Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/d3ed5e-3d25-4fc9-a552-33c93ae6587f/1/5LLrlBgmts49jLS5z4x9UWLGWcQ.roa
File: 5LLrlBgmts49jLS5z4x9UWLGWcQ.roa (raw, json)
Hash identifier: dqEnAqQnOgcKSzRULIBGj9CEPtAIU2elUuBQ6AEre3E=
Subject key identifier: E4:B2:EB:94:18:26:B6:CE:3D:8C:B4:B9:CF:8C:7D:51:62:C6:59:C4
Certificate issuer: /CN=74d7ef44d7019e4a5723a91b1d98fa8fd5d78ed7
Certificate serial: 06C59E1E
Authority key identifier: 74:D7:EF:44:D7:01:9E:4A:57:23:A9:1B:1D:98:FA:8F:D5:D7:8E:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfvRNcBnkpXI6kbHZj6j9XXjtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/d3ed5e-3d25-4fc9-a552-33c93ae6587f/1/5LLrlBgmts49jLS5z4x9UWLGWcQ.roa
Signing time: Sat 01 Jan 2022 02:58:03 +0000
ROA not before: Sat 01 Jan 2022 02:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 192.109.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113614366 (0x6c59e1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d7ef44d7019e4a5723a91b1d98fa8fd5d78ed7
Validity
Not Before: Jan 1 02:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4b2eb941826b6ce3d8cb4b9cf8c7d5162c659c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3c:0c:1f:1b:19:4e:25:6c:c3:1c:77:31:d1:
85:08:e0:84:7f:4f:2a:64:b2:fb:6b:be:ec:c0:5c:
f4:d6:07:6b:86:e3:b4:10:14:30:f8:89:d3:2b:6f:
6c:1d:2e:d7:4d:63:ed:a0:7f:74:96:6e:6c:29:e1:
63:df:4a:d6:bb:93:77:a8:09:fd:bf:be:b8:ee:1c:
27:db:7e:88:ca:b4:79:73:69:c4:44:74:12:02:c7:
4b:93:8a:d3:75:87:d5:ab:60:b2:a4:8f:3d:de:a3:
03:29:98:cd:a8:2a:74:01:e4:a6:71:c2:1d:ac:32:
82:95:13:32:9b:c9:14:ca:10:b1:b0:ec:10:bf:21:
fe:23:07:cf:d4:61:ef:55:0d:c8:b2:3a:92:87:f3:
9d:2a:dc:a9:74:97:8e:77:9d:60:65:e5:f1:54:8a:
59:b4:d9:3c:3a:fa:01:f9:c5:19:64:8c:f0:d3:45:
59:2a:22:de:a1:4d:c6:19:45:df:bf:8d:6d:f7:cb:
1b:6d:f4:72:2b:b7:95:90:41:56:6c:55:03:31:21:
0e:9d:d2:3f:e7:ff:21:98:1d:86:5c:20:9f:a4:eb:
f4:a0:8a:07:a9:dd:16:09:bb:24:ca:0b:83:b0:dd:
f2:10:8a:69:71:6d:16:83:7b:dc:74:ca:aa:68:45:
38:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B2:EB:94:18:26:B6:CE:3D:8C:B4:B9:CF:8C:7D:51:62:C6:59:C4
X509v3 Authority Key Identifier:
keyid:74:D7:EF:44:D7:01:9E:4A:57:23:A9:1B:1D:98:FA:8F:D5:D7:8E:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfvRNcBnkpXI6kbHZj6j9XXjtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/d3ed5e-3d25-4fc9-a552-33c93ae6587f/1/5LLrlBgmts49jLS5z4x9UWLGWcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/d3ed5e-3d25-4fc9-a552-33c93ae6587f/1/dNfvRNcBnkpXI6kbHZj6j9XXjtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.76.0/24
Signature Algorithm: sha256WithRSAEncryption
60:6c:35:f4:7f:cd:a7:76:50:6a:5a:33:19:a8:6a:2a:6e:34:
b9:57:50:e4:88:d5:b8:4c:1e:2f:7f:ec:60:59:ae:f9:f9:61:
ba:91:0f:27:58:34:46:cf:52:66:0e:d9:b3:56:b4:17:0c:67:
b6:77:7a:d1:51:6e:8d:90:61:39:79:76:bc:4d:d4:39:5d:9b:
60:d9:50:3a:b1:e9:b3:71:ad:f4:77:3d:af:e9:5b:2f:04:78:
6c:ad:48:3b:6b:bd:33:5e:38:75:ba:27:4a:2f:96:1f:73:da:
b9:d4:20:18:ab:28:7e:33:4f:77:0d:eb:0c:d1:6c:ab:69:4d:
e3:07:7d:c8:00:60:40:80:94:8d:e6:ad:45:7a:56:9f:b5:cd:
89:9c:1e:5c:52:18:fc:20:93:aa:5b:47:22:cc:02:69:a5:86:
e7:98:0a:fd:aa:ae:07:08:a1:0f:3c:eb:97:9a:2a:93:f9:69:
09:34:56:9e:4f:c6:7b:b7:46:c2:40:e4:e6:12:8d:01:2b:6d:
b1:cc:03:96:62:26:bc:95:1b:a8:9c:79:d3:56:c3:d0:9e:d5:
b6:ad:ae:f6:5e:2d:25:68:9b:4b:ca:90:92:fc:ff:c8:69:3e:
36:4c:5e:b2:45:3c:c8:75:b6:06:9d:50:72:c8:80:df:54:dc:
20:05:3e:2a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBsWeHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NGQ3ZWY0NGQ3MDE5ZTRhNTcyM2E5MWIxZDk4ZmE4ZmQ1ZDc4ZWQ3MB4XDTIyMDEw
MTAyNTgwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTRiMmViOTQxODI2
YjZjZTNkOGNiNGI5Y2Y4YzdkNTE2MmM2NTljNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJQ8DB8bGU4lbMMcdzHRhQjghH9PKmSy+2u+7MBc9NYHa4bj
tBAUMPiJ0ytvbB0u101j7aB/dJZubCnhY99K1ruTd6gJ/b++uO4cJ9t+iMq0eXNp
xER0EgLHS5OK03WH1atgsqSPPd6jAymYzagqdAHkpnHCHawygpUTMpvJFMoQsbDs
EL8h/iMHz9Rh71UNyLI6kofznSrcqXSXjnedYGXl8VSKWbTZPDr6AfnFGWSM8NNF
WSoi3qFNxhlF37+NbffLG230ciu3lZBBVmxVAzEhDp3SP+f/IZgdhlwgn6Tr9KCK
B6ndFgm7JMoLg7Dd8hCKaXFtFoN73HTKqmhFOJUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTksuuUGCa2zj2MtLnPjH1RYsZZxDAfBgNVHSMEGDAWgBR01+9E1wGeSlcj
qRsdmPqP1deO1zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ROZnZSTmNCbmtwWEk2a2JIWmo2ajlYWGp0Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTMvZDNlZDVlLTNkMjUtNGZjOS1hNTUyLTMzYzkzYWU2NTg3Zi8x
LzVMTHJsQmdtdHM0OWpMUzV6NHg5VVdMR1djUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMv
ZDNlZDVlLTNkMjUtNGZjOS1hNTUyLTMzYzkzYWU2NTg3Zi8xL2ROZnZSTmNCbmtw
WEk2a2JIWmo2ajlYWGp0Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBtTDANBgkqhkiG9w0BAQsFAAOC
AQEAYGw19H/Np3ZQalozGahqKm40uVdQ5IjVuEweL3/sYFmu+flhupEPJ1g0Rs9S
Zg7Zs1a0Fwxntnd60VFujZBhOXl2vE3UOV2bYNlQOrHps3Gt9Hc9r+lbLwR4bK1I
O2u9M144dbonSi+WH3PaudQgGKsofjNPdw3rDNFsq2lN4wd9yABgQICUjeatRXpW
n7XNiZweXFIY/CCTqltHIswCaaWG55gK/aquBwihDzzrl5oqk/lpCTRWnk/Ge7dG
wkDk5hKNASttscwDlmImvJUbqJx501bD0J7Vtq2u9l4tJWibS8qQkvz/yGk+Nkxe
skU8yHW2Bp1QcsiA31TcIAU+Kg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:43 2025 by rpki-client