Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/xRX3mRul7od0fnGTDjWlzfbnMwI.roa
File: xRX3mRul7od0fnGTDjWlzfbnMwI.roa (raw, json)
Hash identifier: 9HCBsJld/F+QVR2UGtdMe52mMWP3EA64eJGTR0ZEI6I=
Subject key identifier: C5:15:F7:99:1B:A5:EE:87:74:7E:71:93:0E:35:A5:CD:F6:E7:33:02
Certificate issuer: /CN=3adeea3b6aac4d834b4fd7c2e5d3c397f61f43d6
Certificate serial: 018570708B36306CA4D44426EB80347CAD80
Authority key identifier: 3A:DE:EA:3B:6A:AC:4D:83:4B:4F:D7:C2:E5:D3:C3:97:F6:1F:43:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/xRX3mRul7od0fnGTDjWlzfbnMwI.roa
Signing time: Mon 02 Jan 2023 03:05:01 +0000
ROA not before: Mon 02 Jan 2023 03:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 193.106.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:8b:36:30:6c:a4:d4:44:26:eb:80:34:7c:ad:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adeea3b6aac4d834b4fd7c2e5d3c397f61f43d6
Validity
Not Before: Jan 2 03:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c515f7991ba5ee87747e71930e35a5cdf6e73302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f4:fa:55:d4:bc:85:05:19:9d:41:ba:00:90:
39:44:fd:fe:ab:32:7e:a7:95:64:9d:5b:09:03:8c:
99:6a:a6:ac:3b:69:e2:01:8a:2e:0b:e0:ea:79:24:
c1:e9:91:7d:5c:43:1e:3f:7a:76:4d:06:96:8c:15:
c5:6e:21:0a:68:76:fa:48:0f:87:61:fd:5d:ef:9b:
1f:d6:18:43:cb:0c:f7:cb:e9:b5:43:72:47:07:24:
0e:1e:46:fc:7e:4b:fc:25:8e:bb:64:46:ac:ac:7a:
cd:4e:58:57:86:e3:d8:8d:04:0a:a7:3d:32:0c:fc:
17:7f:24:f1:33:ff:65:90:8d:e8:8e:2f:5c:d2:8b:
0d:7e:41:13:46:a9:c5:09:b4:21:5b:14:4d:9f:35:
94:28:df:e2:be:82:6a:35:d2:19:ca:f2:d4:6d:ea:
42:99:7e:a9:7e:64:c4:82:39:c7:e4:ed:45:fa:d2:
af:df:19:c3:c1:37:77:f7:c1:d0:e3:cc:a9:55:e6:
0c:f4:b9:7e:08:3c:3d:83:44:5d:7a:18:93:d7:a5:
40:b7:1e:96:01:39:83:20:aa:c8:e4:05:20:a0:8d:
af:eb:ad:99:f6:91:1b:b6:8d:ca:1f:71:9d:27:fd:
2c:5a:87:3e:f4:12:93:d2:1b:d2:6e:5f:41:6a:df:
cf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:15:F7:99:1B:A5:EE:87:74:7E:71:93:0E:35:A5:CD:F6:E7:33:02
X509v3 Authority Key Identifier:
keyid:3A:DE:EA:3B:6A:AC:4D:83:4B:4F:D7:C2:E5:D3:C3:97:F6:1F:43:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/xRX3mRul7od0fnGTDjWlzfbnMwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.196.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:95:f4:eb:d8:14:93:dc:77:5d:3a:f1:57:a2:04:cd:6e:c7:
6d:7a:53:f7:2b:d7:4a:45:d8:03:c9:e1:aa:56:c6:c7:c3:7e:
a7:9f:7f:80:da:df:41:f7:a5:00:93:94:ec:87:fd:1f:05:05:
61:92:a0:17:4b:b4:b6:f6:d7:54:28:a1:82:cd:f0:39:d1:a5:
5d:19:51:2a:0c:7b:52:89:e9:74:0f:41:a1:5d:00:79:cb:90:
8f:0c:58:82:84:a3:5b:bb:53:55:b6:52:c1:a0:01:13:31:4e:
c0:ee:dd:80:d9:4a:9c:2e:81:9a:0a:02:61:12:c9:85:a6:b0:
4e:25:6e:a3:f3:20:a2:62:3f:fb:8e:92:33:86:3f:f4:9b:c1:
c4:6c:8d:5a:49:96:14:13:9b:73:d1:25:a2:d3:ce:a5:d7:df:
7c:6f:0e:56:46:af:ac:e2:41:ba:78:2b:4a:1a:b4:0f:31:44:
88:54:12:c1:37:31:37:d8:84:ac:9d:ae:2b:9a:df:84:1c:50:
c4:74:39:06:ba:5c:e8:5d:5b:17:32:3b:53:07:8c:75:30:07:
db:68:8d:c4:56:73:95:d4:ef:76:08:08:8b:8b:06:22:ef:c2:
bd:1b:8e:61:c5:7e:01:66:28:6f:bb:86:b2:fe:02:0f:47:51:
e0:32:f4:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwcIs2MGyk1EQm64A0fK2AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZGVlYTNiNmFhYzRkODM0YjRmZDdjMmU1ZDNjMzk3ZjYx
ZjQzZDYwHhcNMjMwMTAyMDMwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTE1Zjc5OTFiYTVlZTg3NzQ3ZTcxOTMwZTM1YTVjZGY2ZTczMzAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/T6VdS8hQUZnUG6AJA5RP3+qzJ+
p5VknVsJA4yZaqasO2niAYouC+DqeSTB6ZF9XEMeP3p2TQaWjBXFbiEKaHb6SA+H
Yf1d75sf1hhDywz3y+m1Q3JHByQOHkb8fkv8JY67ZEasrHrNTlhXhuPYjQQKpz0y
DPwXfyTxM/9lkI3oji9c0osNfkETRqnFCbQhWxRNnzWUKN/ivoJqNdIZyvLUbepC
mX6pfmTEgjnH5O1F+tKv3xnDwTd398HQ48ypVeYM9Ll+CDw9g0RdehiT16VAtx6W
ATmDIKrI5AUgoI2v662Z9pEbto3KH3GdJ/0sWoc+9BKT0hvSbl9Bat/P9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMUV95kbpe6HdH5xkw41pc325zMCMB8GA1UdIwQY
MBaAFDre6jtqrE2DS0/XwuXTw5f2H0PWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3Q3cU8ycXNUWU5MVDlmQzVkUERsX1lmUTlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8wMTVmNDQtMGY0Yy00NzE0LTg2MTUt
MjNiMDcyZjViMTg4LzEveFJYM21SdWw3b2QwZm5HVERqV2x6ZmJuTXdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi8wMTVmNDQtMGY0Yy00NzE0LTg2MTUtMjNiMDcyZjViMTg4
LzEvT3Q3cU8ycXNUWU5MVDlmQzVkUERsX1lmUTlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWrEMA0G
CSqGSIb3DQEBCwUAA4IBAQCllfTr2BST3HddOvFXogTNbsdtelP3K9dKRdgDyeGq
VsbHw36nn3+A2t9B96UAk5Tsh/0fBQVhkqAXS7S29tdUKKGCzfA50aVdGVEqDHtS
iel0D0GhXQB5y5CPDFiChKNbu1NVtlLBoAETMU7A7t2A2UqcLoGaCgJhEsmFprBO
JW6j8yCiYj/7jpIzhj/0m8HEbI1aSZYUE5tz0SWi086l1998bw5WRq+s4kG6eCtK
GrQPMUSIVBLBNzE32ISsna4rmt+EHFDEdDkGulzoXVsXMjtTB4x1MAfbaI3EVnOV
1O92CAiLiwYi78K9G45hxX4BZihvu4ay/gIPR1HgMvQo
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:27 2024 by rpki-client on console-ams.rpki-client.org