Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/3d9631-e932-4733-acec-c85329283a5a/1/M9CwfbDWkx72PgGOjYmkQxLu0hA.roa
File: M9CwfbDWkx72PgGOjYmkQxLu0hA.roa (raw, json)
Hash identifier: 0eExHE/De636x//Gl7/lYpSzKFcpReyahSNEXXv7wWc=
Subject key identifier: 33:D0:B0:7D:B0:D6:93:1E:F6:3E:01:8E:8D:89:A4:43:12:EE:D2:10
Certificate issuer: /CN=f82a5cd6dd85d2ccd89cd14f05c8f7cc0e7dbb69
Certificate serial: 018CC86F913782185EA03F6A4439237C5854
Authority key identifier: F8:2A:5C:D6:DD:85:D2:CC:D8:9C:D1:4F:05:C8:F7:CC:0E:7D:BB:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Cpc1t2F0szYnNFPBcj3zA59u2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/3d9631-e932-4733-acec-c85329283a5a/1/M9CwfbDWkx72PgGOjYmkQxLu0hA.roa
Signing time: Tue 02 Jan 2024 04:30:03 +0000
ROA not before: Tue 02 Jan 2024 04:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41171
IP address blocks: 194.26.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:91:37:82:18:5e:a0:3f:6a:44:39:23:7c:58:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f82a5cd6dd85d2ccd89cd14f05c8f7cc0e7dbb69
Validity
Not Before: Jan 2 04:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33d0b07db0d6931ef63e018e8d89a44312eed210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:38:7d:6c:2c:86:be:22:c8:a4:48:47:1e:3f:
ca:ab:b1:00:24:4d:d9:f6:1e:4b:c8:4d:77:54:2d:
86:e4:a3:45:ed:0b:fb:1b:c2:31:43:f2:34:01:92:
b0:03:d2:59:7f:81:e1:f1:39:a2:09:ce:22:ad:73:
a2:64:58:7f:aa:df:91:ea:5d:07:eb:74:05:ac:23:
f1:fe:7f:30:1c:1b:07:2e:4c:38:ab:a1:4a:71:ed:
76:d6:8c:fa:b3:5d:18:1c:60:24:26:ce:17:76:9f:
56:e5:e0:33:56:6c:10:11:58:95:37:65:2b:f4:3c:
a6:bf:28:49:50:44:aa:69:37:21:6d:89:da:ea:96:
75:c1:ad:cd:01:be:7d:5e:e9:7a:07:1d:6b:e1:58:
86:b3:02:5d:9e:6a:8a:a0:3f:f4:a4:41:c0:e5:b5:
62:e2:c9:ac:bb:62:5e:7d:04:7d:cf:c8:77:04:6a:
05:b5:95:f5:c9:f2:99:ab:90:cc:96:5a:05:88:b9:
62:4c:74:46:47:df:48:b4:df:ac:81:e9:f5:14:50:
42:21:10:e2:9a:24:f4:c8:0f:bc:18:cb:d1:37:02:
ad:af:16:5b:e8:24:8d:de:c9:0e:53:b2:7a:99:5b:
7a:05:d4:6b:d0:cd:6a:63:25:9d:ff:bc:04:77:52:
29:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D0:B0:7D:B0:D6:93:1E:F6:3E:01:8E:8D:89:A4:43:12:EE:D2:10
X509v3 Authority Key Identifier:
keyid:F8:2A:5C:D6:DD:85:D2:CC:D8:9C:D1:4F:05:C8:F7:CC:0E:7D:BB:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Cpc1t2F0szYnNFPBcj3zA59u2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3d9631-e932-4733-acec-c85329283a5a/1/M9CwfbDWkx72PgGOjYmkQxLu0hA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3d9631-e932-4733-acec-c85329283a5a/1/1-Cpc1t2F0szYnNFPBcj3zA59u2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.218.0/24
Signature Algorithm: sha256WithRSAEncryption
52:f6:47:a7:d0:c2:59:e1:5a:7b:ae:3b:a4:7d:0b:2f:32:56:
6b:31:ba:7d:12:41:74:5e:91:44:1b:27:89:ca:00:93:e5:4e:
21:60:52:21:f1:4b:bd:a2:41:9c:82:fb:33:41:85:1b:ce:8d:
1d:ff:b6:12:70:f2:99:48:f0:d8:7e:0d:6d:d8:63:38:63:ad:
9d:5e:20:92:6b:d9:75:78:bb:ed:85:11:53:9b:2e:77:87:ce:
e3:98:e3:8e:6c:5a:93:ee:75:fb:2c:44:17:43:9d:86:aa:73:
3c:78:aa:15:04:81:0d:b1:8f:1c:b4:80:7d:53:89:77:03:d8:
8d:25:bd:f4:a3:13:e2:6a:e8:3f:73:8d:9a:d2:1a:f6:46:33:
ff:26:24:8a:70:63:a0:88:23:34:2a:53:14:e4:64:9b:44:47:
ae:87:21:d7:08:bd:80:53:94:22:07:52:0d:0d:c3:95:05:73:
f7:c8:ad:fe:ae:a4:f9:13:1b:20:6e:22:85:50:14:ff:74:2a:
be:2d:01:f1:9e:72:c6:ce:9b:46:2c:00:a6:ba:ce:b6:35:07:
28:44:29:77:85:b2:d9:9b:bb:ed:55:a6:e4:38:28:3d:b4:37:
a1:0a:ec:b7:a9:96:f4:f3:01:88:af:6d:b9:51:f1:11:85:b3:
4c:17:73:bd
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYzIb5E3ghheoD9qRDkjfFhUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4MmE1Y2Q2ZGQ4NWQyY2NkODljZDE0ZjA1YzhmN2NjMGU3
ZGJiNjkwHhcNMjQwMTAyMDQzMDAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2QwYjA3ZGIwZDY5MzFlZjYzZTAxOGU4ZDg5YTQ0MzEyZWVkMjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzh9bCyGviLIpEhHHj/Kq7EAJE3Z
9h5LyE13VC2G5KNF7Qv7G8IxQ/I0AZKwA9JZf4Hh8TmiCc4irXOiZFh/qt+R6l0H
63QFrCPx/n8wHBsHLkw4q6FKce121oz6s10YHGAkJs4Xdp9W5eAzVmwQEViVN2Ur
9DymvyhJUESqaTchbYna6pZ1wa3NAb59Xul6Bx1r4ViGswJdnmqKoD/0pEHA5bVi
4smsu2JefQR9z8h3BGoFtZX1yfKZq5DMlloFiLliTHRGR99ItN+sgen1FFBCIRDi
miT0yA+8GMvRNwKtrxZb6CSN3skOU7J6mVt6BdRr0M1qYyWd/7wEd1IpfwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFDPQsH2w1pMe9j4Bjo2JpEMS7tIQMB8GA1UdIwQY
MBaAFPgqXNbdhdLM2JzRTwXI98wOfbtpMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1DcGMxdDJGMHN6WW5ORlBCY2ozekE1OXUyay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvM2Q5NjMxLWU5MzItNDczMy1hY2Vj
LWM4NTMyOTI4M2E1YS8xL005Q3dmYkRXa3g3MlBnR09qWW1rUXhMdTBoQS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTMvM2Q5NjMxLWU5MzItNDczMy1hY2VjLWM4NTMyOTI4M2E1
YS8xLzEtQ3BjMXQyRjBzelluTkZQQmNqM3pBNTl1MmsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADCGtow
DQYJKoZIhvcNAQELBQADggEBAFL2R6fQwlnhWnuuO6R9Cy8yVmsxun0SQXRekUQb
J4nKAJPlTiFgUiHxS72iQZyC+zNBhRvOjR3/thJw8plI8Nh+DW3YYzhjrZ1eIJJr
2XV4u+2FEVObLneHzuOY445sWpPudfssRBdDnYaqczx4qhUEgQ2xjxy0gH1TiXcD
2I0lvfSjE+Jq6D9zjZrSGvZGM/8mJIpwY6CIIzQqUxTkZJtER66HIdcIvYBTlCIH
Ug0Nw5UFc/fIrf6upPkTGyBuIoVQFP90Kr4tAfGecsbOm0YsAKa6zrY1ByhEKXeF
stmbu+1VpuQ4KD20N6EK7LeplvTzAYivbblR8RGFs0wXc70=
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:55 2024 by rpki-client on console-ams.rpki-client.org