Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/mB5psD_4CwwSxo6jajXPWN4k-nY.roa
File: mB5psD_4CwwSxo6jajXPWN4k-nY.roa (raw, json)
Hash identifier: XrwrICQbfNBJ4adbdy1woD+wtWw8twEDnz/lYTODrXg=
Subject key identifier: 98:1E:69:B0:3F:F8:0B:0C:12:C6:8E:A3:6A:35:CF:58:DE:24:FA:76
Certificate issuer: /CN=d8646e6ccb716e89501958fc86823a98368fb51a
Certificate serial: 022E3F3C
Authority key identifier: D8:64:6E:6C:CB:71:6E:89:50:19:58:FC:86:82:3A:98:36:8F:B5:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GRubMtxbolQGVj8hoI6mDaPtRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/mB5psD_4CwwSxo6jajXPWN4k-nY.roa
Signing time: Mon 25 Apr 2022 15:14:24 +0000
ROA not before: Mon 25 Apr 2022 15:14:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 89.107.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36585276 (0x22e3f3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8646e6ccb716e89501958fc86823a98368fb51a
Validity
Not Before: Apr 25 15:14:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=981e69b03ff80b0c12c68ea36a35cf58de24fa76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:21:56:51:ac:d2:b7:c5:cc:cd:10:aa:c4:
53:bf:01:2b:3d:a5:e3:80:fc:16:9a:6e:ad:b0:06:
40:73:62:48:ac:0c:0d:96:12:84:30:71:ee:84:3c:
57:62:ab:09:1e:be:db:c3:68:35:73:4e:67:29:80:
6a:6a:88:5a:0c:a3:a8:ab:b7:1d:cc:43:c6:e1:64:
61:3b:d7:21:a1:1b:8b:08:7c:72:11:fe:ae:04:df:
c1:4d:29:50:45:3a:1a:2d:db:06:ab:0b:32:0b:d5:
f1:74:b0:c5:a5:c2:02:74:bf:b9:77:1d:e2:69:83:
46:65:d6:69:7d:5c:23:3f:bf:4f:ee:5a:e2:4b:c7:
2c:5d:e1:1f:08:05:88:ef:77:02:76:58:00:e6:c0:
28:dc:2b:cc:cd:3e:c7:ef:06:d4:8a:67:a3:ea:37:
34:99:9b:c6:a3:2a:58:2c:69:77:fc:17:66:55:b9:
47:c0:8e:83:c0:62:89:1d:b0:51:43:68:e7:dd:1f:
06:84:02:a7:3b:4d:31:be:37:fd:a6:b3:1c:cd:4a:
79:d6:e9:e8:cc:34:e5:e5:ff:29:2c:95:26:65:96:
90:3f:cb:e8:68:75:4b:f4:98:ae:81:4a:06:7b:65:
57:1c:9f:29:e6:90:5f:62:5e:a2:91:91:d8:b2:8c:
5e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1E:69:B0:3F:F8:0B:0C:12:C6:8E:A3:6A:35:CF:58:DE:24:FA:76
X509v3 Authority Key Identifier:
keyid:D8:64:6E:6C:CB:71:6E:89:50:19:58:FC:86:82:3A:98:36:8F:B5:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GRubMtxbolQGVj8hoI6mDaPtRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/mB5psD_4CwwSxo6jajXPWN4k-nY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/2GRubMtxbolQGVj8hoI6mDaPtRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.9.0/24
Signature Algorithm: sha256WithRSAEncryption
48:35:d0:06:24:ad:9e:f2:0c:3e:64:50:6e:9e:92:1b:09:b3:
b5:88:27:12:63:8f:22:e6:ba:91:60:d7:fe:a1:50:c9:7b:ba:
3e:ca:6a:3d:0a:fb:14:2f:f1:34:5b:fc:6b:b9:59:6e:4c:c1:
63:54:38:db:dc:a9:db:c6:5f:3e:d6:f7:b5:c7:ef:c7:ec:d3:
eb:d2:ee:a1:1f:6f:0e:43:14:ab:05:66:33:f6:32:1a:a7:97:
e6:9d:ee:01:99:1d:01:46:6c:d1:1e:98:d9:a0:a6:35:71:2d:
0e:cb:c5:19:0d:a0:92:6d:50:81:7a:1c:99:87:2f:84:c0:7c:
ea:52:69:03:02:87:5e:7e:3a:24:3f:25:3c:d5:8c:48:3c:56:
44:4e:82:75:ba:a4:f7:d2:57:48:9d:c7:9f:28:ee:59:95:c8:
12:f4:f0:d3:f3:70:63:47:56:83:ba:38:3f:a3:3f:e4:b6:6e:
e0:f7:ec:57:ef:df:ac:6e:c2:b6:6c:fc:8b:81:ad:39:bf:41:
92:ff:01:85:d9:67:bd:0c:d1:ca:35:84:0b:63:dc:58:c3:f0:
7b:34:69:f7:79:98:31:19:dc:66:84:85:5c:82:f0:f5:83:5d:
a9:e9:89:da:ca:14:c8:51:ad:0e:1a:09:dd:cd:f9:19:a0:27:
e2:eb:ed:14
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAi4/PDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ODY0NmU2Y2NiNzE2ZTg5NTAxOTU4ZmM4NjgyM2E5ODM2OGZiNTFhMB4XDTIyMDQy
NTE1MTQyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTgxZTY5YjAzZmY4
MGIwYzEyYzY4ZWEzNmEzNWNmNThkZTI0ZmE3NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKC4IVZRrNK3xczNEKrEU78BKz2l44D8FppurbAGQHNiSKwM
DZYShDBx7oQ8V2KrCR6+28NoNXNOZymAamqIWgyjqKu3HcxDxuFkYTvXIaEbiwh8
chH+rgTfwU0pUEU6Gi3bBqsLMgvV8XSwxaXCAnS/uXcd4mmDRmXWaX1cIz+/T+5a
4kvHLF3hHwgFiO93AnZYAObAKNwrzM0+x+8G1Ipno+o3NJmbxqMqWCxpd/wXZlW5
R8COg8BiiR2wUUNo590fBoQCpztNMb43/aazHM1Kedbp6Mw05eX/KSyVJmWWkD/L
6Gh1S/SYroFKBntlVxyfKeaQX2JeopGR2LKMXt0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSYHmmwP/gLDBLGjqNqNc9Y3iT6djAfBgNVHSMEGDAWgBTYZG5sy3FuiVAZ
WPyGgjqYNo+1GjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJHUnViTXR4Ym9sUUdWajhob0k2bURhUHRSby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvODM3MDQyLTU3MmYtNDg4NC04NmZjLWQ4NjAzYjRlZTM5Yi8x
L21CNXBzRF80Q3d3U3hvNmphalhQV040ay1uWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
ODM3MDQyLTU3MmYtNDg4NC04NmZjLWQ4NjAzYjRlZTM5Yi8xLzJHUnViTXR4Ym9s
UUdWajhob0k2bURhUHRSby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFlrCTANBgkqhkiG9w0BAQsFAAOC
AQEASDXQBiStnvIMPmRQbp6SGwmztYgnEmOPIua6kWDX/qFQyXu6PspqPQr7FC/x
NFv8a7lZbkzBY1Q429yp28ZfPtb3tcfvx+zT69LuoR9vDkMUqwVmM/YyGqeX5p3u
AZkdAUZs0R6Y2aCmNXEtDsvFGQ2gkm1QgXocmYcvhMB86lJpAwKHXn46JD8lPNWM
SDxWRE6Cdbqk99JXSJ3HnyjuWZXIEvTw0/NwY0dWg7o4P6M/5LZu4PfsV+/frG7C
tmz8i4GtOb9Bkv8BhdlnvQzRyjWEC2PcWMPwezRp93mYMRncZoSFXILw9YNdqemJ
2soUyFGtDhoJ3c35GaAn4uvtFA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:47 2023 by rpki-client on console-fra.rpki-client.org