Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/O3IwFgrm20z3HFJbeEvWSgnFOp8.roa
File: O3IwFgrm20z3HFJbeEvWSgnFOp8.roa (raw, json)
Hash identifier: xUaqxysGK987Cw8ZXt44qjKfzBw/7l/ZGVmzgyHwwz8=
Subject key identifier: 3B:72:30:16:0A:E6:DB:4C:F7:1C:52:5B:78:4B:D6:4A:09:C5:3A:9F
Certificate issuer: /CN=09b9d37450b62ae3f144eb42ac52ce243b628a7a
Certificate serial: 0185D5CCF58101B8B49047F22A852DF193CB
Authority key identifier: 09:B9:D3:74:50:B6:2A:E3:F1:44:EB:42:AC:52:CE:24:3B:62:8A:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbnTdFC2KuPxROtCrFLOJDtiino.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/O3IwFgrm20z3HFJbeEvWSgnFOp8.roa
Signing time: Sat 21 Jan 2023 19:27:37 +0000
ROA not before: Sat 21 Jan 2023 19:27:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.150.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d5:cc:f5:81:01:b8:b4:90:47:f2:2a:85:2d:f1:93:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09b9d37450b62ae3f144eb42ac52ce243b628a7a
Validity
Not Before: Jan 21 19:27:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b7230160ae6db4cf71c525b784bd64a09c53a9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:37:b4:63:a0:4d:8d:ca:6c:e0:b0:a2:03:f8:
38:b9:fc:c1:3c:91:43:84:b7:f1:5b:51:1a:d5:14:
f1:97:3d:b6:9f:5f:72:51:d1:66:c5:f2:c3:a0:0e:
76:a7:00:6d:84:e1:79:62:a2:e2:c5:b5:20:be:7e:
80:8f:fd:08:e0:f2:70:20:fb:f4:a2:b5:08:42:b9:
ca:73:39:6b:5c:d4:18:e4:ad:65:d0:7b:4d:27:1b:
6e:f4:e8:d9:2d:23:e9:ad:38:93:da:68:20:65:44:
4c:4a:96:2f:ea:72:0d:ec:6a:0e:cf:f3:40:8c:96:
19:0b:74:2d:f0:9e:40:a1:3c:c3:ad:5c:6a:f6:7b:
fd:85:ab:a7:1e:4b:28:37:2f:74:67:13:3d:50:19:
88:12:8b:ad:6e:54:d9:4e:45:fe:61:48:1d:56:dd:
73:c2:32:0f:9c:51:27:a9:2c:90:cd:59:05:11:c2:
fd:22:9b:91:a4:a2:12:27:7a:83:17:f6:b7:e5:d3:
6d:de:6d:fb:91:a5:c7:48:1d:34:12:72:0e:73:b3:
ce:a7:44:65:82:b8:e7:c1:b7:7e:3e:2a:47:70:fe:
5a:12:47:8b:4d:a1:19:9b:da:e0:0b:38:e5:c3:b8:
7b:68:a2:44:f4:b2:36:39:0d:d5:a3:c1:7d:e0:fe:
b2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:72:30:16:0A:E6:DB:4C:F7:1C:52:5B:78:4B:D6:4A:09:C5:3A:9F
X509v3 Authority Key Identifier:
keyid:09:B9:D3:74:50:B6:2A:E3:F1:44:EB:42:AC:52:CE:24:3B:62:8A:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbnTdFC2KuPxROtCrFLOJDtiino.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/O3IwFgrm20z3HFJbeEvWSgnFOp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/CbnTdFC2KuPxROtCrFLOJDtiino.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.19.0/24
Signature Algorithm: sha256WithRSAEncryption
75:01:0a:30:6b:d7:de:74:3f:53:ea:7e:be:8d:9d:71:4b:f8:
29:a6:54:fd:dc:23:3f:88:f5:88:34:33:03:29:a6:37:21:0f:
35:ad:68:77:8e:11:76:92:b4:2e:c7:c0:55:0a:72:50:4c:44:
df:cb:b9:37:5b:19:fd:b6:43:3a:4b:a0:25:18:af:76:c5:ff:
70:af:99:95:f3:e4:3b:6c:16:bf:4e:27:29:4a:48:de:5f:8d:
5f:eb:8b:c6:aa:9e:f8:f9:58:57:ca:f9:d3:38:3e:60:47:03:
92:69:82:a1:2d:c0:1a:82:5d:ba:84:9a:79:d0:ec:cb:8e:1d:
0e:e1:b2:dd:52:ab:f6:20:a6:d2:82:a1:28:fc:06:e8:b1:22:
bc:60:e1:50:df:01:3e:59:0d:3e:3c:89:f1:5d:39:b8:aa:43:
fd:2f:a3:c0:c3:b7:92:c0:6f:37:fe:6e:64:d6:ff:a4:79:ff:
5c:49:ff:38:ba:87:7f:0d:8f:3b:b1:68:74:dd:5b:d5:ff:bb:
68:04:85:32:d4:a0:01:30:62:d1:c2:a9:dc:08:22:d8:e7:48:
a5:66:be:98:ea:1a:90:40:9c:c9:d1:26:a5:87:65:74:3c:ad:
4f:53:e3:8d:ad:05:05:e9:16:8d:9d:62:dc:07:7a:9f:a6:ae:
ea:61:68:f4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXVzPWBAbi0kEfyKoUt8ZPLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5YjlkMzc0NTBiNjJhZTNmMTQ0ZWI0MmFjNTJjZTI0M2I2
MjhhN2EwHhcNMjMwMTIxMTkyNzM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjcyMzAxNjBhZTZkYjRjZjcxYzUyNWI3ODRiZDY0YTA5YzUzYTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTe0Y6BNjcps4LCiA/g4ufzBPJFD
hLfxW1Ea1RTxlz22n19yUdFmxfLDoA52pwBthOF5YqLixbUgvn6Aj/0I4PJwIPv0
orUIQrnKczlrXNQY5K1l0HtNJxtu9OjZLSPprTiT2mggZURMSpYv6nIN7GoOz/NA
jJYZC3Qt8J5AoTzDrVxq9nv9haunHksoNy90ZxM9UBmIEoutblTZTkX+YUgdVt1z
wjIPnFEnqSyQzVkFEcL9IpuRpKISJ3qDF/a35dNt3m37kaXHSB00EnIOc7POp0Rl
grjnwbd+PipHcP5aEkeLTaEZm9rgCzjlw7h7aKJE9LI2OQ3Vo8F94P6yewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDtyMBYK5ttM9xxSW3hL1koJxTqfMB8GA1UdIwQY
MBaAFAm503RQtirj8UTrQqxSziQ7Yop6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2JuVGRGQzJLdVB4Uk90Q3JGTE9KRHRpaW5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9lNWMwYjYtODc4OC00YmI5LWI4ODUt
M2ZiZmI5NGQ5MTAwLzEvTzNJd0Zncm0yMHozSEZKYmVFdldTZ25GT3A4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC9lNWMwYjYtODc4OC00YmI5LWI4ODUtM2ZiZmI5NGQ5MTAw
LzEvQ2JuVGRGQzJLdVB4Uk90Q3JGTE9KRHRpaW5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZYTMA0G
CSqGSIb3DQEBCwUAA4IBAQB1AQowa9fedD9T6n6+jZ1xS/gpplT93CM/iPWINDMD
KaY3IQ81rWh3jhF2krQux8BVCnJQTETfy7k3Wxn9tkM6S6AlGK92xf9wr5mV8+Q7
bBa/TicpSkjeX41f64vGqp74+VhXyvnTOD5gRwOSaYKhLcAagl26hJp50OzLjh0O
4bLdUqv2IKbSgqEo/AbosSK8YOFQ3wE+WQ0+PInxXTm4qkP9L6PAw7eSwG83/m5k
1v+kef9cSf84uod/DY87sWh03VvV/7toBIUy1KABMGLRwqncCCLY50ilZr6Y6hqQ
QJzJ0Salh2V0PK1PU+ONrQUF6RaNnWLcB3qfpq7qYWj0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:46 2024 by rpki-client on console-ams.rpki-client.org