Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/KqSHPYI7mVRiVfVX6hNVqE5xvxg.roa
File: KqSHPYI7mVRiVfVX6hNVqE5xvxg.roa (raw, json)
Hash identifier: 7GiuwxzcdsfUkkk4iKC/jjCmmK77S9lLveQcJBIy3E4=
Subject key identifier: 2A:A4:87:3D:82:3B:99:54:62:55:F5:57:EA:13:55:A8:4E:71:BF:18
Certificate issuer: /CN=d8646e6ccb716e89501958fc86823a98368fb51a
Certificate serial: 0183A07EC6D64032F8E0B370C4142C53F7A6
Authority key identifier: D8:64:6E:6C:CB:71:6E:89:50:19:58:FC:86:82:3A:98:36:8F:B5:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GRubMtxbolQGVj8hoI6mDaPtRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/KqSHPYI7mVRiVfVX6hNVqE5xvxg.roa
Signing time: Tue 04 Oct 2022 00:56:46 +0000
ROA not before: Tue 04 Oct 2022 00:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 89.107.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a0:7e:c6:d6:40:32:f8:e0:b3:70:c4:14:2c:53:f7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8646e6ccb716e89501958fc86823a98368fb51a
Validity
Not Before: Oct 4 00:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2aa4873d823b99546255f557ea1355a84e71bf18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a3:28:43:00:86:3f:55:79:31:9f:02:10:b9:
8f:ac:0e:29:dd:06:af:2a:80:de:1d:d6:ee:4b:b7:
98:54:4b:52:69:76:62:bd:62:dc:b7:50:8d:67:8d:
d8:6a:c5:6f:30:f0:56:56:d7:5f:8b:55:b4:b2:28:
ff:61:0e:7d:31:d7:e3:d0:1b:f8:1b:a1:55:74:2f:
42:26:93:d6:1e:b4:bb:a0:a2:ce:42:a4:d1:b6:1c:
b0:08:fb:53:ad:4e:85:30:28:af:71:db:d5:ce:5b:
56:72:44:3a:85:43:42:1c:02:40:f0:0b:cc:db:1f:
11:04:e2:24:91:e6:ee:2a:6b:00:d6:97:30:89:34:
55:42:10:27:ba:8e:3f:49:1e:82:5d:a4:58:c5:63:
11:f3:ac:1d:b2:77:d3:c1:b2:18:b3:fa:5a:87:47:
cf:d5:87:3e:b0:c1:10:a8:04:c8:9c:69:26:a9:0c:
85:96:ac:b0:04:99:94:8c:36:44:60:b0:79:7f:07:
bc:ac:d0:5f:e5:49:d3:e7:e3:12:f1:53:7f:ca:9b:
92:a4:bb:53:98:21:44:bf:1f:4d:b9:e8:17:ac:a2:
85:bb:8c:ff:49:68:1b:bc:c8:5e:e0:c9:89:d8:dd:
6a:c3:9c:2f:4d:09:da:7e:5b:e3:47:67:ad:6f:b6:
6c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A4:87:3D:82:3B:99:54:62:55:F5:57:EA:13:55:A8:4E:71:BF:18
X509v3 Authority Key Identifier:
keyid:D8:64:6E:6C:CB:71:6E:89:50:19:58:FC:86:82:3A:98:36:8F:B5:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GRubMtxbolQGVj8hoI6mDaPtRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/KqSHPYI7mVRiVfVX6hNVqE5xvxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/2GRubMtxbolQGVj8hoI6mDaPtRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.9.0/24
Signature Algorithm: sha256WithRSAEncryption
30:70:18:bf:24:39:70:87:39:54:13:ce:23:ae:5e:7e:c9:69:
8b:8c:70:54:e0:af:15:0c:c9:3d:ae:96:85:e5:bf:d0:a6:e9:
8b:9f:21:f3:9f:bc:66:4c:de:3f:f1:43:ac:c7:38:4e:e8:3b:
52:91:17:40:46:10:1e:83:aa:f0:b8:dd:0a:67:01:52:bd:9a:
cc:47:48:0d:fc:74:58:40:13:b5:f8:92:78:73:08:fa:32:a5:
0f:e4:4c:ef:20:33:d7:67:bb:28:30:9d:fb:11:dc:53:33:52:
4b:da:bd:af:51:96:9f:57:aa:44:6c:db:4c:5f:3f:c3:ab:b7:
e9:c5:b8:8f:04:40:b1:31:6d:2b:20:d0:58:6f:63:f8:37:93:
a0:72:11:2f:33:90:29:b8:cb:e6:9d:15:2a:42:bf:53:99:cd:
43:e3:c8:9f:14:21:f4:fe:51:4a:2d:6a:fe:97:86:b2:be:61:
92:49:a3:12:3e:11:a5:d7:74:5f:5d:7a:d4:f6:1c:e7:0d:12:
4c:2f:6b:63:86:da:8e:e1:54:aa:a1:94:18:5c:21:80:03:83:
21:2a:f2:37:7c:af:84:03:89:fc:29:72:f1:37:fa:b1:0e:94:
15:e0:79:24:81:22:8f:bf:df:92:1f:f9:7a:af:5f:ba:8c:46:
fc:fe:9d:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOgfsbWQDL44LNwxBQsU/emMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NjQ2ZTZjY2I3MTZlODk1MDE5NThmYzg2ODIzYTk4MzY4
ZmI1MWEwHhcNMjIxMDA0MDA1NjQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYWE0ODczZDgyM2I5OTU0NjI1NWY1NTdlYTEzNTVhODRlNzFiZjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqMoQwCGP1V5MZ8CELmPrA4p3Qav
KoDeHdbuS7eYVEtSaXZivWLct1CNZ43YasVvMPBWVtdfi1W0sij/YQ59Mdfj0Bv4
G6FVdC9CJpPWHrS7oKLOQqTRthywCPtTrU6FMCivcdvVzltWckQ6hUNCHAJA8AvM
2x8RBOIkkebuKmsA1pcwiTRVQhAnuo4/SR6CXaRYxWMR86wdsnfTwbIYs/pah0fP
1Yc+sMEQqATInGkmqQyFlqywBJmUjDZEYLB5fwe8rNBf5UnT5+MS8VN/ypuSpLtT
mCFEvx9NuegXrKKFu4z/SWgbvMhe4MmJ2N1qw5wvTQnaflvjR2etb7ZsbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCqkhz2CO5lUYlX1V+oTVahOcb8YMB8GA1UdIwQY
MBaAFNhkbmzLcW6JUBlY/IaCOpg2j7UaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkdSdWJNdHhib2xRR1ZqOGhvSTZtRGFQdFJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS84MzcwNDItNTcyZi00ODg0LTg2ZmMt
ZDg2MDNiNGVlMzliLzEvS3FTSFBZSTdtVlJpVmZWWDZoTlZxRTV4dnhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS84MzcwNDItNTcyZi00ODg0LTg2ZmMtZDg2MDNiNGVlMzli
LzEvMkdSdWJNdHhib2xRR1ZqOGhvSTZtRGFQdFJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWWsJMA0G
CSqGSIb3DQEBCwUAA4IBAQAwcBi/JDlwhzlUE84jrl5+yWmLjHBU4K8VDMk9rpaF
5b/QpumLnyHzn7xmTN4/8UOsxzhO6DtSkRdARhAeg6rwuN0KZwFSvZrMR0gN/HRY
QBO1+JJ4cwj6MqUP5EzvIDPXZ7soMJ37EdxTM1JL2r2vUZafV6pEbNtMXz/Dq7fp
xbiPBECxMW0rINBYb2P4N5OgchEvM5ApuMvmnRUqQr9Tmc1D48ifFCH0/lFKLWr+
l4ayvmGSSaMSPhGl13RfXXrU9hznDRJML2tjhtqO4VSqoZQYXCGAA4MhKvI3fK+E
A4n8KXLxN/qxDpQV4HkkgSKPv9+SH/l6r1+6jEb8/p3Z
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:32 2023 by rpki-client on console-ams.rpki-client.org