Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/e0326a-9bdb-4289-841b-47704e17d31c/1/mgZR2yhgyiGpJtfeZcby1D11ass.roa
File: mgZR2yhgyiGpJtfeZcby1D11ass.roa (raw, json)
Hash identifier: d/ULPj91izA/WEnTn1qCwyJyai4HVYqaJQ8m33p/UYY=
Subject key identifier: 9A:06:51:DB:28:60:CA:21:A9:26:D7:DE:65:C6:F2:D4:3D:75:6A:CB
Certificate issuer: /CN=c5a4a2d4b0023a0abef6375dfdb3b49c1b422426
Certificate serial: 01880066AECF955E1919BB120D7C5ECEAD87
Authority key identifier: C5:A4:A2:D4:B0:02:3A:0A:BE:F6:37:5D:FD:B3:B4:9C:1B:42:24:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaSi1LACOgq-9jdd_bO0nBtCJCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/e0326a-9bdb-4289-841b-47704e17d31c/1/mgZR2yhgyiGpJtfeZcby1D11ass.roa
Signing time: Tue 09 May 2023 12:05:09 +0000
ROA not before: Tue 09 May 2023 12:05:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53856
IP address blocks: 193.3.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:00:66:ae:cf:95:5e:19:19:bb:12:0d:7c:5e:ce:ad:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a4a2d4b0023a0abef6375dfdb3b49c1b422426
Validity
Not Before: May 9 12:05:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a0651db2860ca21a926d7de65c6f2d43d756acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0d:5f:ce:89:f0:27:20:b7:f2:ce:02:8f:65:
ab:71:db:78:80:25:25:cf:e9:7a:de:8b:7f:42:41:
40:7d:4a:74:cb:3d:4a:ab:00:60:d3:47:04:50:5a:
2d:8b:94:e9:a1:e6:50:a3:2e:01:fb:cc:cb:2c:8a:
f6:2c:13:a4:d0:1b:03:39:ba:a6:6e:e8:ad:5b:e9:
21:6a:e5:ed:12:68:aa:0b:2f:9f:ee:1a:3e:9a:b2:
c3:f4:31:5b:2a:04:9b:29:14:9e:a2:3f:41:01:64:
b1:20:90:85:ed:83:8a:d8:50:4c:40:4b:60:00:89:
85:dc:5c:ab:a6:e9:96:0a:36:59:17:1b:f3:79:7c:
98:8a:0a:b7:3e:5f:54:bd:95:ed:d2:9a:73:1b:ab:
a7:9c:c0:69:7a:56:7d:a4:1e:9a:5c:4d:ae:42:b5:
e3:54:c7:fb:b3:9a:1e:2c:74:d1:17:12:9b:b5:4b:
13:78:f0:60:10:04:10:30:58:4f:85:5d:a2:5a:1c:
dd:a7:db:d3:13:46:ba:1b:8d:22:fd:05:7c:16:44:
4d:0f:a4:90:12:76:1f:8a:05:cc:d0:76:42:6a:d0:
b1:2e:24:3d:a4:30:d3:14:ed:c4:a5:69:36:06:4d:
f8:ea:72:13:85:2b:e2:40:ca:0c:60:6d:7f:16:d6:
58:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:06:51:DB:28:60:CA:21:A9:26:D7:DE:65:C6:F2:D4:3D:75:6A:CB
X509v3 Authority Key Identifier:
keyid:C5:A4:A2:D4:B0:02:3A:0A:BE:F6:37:5D:FD:B3:B4:9C:1B:42:24:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaSi1LACOgq-9jdd_bO0nBtCJCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/e0326a-9bdb-4289-841b-47704e17d31c/1/mgZR2yhgyiGpJtfeZcby1D11ass.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/e0326a-9bdb-4289-841b-47704e17d31c/1/xaSi1LACOgq-9jdd_bO0nBtCJCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.166.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f1:b0:20:97:31:79:0b:cd:3e:c6:0b:ef:c9:2e:17:8e:9e:
ac:7d:cd:bb:e3:03:d0:d1:ca:f6:7f:d3:18:35:b4:97:f8:68:
bf:2a:37:35:b9:fa:34:67:b6:00:4a:bb:d6:bf:9b:59:a0:f1:
16:3b:5e:89:fa:09:72:b3:b7:b4:07:28:62:6f:04:6a:20:3f:
3c:38:ba:2e:ef:4d:50:05:23:41:ac:43:7a:1b:f4:84:12:1c:
9d:34:c9:5e:9e:36:4e:fa:d3:eb:3a:56:f9:b7:9c:fe:51:c2:
03:8a:23:0b:62:40:63:2f:72:62:0c:2b:b0:00:99:d4:6c:96:
65:92:ef:88:21:3c:a7:93:15:26:c8:96:5e:a9:d5:92:9c:5d:
7d:7b:7c:c6:bb:9f:94:ec:f2:04:4e:00:30:ba:5b:3a:0f:cc:
78:30:5f:43:2c:f2:cb:a8:36:95:71:e2:b9:d8:73:9d:3d:bc:
72:9b:61:e1:7f:50:6a:69:41:73:01:6f:5d:d1:41:31:a1:5a:
57:06:9e:f0:57:67:26:69:f1:17:ac:15:15:61:fb:27:41:b1:
3f:04:52:f5:8a:ed:3a:b1:72:a3:ec:f3:b3:c6:49:df:03:01:
6e:ce:29:80:00:78:37:10:11:59:fb:9f:d1:a5:80:04:5f:46:
10:d3:33:a8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgAZq7PlV4ZGbsSDXxezq2HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTRhMmQ0YjAwMjNhMGFiZWY2Mzc1ZGZkYjNiNDljMWI0
MjI0MjYwHhcNMjMwNTA5MTIwNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTA2NTFkYjI4NjBjYTIxYTkyNmQ3ZGU2NWM2ZjJkNDNkNzU2YWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwA1fzonwJyC38s4Cj2Wrcdt4gCUl
z+l63ot/QkFAfUp0yz1KqwBg00cEUFoti5TpoeZQoy4B+8zLLIr2LBOk0BsDObqm
buitW+khauXtEmiqCy+f7ho+mrLD9DFbKgSbKRSeoj9BAWSxIJCF7YOK2FBMQEtg
AImF3FyrpumWCjZZFxvzeXyYigq3Pl9UvZXt0ppzG6unnMBpelZ9pB6aXE2uQrXj
VMf7s5oeLHTRFxKbtUsTePBgEAQQMFhPhV2iWhzdp9vTE0a6G40i/QV8FkRND6SQ
EnYfigXM0HZCatCxLiQ9pDDTFO3EpWk2Bk346nIThSviQMoMYG1/FtZY8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJoGUdsoYMohqSbX3mXG8tQ9dWrLMB8GA1UdIwQY
MBaAFMWkotSwAjoKvvY3Xf2ztJwbQiQmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFTaTFMQUNPZ3EtOWpkZF9iTzBuQnRDSkNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9lMDMyNmEtOWJkYi00Mjg5LTg0MWIt
NDc3MDRlMTdkMzFjLzEvbWdaUjJ5aGd5aUdwSnRmZVpjYnkxRDExYXNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9lMDMyNmEtOWJkYi00Mjg5LTg0MWItNDc3MDRlMTdkMzFj
LzEveGFTaTFMQUNPZ3EtOWpkZF9iTzBuQnRDSkNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQOmMA0G
CSqGSIb3DQEBCwUAA4IBAQAS8bAglzF5C80+xgvvyS4Xjp6sfc274wPQ0cr2f9MY
NbSX+Gi/Kjc1ufo0Z7YASrvWv5tZoPEWO16J+glys7e0ByhibwRqID88OLou701Q
BSNBrEN6G/SEEhydNMlenjZO+tPrOlb5t5z+UcIDiiMLYkBjL3JiDCuwAJnUbJZl
ku+IITynkxUmyJZeqdWSnF19e3zGu5+U7PIETgAwuls6D8x4MF9DLPLLqDaVceK5
2HOdPbxym2Hhf1BqaUFzAW9d0UExoVpXBp7wV2cmafEXrBUVYfsnQbE/BFL1iu06
sXKj7POzxknfAwFuzimAAHg3EBFZ+5/RpYAEX0YQ0zOo
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:38 2025 by rpki-client