9b:ea:5a:3b:13:eb:f4:63:a5:6f:a6:
12:1e:be:77:db:ca:67:e6:ab:13:51:8a:ef:a7:e4:
6e:87:ed:53:95:24:7c:dd:19:a9:0a:53:83:4b:32:
d5:d2:60:98:60:bf:0a:db:cd:de:1d:37:de:37:27:
85:70:ae:3d:72:d2:ad:58:9f:b1:6c:45:4a:45:40:
de:2c:29:1b:1a:82:5d:b7:57:57:e1:fb:84:ee:ff:
8a:fc:17:a8:b2:8b:8c:d4:19:8e:f8:e0:b5:33:3b:
40:9a:12:2e:d3:2b:72:e7:bb:41:2e:5a:04:bc:74:
77:1e:71:3c:dc:2f:2b:f0:c8:d8:e6:a1:bd:d3:69:
35:9e:bd:b1:7e:53:35:00:56:67:a4:ba:9a:f0:54:
52:cf:90:8d:e7:12:26:f5:3c:23:2e:32:6f:57:d7:
c1:d6:ed:6c:74:53:79:04:cf:a0:32:af:e4:7d:ba:
5b:5e:09:0f:7a:4f:cb:e6:a3:29:a3:a2:c9:39:84:
ff:59:6f:36:41:8f:a8:a6:74:18:32:37:42:23:68:
ef:25:77:65:b0:b6:ae:c1:97:b6:00:50:98:06:fb:
c9:bb:87:68:2e:bf:f0:74:ad:1a:af:81:78:e6:a2:
46:3e:f5:ad:a0:41:f6:8e:87:29:c2:d7:a2:41:dc:
ce:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E4:AB:D0:45:F6:B8:43:6B:DE:A2:87:D2:BF:06:31:6B:6C:A7:54
X509v3 Authority Key Identifier:
keyid:02:12:A0:7C:E7:93:A5:F0:41:60:27:BF:4A:AB:8B:D1:CE:AF:0F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhKgfOeTpfBBYCe_SquL0c6vD84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/xeSr0EX2uENr3qKH0r8GMWtsp1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/AhKgfOeTpfBBYCe_SquL0c6vD84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.40.248.0/24
Signature Algorithm: sha256WithRSAEncryption
65:6f:f4:17:ba:bc:0c:9d:62:d4:d2:c8:18:89:d7:b5:e5:47:
8e:6e:b5:2c:94:7f:9f:76:53:77:99:3a:a9:01:07:05:2e:79:
95:0e:30:b6:fe:9c:8d:14:e3:98:92:e3:a7:34:04:52:46:3c:
9b:a7:4b:e3:92:67:b9:a7:14:8f:49:d3:7b:bc:47:54:48:fd:
ba:f6:31:37:86:c3:a7:bd:d7:35:03:b1:32:bc:86:ae:2c:ee:
41:3b:c7:26:e8:7a:5d:57:96:d9:65:a8:b5:5f:04:6b:85:12:
24:87:bd:06:d6:ff:fc:95:21:e4:dc:52:f1:44:34:21:0e:5c:
74:e3:6a:b8:85:a2:40:a2:11:b4:5a:94:9a:5a:d2:0e:8e:6e:
9c:76:a7:6f:4f:d0:36:d7:cb:2a:17:34:c4:11:2d:c9:5d:18:
f0:30:8a:c4:83:32:2f:85:e0:25:4b:94:20:c7:1e:b7:0e:fc:
d3:26:2a:d3:d4:06:cd:bb:5c:bb:27:97:76:37:30:8c:1a:08:
23:a3:61:56:1d:d7:c6:f9:9c:a2:60:08:f5:a4:ef:94:e0:9c:
16:fd:b7:6a:54:4f:c2:9d:bb:17:0c:92:b8:fb:1f:87:dd:22:
8e:09:5e:ad:a0:ff:70:a5:a2:98:4b:32:25:83:ea:76:96:99:
d6:2c:a0:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYw0Y7/BQHbEMmpK4hGOhdzPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyMTJhMDdjZTc5M2E1ZjA0MTYwMjdiZjRhYWI4YmQxY2Vh
ZjBmY2UwHhcNMjMxMjA0MTAzMzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNWU0YWJkMDQ1ZjZiODQzNmJkZWEyODdkMmJmMDYzMTZiNmNhNzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfyam+paOxPr9GOlb6YSHr5328pn
5qsTUYrvp+Ruh+1TlSR83RmpClODSzLV0mCYYL8K283eHTfeNyeFcK49ctKtWJ+x
bEVKRUDeLCkbGoJdt1dX4fuE7v+K/BeosouM1BmO+OC1MztAmhIu0yty57tBLloE
vHR3HnE83C8r8MjY5qG902k1nr2xflM1AFZnpLqa8FRSz5CN5xIm9TwjLjJvV9fB
1u1sdFN5BM+gMq/kfbpbXgkPek/L5qMpo6LJOYT/WW82QY+opnQYMjdCI2jvJXdl
sLauwZe2AFCYBvvJu4doLr/wdK0ar4F45qJGPvWtoEH2jocpwteiQdzOfwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMXkq9BF9rhDa96ih9K/BjFrbKdUMB8GA1UdIwQY
MBaAFAISoHznk6XwQWAnv0qri9HOrw/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWhLZ2ZPZVRwZkJCWUNlX1NxdUwwYzZ2RDg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9lNzc1ZWItN2Q4YS00ODM1LTk0NTYt
YmQ3YmY5NDlkOWMyLzEveGVTcjBFWDJ1RU5yM3FLSDByOEdNV3RzcDFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9lNzc1ZWItN2Q4YS00ODM1LTk0NTYtYmQ3YmY5NDlkOWMy
LzEvQWhLZ2ZPZVRwZkJCWUNlX1NxdUwwYzZ2RDg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwij4MA0G
CSqGSIb3DQEBCwUAA4IBAQBlb/QXurwMnWLU0sgYide15UeObrUslH+fdlN3mTqp
AQcFLnmVDjC2/pyNFOOYkuOnNARSRjybp0vjkme5pxSPSdN7vEdUSP269jE3hsOn
vdc1A7EyvIauLO5BO8cm6HpdV5bZZai1XwRrhRIkh70G1v/8lSHk3FLxRDQhDlx0
42q4haJAohG0WpSaWtIOjm6cdqdvT9A218sqFzTEES3JXRjwMIrEgzIvheAlS5Qg
xx63DvzTJirT1AbNu1y7J5d2NzCMGggjo2FWHdfG+ZyiYAj1pO+U4JwW/bdqVE/C
nbsXDJK4+x+H3SKOCV6toP9wpaKYSzIlg+p2lpnWLKAY
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:16 2024 by rpki-client on console-ams.rpki-client.org