Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/92857b-f106-466e-9c4b-c1114a9dad19/1/Na5QG6pR_2ylxLI1SpWy0-mK5A0.roa
File: Na5QG6pR_2ylxLI1SpWy0-mK5A0.roa (raw, json)
Hash identifier: f7+3h2Mp/n18RShomOetxJ7CbuWGOsLFIJHwCScPy+8=
Subject key identifier: 35:AE:50:1B:AA:51:FF:6C:A5:C4:B2:35:4A:95:B2:D3:E9:8A:E4:0D
Certificate issuer: /CN=96429851d86633cbe2983aaf94ba8415ca232aa1
Certificate serial: 01857082BA49DEAC0BA4692E2AA2376C4B14
Authority key identifier: 96:42:98:51:D8:66:33:CB:E2:98:3A:AF:94:BA:84:15:CA:23:2A:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkKYUdhmM8vimDqvlLqEFcojKqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/92857b-f106-466e-9c4b-c1114a9dad19/1/Na5QG6pR_2ylxLI1SpWy0-mK5A0.roa
Signing time: Mon 02 Jan 2023 03:24:53 +0000
ROA not before: Mon 02 Jan 2023 03:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 194.26.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:ba:49:de:ac:0b:a4:69:2e:2a:a2:37:6c:4b:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96429851d86633cbe2983aaf94ba8415ca232aa1
Validity
Not Before: Jan 2 03:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35ae501baa51ff6ca5c4b2354a95b2d3e98ae40d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:44:3f:63:a5:43:14:bf:89:c2:cf:70:e1:6c:
22:54:90:c6:0c:2f:82:18:9b:82:e0:40:71:52:1b:
80:11:f2:06:5d:9d:b2:34:75:71:94:76:a1:70:cb:
a8:68:98:9f:91:6d:3a:47:74:07:d2:17:24:4b:cd:
4a:40:8f:47:e7:32:de:87:52:78:1b:de:78:1f:e1:
03:c4:96:bf:c8:17:b7:2e:85:19:71:ac:61:f9:5d:
2f:cc:0d:c0:70:83:35:3f:b7:50:b1:3f:58:1d:d0:
55:55:0f:f0:c3:d2:51:53:8b:8b:ac:f4:5d:f1:0d:
1d:4c:9c:1e:a1:eb:31:da:65:0b:76:e9:13:f3:d5:
19:74:ad:f2:e8:ee:fc:e3:16:4d:26:4d:99:c1:a3:
fe:1e:55:ae:4c:be:ad:8c:fb:37:2c:b6:29:c5:c5:
01:67:31:f0:c5:3a:76:f6:c1:5b:54:c2:7a:d7:59:
a2:7f:8e:5a:06:07:90:1a:ca:91:4a:bc:09:47:8d:
4c:26:c1:49:a2:01:56:fa:31:00:a3:8c:f8:a1:d1:
aa:7e:8c:9e:8a:0b:3a:00:66:80:d4:39:74:32:27:
62:5d:85:c8:55:4d:18:99:b8:e1:cc:75:5e:fc:e7:
59:bd:1a:d3:33:e0:61:44:c3:0f:7e:1f:29:db:60:
1c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AE:50:1B:AA:51:FF:6C:A5:C4:B2:35:4A:95:B2:D3:E9:8A:E4:0D
X509v3 Authority Key Identifier:
keyid:96:42:98:51:D8:66:33:CB:E2:98:3A:AF:94:BA:84:15:CA:23:2A:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkKYUdhmM8vimDqvlLqEFcojKqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/92857b-f106-466e-9c4b-c1114a9dad19/1/Na5QG6pR_2ylxLI1SpWy0-mK5A0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/92857b-f106-466e-9c4b-c1114a9dad19/1/lkKYUdhmM8vimDqvlLqEFcojKqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.138.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:bb:f9:07:1b:51:67:cc:24:74:5b:b8:58:f0:f8:f5:0f:d3:
4f:2b:7b:a2:3a:80:f8:1f:d9:1f:26:49:c2:ef:a5:b1:44:ca:
00:2c:bd:cc:f9:2d:89:36:95:97:b7:f3:01:ad:3f:69:c1:77:
59:0a:46:be:aa:e6:7d:21:ad:92:cc:60:7d:e0:94:ea:7b:9c:
6d:08:dd:12:5b:b8:45:98:b6:ce:f1:1f:f2:e5:7b:bd:d3:90:
ad:68:43:e1:af:45:ce:ae:58:77:b8:18:a5:11:02:87:75:4d:
9a:07:0c:62:64:b9:90:63:a3:a8:13:8a:2e:62:a8:e8:7d:1e:
ca:b5:f1:a4:73:c7:28:70:b8:b1:3c:33:f2:52:06:6b:e4:5f:
44:fe:b6:cf:96:3a:96:64:2f:df:5f:3d:f1:86:99:0f:ae:e1:
05:75:d6:e2:42:9f:5d:c5:11:86:0f:ec:e8:16:16:24:82:88:
45:1b:3b:07:9c:db:9f:9d:b9:0d:85:10:bc:f3:6a:9a:89:11:
be:c6:5f:2e:98:de:4d:2e:03:71:93:18:a4:c7:49:05:ed:14:
46:54:cf:6c:56:8e:ca:a4:5b:cc:1d:09:04:c6:72:9a:17:2d:
e5:34:3c:8e:42:4f:bf:0e:3d:5a:c0:5c:3b:13:67:31:02:44:
22:3d:c6:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwgrpJ3qwLpGkuKqI3bEsUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NDI5ODUxZDg2NjMzY2JlMjk4M2FhZjk0YmE4NDE1Y2Ey
MzJhYTEwHhcNMjMwMTAyMDMyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNWFlNTAxYmFhNTFmZjZjYTVjNGIyMzU0YTk1YjJkM2U5OGFlNDBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkQ/Y6VDFL+Jws9w4WwiVJDGDC+C
GJuC4EBxUhuAEfIGXZ2yNHVxlHahcMuoaJifkW06R3QH0hckS81KQI9H5zLeh1J4
G954H+EDxJa/yBe3LoUZcaxh+V0vzA3AcIM1P7dQsT9YHdBVVQ/ww9JRU4uLrPRd
8Q0dTJweoesx2mULdukT89UZdK3y6O784xZNJk2ZwaP+HlWuTL6tjPs3LLYpxcUB
ZzHwxTp29sFbVMJ611mif45aBgeQGsqRSrwJR41MJsFJogFW+jEAo4z4odGqfoye
igs6AGaA1Dl0MidiXYXIVU0YmbjhzHVe/OdZvRrTM+BhRMMPfh8p22AcgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDWuUBuqUf9spcSyNUqVstPpiuQNMB8GA1UdIwQY
MBaAFJZCmFHYZjPL4pg6r5S6hBXKIyqhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGtLWVVkaG1NOHZpbURxdmxMcUVGY29qS3FFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy85Mjg1N2ItZjEwNi00NjZlLTljNGIt
YzExMTRhOWRhZDE5LzEvTmE1UUc2cFJfMnlseExJMVNwV3kwLW1LNUEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy85Mjg1N2ItZjEwNi00NjZlLTljNGItYzExMTRhOWRhZDE5
LzEvbGtLWVVkaG1NOHZpbURxdmxMcUVGY29qS3FFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwhqKMA0G
CSqGSIb3DQEBCwUAA4IBAQBeu/kHG1FnzCR0W7hY8Pj1D9NPK3uiOoD4H9kfJknC
76WxRMoALL3M+S2JNpWXt/MBrT9pwXdZCka+quZ9Ia2SzGB94JTqe5xtCN0SW7hF
mLbO8R/y5Xu905CtaEPhr0XOrlh3uBilEQKHdU2aBwxiZLmQY6OoE4ouYqjofR7K
tfGkc8cocLixPDPyUgZr5F9E/rbPljqWZC/fXz3xhpkPruEFddbiQp9dxRGGD+zo
FhYkgohFGzsHnNufnbkNhRC882qaiRG+xl8umN5NLgNxkxikx0kF7RRGVM9sVo7K
pFvMHQkExnKaFy3lNDyOQk+/Dj1awFw7E2cxAkQiPcYH
-----END CERTIFICATE-----
Generated at Tue Oct 17 10:46:35 2023 by rpki-client on console-fra.rpki-client.org