Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/307bca-8089-4b71-bf5f-41e5583e3974/1/GCT9dLjU1Ba3O-KFwywtVuoOJ34.roa
File: GCT9dLjU1Ba3O-KFwywtVuoOJ34.roa (raw, json)
Hash identifier: Vezqy8Z1JTL0h+qnBkdimkT9YSQmLOPHbaYyVGMCp3g=
Subject key identifier: 18:24:FD:74:B8:D4:D4:16:B7:3B:E2:85:C3:2C:2D:56:EA:0E:27:7E
Certificate issuer: /CN=8763cce8a03b1609835c0d45b101779250a4304d
Certificate serial: 14A14404
Authority key identifier: 87:63:CC:E8:A0:3B:16:09:83:5C:0D:45:B1:01:77:92:50:A4:30:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h2PM6KA7FgmDXA1FsQF3klCkME0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/307bca-8089-4b71-bf5f-41e5583e3974/1/GCT9dLjU1Ba3O-KFwywtVuoOJ34.roa
Signing time: Sat 01 Jan 2022 12:54:55 +0000
ROA not before: Sat 01 Jan 2022 12:54:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20832
IP address blocks: 185.109.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 346113028 (0x14a14404)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8763cce8a03b1609835c0d45b101779250a4304d
Validity
Not Before: Jan 1 12:54:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1824fd74b8d4d416b73be285c32c2d56ea0e277e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:dc:d4:85:59:bc:df:73:68:ec:17:e2:77:e3:
cb:4d:d0:2f:45:16:68:1b:38:72:dc:3b:25:93:3a:
4c:37:8a:1b:2f:52:b5:cd:40:95:fa:9b:cc:c4:c1:
7b:9f:bd:7c:95:38:fe:e1:46:1e:40:96:50:51:68:
c7:5f:1c:10:34:05:2f:58:24:0f:be:d8:c2:bf:02:
fd:e3:f1:8a:e6:b7:8d:48:ee:8b:ac:fa:50:70:0f:
1f:05:73:88:29:6f:b7:b1:69:7f:62:c8:8f:c9:2a:
f6:a5:44:b2:33:f5:fb:55:20:6b:dd:08:80:27:0c:
11:8a:a3:3d:cd:94:0b:9c:9c:e1:75:58:bf:3c:64:
7b:be:37:12:4d:d6:b6:cf:9f:43:84:55:b9:06:8c:
52:43:93:85:24:a5:20:94:f9:9b:36:1a:6a:e6:cd:
c0:53:de:5f:58:bf:a8:96:48:fd:a2:5d:ef:a7:e3:
fa:be:97:83:0d:9c:41:c2:a4:50:75:63:da:d4:5f:
0e:88:1f:1d:68:66:39:bb:08:0e:c1:c6:ba:1e:ce:
60:18:10:42:4b:dd:b6:51:61:ef:29:ce:41:43:38:
ab:f3:ee:e7:36:13:0d:8b:55:f6:92:fe:ac:ab:e9:
c3:a0:61:aa:40:1d:32:ee:47:a9:ee:eb:6f:cf:11:
a9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:24:FD:74:B8:D4:D4:16:B7:3B:E2:85:C3:2C:2D:56:EA:0E:27:7E
X509v3 Authority Key Identifier:
keyid:87:63:CC:E8:A0:3B:16:09:83:5C:0D:45:B1:01:77:92:50:A4:30:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h2PM6KA7FgmDXA1FsQF3klCkME0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/307bca-8089-4b71-bf5f-41e5583e3974/1/GCT9dLjU1Ba3O-KFwywtVuoOJ34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/307bca-8089-4b71-bf5f-41e5583e3974/1/h2PM6KA7FgmDXA1FsQF3klCkME0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.104.0/22
Signature Algorithm: sha256WithRSAEncryption
22:ff:34:83:6f:6a:ac:ca:d9:3c:5b:1f:18:55:17:3c:f9:9b:
77:a6:77:fa:5f:1f:ac:37:ea:9d:2a:09:c3:36:5a:71:9b:f1:
df:66:b7:04:d4:74:ca:14:df:ee:a1:88:69:fd:c4:56:1e:62:
74:b2:3c:0f:94:3c:ff:8c:cf:c5:c7:58:14:25:0f:f9:db:34:
5b:87:d2:31:ba:c6:af:47:94:84:d2:ac:01:33:50:8a:c4:66:
a9:22:4b:cc:41:6b:73:9e:43:d3:f4:b6:05:32:ab:fb:e4:34:
26:c2:ea:e3:dd:bf:e3:77:66:1b:01:85:de:f3:8f:a4:94:45:
52:7d:fe:5c:d5:8d:99:75:c3:d6:ac:af:b5:bf:9c:58:0c:5a:
8d:a4:17:47:b2:3d:14:0d:08:5c:e8:d5:ae:05:08:f4:31:07:
59:0f:e4:0a:3b:e0:47:e6:e5:98:aa:c8:d8:9a:52:e3:d9:09:
95:d2:7a:31:af:8f:4f:cc:ae:cf:59:24:f9:87:9b:c4:39:af:
93:c9:7d:f9:eb:6c:a3:fb:f5:5d:81:85:93:13:73:60:8e:f7:
ac:a0:39:72:6f:58:34:f6:3b:4e:d1:81:4f:60:17:65:48:31:
24:e7:bd:ff:f5:71:3a:16:14:5a:bb:af:f1:1c:23:b1:f4:67:
7a:e4:25:49
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFKFEBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NzYzY2NlOGEwM2IxNjA5ODM1YzBkNDViMTAxNzc5MjUwYTQzMDRkMB4XDTIyMDEw
MTEyNTQ1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTgyNGZkNzRiOGQ0
ZDQxNmI3M2JlMjg1YzMyYzJkNTZlYTBlMjc3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJbc1IVZvN9zaOwX4nfjy03QL0UWaBs4ctw7JZM6TDeKGy9S
tc1AlfqbzMTBe5+9fJU4/uFGHkCWUFFox18cEDQFL1gkD77Ywr8C/ePxiua3jUju
i6z6UHAPHwVziClvt7Fpf2LIj8kq9qVEsjP1+1Uga90IgCcMEYqjPc2UC5yc4XVY
vzxke743Ek3Wts+fQ4RVuQaMUkOThSSlIJT5mzYaaubNwFPeX1i/qJZI/aJd76fj
+r6Xgw2cQcKkUHVj2tRfDogfHWhmObsIDsHGuh7OYBgQQkvdtlFh7ynOQUM4q/Pu
5zYTDYtV9pL+rKvpw6BhqkAdMu5Hqe7rb88RqdUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQYJP10uNTUFrc74oXDLC1W6g4nfjAfBgNVHSMEGDAWgBSHY8zooDsWCYNc
DUWxAXeSUKQwTTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2gyUE02S0E3RmdtRFhBMUZzUUYza2xDa01FMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvMzA3YmNhLTgwODktNGI3MS1iZjVmLTQxZTU1ODNlMzk3NC8x
L0dDVDlkTGpVMUJhM08tS0Z3eXd0VnVvT0ozNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
MzA3YmNhLTgwODktNGI3MS1iZjVmLTQxZTU1ODNlMzk3NC8xL2gyUE02S0E3Rmdt
RFhBMUZzUUYza2xDa01FMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArltaDANBgkqhkiG9w0BAQsFAAOC
AQEAIv80g29qrMrZPFsfGFUXPPmbd6Z3+l8frDfqnSoJwzZacZvx32a3BNR0yhTf
7qGIaf3EVh5idLI8D5Q8/4zPxcdYFCUP+ds0W4fSMbrGr0eUhNKsATNQisRmqSJL
zEFrc55D0/S2BTKr++Q0JsLq492/43dmGwGF3vOPpJRFUn3+XNWNmXXD1qyvtb+c
WAxajaQXR7I9FA0IXOjVrgUI9DEHWQ/kCjvgR+blmKrI2JpS49kJldJ6Ma+PT8yu
z1kk+YebxDmvk8l9+etso/v1XYGFkxNzYI73rKA5cm9YNPY7TtGBT2AXZUgxJOe9
//VxOhYUWruv8RwjsfRneuQlSQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org