Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/23b1c6-4add-4b62-80f3-3d4c6b64f986/1/Lky1oDslSpB0MKwqMYY1S9K-HFU.roa
File: Lky1oDslSpB0MKwqMYY1S9K-HFU.roa (raw, json)
Hash identifier: gaCODgKlBFZENiYxlwwxt+10CgzaxLTOFO9zvEO6XWg=
Subject key identifier: 2E:4C:B5:A0:3B:25:4A:90:74:30:AC:2A:31:86:35:4B:D2:BE:1C:55
Certificate issuer: /CN=e6ba46c142abba78fe19257a874aa33a0884d69a
Certificate serial: 01882086B51D88E262CA1CF99650E25EDB2B
Authority key identifier: E6:BA:46:C1:42:AB:BA:78:FE:19:25:7A:87:4A:A3:3A:08:84:D6:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5rpGwUKrunj-GSV6h0qjOgiE1po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/23b1c6-4add-4b62-80f3-3d4c6b64f986/1/Lky1oDslSpB0MKwqMYY1S9K-HFU.roa
Signing time: Mon 15 May 2023 17:47:59 +0000
ROA not before: Mon 15 May 2023 17:47:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 213.109.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b5:1d:88:e2:62:ca:1c:f9:96:50:e2:5e:db:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6ba46c142abba78fe19257a874aa33a0884d69a
Validity
Not Before: May 15 17:47:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e4cb5a03b254a907430ac2a3186354bd2be1c55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:70:c7:ed:94:26:32:f3:e6:ff:f0:34:9a:d8:
b3:9e:95:fb:59:cb:b8:20:03:5d:85:59:10:63:5f:
f4:f8:35:c2:2f:0a:f9:2d:10:c0:93:11:e6:b7:cd:
f2:7e:27:ca:19:5d:91:f7:c5:bf:33:d8:54:85:42:
65:6e:87:42:1d:53:20:19:89:42:85:98:96:05:6b:
cc:5e:bc:75:dc:16:28:5c:53:cb:92:6b:3b:c2:90:
72:59:71:79:a8:f4:80:42:d1:64:40:3c:48:f5:68:
f3:6e:52:aa:23:8f:a3:ae:c5:fa:ef:59:b7:a2:9d:
56:ae:ed:12:9b:bb:9d:66:e2:b3:c7:7f:de:68:a5:
e0:01:1d:e3:29:f4:42:2a:c8:0f:16:ea:7f:3f:35:
80:a7:13:b4:f6:2e:9a:31:d2:be:a6:44:b3:c9:ef:
3a:20:ba:d3:d0:bd:49:64:01:99:0d:c8:64:0c:8f:
c1:e4:34:38:3a:a5:af:f7:c0:89:38:67:4a:b8:be:
9d:10:bb:e2:7d:0d:62:ad:8e:b2:d6:31:b4:7b:d1:
fd:20:51:14:2e:82:c8:b7:4a:ca:60:e1:d4:9a:21:
88:77:e0:95:ea:0e:04:32:1c:f7:a6:70:b8:75:fb:
bf:f1:9c:65:5b:a7:c4:dd:50:05:04:a6:2f:2f:e7:
1e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:4C:B5:A0:3B:25:4A:90:74:30:AC:2A:31:86:35:4B:D2:BE:1C:55
X509v3 Authority Key Identifier:
keyid:E6:BA:46:C1:42:AB:BA:78:FE:19:25:7A:87:4A:A3:3A:08:84:D6:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5rpGwUKrunj-GSV6h0qjOgiE1po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/23b1c6-4add-4b62-80f3-3d4c6b64f986/1/Lky1oDslSpB0MKwqMYY1S9K-HFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/23b1c6-4add-4b62-80f3-3d4c6b64f986/1/5rpGwUKrunj-GSV6h0qjOgiE1po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.149.0/24
Signature Algorithm: sha256WithRSAEncryption
33:8b:71:60:79:b2:c4:b8:6a:88:15:d3:f4:87:4f:95:0c:d7:
dc:92:f6:63:e5:9a:23:b6:0a:9b:b0:d1:fe:43:01:b6:a6:3f:
b8:99:4d:7a:ff:17:de:87:73:f6:58:e5:a7:47:f2:7b:12:54:
98:f7:66:9c:dd:d8:42:82:69:c4:08:b1:3b:85:b6:40:3f:76:
67:1b:31:c4:44:12:6d:48:77:75:b3:e6:b3:4f:46:b9:b7:d2:
b5:8e:9f:1c:e6:84:9f:c9:50:d9:ed:b4:57:fd:b5:e3:9f:fe:
bc:22:56:e6:04:81:e4:cd:b6:29:ca:99:fa:ef:61:9e:47:66:
f5:c3:38:9f:23:94:12:70:1d:34:b9:4c:f1:0c:1a:29:7e:48:
14:52:0d:23:d0:4b:62:36:91:cd:0e:4f:d8:15:69:0e:cc:d7:
52:be:77:0f:b5:d6:07:b2:a7:4d:2f:c8:13:5e:cd:04:29:b4:
ef:ed:52:c1:f9:43:7f:87:fc:4c:f4:95:76:d5:69:fd:c4:58:
43:ec:f4:f9:2a:02:27:d7:07:9b:9f:f8:61:36:62:de:87:a9:
40:0c:8b:ed:8e:1f:38:75:20:eb:e3:32:93:67:c2:1b:86:d8:
1e:e4:78:85:66:9d:65:bd:28:9b:9b:3d:c3:b0:3d:4d:54:fb:
72:92:14:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgghrUdiOJiyhz5llDiXtsrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2YmE0NmMxNDJhYmJhNzhmZTE5MjU3YTg3NGFhMzNhMDg4
NGQ2OWEwHhcNMjMwNTE1MTc0NzU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTRjYjVhMDNiMjU0YTkwNzQzMGFjMmEzMTg2MzU0YmQyYmUxYzU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXDH7ZQmMvPm//A0mtiznpX7Wcu4
IANdhVkQY1/0+DXCLwr5LRDAkxHmt83yfifKGV2R98W/M9hUhUJlbodCHVMgGYlC
hZiWBWvMXrx13BYoXFPLkms7wpByWXF5qPSAQtFkQDxI9WjzblKqI4+jrsX671m3
op1Wru0Sm7udZuKzx3/eaKXgAR3jKfRCKsgPFup/PzWApxO09i6aMdK+pkSzye86
ILrT0L1JZAGZDchkDI/B5DQ4OqWv98CJOGdKuL6dELvifQ1irY6y1jG0e9H9IFEU
LoLIt0rKYOHUmiGId+CV6g4EMhz3pnC4dfu/8ZxlW6fE3VAFBKYvL+cerwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC5MtaA7JUqQdDCsKjGGNUvSvhxVMB8GA1UdIwQY
MBaAFOa6RsFCq7p4/hkleodKozoIhNaaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXJwR3dVS3J1bmotR1NWNmgwcWpPZ2lFMXBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8yM2IxYzYtNGFkZC00YjYyLTgwZjMt
M2Q0YzZiNjRmOTg2LzEvTGt5MW9Ec2xTcEIwTUt3cU1ZWTFTOUstSEZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC8yM2IxYzYtNGFkZC00YjYyLTgwZjMtM2Q0YzZiNjRmOTg2
LzEvNXJwR3dVS3J1bmotR1NWNmgwcWpPZ2lFMXBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1W2VMA0G
CSqGSIb3DQEBCwUAA4IBAQAzi3FgebLEuGqIFdP0h0+VDNfckvZj5ZojtgqbsNH+
QwG2pj+4mU16/xfeh3P2WOWnR/J7ElSY92ac3dhCgmnECLE7hbZAP3ZnGzHERBJt
SHd1s+azT0a5t9K1jp8c5oSfyVDZ7bRX/bXjn/68IlbmBIHkzbYpypn672GeR2b1
wzifI5QScB00uUzxDBopfkgUUg0j0EtiNpHNDk/YFWkOzNdSvncPtdYHsqdNL8gT
Xs0EKbTv7VLB+UN/h/xM9JV21Wn9xFhD7PT5KgIn1webn/hhNmLeh6lADIvtjh84
dSDr4zKTZ8Ibhtge5HiFZp1lvSibmz3DsD1NVPtykhT8
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:20 2025 by rpki-client