Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/gOsUXt6fRHM834bZ4fQtE16q7Ms.roa
File: gOsUXt6fRHM834bZ4fQtE16q7Ms.roa (raw, json)
Hash identifier: K0Yj2m1HMdVJX7YSNQuusA3i+PBsD5QigbtFZSoLI0U=
Subject key identifier: 80:EB:14:5E:DE:9F:44:73:3C:DF:86:D9:E1:F4:2D:13:5E:AA:EC:CB
Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Certificate serial: 018D63E8795ED12A685B659E04C5CD837352
Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/gOsUXt6fRHM834bZ4fQtE16q7Ms.roa
Signing time: Thu 01 Feb 2024 09:03:16 +0000
ROA not before: Thu 01 Feb 2024 09:03:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3220
IP address blocks: 82.206.2.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:63:e8:79:5e:d1:2a:68:5b:65:9e:04:c5:cd:83:73:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Validity
Not Before: Feb 1 09:03:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80eb145ede9f44733cdf86d9e1f42d135eaaeccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e6:0b:b9:80:38:20:f6:c7:e7:75:b2:77:3a:
85:92:a8:18:da:e3:f7:58:5d:42:0f:37:87:6e:89:
ba:80:f3:2b:be:f0:c1:6d:5e:36:88:16:b5:07:72:
97:7c:dd:01:4b:88:21:fe:49:69:44:14:fb:f5:e2:
33:4c:23:87:df:34:b3:92:2f:b8:81:ce:04:45:a5:
02:21:79:cc:29:41:65:2f:4d:7d:38:3d:c7:ed:d4:
d8:e8:a9:f1:78:af:2f:12:6d:65:0d:e8:ef:8b:57:
c6:16:57:d8:ff:fb:97:cc:dd:5e:36:a8:8e:f2:27:
2c:c2:48:89:87:4f:97:92:44:a3:c1:da:59:18:82:
b0:9d:b8:7b:43:5b:12:1c:cf:4e:d5:9c:1b:ae:1b:
86:13:0d:57:d5:a1:83:5c:33:a9:c7:3e:41:81:58:
e1:b8:30:1c:25:dc:fc:d4:7f:34:27:b6:04:b0:9d:
0d:50:50:17:98:82:10:32:a3:7c:a4:11:86:11:8b:
7b:f4:26:f2:bb:eb:43:16:73:21:05:20:6a:01:13:
39:6f:b9:da:83:1f:1c:ca:09:db:c2:54:2b:c6:45:
4f:18:90:37:b2:f4:c6:6e:c8:76:95:62:46:04:b6:
b8:8d:46:fe:6a:ba:ca:52:bc:64:65:d7:94:08:5f:
da:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:EB:14:5E:DE:9F:44:73:3C:DF:86:D9:E1:F4:2D:13:5E:AA:EC:CB
X509v3 Authority Key Identifier:
keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/gOsUXt6fRHM834bZ4fQtE16q7Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.206.2.0/23
Signature Algorithm: sha256WithRSAEncryption
51:46:4f:e8:7c:f8:b1:76:b1:48:36:13:44:5d:17:d5:70:2a:
09:8d:ca:b1:51:53:c3:c1:05:58:51:24:32:0e:ab:9b:f6:99:
23:34:f5:7d:9e:c8:56:89:9b:bc:2a:cc:48:e2:ab:f8:11:33:
5f:95:cb:92:66:e4:c3:cb:39:bc:7d:db:c3:bf:6b:24:4c:32:
f9:47:bd:4d:64:0a:e3:ad:d2:6b:fb:1d:ce:1c:08:e4:da:31:
1e:15:9b:fc:7a:40:4a:e6:64:db:25:e6:0b:5e:66:a0:ae:8d:
1e:0e:a4:ad:f5:a9:43:46:05:18:70:32:3c:56:f2:de:81:b5:
61:52:2d:38:da:20:75:7c:0e:59:32:38:d7:72:42:4c:78:e0:
1b:41:44:5b:b8:1d:3e:cc:69:db:7e:1f:3a:d7:da:c0:61:45:
5b:ce:d5:59:ae:62:4d:45:0a:54:79:a8:4d:8a:78:98:c2:96:
80:8a:9d:05:7e:78:42:cd:42:98:b7:ad:69:c2:c4:b9:6e:8e:
d0:6b:45:c2:fc:ad:c1:47:d7:b7:fb:53:d5:66:d0:13:b4:67:
77:97:ce:05:e7:f5:c6:af:34:44:a3:3c:5c:fc:f8:19:35:ca:
ec:51:1e:2e:ab:54:b3:2c:2e:13:c7:e2:ee:03:4f:ab:e1:b1:
14:92:d8:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1j6Hle0SpoW2WeBMXNg3NSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3OTkxNDBiNDJkYjZjYjZiZjhjNmRkNDEzNzQ3ZmNmNGE2
ZmQ5YjUwHhcNMjQwMjAxMDkwMzE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGViMTQ1ZWRlOWY0NDczM2NkZjg2ZDllMWY0MmQxMzVlYWFlY2NiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOYLuYA4IPbH53WydzqFkqgY2uP3
WF1CDzeHbom6gPMrvvDBbV42iBa1B3KXfN0BS4gh/klpRBT79eIzTCOH3zSzki+4
gc4ERaUCIXnMKUFlL019OD3H7dTY6KnxeK8vEm1lDejvi1fGFlfY//uXzN1eNqiO
8icswkiJh0+XkkSjwdpZGIKwnbh7Q1sSHM9O1ZwbrhuGEw1X1aGDXDOpxz5BgVjh
uDAcJdz81H80J7YEsJ0NUFAXmIIQMqN8pBGGEYt79Cbyu+tDFnMhBSBqARM5b7na
gx8cygnbwlQrxkVPGJA3svTGbsh2lWJGBLa4jUb+arrKUrxkZdeUCF/aZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIDrFF7en0RzPN+G2eH0LRNequzLMB8GA1UdIwQY
MBaAFJeZFAtC22y2v4xt1BN0f89Kb9m1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDVrVUMwTGJiTGFfakczVUUzUl96MHB2MmJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS80ZWVmMDMtOTFmZS00NDVhLWE3Y2Qt
NTk1OTE5YmUwZjUyLzEvZ09zVVh0NmZSSE04MzRiWjRmUXRFMTZxN01zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS80ZWVmMDMtOTFmZS00NDVhLWE3Y2QtNTk1OTE5YmUwZjUy
LzEvbDVrVUMwTGJiTGFfakczVUUzUl96MHB2MmJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUs4CMA0G
CSqGSIb3DQEBCwUAA4IBAQBRRk/ofPixdrFINhNEXRfVcCoJjcqxUVPDwQVYUSQy
Dqub9pkjNPV9nshWiZu8KsxI4qv4ETNflcuSZuTDyzm8fdvDv2skTDL5R71NZArj
rdJr+x3OHAjk2jEeFZv8ekBK5mTbJeYLXmagro0eDqSt9alDRgUYcDI8VvLegbVh
Ui042iB1fA5ZMjjXckJMeOAbQURbuB0+zGnbfh8619rAYUVbztVZrmJNRQpUeahN
iniYwpaAip0FfnhCzUKYt61pwsS5bo7Qa0XC/K3BR9e3+1PVZtATtGd3l84F5/XG
rzREozxc/PgZNcrsUR4uq1SzLC4Tx+LuA0+r4bEUktjQ
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:46:05 2025 by rpki-client