Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/3ac039-18c2-424c-ae59-374c9b7ad1e7/1/ZY3hEw3XTekDcKf1zBB7U76ka70.roa
File: ZY3hEw3XTekDcKf1zBB7U76ka70.roa (raw, json)
Hash identifier: eQ16w+pdLUAyFdu+Rk/Wx7m+UJzlAY5+rctmxSQvO1k=
Subject key identifier: 65:8D:E1:13:0D:D7:4D:E9:03:70:A7:F5:CC:10:7B:53:BE:A4:6B:BD
Certificate issuer: /CN=2e4dd492aba37802f99020379b0daa49f101b7da
Certificate serial: 018450D1FE858565EB373CBDEA4B2628C01F
Authority key identifier: 2E:4D:D4:92:AB:A3:78:02:F9:90:20:37:9B:0D:AA:49:F1:01:B7:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lk3UkqujeAL5kCA3mw2qSfEBt9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/3ac039-18c2-424c-ae59-374c9b7ad1e7/1/ZY3hEw3XTekDcKf1zBB7U76ka70.roa
Signing time: Mon 07 Nov 2022 06:40:50 +0000
ROA not before: Mon 07 Nov 2022 06:40:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211415
IP address blocks: 194.15.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:50:d1:fe:85:85:65:eb:37:3c:bd:ea:4b:26:28:c0:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e4dd492aba37802f99020379b0daa49f101b7da
Validity
Not Before: Nov 7 06:40:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=658de1130dd74de90370a7f5cc107b53bea46bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:80:63:99:7c:05:dc:ac:17:3e:74:e2:89:eb:
04:07:73:4a:ca:99:2c:6e:e8:72:16:f6:8a:18:49:
d2:e1:83:0f:31:2e:15:49:76:2d:cb:75:b3:92:22:
8d:a9:a6:36:aa:75:9c:d5:52:f4:e6:47:66:0e:87:
a9:cc:74:ea:2c:e6:67:07:f5:13:1e:42:43:13:24:
70:4b:fe:bd:40:fd:a8:9e:38:d6:59:2f:8f:24:f0:
12:dc:5f:2e:1e:40:42:a4:99:aa:ed:44:72:83:2a:
e9:f6:17:14:e8:e2:68:2a:ed:5b:a4:d3:33:0a:a2:
2d:63:7a:e4:b8:f4:1e:6d:be:f9:e9:c8:df:3e:fa:
e4:cb:7d:36:6d:6d:23:e1:8a:2d:75:42:fe:13:dc:
58:a5:b7:ee:17:9a:21:a1:df:82:63:c8:7b:21:e1:
5c:60:27:ab:bf:6f:c5:d2:6b:ff:4a:ab:a8:d3:73:
ca:e8:a4:c5:0b:75:7e:28:08:42:5d:ae:7b:81:a8:
d4:64:03:56:7e:0f:66:3e:cf:61:8f:a2:3c:2f:f7:
ec:fe:a4:62:73:a6:b6:ab:a0:1b:a3:91:85:02:ed:
c1:80:f7:0f:35:39:31:3d:67:50:69:8f:41:ad:0d:
d1:cf:47:df:d4:15:8b:c3:81:8a:55:96:d5:bb:1f:
f0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:8D:E1:13:0D:D7:4D:E9:03:70:A7:F5:CC:10:7B:53:BE:A4:6B:BD
X509v3 Authority Key Identifier:
keyid:2E:4D:D4:92:AB:A3:78:02:F9:90:20:37:9B:0D:AA:49:F1:01:B7:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lk3UkqujeAL5kCA3mw2qSfEBt9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3ac039-18c2-424c-ae59-374c9b7ad1e7/1/ZY3hEw3XTekDcKf1zBB7U76ka70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3ac039-18c2-424c-ae59-374c9b7ad1e7/1/Lk3UkqujeAL5kCA3mw2qSfEBt9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.150.0/24
Signature Algorithm: sha256WithRSAEncryption
81:29:e0:63:ce:0c:d7:2a:40:a7:24:94:9a:fc:aa:24:98:02:
b9:cd:3b:6f:3f:05:11:30:27:d7:64:ca:9a:3b:d8:87:d0:d3:
5e:b9:e7:e5:d2:e8:6c:fd:c6:ac:51:af:34:8a:90:f4:20:64:
f7:0f:7a:d3:a1:5b:fb:ad:fe:82:81:b2:a9:ff:ba:67:4e:7d:
d7:9d:8e:52:7c:cd:4d:f0:fa:cd:8a:d7:16:d9:67:d5:61:b6:
21:71:9d:67:bd:59:94:32:b2:81:da:11:17:44:c6:88:d0:ab:
d2:df:d6:8d:c5:b4:19:4d:9d:77:a6:e7:ed:49:59:25:dd:6f:
6f:1e:d9:d6:0b:e4:1c:87:19:44:7e:3c:aa:96:65:21:4d:19:
8f:89:cb:49:c3:00:10:31:e2:8c:7c:43:47:0e:f0:a6:8f:64:
6e:3d:dd:0f:f8:14:75:d3:c0:1a:96:14:15:86:4a:2e:63:6b:
26:8b:7b:75:dc:c6:48:7b:d6:50:34:4a:d3:12:b4:c3:04:3c:
61:c4:6e:db:16:b0:af:21:f4:e3:d3:6b:e1:ac:b1:e6:d8:2f:
03:25:fe:54:40:b9:16:3f:5a:e4:de:cd:bf:d5:6b:cc:00:ee:
7a:35:06:14:ca:d0:f0:0e:64:f9:a9:31:cb:b0:8a:e6:49:59:
65:b3:40:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRQ0f6FhWXrNzy96ksmKMAfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlNGRkNDkyYWJhMzc4MDJmOTkwMjAzNzliMGRhYTQ5ZjEw
MWI3ZGEwHhcNMjIxMTA3MDY0MDUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NThkZTExMzBkZDc0ZGU5MDM3MGE3ZjVjYzEwN2I1M2JlYTQ2YmJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgYBjmXwF3KwXPnTiiesEB3NKypks
buhyFvaKGEnS4YMPMS4VSXYty3WzkiKNqaY2qnWc1VL05kdmDoepzHTqLOZnB/UT
HkJDEyRwS/69QP2onjjWWS+PJPAS3F8uHkBCpJmq7URygyrp9hcU6OJoKu1bpNMz
CqItY3rkuPQebb756cjfPvrky302bW0j4YotdUL+E9xYpbfuF5ohod+CY8h7IeFc
YCerv2/F0mv/Squo03PK6KTFC3V+KAhCXa57gajUZANWfg9mPs9hj6I8L/fs/qRi
c6a2q6Abo5GFAu3BgPcPNTkxPWdQaY9BrQ3Rz0ff1BWLw4GKVZbVux/wdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGWN4RMN103pA3Cn9cwQe1O+pGu9MB8GA1UdIwQY
MBaAFC5N1JKro3gC+ZAgN5sNqknxAbfaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGszVWtxdWplQUw1a0NBM213MnFTZkVCdDlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8zYWMwMzktMThjMi00MjRjLWFlNTkt
Mzc0YzliN2FkMWU3LzEvWlkzaEV3M1hUZWtEY0tmMXpCQjdVNzZrYTcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8zYWMwMzktMThjMi00MjRjLWFlNTktMzc0YzliN2FkMWU3
LzEvTGszVWtxdWplQUw1a0NBM213MnFTZkVCdDlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwg+WMA0G
CSqGSIb3DQEBCwUAA4IBAQCBKeBjzgzXKkCnJJSa/KokmAK5zTtvPwURMCfXZMqa
O9iH0NNeuefl0uhs/casUa80ipD0IGT3D3rToVv7rf6CgbKp/7pnTn3XnY5SfM1N
8PrNitcW2WfVYbYhcZ1nvVmUMrKB2hEXRMaI0KvS39aNxbQZTZ13puftSVkl3W9v
HtnWC+QchxlEfjyqlmUhTRmPictJwwAQMeKMfENHDvCmj2RuPd0P+BR108AalhQV
hkouY2smi3t13MZIe9ZQNErTErTDBDxhxG7bFrCvIfTj02vhrLHm2C8DJf5UQLkW
P1rk3s2/1WvMAO56NQYUytDwDmT5qTHLsIrmSVlls0BM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:43 2024 by rpki-client on console-ams.rpki-client.org