Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/J7PJGX2vCmdCK5goCQqNOTXJ5vo.roa
File: J7PJGX2vCmdCK5goCQqNOTXJ5vo.roa (raw, json)
Hash identifier: oO0qSID29TvWCuPnRNzfX5Sb2yLtqNL6C42t2tUj24E=
Subject key identifier: 27:B3:C9:19:7D:AF:0A:67:42:2B:98:28:09:0A:8D:39:35:C9:E6:FA
Certificate issuer: /CN=103cecccb1c2706a1ff3507627a9080f24a2feeb
Certificate serial: 01856BDC7BA5C63D3A46A97739D563D52ACA
Authority key identifier: 10:3C:EC:CC:B1:C2:70:6A:1F:F3:50:76:27:A9:08:0F:24:A2:FE:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EDzszLHCcGof81B2J6kIDySi_us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/J7PJGX2vCmdCK5goCQqNOTXJ5vo.roa
Signing time: Sun 01 Jan 2023 05:44:49 +0000
ROA not before: Sun 01 Jan 2023 05:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 5.44.248.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:7b:a5:c6:3d:3a:46:a9:77:39:d5:63:d5:2a:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=103cecccb1c2706a1ff3507627a9080f24a2feeb
Validity
Not Before: Jan 1 05:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27b3c9197daf0a67422b9828090a8d3935c9e6fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fe:58:fe:cc:cd:ca:1c:fb:76:53:25:03:d1:
83:13:76:f9:dd:5c:fa:46:99:04:9a:89:40:21:70:
67:da:94:0c:fc:f7:9c:7c:6c:20:55:57:68:87:e3:
95:3c:a1:c3:bf:e7:da:1f:94:39:9d:0b:53:83:2c:
ad:9e:dc:72:a1:d1:a4:d0:4b:56:81:cc:43:94:8f:
c7:11:58:69:f0:e1:f3:ff:c9:3d:73:70:6e:fb:08:
44:8c:7c:db:73:b1:00:18:42:67:28:fd:bf:3d:a7:
1f:7f:6f:29:43:5e:d8:65:bd:7c:26:88:44:04:ec:
14:52:7a:e1:11:7e:47:2d:34:2f:b9:09:ff:2b:49:
f6:32:c1:7a:fb:45:32:aa:72:6b:d1:60:24:7f:ca:
f8:32:5b:fe:f3:a2:94:20:74:2c:94:a2:a8:c3:62:
50:7c:02:dd:68:57:2a:6b:0e:4c:38:02:94:21:46:
85:a6:ab:56:5d:00:92:c5:99:ad:a9:e3:06:c8:3d:
60:7d:92:63:fb:06:e2:86:e1:e6:c8:8f:1e:f9:3f:
10:30:29:8f:e1:7c:a1:8c:6e:b2:7e:14:24:4c:ed:
39:05:92:2d:f7:c2:99:3b:02:72:9b:58:23:96:24:
13:d3:a9:62:5d:d4:51:84:74:fb:86:62:f6:8f:93:
c7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B3:C9:19:7D:AF:0A:67:42:2B:98:28:09:0A:8D:39:35:C9:E6:FA
X509v3 Authority Key Identifier:
keyid:10:3C:EC:CC:B1:C2:70:6A:1F:F3:50:76:27:A9:08:0F:24:A2:FE:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDzszLHCcGof81B2J6kIDySi_us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/J7PJGX2vCmdCK5goCQqNOTXJ5vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/EDzszLHCcGof81B2J6kIDySi_us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:64:6a:53:dc:1b:dc:dc:6f:11:4a:50:2c:ec:bb:f3:fb:7c:
82:49:0d:45:c0:08:ef:9c:90:04:3f:42:07:43:c5:cd:31:a4:
f8:e6:2e:f9:de:6f:c2:d0:31:b0:0b:db:df:a9:80:c5:cf:2c:
94:30:06:47:cb:c0:2e:a2:7c:42:4b:cb:8e:75:f4:0d:8a:9f:
5b:f5:19:e1:70:c7:c9:60:0c:be:b8:69:fc:2c:7d:75:48:85:
89:b5:3b:10:23:a4:5b:cf:f7:21:2c:89:0f:0f:44:42:31:03:
a0:20:9a:9e:f7:18:07:a3:16:2b:73:d1:d2:fc:e0:bb:19:de:
b8:45:ba:50:2f:d8:6f:26:ec:12:c1:8b:c1:34:a2:00:90:0d:
7d:8c:ca:a4:d0:fc:09:c3:fb:15:ac:33:8a:4b:60:da:22:33:
72:ff:82:ec:6c:c6:ae:bd:e9:bb:ce:f0:5f:cf:0b:80:ea:c7:
f1:78:54:7f:67:88:e7:10:15:32:5c:2d:22:c0:38:34:6c:7c:
d1:ff:c2:cc:6b:11:08:87:af:ee:fe:eb:d4:7a:5d:8e:dd:95:
2d:b2:91:e3:3e:e2:09:38:8b:3e:43:96:f3:14:3e:db:80:50:
0a:ea:31:a6:cd:88:58:08:58:25:db:10:92:0d:6f:4a:55:64:
d8:d5:9f:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr3Hulxj06Rql3OdVj1SrKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwM2NlY2NjYjFjMjcwNmExZmYzNTA3NjI3YTkwODBmMjRh
MmZlZWIwHhcNMjMwMTAxMDU0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2IzYzkxOTdkYWYwYTY3NDIyYjk4MjgwOTBhOGQzOTM1YzllNmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/5Y/szNyhz7dlMlA9GDE3b53Vz6
RpkEmolAIXBn2pQM/PecfGwgVVdoh+OVPKHDv+faH5Q5nQtTgyytntxyodGk0EtW
gcxDlI/HEVhp8OHz/8k9c3Bu+whEjHzbc7EAGEJnKP2/Pacff28pQ17YZb18JohE
BOwUUnrhEX5HLTQvuQn/K0n2MsF6+0UyqnJr0WAkf8r4Mlv+86KUIHQslKKow2JQ
fALdaFcqaw5MOAKUIUaFpqtWXQCSxZmtqeMGyD1gfZJj+wbihuHmyI8e+T8QMCmP
4XyhjG6yfhQkTO05BZIt98KZOwJym1gjliQT06liXdRRhHT7hmL2j5PH8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCezyRl9rwpnQiuYKAkKjTk1yeb6MB8GA1UdIwQY
MBaAFBA87MyxwnBqH/NQdiepCA8kov7rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUR6c3pMSENjR29mODFCMko2a0lEeVNpX3VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9kM2Q3ZDQtMmFhOS00ZTkxLTgyN2Yt
Nzc2NTc3NTY1OTVjLzEvSjdQSkdYMnZDbWRDSzVnb0NRcU5PVFhKNXZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9kM2Q3ZDQtMmFhOS00ZTkxLTgyN2YtNzc2NTc3NTY1OTVj
LzEvRUR6c3pMSENjR29mODFCMko2a0lEeVNpX3VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABSz4MA0G
CSqGSIb3DQEBCwUAA4IBAQCiZGpT3Bvc3G8RSlAs7Lvz+3yCSQ1FwAjvnJAEP0IH
Q8XNMaT45i753m/C0DGwC9vfqYDFzyyUMAZHy8AuonxCS8uOdfQNip9b9RnhcMfJ
YAy+uGn8LH11SIWJtTsQI6Rbz/chLIkPD0RCMQOgIJqe9xgHoxYrc9HS/OC7Gd64
RbpQL9hvJuwSwYvBNKIAkA19jMqk0PwJw/sVrDOKS2DaIjNy/4LsbMauvem7zvBf
zwuA6sfxeFR/Z4jnEBUyXC0iwDg0bHzR/8LMaxEIh6/u/uvUel2O3ZUtspHjPuIJ
OIs+Q5bzFD7bgFAK6jGmzYhYCFgl2xCSDW9KVWTY1Z/s
-----END CERTIFICATE-----
Generated at Tue Aug 1 15:22:50 2023 by rpki-client on console-ams.rpki-client.org