Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c65eae-e4ee-462a-aa56-0ce30699ad78/1/2FLC5M-5dAfQgMyebUjw5tZYO18.roa
File: 2FLC5M-5dAfQgMyebUjw5tZYO18.roa (raw, json)
Hash identifier: DQOBHAfswZ9w5wSrIa61/wF3jvTnGkjhh20NL8GqJkI=
Subject key identifier: D8:52:C2:E4:CF:B9:74:07:D0:80:CC:9E:6D:48:F0:E6:D6:58:3B:5F
Certificate issuer: /CN=d3ac8e30a183155f85989e249b5eee069187fd3f
Certificate serial: 01856D5D11A773CD2DF4FCD85910882485AC
Authority key identifier: D3:AC:8E:30:A1:83:15:5F:85:98:9E:24:9B:5E:EE:06:91:87:FD:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/06yOMKGDFV-FmJ4km17uBpGH_T8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c65eae-e4ee-462a-aa56-0ce30699ad78/1/2FLC5M-5dAfQgMyebUjw5tZYO18.roa
Signing time: Sun 01 Jan 2023 12:44:53 +0000
ROA not before: Sun 01 Jan 2023 12:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 109.107.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:11:a7:73:cd:2d:f4:fc:d8:59:10:88:24:85:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3ac8e30a183155f85989e249b5eee069187fd3f
Validity
Not Before: Jan 1 12:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d852c2e4cfb97407d080cc9e6d48f0e6d6583b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:93:e2:eb:d3:35:38:f6:f4:b4:ef:e7:62:ea:
a6:b0:98:be:a9:06:f3:bd:f3:7a:91:51:79:03:90:
db:06:07:65:5e:74:11:5d:8b:03:29:b0:f0:88:da:
0f:e3:60:21:e9:5f:e3:bd:23:47:68:32:dc:d3:0e:
5f:d1:d2:de:5d:9c:c4:42:30:65:c3:a7:63:82:71:
eb:e0:7f:34:6d:a0:f3:33:61:2e:3a:79:33:c5:57:
69:29:50:bb:6d:51:df:a2:b9:fe:39:1b:a1:55:ac:
21:af:57:5d:5c:95:ec:ef:f9:e6:52:46:1f:14:79:
a5:20:2a:f4:a8:5d:4a:d0:81:90:9f:48:d8:21:75:
cb:82:21:f5:c6:5b:f2:ac:e2:63:30:e4:d9:7f:2b:
68:ff:41:dc:e0:2d:c3:49:76:96:76:dd:ae:91:0e:
1e:73:f4:8c:d9:5f:40:e0:04:87:61:89:52:28:39:
ad:c3:7e:9f:21:3c:27:3c:0a:95:0f:0b:8c:89:f4:
04:10:c7:38:29:42:5a:c9:e3:aa:88:cc:f7:91:af:
c9:a7:c5:39:39:66:43:51:c2:ba:ef:f2:e9:00:fc:
00:59:85:62:7a:7b:f8:55:a8:3a:4c:f1:4b:e3:ad:
c5:e5:05:16:44:e7:60:4e:c7:e4:90:0c:81:89:35:
ff:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:52:C2:E4:CF:B9:74:07:D0:80:CC:9E:6D:48:F0:E6:D6:58:3B:5F
X509v3 Authority Key Identifier:
keyid:D3:AC:8E:30:A1:83:15:5F:85:98:9E:24:9B:5E:EE:06:91:87:FD:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/06yOMKGDFV-FmJ4km17uBpGH_T8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c65eae-e4ee-462a-aa56-0ce30699ad78/1/2FLC5M-5dAfQgMyebUjw5tZYO18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c65eae-e4ee-462a-aa56-0ce30699ad78/1/06yOMKGDFV-FmJ4km17uBpGH_T8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.147.0/24
Signature Algorithm: sha256WithRSAEncryption
59:80:a8:c6:47:e0:a1:6d:76:a2:7d:48:33:61:fc:50:45:8c:
12:6c:ce:75:bb:ad:e1:75:47:bb:38:e1:53:30:0b:72:bf:8a:
1e:8d:d7:05:71:20:cd:8f:ce:41:68:ef:cf:1a:f9:d5:e9:37:
cc:e8:85:2b:25:79:76:b2:09:c9:ae:a7:08:70:b9:29:87:83:
92:fa:52:56:a0:0b:3c:8f:51:94:2f:3e:a4:21:26:88:22:ba:
88:6a:c0:fa:a1:af:b8:86:2d:41:27:2e:1e:d8:0f:16:d9:75:
e3:e9:cf:93:c9:32:e1:f9:4c:15:10:02:29:ac:70:3f:6f:11:
91:81:97:15:4e:ab:74:34:d9:35:e4:85:1d:57:30:da:20:ba:
db:fc:e7:fc:60:7c:9b:84:6c:99:d5:d8:25:08:00:b4:25:1d:
5c:6b:bf:4a:70:bc:73:d4:0b:c8:f8:d0:1c:fc:2c:e8:df:4a:
9a:55:19:62:2a:cc:f5:75:d4:71:51:5b:f3:81:a8:58:48:c9:
a8:09:68:4d:61:bb:eb:df:45:3c:87:16:a6:4d:b3:a9:da:65:
ee:47:8d:ff:25:aa:80:ca:fd:6e:26:7c:1e:07:e7:1d:7c:9c:
73:20:cd:a7:14:b5:57:5c:4e:57:73:0a:71:f4:f8:d3:6a:f8:
23:e7:54:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtXRGnc80t9PzYWRCIJIWsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYWM4ZTMwYTE4MzE1NWY4NTk4OWUyNDliNWVlZTA2OTE4
N2ZkM2YwHhcNMjMwMTAxMTI0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODUyYzJlNGNmYjk3NDA3ZDA4MGNjOWU2ZDQ4ZjBlNmQ2NTgzYjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZPi69M1OPb0tO/nYuqmsJi+qQbz
vfN6kVF5A5DbBgdlXnQRXYsDKbDwiNoP42Ah6V/jvSNHaDLc0w5f0dLeXZzEQjBl
w6djgnHr4H80baDzM2EuOnkzxVdpKVC7bVHforn+ORuhVawhr1ddXJXs7/nmUkYf
FHmlICr0qF1K0IGQn0jYIXXLgiH1xlvyrOJjMOTZfyto/0Hc4C3DSXaWdt2ukQ4e
c/SM2V9A4ASHYYlSKDmtw36fITwnPAqVDwuMifQEEMc4KUJayeOqiMz3ka/Jp8U5
OWZDUcK67/LpAPwAWYVienv4Vag6TPFL463F5QUWROdgTsfkkAyBiTX/eQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNhSwuTPuXQH0IDMnm1I8ObWWDtfMB8GA1UdIwQY
MBaAFNOsjjChgxVfhZieJJte7gaRh/0/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDZ5T01LR0RGVi1GbUo0a20xN3VCcEdIX1Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjVlYWUtZTRlZS00NjJhLWFhNTYt
MGNlMzA2OTlhZDc4LzEvMkZMQzVNLTVkQWZRZ015ZWJVanc1dFpZTzE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jNjVlYWUtZTRlZS00NjJhLWFhNTYtMGNlMzA2OTlhZDc4
LzEvMDZ5T01LR0RGVi1GbUo0a20xN3VCcEdIX1Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWuTMA0G
CSqGSIb3DQEBCwUAA4IBAQBZgKjGR+ChbXaifUgzYfxQRYwSbM51u63hdUe7OOFT
MAtyv4oejdcFcSDNj85BaO/PGvnV6TfM6IUrJXl2sgnJrqcIcLkph4OS+lJWoAs8
j1GULz6kISaIIrqIasD6oa+4hi1BJy4e2A8W2XXj6c+TyTLh+UwVEAIprHA/bxGR
gZcVTqt0NNk15IUdVzDaILrb/Of8YHybhGyZ1dglCAC0JR1ca79KcLxz1AvI+NAc
/Czo30qaVRliKsz1ddRxUVvzgahYSMmoCWhNYbvr30U8hxamTbOp2mXuR43/JaqA
yv1uJnweB+cdfJxzIM2nFLVXXE5Xcwpx9PjTavgj51RR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:55 2024 by rpki-client on console-fra.rpki-client.org