Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/fc5f6c-7113-4cdf-ade6-a4ce2e4d8971/1/hSIgUNMjXeNlI4hvLjRONQjzjFk.roa
File: hSIgUNMjXeNlI4hvLjRONQjzjFk.roa (raw, json)
Hash identifier: TZ9Dtb8GdSk8zYRcflRtcMIoWFn5jqaYXKLoHL2EPoQ=
Subject key identifier: 85:22:20:50:D3:23:5D:E3:65:23:88:6F:2E:34:4E:35:08:F3:8C:59
Certificate issuer: /CN=89bfb01f637e4156168fefd2192a5a0075b25ce3
Certificate serial: 061C680C
Authority key identifier: 89:BF:B0:1F:63:7E:41:56:16:8F:EF:D2:19:2A:5A:00:75:B2:5C:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ib-wH2N-QVYWj-_SGSpaAHWyXOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/fc5f6c-7113-4cdf-ade6-a4ce2e4d8971/1/hSIgUNMjXeNlI4hvLjRONQjzjFk.roa
Signing time: Sat 01 Jan 2022 05:01:10 +0000
ROA not before: Sat 01 Jan 2022 05:01:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207522
IP address blocks: 84.252.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102524940 (0x61c680c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89bfb01f637e4156168fefd2192a5a0075b25ce3
Validity
Not Before: Jan 1 05:01:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85222050d3235de36523886f2e344e3508f38c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6a:69:70:27:e8:d5:f7:7d:fe:16:2a:8d:7f:
d9:ee:6d:45:73:8f:5c:84:31:f6:1a:9c:32:76:e9:
68:d8:63:e9:66:5f:2d:68:de:22:b7:2f:82:9d:39:
b6:c1:73:8a:7e:03:ec:c4:23:00:84:06:91:ae:8a:
65:c6:39:b5:b1:42:54:e6:33:15:2b:47:36:36:21:
d6:47:85:61:68:47:7b:64:a6:24:27:c5:e3:36:70:
32:1c:74:29:be:a7:a8:a8:c0:18:33:70:a0:42:4a:
2d:dd:93:bd:a9:fa:f7:3e:27:96:33:c0:fb:15:73:
b6:6d:34:f6:75:e9:04:5e:50:89:ac:cb:88:18:b9:
1f:5d:3c:af:84:ac:2b:be:07:be:27:9f:d2:5b:c3:
59:8d:0d:15:79:a0:6d:6f:90:d9:da:1b:0c:ad:1b:
a7:63:fd:5d:d7:dd:f6:7d:96:1b:64:8e:47:41:c7:
16:ab:0c:a4:e8:b1:ba:a3:dd:26:0a:52:cd:b3:0f:
2e:0b:51:8b:49:a3:56:41:7b:bc:b0:4b:d1:a1:7d:
84:44:03:90:43:8a:b9:e0:34:e0:7e:05:ad:ad:2d:
ef:9c:12:20:fa:51:94:cc:46:63:67:37:98:29:5d:
6a:fb:f4:6e:d4:1f:bc:2e:22:89:89:4d:33:72:d0:
31:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:22:20:50:D3:23:5D:E3:65:23:88:6F:2E:34:4E:35:08:F3:8C:59
X509v3 Authority Key Identifier:
keyid:89:BF:B0:1F:63:7E:41:56:16:8F:EF:D2:19:2A:5A:00:75:B2:5C:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ib-wH2N-QVYWj-_SGSpaAHWyXOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/fc5f6c-7113-4cdf-ade6-a4ce2e4d8971/1/hSIgUNMjXeNlI4hvLjRONQjzjFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/fc5f6c-7113-4cdf-ade6-a4ce2e4d8971/1/ib-wH2N-QVYWj-_SGSpaAHWyXOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.104.0/24
Signature Algorithm: sha256WithRSAEncryption
00:94:fc:50:e8:8c:91:0b:77:a3:6e:e2:91:c5:9d:74:1a:d9:
a0:20:be:61:18:41:ab:8a:e8:b0:a0:d6:7c:a1:8e:48:8a:e5:
11:23:a7:b5:86:c2:17:67:50:f9:b4:9b:13:38:bc:b6:0d:19:
25:fb:43:ab:5d:fa:fa:f2:9b:29:82:e6:40:71:72:e6:66:09:
0a:78:dd:50:78:d7:55:eb:d0:c9:b7:d9:64:2e:d6:b1:b7:15:
55:83:15:cc:5e:b7:82:1f:67:60:57:d1:7d:cf:9f:b4:ca:c8:
cf:9f:51:89:f8:eb:4c:b2:a6:bc:25:46:6b:b7:5f:b1:0b:02:
db:74:52:fe:14:b8:8f:e0:93:d4:86:43:39:a6:cb:81:d3:f1:
df:72:89:d8:8c:84:14:4d:93:a1:50:a7:43:a4:10:dc:2b:52:
f8:7d:a9:12:c2:ed:00:80:45:9d:b2:eb:58:1a:fe:54:a0:08:
ec:3c:72:50:a0:b3:f8:88:50:06:01:93:cd:08:d2:24:c1:06:
c4:eb:8e:3b:39:95:3c:14:9e:4c:70:9e:5c:9b:b1:0b:54:1f:
ab:72:7d:7d:c2:9e:7a:44:5e:69:4b:42:4a:84:b5:1a:c5:53:
10:58:4e:83:fa:d7:e3:75:a6:a6:3a:66:18:c8:b6:e4:eb:ec:
81:43:a1:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBhxoDDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OWJmYjAxZjYzN2U0MTU2MTY4ZmVmZDIxOTJhNWEwMDc1YjI1Y2UzMB4XDTIyMDEw
MTA1MDExMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODUyMjIwNTBkMzIz
NWRlMzY1MjM4ODZmMmUzNDRlMzUwOGYzOGM1OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJZqaXAn6NX3ff4WKo1/2e5tRXOPXIQx9hqcMnbpaNhj6WZf
LWjeIrcvgp05tsFzin4D7MQjAIQGka6KZcY5tbFCVOYzFStHNjYh1keFYWhHe2Sm
JCfF4zZwMhx0Kb6nqKjAGDNwoEJKLd2Tvan69z4nljPA+xVztm009nXpBF5QiazL
iBi5H108r4SsK74Hvief0lvDWY0NFXmgbW+Q2dobDK0bp2P9Xdfd9n2WG2SOR0HH
FqsMpOixuqPdJgpSzbMPLgtRi0mjVkF7vLBL0aF9hEQDkEOKueA04H4Fra0t75wS
IPpRlMxGY2c3mCldavv0btQfvC4iiYlNM3LQMQsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSFIiBQ0yNd42UjiG8uNE41CPOMWTAfBgNVHSMEGDAWgBSJv7AfY35BVhaP
79IZKloAdbJc4zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2liLXdIMk4tUVZZV2otX1NHU3BhQUhXeVhPTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWEvZmM1ZjZjLTcxMTMtNGNkZi1hZGU2LWE0Y2UyZTRkODk3MS8x
L2hTSWdVTk1qWGVObEk0aHZMalJPTlFqempGay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWEv
ZmM1ZjZjLTcxMTMtNGNkZi1hZGU2LWE0Y2UyZTRkODk3MS8xL2liLXdIMk4tUVZZ
V2otX1NHU3BhQUhXeVhPTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFT8aDANBgkqhkiG9w0BAQsFAAOC
AQEAAJT8UOiMkQt3o27ikcWddBrZoCC+YRhBq4rosKDWfKGOSIrlESOntYbCF2dQ
+bSbEzi8tg0ZJftDq136+vKbKYLmQHFy5mYJCnjdUHjXVevQybfZZC7WsbcVVYMV
zF63gh9nYFfRfc+ftMrIz59RifjrTLKmvCVGa7dfsQsC23RS/hS4j+CT1IZDOabL
gdPx33KJ2IyEFE2ToVCnQ6QQ3CtS+H2pEsLtAIBFnbLrWBr+VKAI7DxyUKCz+IhQ
BgGTzQjSJMEGxOuOOzmVPBSeTHCeXJuxC1Qfq3J9fcKeekReaUtCSoS1GsVTEFhO
g/rX43WmpjpmGMi25OvsgUOhQg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:08 2025 by rpki-client