Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/M71rkgVhZDqP4B_t5dC8Miuy3ms.roa
File: M71rkgVhZDqP4B_t5dC8Miuy3ms.roa (raw, json)
Hash identifier: 4yplD7zVgbgGhdfxRWUK6ZvF6wE7uluJDS5UUI+VQFw=
Subject key identifier: 33:BD:6B:92:05:61:64:3A:8F:E0:1F:ED:E5:D0:BC:32:2B:B2:DE:6B
Certificate issuer: /CN=94846741139263388d984db1e97e031669c6486e
Certificate serial: 018CC56E6DBDDCE06A929497769F9BACAC0A
Authority key identifier: 94:84:67:41:13:92:63:38:8D:98:4D:B1:E9:7E:03:16:69:C6:48:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lIRnQROSYziNmE2x6X4DFmnGSG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/M71rkgVhZDqP4B_t5dC8Miuy3ms.roa
Signing time: Mon 01 Jan 2024 14:29:57 +0000
ROA not before: Mon 01 Jan 2024 14:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30860
IP address blocks: 188.95.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:6d:bd:dc:e0:6a:92:94:97:76:9f:9b:ac:ac:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94846741139263388d984db1e97e031669c6486e
Validity
Not Before: Jan 1 14:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33bd6b920561643a8fe01fede5d0bc322bb2de6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:52:0c:b6:6c:9c:43:b8:f9:a3:a6:75:d6:53:
c8:75:25:0a:bc:bd:33:a9:98:39:58:16:b7:47:41:
3e:b2:f1:97:5f:ca:3f:ba:6a:b9:7c:28:37:7d:d1:
7b:e1:98:81:0a:37:28:e0:12:f6:0e:e6:f5:87:29:
6b:d7:fb:ec:3f:7c:40:25:fa:c1:31:0a:89:39:c2:
f2:fb:bb:65:fb:d8:8f:7b:e1:dc:e1:54:47:bf:be:
ae:32:dc:67:5b:17:bd:f0:ae:a5:6a:db:ea:75:cd:
6a:c6:40:70:28:d5:ed:86:73:51:46:a8:f6:c5:8f:
fb:93:aa:ff:c2:48:59:11:82:90:4d:56:ba:8d:83:
b1:b2:3e:c9:47:00:d6:09:0e:3b:06:1b:3e:b5:29:
91:aa:26:86:5d:9c:67:26:46:31:f1:56:f4:6c:0b:
d7:73:bf:40:4f:36:66:86:df:35:52:80:5c:61:7e:
6f:89:39:18:48:9d:1f:3e:ac:4c:f1:21:ad:c0:ae:
01:2c:5c:04:b6:75:a9:a2:bc:fd:05:dc:49:99:2a:
3a:ac:18:d9:87:0c:fd:52:07:93:f8:4a:85:88:55:
52:59:e1:f8:e8:6f:ee:13:ce:7b:8f:49:a9:03:69:
93:92:75:d7:41:0d:30:16:f6:30:83:06:5b:36:fc:
69:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:BD:6B:92:05:61:64:3A:8F:E0:1F:ED:E5:D0:BC:32:2B:B2:DE:6B
X509v3 Authority Key Identifier:
keyid:94:84:67:41:13:92:63:38:8D:98:4D:B1:E9:7E:03:16:69:C6:48:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lIRnQROSYziNmE2x6X4DFmnGSG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/M71rkgVhZDqP4B_t5dC8Miuy3ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/lIRnQROSYziNmE2x6X4DFmnGSG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.89.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:33:55:8b:98:6b:9c:ec:78:41:f4:79:87:b0:d7:c8:5c:a0:
b0:be:a9:33:fc:b2:f1:90:f2:24:8b:b5:32:35:0c:a1:13:f2:
45:3e:fc:b1:ba:7e:2d:54:54:ed:32:9c:4d:30:76:97:7c:13:
54:59:b6:b3:60:d1:49:21:e9:e3:a9:1b:f8:6b:87:3e:e0:f7:
ec:28:2e:77:fe:6d:57:29:1f:87:9c:c0:b1:60:58:09:35:d8:
0c:9e:c6:51:04:e5:81:a7:82:67:b3:c4:48:90:41:bb:2e:43:
f2:81:d2:7e:1c:db:7a:b5:83:13:62:99:98:3a:fd:bf:6c:19:
b6:3e:2f:27:76:19:58:34:f5:4c:4b:71:d8:1e:04:8d:c2:2c:
f9:a1:6d:30:a1:c3:eb:15:29:a4:e8:75:5e:18:d6:5c:41:71:
06:50:76:cb:6b:50:0f:53:95:03:cc:7a:a6:23:8c:0a:25:2a:
18:3a:d5:09:c9:21:ad:3a:a6:1d:01:39:12:f9:56:a1:12:d2:
7c:59:fa:3f:b3:dc:6d:b6:59:1b:b9:d2:ec:58:4a:d5:b3:a1:
57:ec:90:92:29:34:87:3f:e2:f3:20:6c:cf:a3:91:7c:9a:a1:
ef:1f:7a:00:78:58:9f:40:04:c2:56:0a:4b:f4:cc:46:58:35:
fb:16:17:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbm293OBqkpSXdp+brKwKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ODQ2NzQxMTM5MjYzMzg4ZDk4NGRiMWU5N2UwMzE2Njlj
NjQ4NmUwHhcNMjQwMTAxMTQyOTU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2JkNmI5MjA1NjE2NDNhOGZlMDFmZWRlNWQwYmMzMjJiYjJkZTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlIMtmycQ7j5o6Z11lPIdSUKvL0z
qZg5WBa3R0E+svGXX8o/umq5fCg3fdF74ZiBCjco4BL2Dub1hylr1/vsP3xAJfrB
MQqJOcLy+7tl+9iPe+Hc4VRHv76uMtxnWxe98K6latvqdc1qxkBwKNXthnNRRqj2
xY/7k6r/wkhZEYKQTVa6jYOxsj7JRwDWCQ47Bhs+tSmRqiaGXZxnJkYx8Vb0bAvX
c79ATzZmht81UoBcYX5viTkYSJ0fPqxM8SGtwK4BLFwEtnWporz9BdxJmSo6rBjZ
hwz9UgeT+EqFiFVSWeH46G/uE857j0mpA2mTknXXQQ0wFvYwgwZbNvxpzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDO9a5IFYWQ6j+Af7eXQvDIrst5rMB8GA1UdIwQY
MBaAFJSEZ0ETkmM4jZhNsel+AxZpxkhuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbElSblFST1NZemlObUUyeDZYNERGbW5HU0c0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9hNDkxMDItMDYxMi00N2EwLTgxMTct
Y2IxMTI1MDA3ZGZiLzEvTTcxcmtnVmhaRHFQNEJfdDVkQzhNaXV5M21zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9hNDkxMDItMDYxMi00N2EwLTgxMTctY2IxMTI1MDA3ZGZi
LzEvbElSblFST1NZemlObUUyeDZYNERGbW5HU0c0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvF9ZMA0G
CSqGSIb3DQEBCwUAA4IBAQAPM1WLmGuc7HhB9HmHsNfIXKCwvqkz/LLxkPIki7Uy
NQyhE/JFPvyxun4tVFTtMpxNMHaXfBNUWbazYNFJIenjqRv4a4c+4PfsKC53/m1X
KR+HnMCxYFgJNdgMnsZRBOWBp4Jns8RIkEG7LkPygdJ+HNt6tYMTYpmYOv2/bBm2
Pi8ndhlYNPVMS3HYHgSNwiz5oW0wocPrFSmk6HVeGNZcQXEGUHbLa1APU5UDzHqm
I4wKJSoYOtUJySGtOqYdATkS+VahEtJ8Wfo/s9xttlkbudLsWErVs6FX7JCSKTSH
P+LzIGzPo5F8mqHvH3oAeFifQATCVgpL9MxGWDX7Fhfi
-----END CERTIFICATE-----
Generated at Thu Sep 26 16:48:09 2024 by rpki-client on console-ams.rpki-client.org