Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/a57jI9bOldp4MiMU9-O-iUcx3zU.roa
File: a57jI9bOldp4MiMU9-O-iUcx3zU.roa (raw, json)
Hash identifier: oAaY8P+SDOSN/si2W0o4Vf4QWeJJta/GXX3mnNB3lM4=
Subject key identifier: 6B:9E:E3:23:D6:CE:95:DA:78:32:23:14:F7:E3:BE:89:47:31:DF:35
Certificate issuer: /CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Certificate serial: 018B80D04B7CA2887677808A988615B666B5
Authority key identifier: 49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/a57jI9bOldp4MiMU9-O-iUcx3zU.roa
Signing time: Mon 30 Oct 2023 13:40:16 +0000
ROA not before: Mon 30 Oct 2023 13:40:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 217.114.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:80:d0:4b:7c:a2:88:76:77:80:8a:98:86:15:b6:66:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Validity
Not Before: Oct 30 13:40:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b9ee323d6ce95da78322314f7e3be894731df35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:dc:26:50:a5:ca:16:9d:84:c5:b3:83:f9:79:
a3:8b:6f:fa:aa:1c:81:19:31:b3:24:4e:38:19:3a:
fb:30:4a:0f:e9:04:57:7d:ec:7b:6e:e0:e9:5b:c2:
d3:7c:8b:61:bb:5e:2f:c4:8b:33:58:b4:7c:3c:b3:
f0:ae:1a:49:90:ad:62:5e:bf:b4:38:21:82:3c:50:
0f:71:3c:21:cb:90:cb:b6:71:0f:68:8a:b1:a2:08:
79:38:7b:31:8f:94:9c:62:51:9a:04:ac:0e:d7:5d:
43:94:3e:3d:06:c5:16:73:f3:05:75:19:eb:53:df:
ff:e8:74:45:14:44:cf:7a:86:0d:1b:9a:85:f5:6c:
09:a4:da:ae:a2:37:6b:1d:46:03:ac:72:e6:5a:ad:
81:ec:92:8c:a8:1f:6f:69:f7:ed:1a:31:22:04:16:
30:eb:e0:64:35:d9:30:1a:be:30:17:74:92:5a:d2:
c7:eb:42:5b:84:ed:28:62:73:a4:49:88:3b:2f:38:
5e:91:78:f5:36:67:b4:96:0f:d1:39:5f:0a:81:e5:
cd:54:1f:1b:32:d7:94:92:c5:14:23:e5:a9:95:3d:
df:20:ec:cf:7b:d0:f7:6e:4f:2f:c6:a6:01:85:44:
8c:50:ca:fa:b0:4e:60:0c:44:26:03:bc:dc:ec:f3:
3d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:9E:E3:23:D6:CE:95:DA:78:32:23:14:F7:E3:BE:89:47:31:DF:35
X509v3 Authority Key Identifier:
keyid:49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/a57jI9bOldp4MiMU9-O-iUcx3zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/SeFL929C2k8qwAOmxp1hwjIOLNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.39.0/24
Signature Algorithm: sha256WithRSAEncryption
28:1d:9b:2e:99:5d:72:29:60:13:4e:0f:03:31:22:9e:0f:ed:
1d:fc:5e:21:98:20:3b:3d:ea:49:2c:1a:cd:ab:92:4a:85:9d:
37:47:e8:b2:d6:5c:0d:7a:aa:59:a1:c1:9c:58:e5:2a:57:1a:
42:a6:45:ce:85:d2:95:80:a8:95:3d:91:6c:20:9c:fd:29:ce:
c7:be:13:b6:9a:d1:48:eb:c3:37:86:15:98:17:10:3d:fc:42:
f5:40:57:83:f3:fa:94:9e:c4:6b:77:7c:65:0d:a5:42:fd:31:
95:29:9d:93:eb:d3:5f:ab:87:a7:6c:4d:0b:9b:b0:5b:4d:00:
66:82:09:4c:ff:16:17:1d:0e:ca:62:0b:69:ef:b6:fb:b1:c9:
de:59:05:04:21:cd:c0:0f:38:39:0f:5c:7f:0e:86:fb:1d:f3:
47:0c:4e:27:3c:33:3c:73:f3:91:ec:dc:ec:50:35:a9:e0:03:
27:3b:8c:db:2e:13:7e:10:d4:e2:3e:4e:a4:5d:ad:7b:a2:fc:
14:37:76:2e:f2:24:64:3e:33:85:14:10:55:b4:0e:c8:2d:6b:
2f:4b:0b:2e:fe:d9:7e:e9:da:9f:ab:ec:bb:7c:d3:e5:3c:c5:
c8:aa:ed:4b:81:73:58:f6:d5:01:30:2d:b2:f4:88:92:8f:45:
23:ba:1a:e7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuA0Et8ooh2d4CKmIYVtma1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTE0YmY3NmY0MmRhNGYyYWMwMDNhNmM2OWQ2MWMyMzIw
ZTJjZDgwHhcNMjMxMDMwMTM0MDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjllZTMyM2Q2Y2U5NWRhNzgzMjIzMTRmN2UzYmU4OTQ3MzFkZjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29wmUKXKFp2ExbOD+Xmji2/6qhyB
GTGzJE44GTr7MEoP6QRXfex7buDpW8LTfIthu14vxIszWLR8PLPwrhpJkK1iXr+0
OCGCPFAPcTwhy5DLtnEPaIqxogh5OHsxj5ScYlGaBKwO111DlD49BsUWc/MFdRnr
U9//6HRFFETPeoYNG5qF9WwJpNquojdrHUYDrHLmWq2B7JKMqB9vafftGjEiBBYw
6+BkNdkwGr4wF3SSWtLH60JbhO0oYnOkSYg7LzhekXj1Nme0lg/ROV8KgeXNVB8b
MteUksUUI+WplT3fIOzPe9D3bk8vxqYBhUSMUMr6sE5gDEQmA7zc7PM9WwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGue4yPWzpXaeDIjFPfjvolHMd81MB8GA1UdIwQY
MBaAFEnhS/dvQtpPKsADpsadYcIyDizYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VGTDkyOUMyazhxd0FPbXhwMWh3aklPTE5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC81NjE2N2YtNTMyNy00Yzg4LWI0ZWEt
M2JlY2NhYWUzMzZkLzEvYTU3akk5Yk9sZHA0TWlNVTktTy1pVWN4M3pVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC81NjE2N2YtNTMyNy00Yzg4LWI0ZWEtM2JlY2NhYWUzMzZk
LzEvU2VGTDkyOUMyazhxd0FPbXhwMWh3aklPTE5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2XInMA0G
CSqGSIb3DQEBCwUAA4IBAQAoHZsumV1yKWATTg8DMSKeD+0d/F4hmCA7PepJLBrN
q5JKhZ03R+iy1lwNeqpZocGcWOUqVxpCpkXOhdKVgKiVPZFsIJz9Kc7HvhO2mtFI
68M3hhWYFxA9/EL1QFeD8/qUnsRrd3xlDaVC/TGVKZ2T69Nfq4enbE0Lm7BbTQBm
gglM/xYXHQ7KYgtp77b7scneWQUEIc3ADzg5D1x/Dob7HfNHDE4nPDM8c/OR7Nzs
UDWp4AMnO4zbLhN+ENTiPk6kXa17ovwUN3Yu8iRkPjOFFBBVtA7ILWsvSwsu/tl+
6dqfq+y7fNPlPMXIqu1LgXNY9tUBMC2y9IiSj0Ujuhrn
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:06 2025 by rpki-client