Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/343037-4550-469d-82fd-4f5588947a4a/1/7NJaRX6O6v5HeUz3LPaRXyzaQuY.roa
File: 7NJaRX6O6v5HeUz3LPaRXyzaQuY.roa (raw, json)
Hash identifier: c1qDX0iR44/Co9gtVWzZOyQAOAHOlkIoK3KdqhLwRTs=
Subject key identifier: EC:D2:5A:45:7E:8E:EA:FE:47:79:4C:F7:2C:F6:91:5F:2C:DA:42:E6
Certificate issuer: /CN=0a5d1db3c874be28298a68812caa24b1b43e03c9
Certificate serial: 0185DF48F00DC87D091BF266A30A76BD1243
Authority key identifier: 0A:5D:1D:B3:C8:74:BE:28:29:8A:68:81:2C:AA:24:B1:B4:3E:03:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cl0ds8h0vigpimiBLKoksbQ-A8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/343037-4550-469d-82fd-4f5588947a4a/1/7NJaRX6O6v5HeUz3LPaRXyzaQuY.roa
Signing time: Mon 23 Jan 2023 15:39:37 +0000
ROA not before: Mon 23 Jan 2023 15:39:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59569
IP address blocks: 109.205.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:df:48:f0:0d:c8:7d:09:1b:f2:66:a3:0a:76:bd:12:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a5d1db3c874be28298a68812caa24b1b43e03c9
Validity
Not Before: Jan 23 15:39:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecd25a457e8eeafe47794cf72cf6915f2cda42e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:86:b9:f2:01:f1:5d:c9:5a:97:71:c3:ea:ae:
2f:98:2c:ed:ee:e3:4c:74:9d:df:50:ca:cf:2c:99:
94:83:44:e0:e6:6f:47:b8:10:1c:b8:ba:d1:c1:83:
88:d9:25:95:44:90:42:fb:90:60:da:d1:1f:a4:53:
22:41:09:a5:70:79:63:08:55:81:a4:b0:d4:c1:9e:
00:46:98:99:cd:e6:42:3a:1a:2b:87:78:92:c9:88:
f1:72:cd:47:47:07:ca:df:5c:a4:82:c8:f9:77:4f:
1f:cd:52:59:73:79:fb:59:e5:43:09:68:e0:7a:1c:
50:b6:ea:d1:01:13:d9:fe:d3:b5:67:68:39:5d:a2:
86:47:3e:36:ce:6b:ef:d1:bf:ec:f1:71:04:e1:01:
66:00:05:41:b7:ef:7d:15:4a:0b:28:e2:7b:86:97:
cf:45:b6:2f:cd:2c:3f:42:73:85:7c:56:ee:ad:07:
7d:f9:52:ec:48:31:d3:18:f2:cb:23:45:01:6a:b1:
a1:af:6f:73:93:ad:0c:7d:74:76:05:c6:05:67:df:
08:32:f0:5b:1d:86:98:22:84:9b:67:8a:45:6d:d6:
18:a7:f9:0b:fd:aa:ff:f8:ce:38:0d:70:19:55:17:
ea:b4:73:4a:00:63:4d:d6:ef:3a:f4:1d:6f:49:67:
9d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D2:5A:45:7E:8E:EA:FE:47:79:4C:F7:2C:F6:91:5F:2C:DA:42:E6
X509v3 Authority Key Identifier:
keyid:0A:5D:1D:B3:C8:74:BE:28:29:8A:68:81:2C:AA:24:B1:B4:3E:03:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cl0ds8h0vigpimiBLKoksbQ-A8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/343037-4550-469d-82fd-4f5588947a4a/1/7NJaRX6O6v5HeUz3LPaRXyzaQuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/343037-4550-469d-82fd-4f5588947a4a/1/Cl0ds8h0vigpimiBLKoksbQ-A8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.57.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:46:e5:cc:de:30:6b:8f:ec:58:cf:2a:84:da:3e:d8:00:c6:
0c:79:69:31:0d:18:9d:12:66:2f:4e:98:14:e5:41:90:28:ff:
8c:3f:1e:99:98:1d:ce:60:cd:b4:d0:cc:c8:7c:11:25:17:30:
77:5c:e9:a8:28:63:81:b3:ad:84:c7:ac:b6:7e:77:1f:09:0d:
68:fc:78:2d:c3:17:dd:35:b3:27:90:50:81:be:2b:b3:44:5e:
ae:98:3e:88:62:33:a6:48:f1:b4:eb:9f:22:9a:db:52:23:c8:
92:84:aa:f6:f2:a1:ba:a7:1d:66:f7:a9:de:a3:79:f6:df:63:
21:f9:33:3a:a3:12:47:e7:fb:d1:ec:50:8a:5a:fb:31:4d:7c:
5b:3e:d1:0d:a3:9f:52:c1:12:f4:78:59:a8:61:59:4b:3e:4f:
f0:17:61:e3:a8:6c:fb:7e:6c:bc:cc:62:48:92:8c:e6:6b:c0:
75:f2:16:6b:79:af:58:ed:80:9f:3e:37:30:4c:f2:82:69:e2:
d9:19:79:f2:14:06:04:97:8c:eb:74:c0:71:33:70:7c:70:a4:
29:f9:81:98:5c:e8:68:3e:06:85:fc:06:28:a8:c0:98:60:86:
9d:a1:70:22:c0:5c:67:77:88:2e:8c:08:5e:39:81:8e:c2:30:
dc:10:84:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXfSPANyH0JG/Jmowp2vRJDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhNWQxZGIzYzg3NGJlMjgyOThhNjg4MTJjYWEyNGIxYjQz
ZTAzYzkwHhcNMjMwMTIzMTUzOTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlY2QyNWE0NTdlOGVlYWZlNDc3OTRjZjcyY2Y2OTE1ZjJjZGE0MmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmoa58gHxXclal3HD6q4vmCzt7uNM
dJ3fUMrPLJmUg0Tg5m9HuBAcuLrRwYOI2SWVRJBC+5Bg2tEfpFMiQQmlcHljCFWB
pLDUwZ4ARpiZzeZCOhorh3iSyYjxcs1HRwfK31ykgsj5d08fzVJZc3n7WeVDCWjg
ehxQturRARPZ/tO1Z2g5XaKGRz42zmvv0b/s8XEE4QFmAAVBt+99FUoLKOJ7hpfP
RbYvzSw/QnOFfFburQd9+VLsSDHTGPLLI0UBarGhr29zk60MfXR2BcYFZ98IMvBb
HYaYIoSbZ4pFbdYYp/kL/ar/+M44DXAZVRfqtHNKAGNN1u869B1vSWedqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOzSWkV+jur+R3lM9yz2kV8s2kLmMB8GA1UdIwQY
MBaAFApdHbPIdL4oKYpogSyqJLG0PgPJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2wwZHM4aDB2aWdwaW1pQkxLb2tzYlEtQThrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8zNDMwMzctNDU1MC00NjlkLTgyZmQt
NGY1NTg4OTQ3YTRhLzEvN05KYVJYNk82djVIZVV6M0xQYVJYeXphUXVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8zNDMwMzctNDU1MC00NjlkLTgyZmQtNGY1NTg4OTQ3YTRh
LzEvQ2wwZHM4aDB2aWdwaW1pQkxLb2tzYlEtQThrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbc05MA0G
CSqGSIb3DQEBCwUAA4IBAQCoRuXM3jBrj+xYzyqE2j7YAMYMeWkxDRidEmYvTpgU
5UGQKP+MPx6ZmB3OYM200MzIfBElFzB3XOmoKGOBs62Ex6y2fncfCQ1o/Hgtwxfd
NbMnkFCBviuzRF6umD6IYjOmSPG0658imttSI8iShKr28qG6px1m96neo3n232Mh
+TM6oxJH5/vR7FCKWvsxTXxbPtENo59SwRL0eFmoYVlLPk/wF2HjqGz7fmy8zGJI
kozma8B18hZrea9Y7YCfPjcwTPKCaeLZGXnyFAYEl4zrdMBxM3B8cKQp+YGYXOho
PgaF/AYoqMCYYIadoXAiwFxnd4gujAheOYGOwjDcEIQ2
-----END CERTIFICATE-----
Generated at Mon Sep 11 08:01:27 2023 by rpki-client on console-fra.rpki-client.org