Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/90c7ae-3681-4c30-9664-c27faa8e4b6f/1/AHEzAorRo1ASAFggXwa4YYV_XUM.roa
File: AHEzAorRo1ASAFggXwa4YYV_XUM.roa (raw, json)
Hash identifier: 8TUcFGjcuCCyZ+4fh+Xq1oWiC9y6ct1Mak5mnG3bh/Q=
Subject key identifier: 00:71:33:02:8A:D1:A3:50:12:00:58:20:5F:06:B8:61:85:7F:5D:43
Certificate issuer: /CN=4a4ab91141d5181bdc0f713bd3c0fd073c1a9074
Certificate serial: 018CC8DF4CF037882876DBC2F8170E5127BB
Authority key identifier: 4A:4A:B9:11:41:D5:18:1B:DC:0F:71:3B:D3:C0:FD:07:3C:1A:90:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skq5EUHVGBvcD3E708D9BzwakHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/90c7ae-3681-4c30-9664-c27faa8e4b6f/1/AHEzAorRo1ASAFggXwa4YYV_XUM.roa
Signing time: Tue 02 Jan 2024 06:32:06 +0000
ROA not before: Tue 02 Jan 2024 06:32:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 195.64.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:4c:f0:37:88:28:76:db:c2:f8:17:0e:51:27:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a4ab91141d5181bdc0f713bd3c0fd073c1a9074
Validity
Not Before: Jan 2 06:32:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=007133028ad1a350120058205f06b861857f5d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:90:69:8f:10:50:23:f5:fd:df:3c:47:ad:cd:
9c:7f:75:8a:e6:d0:21:e0:78:ba:9d:d1:96:f0:5b:
8d:af:57:92:17:33:f2:26:05:ce:d7:df:a5:c5:fb:
91:fa:ff:da:76:17:ee:3f:ff:10:e2:ab:1d:12:df:
92:9d:07:12:2d:3a:26:54:ba:97:ed:33:49:b0:72:
08:54:3f:c2:98:08:e9:eb:e8:66:9a:9b:6c:18:7d:
0f:5e:fd:1e:ca:82:4a:1e:7d:d8:95:43:f9:b9:67:
05:9a:b4:8b:ed:2c:b7:5f:e6:ff:82:2e:dd:fb:ef:
93:ba:aa:5c:01:52:79:1b:5a:86:64:06:c6:96:2e:
dc:07:a5:7c:a3:f9:d9:fd:8a:f8:e3:43:f8:5d:fa:
a3:93:d6:14:23:87:b0:69:53:11:c4:c4:1f:94:61:
2c:ad:fa:04:d0:62:61:f3:25:63:98:41:1e:24:54:
a6:15:37:e7:a7:d8:9a:27:f4:30:a2:be:e7:8f:7e:
1d:3b:c1:8f:48:26:8f:77:b7:5a:17:69:28:10:f7:
7d:d4:56:51:8e:0d:82:fc:45:2d:29:36:a0:7f:b9:
27:00:1e:73:2f:85:68:49:28:bd:b2:e9:e7:ac:1a:
d4:30:16:6a:ea:be:f5:4c:0f:2e:fc:a4:9d:0e:8f:
37:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:71:33:02:8A:D1:A3:50:12:00:58:20:5F:06:B8:61:85:7F:5D:43
X509v3 Authority Key Identifier:
keyid:4A:4A:B9:11:41:D5:18:1B:DC:0F:71:3B:D3:C0:FD:07:3C:1A:90:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skq5EUHVGBvcD3E708D9BzwakHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/90c7ae-3681-4c30-9664-c27faa8e4b6f/1/AHEzAorRo1ASAFggXwa4YYV_XUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/90c7ae-3681-4c30-9664-c27faa8e4b6f/1/Skq5EUHVGBvcD3E708D9BzwakHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.107.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:0f:f9:36:6c:1c:bf:c1:54:47:93:bc:34:35:49:44:55:e0:
04:60:a2:fc:b0:14:41:d2:3d:35:2f:bb:f0:0b:fa:83:4c:01:
65:4d:ed:dd:58:ca:41:b0:d1:94:c7:ba:4a:a6:11:3b:1f:5a:
4f:dd:ae:de:23:92:27:e6:03:2a:0e:cb:81:e8:80:aa:83:6e:
97:7b:74:21:05:20:a3:06:3d:e5:e1:22:61:29:ee:b7:a0:52:
c3:1b:b5:a5:f9:63:a2:bb:cb:7d:34:9a:69:31:8e:7f:c9:3d:
c6:20:b6:e9:b3:12:57:bb:19:78:62:29:9d:4d:1d:71:e2:a2:
81:27:7e:39:f6:31:44:df:a0:d2:11:f2:91:f6:e9:65:d3:6d:
df:bd:9f:71:d4:a7:37:f3:9a:9f:2a:c6:77:87:be:e7:50:6f:
da:75:2a:87:85:41:76:4b:24:c8:b0:5e:2a:75:b8:3a:0a:bd:
db:e8:52:92:41:81:32:b6:70:9a:32:a0:a6:e7:01:d0:4e:72:
d4:4a:1f:a1:f6:94:b8:59:fd:9f:4b:20:c1:7e:f4:13:a1:c0:
d6:70:f3:ee:8e:1a:a4:6f:ce:d8:9f:af:4e:6d:97:44:86:56:
c6:46:57:c8:4c:8e:cf:79:a2:da:d2:4c:8a:6d:34:a4:b4:b6:
a7:a7:42:9e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI30zwN4godtvC+BcOUSe7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNGFiOTExNDFkNTE4MWJkYzBmNzEzYmQzYzBmZDA3M2Mx
YTkwNzQwHhcNMjQwMTAyMDYzMjA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDcxMzMwMjhhZDFhMzUwMTIwMDU4MjA1ZjA2Yjg2MTg1N2Y1ZDQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJBpjxBQI/X93zxHrc2cf3WK5tAh
4Hi6ndGW8FuNr1eSFzPyJgXO19+lxfuR+v/adhfuP/8Q4qsdEt+SnQcSLTomVLqX
7TNJsHIIVD/CmAjp6+hmmptsGH0PXv0eyoJKHn3YlUP5uWcFmrSL7Sy3X+b/gi7d
+++TuqpcAVJ5G1qGZAbGli7cB6V8o/nZ/Yr440P4Xfqjk9YUI4ewaVMRxMQflGEs
rfoE0GJh8yVjmEEeJFSmFTfnp9iaJ/Qwor7nj34dO8GPSCaPd7daF2koEPd91FZR
jg2C/EUtKTagf7knAB5zL4VoSSi9sunnrBrUMBZq6r71TA8u/KSdDo83VwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFABxMwKK0aNQEgBYIF8GuGGFf11DMB8GA1UdIwQY
MBaAFEpKuRFB1Rgb3A9xO9PA/Qc8GpB0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2txNUVVSFZHQnZjRDNFNzA4RDlCendha0hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85MGM3YWUtMzY4MS00YzMwLTk2NjQt
YzI3ZmFhOGU0YjZmLzEvQUhFekFvclJvMUFTQUZnZ1h3YTRZWVZfWFVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC85MGM3YWUtMzY4MS00YzMwLTk2NjQtYzI3ZmFhOGU0YjZm
LzEvU2txNUVVSFZHQnZjRDNFNzA4RDlCendha0hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0BrMA0G
CSqGSIb3DQEBCwUAA4IBAQArD/k2bBy/wVRHk7w0NUlEVeAEYKL8sBRB0j01L7vw
C/qDTAFlTe3dWMpBsNGUx7pKphE7H1pP3a7eI5In5gMqDsuB6ICqg26Xe3QhBSCj
Bj3l4SJhKe63oFLDG7Wl+WOiu8t9NJppMY5/yT3GILbpsxJXuxl4YimdTR1x4qKB
J3459jFE36DSEfKR9ull023fvZ9x1Kc385qfKsZ3h77nUG/adSqHhUF2SyTIsF4q
dbg6Cr3b6FKSQYEytnCaMqCm5wHQTnLUSh+h9pS4Wf2fSyDBfvQTocDWcPPujhqk
b87Yn69ObZdEhlbGRlfITI7PeaLa0kyKbTSktLanp0Ke
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:56 2024 by rpki-client on console-fra.rpki-client.org