Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/nG9tPplCFEFaYpmibg3caYPE4xk.roa
File: nG9tPplCFEFaYpmibg3caYPE4xk.roa (raw, json)
Hash identifier: ZDHFg+PyNSbKnd9g0yMNpRRpoLkHPvMFxAugIL8x7VQ=
Subject key identifier: 9C:6F:6D:3E:99:42:14:41:5A:62:99:A2:6E:0D:DC:69:83:C4:E3:19
Certificate issuer: /CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Certificate serial: 01857295A19351CBFD6475D8CD5620BDEBB3
Authority key identifier: 3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/nG9tPplCFEFaYpmibg3caYPE4xk.roa
Signing time: Mon 02 Jan 2023 13:04:46 +0000
ROA not before: Mon 02 Jan 2023 13:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211415
IP address blocks: 139.28.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:a1:93:51:cb:fd:64:75:d8:cd:56:20:bd:eb:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Validity
Not Before: Jan 2 13:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c6f6d3e994214415a6299a26e0ddc6983c4e319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1f:ac:e5:c0:4e:cf:fc:74:f2:1a:73:7b:63:
c4:d4:ec:98:3f:26:39:d4:5c:b2:8f:c9:fa:31:cd:
96:a6:fe:cb:f9:9b:b7:3f:24:92:c6:ff:d8:0c:8d:
ed:c6:39:06:43:05:c7:d5:c8:60:bb:f6:8b:34:a7:
32:d9:95:ac:64:1c:72:9f:48:93:a9:b0:ba:76:2f:
d6:5c:80:88:ff:09:9e:43:0d:a2:f1:43:e1:a9:ee:
3b:11:56:21:8e:f6:f6:1d:8d:5f:f9:fb:a6:83:34:
a1:20:63:cd:48:38:6a:82:fb:17:3e:13:97:5d:3b:
84:c5:70:c7:99:a7:31:6c:77:c4:c5:54:38:d0:30:
60:1a:74:a0:27:7b:ee:a0:0e:e8:7b:c0:3c:fe:31:
a6:3d:20:f6:12:e6:cc:98:5f:8d:11:43:c6:a1:55:
28:72:36:19:04:dd:b8:10:a6:ba:f5:21:ba:ab:8e:
6d:5d:4c:e9:a8:b4:89:92:42:42:47:e7:b6:d0:77:
e8:6f:d8:b6:24:7b:98:1c:8c:9a:f5:4e:76:64:79:
d8:dc:82:f8:a8:0a:ed:65:29:07:08:ba:40:c3:33:
82:9b:42:cd:00:5e:04:40:a1:0a:ab:bb:aa:01:54:
1c:c0:70:96:9e:a0:c3:1e:f7:f2:51:e6:49:d7:84:
ee:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6F:6D:3E:99:42:14:41:5A:62:99:A2:6E:0D:DC:69:83:C4:E3:19
X509v3 Authority Key Identifier:
keyid:3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/nG9tPplCFEFaYpmibg3caYPE4xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/OuUa1QQPRQOvxx3FAYnEqWTRzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.25.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:60:ea:20:32:b7:d1:80:9e:fc:7d:a6:7f:a0:90:2a:b9:f5:
ea:c7:86:74:04:fe:7d:28:c5:8e:43:e8:17:0b:c3:01:67:54:
8f:17:f0:bf:43:a6:6d:40:22:8b:db:f0:55:39:05:21:e4:cb:
71:97:a6:2d:a5:30:48:75:71:c8:27:c4:18:4e:c2:50:26:34:
10:12:02:df:93:92:27:8e:4b:2c:1c:8a:9c:5a:15:8b:64:73:
5b:d6:24:06:c9:9b:13:86:cf:ac:b4:34:0c:79:c6:e3:a6:a9:
6d:57:d3:af:da:89:c8:e2:34:f1:2f:22:62:d7:56:7d:13:c0:
ff:64:ea:02:cd:79:cb:40:db:7b:a0:3e:58:d4:46:47:6f:87:
e4:a3:99:ce:08:cc:66:9b:62:35:3d:2a:b2:e5:60:b7:08:61:
e7:26:69:e3:f2:a4:e5:35:16:f0:b3:a6:f6:6e:6d:7b:78:c4:
4f:41:6a:b8:78:73:21:19:5c:bf:d9:14:2d:89:f2:b6:95:7a:
e7:7b:34:02:da:72:af:fb:b1:0b:41:5b:8d:f2:46:64:cb:4c:
94:4a:1f:68:aa:37:c5:88:d5:a0:94:9b:70:04:1d:f9:db:0d:
5c:3d:7f:25:2c:9e:a3:c0:3c:df:2b:b6:4b:75:7a:8d:67:6b:
dd:87:4c:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVylaGTUcv9ZHXYzVYgveuzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZTUxYWQ1MDQwZjQ1MDNhZmM3MWRjNTAxODljNGE5NjRk
MWNkNDAwHhcNMjMwMTAyMTMwNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzZmNmQzZTk5NDIxNDQxNWE2Mjk5YTI2ZTBkZGM2OTgzYzRlMzE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmh+s5cBOz/x08hpze2PE1OyYPyY5
1Fyyj8n6Mc2Wpv7L+Zu3PySSxv/YDI3txjkGQwXH1chgu/aLNKcy2ZWsZBxyn0iT
qbC6di/WXICI/wmeQw2i8UPhqe47EVYhjvb2HY1f+fumgzShIGPNSDhqgvsXPhOX
XTuExXDHmacxbHfExVQ40DBgGnSgJ3vuoA7oe8A8/jGmPSD2EubMmF+NEUPGoVUo
cjYZBN24EKa69SG6q45tXUzpqLSJkkJCR+e20Hfob9i2JHuYHIya9U52ZHnY3IL4
qArtZSkHCLpAwzOCm0LNAF4EQKEKq7uqAVQcwHCWnqDDHvfyUeZJ14TufQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJxvbT6ZQhRBWmKZom4N3GmDxOMZMB8GA1UdIwQY
MBaAFDrlGtUED0UDr8cdxQGJxKlk0c1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3VVYTFRUVBSUU92eHgzRkFZbkVxV1RSelVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8wOTU2MGQtMjkyMy00MzQ5LWFmNWMt
YTU4M2YxNzA4MmFhLzEvbkc5dFBwbENGRUZhWXBtaWJnM2NhWVBFNHhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC8wOTU2MGQtMjkyMy00MzQ5LWFmNWMtYTU4M2YxNzA4MmFh
LzEvT3VVYTFRUVBSUU92eHgzRkFZbkVxV1RSelVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAixwZMA0G
CSqGSIb3DQEBCwUAA4IBAQAqYOogMrfRgJ78faZ/oJAqufXqx4Z0BP59KMWOQ+gX
C8MBZ1SPF/C/Q6ZtQCKL2/BVOQUh5Mtxl6YtpTBIdXHIJ8QYTsJQJjQQEgLfk5In
jkssHIqcWhWLZHNb1iQGyZsThs+stDQMecbjpqltV9Ov2onI4jTxLyJi11Z9E8D/
ZOoCzXnLQNt7oD5Y1EZHb4fko5nOCMxmm2I1PSqy5WC3CGHnJmnj8qTlNRbws6b2
bm17eMRPQWq4eHMhGVy/2RQtifK2lXrnezQC2nKv+7ELQVuN8kZky0yUSh9oqjfF
iNWglJtwBB352w1cPX8lLJ6jwDzfK7ZLdXqNZ2vdh0yi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:04 2024 by rpki-client on console-fra.rpki-client.org