Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/3ce7b6-1539-4d98-96d3-7b8c9f629728/1/D0yegToOoj4fK1_zEl2cdiFioBE.roa
File: D0yegToOoj4fK1_zEl2cdiFioBE.roa (raw, json)
Hash identifier: 5EaDQedu+NKx6xaUmbdfty4eq6JAqu+n0/NXIDaJCYk=
Subject key identifier: 0F:4C:9E:81:3A:0E:A2:3E:1F:2B:5F:F3:12:5D:9C:76:21:62:A0:11
Certificate issuer: /CN=aecdd8bee24b342b039d610ce3c0c0c4719a3bf9
Certificate serial: AE40A0
Authority key identifier: AE:CD:D8:BE:E2:4B:34:2B:03:9D:61:0C:E3:C0:C0:C4:71:9A:3B:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs3YvuJLNCsDnWEM48DAxHGaO_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/3ce7b6-1539-4d98-96d3-7b8c9f629728/1/D0yegToOoj4fK1_zEl2cdiFioBE.roa
Signing time: Sat 01 Jan 2022 02:51:55 +0000
ROA not before: Sat 01 Jan 2022 02:51:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 109.107.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11419808 (0xae40a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aecdd8bee24b342b039d610ce3c0c0c4719a3bf9
Validity
Not Before: Jan 1 02:51:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f4c9e813a0ea23e1f2b5ff3125d9c762162a011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e1:81:15:20:29:56:77:d0:de:c5:f1:fa:88:
14:c5:25:15:f3:91:5f:c2:14:3c:dc:a3:44:a3:aa:
b1:68:3e:46:d0:b4:98:86:66:6c:92:f1:ef:72:eb:
8c:bb:cf:61:9e:db:96:ab:c3:59:7a:c9:10:0b:3b:
23:af:f2:d4:46:10:4c:b1:ae:1f:70:11:98:3e:e3:
37:98:84:d8:99:c2:e7:b8:7e:31:05:24:27:0f:37:
f8:30:04:e7:90:c5:be:41:7d:80:8a:d1:9a:99:1f:
1f:b9:ce:95:de:27:9e:c2:c2:7a:7f:db:47:e5:98:
4a:ec:90:2c:bc:21:34:43:b9:eb:d0:44:0d:70:99:
10:ee:4f:8d:8c:f8:df:53:ad:2b:39:93:f5:2b:93:
dd:eb:91:f7:ea:32:93:1b:26:79:60:54:5e:63:a1:
62:33:fc:e1:83:f8:1c:c7:44:8d:37:72:61:6b:55:
d6:a6:70:78:a4:25:f3:55:5d:a7:1d:b5:a0:9c:47:
6d:45:00:96:52:1b:40:70:74:a9:ca:63:9f:58:38:
80:b2:71:4f:23:d8:0e:92:b0:d1:f3:3d:33:eb:50:
f4:fd:ad:0c:41:63:70:fb:c7:89:0e:26:ee:55:0c:
7c:a2:02:a1:df:db:5a:79:ca:fb:f8:4a:9d:ab:74:
a7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:4C:9E:81:3A:0E:A2:3E:1F:2B:5F:F3:12:5D:9C:76:21:62:A0:11
X509v3 Authority Key Identifier:
keyid:AE:CD:D8:BE:E2:4B:34:2B:03:9D:61:0C:E3:C0:C0:C4:71:9A:3B:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs3YvuJLNCsDnWEM48DAxHGaO_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3ce7b6-1539-4d98-96d3-7b8c9f629728/1/D0yegToOoj4fK1_zEl2cdiFioBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3ce7b6-1539-4d98-96d3-7b8c9f629728/1/rs3YvuJLNCsDnWEM48DAxHGaO_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.135.0/24
Signature Algorithm: sha256WithRSAEncryption
23:ef:68:09:5a:9f:a5:7c:56:a3:68:1b:d7:16:c7:54:36:c9:
fd:34:32:47:45:66:3c:3b:05:49:5c:3d:ce:90:00:2c:ca:8a:
4f:26:7c:f5:cc:45:a2:bc:36:11:8a:c7:92:b4:14:85:c3:f6:
53:a9:17:7d:b3:9b:ad:79:58:df:7c:54:9a:ef:fe:b1:ea:6e:
30:c6:28:5d:05:e8:0b:e2:ad:82:94:15:c7:a9:be:e7:c3:df:
38:ff:54:ec:d6:d2:4b:19:d3:55:c4:d0:69:bd:47:33:97:70:
46:54:1a:e2:93:2c:7f:90:13:27:ef:30:43:75:c0:01:ef:43:
48:4e:d1:be:00:a3:87:ea:92:db:7c:bc:14:f2:17:9c:cf:4f:
69:ea:94:89:13:53:24:d1:36:81:2b:e6:8f:e7:b0:ec:f3:13:
1c:f1:13:5a:e1:ca:fd:76:27:22:af:4d:c8:b9:36:50:c9:e1:
11:f8:44:c4:cc:34:ce:7c:7c:f4:18:93:ec:b3:c8:5c:89:81:
e9:c1:40:48:be:b9:2e:e3:1d:da:8b:11:b7:49:fa:62:61:25:
fb:f8:25:50:c1:b8:18:8e:bc:ea:32:e9:6b:11:5d:88:70:0a:
8d:3f:ba:48:2c:1a:bf:c3:16:93:15:ec:13:b0:c6:ae:dc:86:
1a:bd:43:2b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAK5AoDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZWNkZDhiZWUyNGIzNDJiMDM5ZDYxMGNlM2MwYzBjNDcxOWEzYmY5MB4XDTIyMDEw
MTAyNTE1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGY0YzllODEzYTBl
YTIzZTFmMmI1ZmYzMTI1ZDljNzYyMTYyYTAxMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKvhgRUgKVZ30N7F8fqIFMUlFfORX8IUPNyjRKOqsWg+RtC0
mIZmbJLx73LrjLvPYZ7blqvDWXrJEAs7I6/y1EYQTLGuH3ARmD7jN5iE2JnC57h+
MQUkJw83+DAE55DFvkF9gIrRmpkfH7nOld4nnsLCen/bR+WYSuyQLLwhNEO569BE
DXCZEO5PjYz431OtKzmT9SuT3euR9+oykxsmeWBUXmOhYjP84YP4HMdEjTdyYWtV
1qZweKQl81Vdpx21oJxHbUUAllIbQHB0qcpjn1g4gLJxTyPYDpKw0fM9M+tQ9P2t
DEFjcPvHiQ4m7lUMfKICod/bWnnK+/hKnat0p/UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQPTJ6BOg6iPh8rX/MSXZx2IWKgETAfBgNVHSMEGDAWgBSuzdi+4ks0KwOd
YQzjwMDEcZo7+TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JzM1l2dUpMTkNzRG5XRU00OERBeEhHYU9fay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODkvM2NlN2I2LTE1MzktNGQ5OC05NmQzLTdiOGM5ZjYyOTcyOC8x
L0QweWVnVG9Pb2o0ZksxX3pFbDJjZGlGaW9CRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODkv
M2NlN2I2LTE1MzktNGQ5OC05NmQzLTdiOGM5ZjYyOTcyOC8xL3JzM1l2dUpMTkNz
RG5XRU00OERBeEhHYU9fay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1rhzANBgkqhkiG9w0BAQsFAAOC
AQEAI+9oCVqfpXxWo2gb1xbHVDbJ/TQyR0VmPDsFSVw9zpAALMqKTyZ89cxForw2
EYrHkrQUhcP2U6kXfbObrXlY33xUmu/+sepuMMYoXQXoC+KtgpQVx6m+58PfOP9U
7NbSSxnTVcTQab1HM5dwRlQa4pMsf5ATJ+8wQ3XAAe9DSE7RvgCjh+qS23y8FPIX
nM9PaeqUiRNTJNE2gSvmj+ew7PMTHPETWuHK/XYnIq9NyLk2UMnhEfhExMw0znx8
9BiT7LPIXImB6cFASL65LuMd2osRt0n6YmEl+/glUMG4GI686jLpaxFdiHAKjT+6
SCwav8MWkxXsE7DGrtyGGr1DKw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:51 2025 by rpki-client