Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/0cc5de-fc04-4017-9bc0-4c45d9f1eaa0/1/v14ZbBGnjEwv1jXg2LigB3Ex208.roa
File: v14ZbBGnjEwv1jXg2LigB3Ex208.roa (raw, json)
Hash identifier: DA9tHlh7mzbnSpE9v/s/6d2JxTsB2OlMAwB3sl9N9Kc=
Subject key identifier: BF:5E:19:6C:11:A7:8C:4C:2F:D6:35:E0:D8:B8:A0:07:71:31:DB:4F
Certificate issuer: /CN=f2d9b9df707d4ee553bbfe07e350e4a83fb9895e
Certificate serial: 01856B932FC708464D4F61C9EE5245AAF0DB
Authority key identifier: F2:D9:B9:DF:70:7D:4E:E5:53:BB:FE:07:E3:50:E4:A8:3F:B9:89:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8tm533B9TuVTu_4H41DkqD-5iV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/0cc5de-fc04-4017-9bc0-4c45d9f1eaa0/1/v14ZbBGnjEwv1jXg2LigB3Ex208.roa
Signing time: Sun 01 Jan 2023 04:24:46 +0000
ROA not before: Sun 01 Jan 2023 04:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 213.109.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:2f:c7:08:46:4d:4f:61:c9:ee:52:45:aa:f0:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2d9b9df707d4ee553bbfe07e350e4a83fb9895e
Validity
Not Before: Jan 1 04:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf5e196c11a78c4c2fd635e0d8b8a0077131db4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7b:23:4d:0b:4a:99:b2:71:7f:93:7d:b6:56:
b6:d6:bb:a6:5c:5b:b2:d3:78:2d:c3:b0:f5:26:59:
49:86:c0:c8:70:04:d5:df:77:63:73:ad:e0:f8:25:
dd:92:df:54:84:ea:84:c9:d3:31:71:d7:13:20:0a:
f6:8e:7c:60:fd:a6:b7:d4:c5:66:89:a0:53:2a:2a:
54:d0:66:3a:ec:c9:6a:92:7b:c6:0f:32:91:79:2a:
82:d8:40:6e:60:2e:51:2f:80:ec:e1:9f:a4:e3:c7:
a8:30:e7:75:7e:b8:28:61:d5:67:55:3c:dd:73:a6:
de:75:27:01:2e:50:a5:cc:f3:49:af:62:bc:18:98:
d8:c9:f0:db:0f:6b:49:fc:ce:f9:b2:0a:f1:45:64:
47:0f:25:30:79:9b:1b:a6:d5:ab:2d:f0:b9:3f:d6:
a9:ac:0e:6a:98:f7:f9:72:1c:e4:24:e3:0c:62:55:
75:62:59:99:b5:8e:d6:30:dc:d4:8d:8e:92:5f:25:
86:2a:6c:a0:d2:82:75:60:da:e5:08:e2:ad:e5:ff:
be:e7:05:b5:3b:cc:23:10:a5:07:22:20:f3:1a:1f:
ee:6b:6c:1c:fb:54:a6:2d:60:0e:6c:d8:d5:2c:be:
a5:aa:9d:f3:93:76:3b:d6:43:21:fa:71:4b:7c:0b:
d7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:5E:19:6C:11:A7:8C:4C:2F:D6:35:E0:D8:B8:A0:07:71:31:DB:4F
X509v3 Authority Key Identifier:
keyid:F2:D9:B9:DF:70:7D:4E:E5:53:BB:FE:07:E3:50:E4:A8:3F:B9:89:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8tm533B9TuVTu_4H41DkqD-5iV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0cc5de-fc04-4017-9bc0-4c45d9f1eaa0/1/v14ZbBGnjEwv1jXg2LigB3Ex208.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0cc5de-fc04-4017-9bc0-4c45d9f1eaa0/1/8tm533B9TuVTu_4H41DkqD-5iV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.148.0/24
Signature Algorithm: sha256WithRSAEncryption
73:3f:12:a1:e3:39:5b:10:2a:b9:87:d5:19:6a:73:d9:0c:9e:
b4:e6:47:59:b8:72:a5:c4:69:c5:3e:78:c6:f5:d3:fe:3a:54:
ed:b6:e7:20:a2:eb:83:c4:fe:9a:83:5f:01:a2:2a:4b:7d:12:
8a:19:a1:7a:d7:73:ab:de:83:9a:eb:87:68:64:14:f3:30:d3:
7a:d2:71:96:aa:bf:b6:7d:fa:18:8f:aa:be:c5:88:50:59:04:
84:1b:bb:3f:83:50:05:3a:c1:7b:45:ae:fc:da:d0:86:50:62:
fa:cf:df:f7:15:62:7f:a5:c9:5b:29:bd:ee:c7:91:91:2e:41:
20:f1:c9:45:d1:d3:0b:d4:8a:f0:5f:b0:d9:5f:b4:e2:eb:24:
c0:a3:5c:39:6e:8c:81:8e:e7:2e:26:cc:3b:01:e9:e5:e7:ef:
90:b2:c9:bb:d7:05:fd:55:f0:9b:e6:35:c1:18:15:ab:d5:73:
03:2c:b6:bf:c3:d5:f5:23:bc:38:6f:f1:79:3b:e7:37:81:b0:
a5:10:0c:ee:fe:a5:f2:97:8d:0c:c9:98:bf:85:8e:64:b1:64:
b9:d0:d5:ff:32:99:47:bf:6c:80:6e:42:0a:2e:f2:74:05:0c:
ae:3f:88:b9:e5:50:97:8d:ed:63:1c:00:4a:ec:9b:02:71:da:
b1:3e:78:47
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrky/HCEZNT2HJ7lJFqvDbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyZDliOWRmNzA3ZDRlZTU1M2JiZmUwN2UzNTBlNGE4M2Zi
OTg5NWUwHhcNMjMwMTAxMDQyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjVlMTk2YzExYTc4YzRjMmZkNjM1ZTBkOGI4YTAwNzcxMzFkYjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3sjTQtKmbJxf5N9tla21rumXFuy
03gtw7D1JllJhsDIcATV33djc63g+CXdkt9UhOqEydMxcdcTIAr2jnxg/aa31MVm
iaBTKipU0GY67MlqknvGDzKReSqC2EBuYC5RL4Ds4Z+k48eoMOd1frgoYdVnVTzd
c6bedScBLlClzPNJr2K8GJjYyfDbD2tJ/M75sgrxRWRHDyUweZsbptWrLfC5P9ap
rA5qmPf5chzkJOMMYlV1YlmZtY7WMNzUjY6SXyWGKmyg0oJ1YNrlCOKt5f++5wW1
O8wjEKUHIiDzGh/ua2wc+1SmLWAObNjVLL6lqp3zk3Y71kMh+nFLfAvXpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL9eGWwRp4xML9Y14Ni4oAdxMdtPMB8GA1UdIwQY
MBaAFPLZud9wfU7lU7v+B+NQ5Kg/uYleMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHRtNTMzQjlUdVZUdV80SDQxRGtxRC01aVY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8wY2M1ZGUtZmMwNC00MDE3LTliYzAt
NGM0NWQ5ZjFlYWEwLzEvdjE0WmJCR25qRXd2MWpYZzJMaWdCM0V4MjA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS8wY2M1ZGUtZmMwNC00MDE3LTliYzAtNGM0NWQ5ZjFlYWEw
LzEvOHRtNTMzQjlUdVZUdV80SDQxRGtxRC01aVY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1W2UMA0G
CSqGSIb3DQEBCwUAA4IBAQBzPxKh4zlbECq5h9UZanPZDJ605kdZuHKlxGnFPnjG
9dP+OlTttucgouuDxP6ag18BoipLfRKKGaF613Or3oOa64doZBTzMNN60nGWqr+2
ffoYj6q+xYhQWQSEG7s/g1AFOsF7Ra782tCGUGL6z9/3FWJ/pclbKb3ux5GRLkEg
8clF0dML1IrwX7DZX7Ti6yTAo1w5boyBjucuJsw7Aenl5++Qssm71wX9VfCb5jXB
GBWr1XMDLLa/w9X1I7w4b/F5O+c3gbClEAzu/qXyl40MyZi/hY5ksWS50NX/MplH
v2yAbkIKLvJ0BQyuP4i55VCXje1jHABK7JsCcdqxPnhH
-----END CERTIFICATE-----
Generated at Thu Nov 9 16:22:13 2023 by rpki-client on console-ams.rpki-client.org