Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/U13G1Q-JGi1lNkSL_BiVQeqODh4.roa
File: U13G1Q-JGi1lNkSL_BiVQeqODh4.roa (raw, json)
Hash identifier: KorKKlHFHYOJ79ADffp2Sn5c3XZgq0SFk1SAVXR3xW0=
Subject key identifier: 53:5D:C6:D5:0F:89:1A:2D:65:36:44:8B:FC:18:95:41:EA:8E:0E:1E
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 09E9D03D
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/U13G1Q-JGi1lNkSL_BiVQeqODh4.roa
Signing time: Mon 14 Mar 2022 06:32:21 +0000
ROA not before: Mon 14 Mar 2022 06:32:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60602
IP address blocks: 89.117.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166318141 (0x9e9d03d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Mar 14 06:32:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=535dc6d50f891a2d6536448bfc189541ea8e0e1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6a:a3:09:a0:8f:69:5d:50:d7:44:0f:65:87:
28:e3:14:8d:68:cf:8c:78:b0:06:b3:c0:e9:b2:30:
f4:3a:97:77:b1:2a:8b:5f:f1:44:48:a7:6c:2f:d5:
ad:74:d8:a4:ca:3a:80:66:3c:86:68:94:1c:de:54:
0e:ac:bd:db:c4:96:8c:e1:8f:d9:66:ec:53:e4:2b:
c8:e4:85:3b:f5:35:08:10:32:49:38:a6:45:8c:47:
97:b3:6b:68:59:0c:70:0e:53:15:90:3f:9c:55:07:
d3:15:f3:61:e0:0f:c3:36:62:c0:1b:20:68:ea:57:
2a:9a:1c:c0:f7:c6:8f:e9:80:24:15:17:37:41:b2:
b3:d6:e9:7c:68:66:0f:a2:9c:a5:7c:ca:d1:f1:39:
10:d5:e6:d5:55:ac:17:69:80:6b:40:f4:0e:f7:ab:
5a:8f:f3:35:a4:09:f9:32:98:7b:b8:01:7d:00:57:
8d:e4:61:41:3d:81:4f:ba:09:2e:16:99:0f:47:02:
0d:4b:eb:bc:81:52:f5:d9:0b:a1:7a:b1:da:18:2d:
f6:4b:d7:b5:de:61:b1:b8:50:23:af:55:96:c2:fc:
fb:5c:70:5b:1f:cf:7a:3d:88:d9:a0:22:77:0d:24:
8d:e6:ff:65:70:ce:ac:c6:f5:f0:0a:a2:71:7a:ba:
84:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5D:C6:D5:0F:89:1A:2D:65:36:44:8B:FC:18:95:41:EA:8E:0E:1E
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/U13G1Q-JGi1lNkSL_BiVQeqODh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.5.0/24
Signature Algorithm: sha256WithRSAEncryption
94:60:d4:9a:3d:1b:42:e1:87:69:ef:40:23:95:c4:b3:df:eb:
01:55:c5:9c:22:82:92:9d:41:b4:54:98:11:5e:41:75:82:1f:
65:c5:2e:aa:71:56:12:b0:1a:a6:c9:26:3a:c7:e3:e5:ca:29:
ef:95:ee:b8:33:cf:49:9f:da:22:d6:71:e9:38:89:b8:0b:bb:
ca:f0:da:04:0e:70:ff:fc:1c:bf:6b:3d:96:20:28:71:58:a1:
6d:9f:b8:7f:6b:7f:df:7a:95:42:07:61:6a:7f:c2:6d:96:67:
f2:a8:a1:75:57:71:8c:0b:39:a3:bc:e8:82:5f:8f:ab:02:af:
ce:b4:f1:c5:bd:f4:f4:d0:bc:f5:6e:ea:bb:c7:9c:02:dd:da:
29:39:34:bb:e2:bc:f3:8a:fe:3d:5f:50:77:04:7d:f9:07:97:
2f:8c:74:0e:4f:e6:46:b0:a6:41:6d:b1:57:c7:87:9c:53:bf:
b5:ee:64:05:d4:d7:7c:36:ae:d8:4a:aa:03:c5:5b:ef:29:c7:
d8:69:1a:76:07:5c:d1:5b:73:bd:c9:48:82:fb:c5:82:06:8a:
19:18:fd:a3:29:70:9c:a1:cf:14:bc:96:8a:d1:bf:93:2c:12:
48:5f:da:a9:e3:37:49:b0:d0:f4:9b:51:0e:a4:e0:9c:d5:7a:
c4:07:ff:7d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECenQPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDMx
NDA2MzIyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTM1ZGM2ZDUwZjg5
MWEyZDY1MzY0NDhiZmMxODk1NDFlYThlMGUxZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJRqowmgj2ldUNdED2WHKOMUjWjPjHiwBrPA6bIw9DqXd7Eq
i1/xREinbC/VrXTYpMo6gGY8hmiUHN5UDqy928SWjOGP2WbsU+QryOSFO/U1CBAy
STimRYxHl7NraFkMcA5TFZA/nFUH0xXzYeAPwzZiwBsgaOpXKpocwPfGj+mAJBUX
N0Gys9bpfGhmD6KcpXzK0fE5ENXm1VWsF2mAa0D0DverWo/zNaQJ+TKYe7gBfQBX
jeRhQT2BT7oJLhaZD0cCDUvrvIFS9dkLoXqx2hgt9kvXtd5hsbhQI69VlsL8+1xw
Wx/Pej2I2aAidw0kjeb/ZXDOrMb18AqicXq6hJcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRTXcbVD4kaLWU2RIv8GJVB6o4OHjAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L1UxM0cxUS1KR2kxbE5rU0xfQmlWUWVxT0RoNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl1BTANBgkqhkiG9w0BAQsFAAOC
AQEAlGDUmj0bQuGHae9AI5XEs9/rAVXFnCKCkp1BtFSYEV5BdYIfZcUuqnFWErAa
pskmOsfj5cop75XuuDPPSZ/aItZx6TiJuAu7yvDaBA5w//wcv2s9liAocVihbZ+4
f2t/33qVQgdhan/CbZZn8qihdVdxjAs5o7zogl+PqwKvzrTxxb309NC89W7qu8ec
At3aKTk0u+K884r+PV9QdwR9+QeXL4x0Dk/mRrCmQW2xV8eHnFO/te5kBdTXfDau
2EqqA8Vb7ynH2Gkadgdc0VtzvclIgvvFggaKGRj9oylwnKHPFLyWitG/kywSSF/a
qeM3SbDQ9JtRDqTgnNV6xAf/fQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org