Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/w0zZrKOkHh27jjggJLbOe4YI3dc.roa
File: w0zZrKOkHh27jjggJLbOe4YI3dc.roa (raw, json)
Hash identifier: 5lFT/UuhB4WiVp1OTMw7gzBVk0e2jtDkiVGcWKRcZSI=
Subject key identifier: C3:4C:D9:AC:A3:A4:1E:1D:BB:8E:38:20:24:B6:CE:7B:86:08:DD:D7
Certificate issuer: /CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Certificate serial: 0188977D017134EA3761A3C7F96450DE62F2
Authority key identifier: 3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/w0zZrKOkHh27jjggJLbOe4YI3dc.roa
Signing time: Wed 07 Jun 2023 20:12:11 +0000
ROA not before: Wed 07 Jun 2023 20:12:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 139.28.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:97:7d:01:71:34:ea:37:61:a3:c7:f9:64:50:de:62:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Validity
Not Before: Jun 7 20:12:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c34cd9aca3a41e1dbb8e382024b6ce7b8608ddd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:80:8d:8d:b2:36:d3:90:de:14:f2:98:1f:4e:
15:d9:3c:9d:1d:b7:a1:86:9f:6e:49:1f:30:64:2f:
51:9d:00:6b:f1:41:31:46:40:bf:2a:ec:c5:b0:ef:
54:b3:a6:37:8b:2e:b4:6d:4d:46:fb:37:05:4e:3a:
a7:27:66:df:d9:44:23:d8:e5:94:60:fb:f5:2e:89:
e1:93:2d:17:80:9f:a7:c0:65:63:b5:8c:99:6c:e3:
94:b2:8c:80:ec:90:1b:2d:63:b2:8a:76:d5:fd:53:
3f:60:42:81:6c:04:d2:d6:d5:50:d5:78:9c:e1:c9:
95:f6:2c:0a:32:af:da:0e:a9:1e:69:e5:95:52:ff:
df:51:51:06:54:5c:4c:4f:1d:28:d5:95:c4:06:55:
6c:06:ee:b1:af:70:10:ac:6f:e2:66:e8:8f:f0:da:
cf:ef:38:54:75:6d:02:55:b0:c9:f7:3e:c4:7f:98:
02:44:d1:5f:c4:a1:04:55:5e:b2:20:7d:7c:92:81:
ef:2d:81:3a:81:46:79:11:09:8b:d8:fd:d2:f7:45:
7d:d2:7e:2c:d3:a5:30:07:ad:87:0f:b9:d1:22:61:
03:8e:a7:84:20:4b:d9:e1:1c:dc:37:9f:4f:9a:77:
24:3f:b9:db:81:75:29:06:dd:ff:c6:35:ff:97:ed:
51:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:4C:D9:AC:A3:A4:1E:1D:BB:8E:38:20:24:B6:CE:7B:86:08:DD:D7
X509v3 Authority Key Identifier:
keyid:3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/w0zZrKOkHh27jjggJLbOe4YI3dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/OuUa1QQPRQOvxx3FAYnEqWTRzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.26.0/24
Signature Algorithm: sha256WithRSAEncryption
13:0b:79:2a:05:12:c9:12:47:8d:e9:30:d3:47:44:14:b1:e7:
01:d1:e8:d2:86:a7:af:32:2e:d5:46:ca:1b:22:15:7c:87:17:
d3:b0:fa:fe:58:d7:58:57:37:59:49:63:dd:07:cf:69:67:c9:
d8:1e:16:0a:61:18:4d:8a:d2:ca:6c:28:69:47:42:47:26:30:
fc:d3:bb:ea:81:cd:0c:a4:6e:8c:7f:85:8a:0d:a2:41:b8:b3:
b3:a2:a1:a7:55:fd:54:52:61:a5:92:39:52:2b:89:83:c5:bd:
62:ba:a9:cd:42:f4:f2:53:83:39:f2:92:87:95:30:f3:0d:e2:
e3:83:03:bd:3f:a9:3c:0a:79:25:f5:73:41:e5:d1:89:ce:ce:
4c:5a:8a:b1:da:d4:cb:d8:30:b2:05:b8:5c:8f:9e:6a:50:4d:
59:16:59:ae:91:10:b4:df:25:15:34:2f:90:3b:8d:a8:3b:7b:
6f:84:5e:4a:60:28:41:37:8d:43:11:c6:db:5a:4f:64:11:5e:
a2:36:ae:02:fa:8b:52:1c:eb:69:e7:33:ad:19:60:ba:e3:14:
42:9c:5e:8b:39:a7:5c:0d:15:87:0a:1d:44:ca:f3:1f:ed:d5:
ba:f5:18:03:6a:e4:5b:6e:e4:40:90:ab:9a:c0:e9:58:a7:d6:
68:f8:16:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiXfQFxNOo3YaPH+WRQ3mLyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZTUxYWQ1MDQwZjQ1MDNhZmM3MWRjNTAxODljNGE5NjRk
MWNkNDAwHhcNMjMwNjA3MjAxMjExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzRjZDlhY2EzYTQxZTFkYmI4ZTM4MjAyNGI2Y2U3Yjg2MDhkZGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgYCNjbI205DeFPKYH04V2TydHbeh
hp9uSR8wZC9RnQBr8UExRkC/KuzFsO9Us6Y3iy60bU1G+zcFTjqnJ2bf2UQj2OWU
YPv1Lonhky0XgJ+nwGVjtYyZbOOUsoyA7JAbLWOyinbV/VM/YEKBbATS1tVQ1Xic
4cmV9iwKMq/aDqkeaeWVUv/fUVEGVFxMTx0o1ZXEBlVsBu6xr3AQrG/iZuiP8NrP
7zhUdW0CVbDJ9z7Ef5gCRNFfxKEEVV6yIH18koHvLYE6gUZ5EQmL2P3S90V90n4s
06UwB62HD7nRImEDjqeEIEvZ4RzcN59PmnckP7nbgXUpBt3/xjX/l+1RXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMNM2ayjpB4du444ICS2znuGCN3XMB8GA1UdIwQY
MBaAFDrlGtUED0UDr8cdxQGJxKlk0c1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3VVYTFRUVBSUU92eHgzRkFZbkVxV1RSelVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8wOTU2MGQtMjkyMy00MzQ5LWFmNWMt
YTU4M2YxNzA4MmFhLzEvdzB6WnJLT2tIaDI3ampnZ0pMYk9lNFlJM2RjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC8wOTU2MGQtMjkyMy00MzQ5LWFmNWMtYTU4M2YxNzA4MmFh
LzEvT3VVYTFRUVBSUU92eHgzRkFZbkVxV1RSelVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAixwaMA0G
CSqGSIb3DQEBCwUAA4IBAQATC3kqBRLJEkeN6TDTR0QUsecB0ejShqevMi7VRsob
IhV8hxfTsPr+WNdYVzdZSWPdB89pZ8nYHhYKYRhNitLKbChpR0JHJjD807vqgc0M
pG6Mf4WKDaJBuLOzoqGnVf1UUmGlkjlSK4mDxb1iuqnNQvTyU4M58pKHlTDzDeLj
gwO9P6k8Cnkl9XNB5dGJzs5MWoqx2tTL2DCyBbhcj55qUE1ZFlmukRC03yUVNC+Q
O42oO3tvhF5KYChBN41DEcbbWk9kEV6iNq4C+otSHOtp5zOtGWC64xRCnF6LOadc
DRWHCh1EyvMf7dW69RgDauRbbuRAkKuawOlYp9Zo+BaE
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:37 2025 by rpki-client