Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/68badc-43a3-41d7-889d-a6d7ed4aa836/1/3XnBzAGiXXr4SlASYX0Z5lZbHTk.roa
File: 3XnBzAGiXXr4SlASYX0Z5lZbHTk.roa (raw, json)
Hash identifier: WJu9TcyXf8jWn+mbhog7FWgNYfjuSZc4Y0H+glkPppQ=
Subject key identifier: DD:79:C1:CC:01:A2:5D:7A:F8:4A:50:12:61:7D:19:E6:56:5B:1D:39
Certificate issuer: /CN=00150b6aed6dd43d748d77033cfd01846136ef14
Certificate serial: 0186B265C94E9E23E846B611FE1005CB6FDA
Authority key identifier: 00:15:0B:6A:ED:6D:D4:3D:74:8D:77:03:3C:FD:01:84:61:36:EF:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABULau1t1D10jXcDPP0BhGE27xQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/68badc-43a3-41d7-889d-a6d7ed4aa836/1/3XnBzAGiXXr4SlASYX0Z5lZbHTk.roa
Signing time: Sun 05 Mar 2023 15:31:00 +0000
ROA not before: Sun 05 Mar 2023 15:31:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200525
IP address blocks: 178.159.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b2:65:c9:4e:9e:23:e8:46:b6:11:fe:10:05:cb:6f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00150b6aed6dd43d748d77033cfd01846136ef14
Validity
Not Before: Mar 5 15:31:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd79c1cc01a25d7af84a5012617d19e6565b1d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:83:bf:c7:3f:70:f6:94:be:44:05:76:c1:c2:
a2:5d:63:d9:04:26:2b:3f:4c:89:ba:d9:fa:4a:23:
02:b3:02:03:d0:41:e4:10:a5:a5:62:4b:85:6e:c6:
42:c4:4e:db:57:3d:0c:34:e4:80:a7:17:81:c4:85:
df:2d:5f:d9:4d:4e:d7:44:1a:48:2b:eb:5d:08:da:
49:9d:9c:e2:73:57:2a:c2:12:f0:fc:cd:db:1b:60:
12:ea:92:d2:5b:bb:cb:7d:16:54:97:88:b8:3f:d2:
80:3f:65:57:b8:35:e2:1e:f7:0e:d1:a8:b3:cc:7b:
2d:9e:d6:48:1f:e6:d1:a2:46:f2:54:39:a0:15:60:
d9:73:55:19:ec:07:5d:af:85:bb:c4:4b:88:42:e3:
59:5c:0e:ea:8f:1f:63:05:c1:46:61:bb:84:61:2e:
a6:2a:31:69:3a:6c:a1:ab:0f:b9:87:df:46:52:e5:
5a:50:83:af:52:9f:47:86:69:52:f6:23:ec:25:b2:
db:04:75:f1:54:97:56:ce:25:d8:2c:5d:a1:59:e0:
51:6b:47:a9:e1:df:3e:3d:19:cd:83:d4:5c:49:b3:
21:18:85:c4:44:7e:ac:47:67:39:fc:b4:4c:36:ad:
bc:c8:ed:a4:e9:7a:3d:65:6b:a6:06:71:12:69:ee:
47:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:79:C1:CC:01:A2:5D:7A:F8:4A:50:12:61:7D:19:E6:56:5B:1D:39
X509v3 Authority Key Identifier:
keyid:00:15:0B:6A:ED:6D:D4:3D:74:8D:77:03:3C:FD:01:84:61:36:EF:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABULau1t1D10jXcDPP0BhGE27xQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/68badc-43a3-41d7-889d-a6d7ed4aa836/1/3XnBzAGiXXr4SlASYX0Z5lZbHTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/68badc-43a3-41d7-889d-a6d7ed4aa836/1/ABULau1t1D10jXcDPP0BhGE27xQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.34.0/24
Signature Algorithm: sha256WithRSAEncryption
43:c7:70:2a:25:6c:04:7d:b1:6d:bd:98:6d:3b:68:8c:22:1e:
92:e9:4f:a3:85:52:eb:fc:fd:5b:ec:21:98:2d:f5:90:28:f4:
ef:36:79:e1:7f:e3:8d:7a:08:0d:35:b3:0b:07:fa:3f:d3:10:
eb:09:24:7f:7c:5a:67:fa:5d:f1:1c:0d:c9:e8:1d:ee:81:64:
bf:f9:d8:43:14:8a:9b:c7:64:f0:a9:35:18:91:b7:8f:80:e7:
ca:90:e8:d8:b5:88:5d:c6:28:a5:6a:a3:45:15:18:f2:cb:44:
71:2e:6b:4b:81:02:a2:ec:9d:7f:cf:47:67:53:5f:19:ee:d5:
d3:39:6b:80:03:ca:9d:39:55:59:42:94:61:dc:e2:62:c6:ae:
a8:30:61:ee:fe:e5:68:52:dd:95:93:15:ca:96:11:b5:f1:29:
96:99:3c:48:5c:2d:35:6d:69:e8:21:68:61:04:08:d3:51:8c:
b4:67:2b:28:a3:38:40:bb:ab:b4:68:32:43:76:f3:1d:51:6d:
5a:35:73:76:5b:ce:1c:2c:e9:2c:73:44:ac:78:b9:88:37:35:
d6:5c:75:3b:c5:1e:26:07:87:ae:6d:f4:6a:7b:f2:09:27:da:
af:d2:bf:e3:cf:d9:da:f0:b6:3c:ff:ba:a7:82:26:b4:70:17:
ff:16:d5:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYayZclOniPoRrYR/hAFy2/aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMTUwYjZhZWQ2ZGQ0M2Q3NDhkNzcwMzNjZmQwMTg0NjEz
NmVmMTQwHhcNMjMwMzA1MTUzMTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDc5YzFjYzAxYTI1ZDdhZjg0YTUwMTI2MTdkMTllNjU2NWIxZDM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjoO/xz9w9pS+RAV2wcKiXWPZBCYr
P0yJutn6SiMCswID0EHkEKWlYkuFbsZCxE7bVz0MNOSApxeBxIXfLV/ZTU7XRBpI
K+tdCNpJnZzic1cqwhLw/M3bG2AS6pLSW7vLfRZUl4i4P9KAP2VXuDXiHvcO0aiz
zHstntZIH+bRokbyVDmgFWDZc1UZ7Addr4W7xEuIQuNZXA7qjx9jBcFGYbuEYS6m
KjFpOmyhqw+5h99GUuVaUIOvUp9HhmlS9iPsJbLbBHXxVJdWziXYLF2hWeBRa0ep
4d8+PRnNg9RcSbMhGIXERH6sR2c5/LRMNq28yO2k6Xo9ZWumBnESae5HsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN15wcwBol16+EpQEmF9GeZWWx05MB8GA1UdIwQY
MBaAFAAVC2rtbdQ9dI13Azz9AYRhNu8UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUJVTGF1MXQxRDEwalhjRFBQMEJoR0UyN3hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS82OGJhZGMtNDNhMy00MWQ3LTg4OWQt
YTZkN2VkNGFhODM2LzEvM1huQnpBR2lYWHI0U2xBU1lYMFo1bFpiSFRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS82OGJhZGMtNDNhMy00MWQ3LTg4OWQtYTZkN2VkNGFhODM2
LzEvQUJVTGF1MXQxRDEwalhjRFBQMEJoR0UyN3hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsp8iMA0G
CSqGSIb3DQEBCwUAA4IBAQBDx3AqJWwEfbFtvZhtO2iMIh6S6U+jhVLr/P1b7CGY
LfWQKPTvNnnhf+ONeggNNbMLB/o/0xDrCSR/fFpn+l3xHA3J6B3ugWS/+dhDFIqb
x2TwqTUYkbePgOfKkOjYtYhdxiilaqNFFRjyy0RxLmtLgQKi7J1/z0dnU18Z7tXT
OWuAA8qdOVVZQpRh3OJixq6oMGHu/uVoUt2VkxXKlhG18SmWmTxIXC01bWnoIWhh
BAjTUYy0ZysoozhAu6u0aDJDdvMdUW1aNXN2W84cLOksc0SseLmINzXWXHU7xR4m
B4eubfRqe/IJJ9qv0r/jz9na8LY8/7qngia0cBf/FtXb
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:16 2025 by rpki-client