Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mpMq8MVVn4mveHIxHm3YGcuPPiI.roa
File: mpMq8MVVn4mveHIxHm3YGcuPPiI.roa (raw, json)
Hash identifier: ePnx+Kik2TBprwf9ZgsmSleUz+IWTocJDWKHFOoS6ac=
Subject key identifier: 9A:93:2A:F0:C5:55:9F:89:AF:78:72:31:1E:6D:D8:19:CB:8F:3E:22
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A0D3EA0
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mpMq8MVVn4mveHIxHm3YGcuPPiI.roa
Signing time: Mon 28 Mar 2022 04:44:04 +0000
ROA not before: Mon 28 Mar 2022 04:44:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 89.116.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168640160 (0xa0d3ea0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Mar 28 04:44:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a932af0c5559f89af7872311e6dd819cb8f3e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:dd:3b:4f:43:bf:75:13:16:2a:b5:c4:4b:7d:
2e:78:43:ed:69:40:b2:b0:94:f9:26:3c:1d:9c:71:
ce:74:66:20:74:3b:97:d2:e2:ec:eb:54:c7:1d:3e:
30:32:a7:88:bf:6b:97:d7:c9:e7:b1:1a:50:fd:a5:
7d:f5:f8:0a:96:ec:a5:b9:e5:3a:12:82:57:8a:c6:
c2:3a:14:f3:82:91:0f:a4:62:49:51:1f:65:8d:d6:
fa:e0:b9:45:52:60:e8:4d:8b:23:80:8e:4e:15:12:
33:45:67:ae:0d:d5:67:39:65:02:54:d0:e2:a2:ee:
18:3c:ad:2f:df:04:72:23:78:b2:cc:cb:35:34:67:
12:13:12:a1:69:6c:d3:47:bc:78:f9:2e:38:4d:25:
ec:22:ea:f5:9f:ba:e0:61:d1:82:63:96:7c:e7:c1:
f4:a3:d5:af:74:ea:de:2a:aa:30:d8:c5:5d:60:24:
57:6e:a2:86:0f:ec:c6:59:f8:53:59:88:c2:5d:3b:
4e:73:e5:01:d6:2c:a0:e7:a8:9a:f6:13:d0:ae:9e:
c9:0f:5c:25:ee:64:13:68:1e:40:2c:26:a0:ea:22:
a3:ba:46:39:77:61:66:c5:78:f9:54:b1:bd:1c:3c:
20:a2:dd:2d:9c:2c:3f:3a:59:e5:61:f5:f6:8c:33:
af:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:93:2A:F0:C5:55:9F:89:AF:78:72:31:1E:6D:D8:19:CB:8F:3E:22
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mpMq8MVVn4mveHIxHm3YGcuPPiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.123.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:91:6f:3a:90:78:60:ad:ba:94:26:6c:8b:d4:f8:eb:5b:df:
69:5c:05:3c:84:a8:a5:28:34:40:f3:d0:d3:9f:68:82:23:2b:
cf:d1:a6:25:1e:9b:b1:a7:56:33:15:4a:af:f3:f4:73:7f:07:
40:fd:4e:b1:23:e5:01:33:85:fb:c0:c1:6b:ec:d5:94:ee:d6:
c3:4b:1f:4c:cc:f8:84:30:94:9f:27:ca:7a:59:88:d3:ee:96:
bd:23:f7:be:7f:3e:94:59:f6:d1:5d:54:76:a6:e5:e5:48:f7:
9f:2b:7f:23:37:ca:3d:e6:54:c9:0a:f4:96:53:9c:16:75:69:
e4:65:fb:5f:ff:47:04:82:e7:f6:63:b3:f3:d0:b2:4d:e4:9d:
a1:8b:59:04:3a:d5:39:ff:7e:71:21:0a:9c:50:ba:63:4b:3a:
3c:96:9b:62:40:e5:e8:f4:48:b5:cd:8d:28:4b:bc:47:3e:2c:
88:3a:0c:76:aa:92:95:87:cd:2d:53:17:c8:83:9e:d6:35:2b:
57:83:f5:9a:fc:e9:b7:9e:8f:fc:53:d3:b5:47:cb:75:75:bd:
24:02:b9:dc:fe:7b:68:0c:dc:d6:2e:23:dc:e5:e5:07:5c:7d:
9c:72:4c:32:eb:3c:4f:49:1e:bd:4b:77:70:a1:64:43:62:ac:
01:21:47:f3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECg0+oDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDMy
ODA0NDQwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWE5MzJhZjBjNTU1
OWY4OWFmNzg3MjMxMWU2ZGQ4MTljYjhmM2UyMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKjdO09Dv3UTFiq1xEt9LnhD7WlAsrCU+SY8HZxxznRmIHQ7
l9Li7OtUxx0+MDKniL9rl9fJ57EaUP2lffX4CpbspbnlOhKCV4rGwjoU84KRD6Ri
SVEfZY3W+uC5RVJg6E2LI4COThUSM0Vnrg3VZzllAlTQ4qLuGDytL98EciN4sszL
NTRnEhMSoWls00e8ePkuOE0l7CLq9Z+64GHRgmOWfOfB9KPVr3Tq3iqqMNjFXWAk
V26ihg/sxln4U1mIwl07TnPlAdYsoOeomvYT0K6eyQ9cJe5kE2geQCwmoOoio7pG
OXdhZsV4+VSxvRw8IKLdLZwsPzpZ5WH19owzr+kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSakyrwxVWfia94cjEebdgZy48+IjAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L21wTXE4TVZWbjRtdmVISXhIbTNZR2N1UFBpSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl0ezANBgkqhkiG9w0BAQsFAAOC
AQEAw5FvOpB4YK26lCZsi9T461vfaVwFPISopSg0QPPQ059ogiMrz9GmJR6bsadW
MxVKr/P0c38HQP1OsSPlATOF+8DBa+zVlO7Ww0sfTMz4hDCUnyfKelmI0+6WvSP3
vn8+lFn20V1Udqbl5Uj3nyt/IzfKPeZUyQr0llOcFnVp5GX7X/9HBILn9mOz89Cy
TeSdoYtZBDrVOf9+cSEKnFC6Y0s6PJabYkDl6PRItc2NKEu8Rz4siDoMdqqSlYfN
LVMXyIOe1jUrV4P1mvzpt56P/FPTtUfLdXW9JAK53P57aAzc1i4j3OXlB1x9nHJM
Mus8T0kevUt3cKFkQ2KsASFH8w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org