Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/4ed110-6479-42d7-81d9-e876ebf94417/1/ogP1J5OBpehgY1mD1wHG2lG2esU.roa
File: ogP1J5OBpehgY1mD1wHG2lG2esU.roa (raw, json)
Hash identifier: 6L2N3RT+olAjzz6P6A1/ALhjKI0fRqD8aAted0QbMz8=
Subject key identifier: A2:03:F5:27:93:81:A5:E8:60:63:59:83:D7:01:C6:DA:51:B6:7A:C5
Certificate issuer: /CN=44e29bc671f99dd59bda945577139150631b1d71
Certificate serial: C7F7CC
Authority key identifier: 44:E2:9B:C6:71:F9:9D:D5:9B:DA:94:55:77:13:91:50:63:1B:1D:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ROKbxnH5ndWb2pRVdxORUGMbHXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/4ed110-6479-42d7-81d9-e876ebf94417/1/ogP1J5OBpehgY1mD1wHG2lG2esU.roa
Signing time: Sat 01 Jan 2022 06:56:13 +0000
ROA not before: Sat 01 Jan 2022 06:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48715
IP address blocks: 213.109.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13105100 (0xc7f7cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44e29bc671f99dd59bda945577139150631b1d71
Validity
Not Before: Jan 1 06:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a203f5279381a5e860635983d701c6da51b67ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:36:2a:68:43:6b:39:29:35:a7:5c:e8:df:d7:
a6:ed:8a:d8:6d:94:5a:35:c6:9d:f4:86:2c:77:bb:
01:c4:2e:8f:d8:07:91:d7:0c:aa:4d:e5:90:10:cc:
aa:85:80:3f:3b:83:a2:09:14:0f:43:3c:04:21:5f:
07:dc:ad:65:a1:ab:78:49:4e:8a:d6:05:94:9c:23:
be:44:1f:b1:ae:4d:e7:f0:70:e2:1c:47:33:b1:0b:
f5:77:a5:fa:e1:0b:0b:35:41:41:8b:5f:71:f8:10:
fd:c2:b7:7d:4a:ce:29:ac:d5:bc:87:4d:1d:d2:26:
2c:6f:ef:90:29:e0:98:d1:12:c9:0a:cf:cc:f6:6b:
97:ca:be:18:7f:27:c3:c3:e4:5f:a6:86:3a:0e:ba:
10:c4:7d:26:19:49:7d:de:5c:84:8f:3e:b8:1e:29:
68:cd:08:7f:64:89:46:17:de:f2:04:12:fc:77:a0:
c5:1a:68:1d:6d:08:fb:e4:59:4e:fd:f1:97:2e:e8:
8d:a3:0b:0c:56:af:37:53:15:5d:81:e4:f1:38:22:
13:53:92:13:d6:0d:df:4c:99:50:c1:fe:57:53:bb:
aa:f6:8d:3a:c1:d1:09:db:17:d0:b5:38:6d:9d:1a:
5c:51:5b:e7:5d:69:57:18:1b:a3:38:01:4d:07:0d:
12:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:03:F5:27:93:81:A5:E8:60:63:59:83:D7:01:C6:DA:51:B6:7A:C5
X509v3 Authority Key Identifier:
keyid:44:E2:9B:C6:71:F9:9D:D5:9B:DA:94:55:77:13:91:50:63:1B:1D:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ROKbxnH5ndWb2pRVdxORUGMbHXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ed110-6479-42d7-81d9-e876ebf94417/1/ogP1J5OBpehgY1mD1wHG2lG2esU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ed110-6479-42d7-81d9-e876ebf94417/1/ROKbxnH5ndWb2pRVdxORUGMbHXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.199.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:32:d1:31:f4:f1:bc:ba:76:76:c2:25:4b:6c:d3:a4:c9:0f:
09:53:51:91:88:17:58:c5:65:f4:12:52:c3:37:f2:75:aa:64:
6e:fb:39:9c:08:ab:a9:d1:95:02:f2:73:2d:55:6a:ef:5b:35:
4e:cf:b8:5b:2e:aa:5e:70:32:d6:26:f9:d9:4b:e8:27:6c:6b:
0f:3f:f8:2b:5b:3b:fe:26:e7:49:7b:f1:3e:06:b7:92:98:b4:
8a:37:a1:7f:b5:1f:f2:4c:b5:af:61:9e:a5:85:14:d3:41:e6:
d8:0d:d6:b1:64:84:1e:95:bc:32:7a:5c:6f:aa:fa:41:f4:ea:
f0:4e:c6:b7:e1:88:50:1f:48:f1:98:a3:78:a1:5c:70:b0:cc:
21:9d:af:48:89:32:a7:98:45:cd:20:dc:12:88:13:e9:d0:63:
d0:04:37:29:9d:7f:aa:f5:f9:d7:a6:e2:fc:74:d3:99:d4:4f:
4c:9d:ad:a5:bd:60:f3:ee:48:e2:29:59:5d:5a:73:77:25:c7:
a0:59:0d:8c:96:21:45:27:7c:96:10:e0:c5:fe:07:81:c3:7b:
f2:b3:43:d7:97:7c:dc:c5:09:78:92:9f:ff:55:07:c9:f5:af:
bb:4f:8e:34:c9:33:48:a0:ee:e1:e4:22:f6:9c:c7:b0:02:2e:
47:bd:8d:73
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAMf3zDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NGUyOWJjNjcxZjk5ZGQ1OWJkYTk0NTU3NzEzOTE1MDYzMWIxZDcxMB4XDTIyMDEw
MTA2NTYxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTIwM2Y1Mjc5Mzgx
YTVlODYwNjM1OTgzZDcwMWM2ZGE1MWI2N2FjNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANU2KmhDazkpNadc6N/Xpu2K2G2UWjXGnfSGLHe7AcQuj9gH
kdcMqk3lkBDMqoWAPzuDogkUD0M8BCFfB9ytZaGreElOitYFlJwjvkQfsa5N5/Bw
4hxHM7EL9Xel+uELCzVBQYtfcfgQ/cK3fUrOKazVvIdNHdImLG/vkCngmNESyQrP
zPZrl8q+GH8nw8PkX6aGOg66EMR9JhlJfd5chI8+uB4paM0If2SJRhfe8gQS/Heg
xRpoHW0I++RZTv3xly7ojaMLDFavN1MVXYHk8TgiE1OSE9YN30yZUMH+V1O7qvaN
OsHRCdsX0LU4bZ0aXFFb511pVxgbozgBTQcNEmkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSiA/Unk4Gl6GBjWYPXAcbaUbZ6xTAfBgNVHSMEGDAWgBRE4pvGcfmd1Zva
lFV3E5FQYxsdcTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JPS2J4bkg1bmRXYjJwUlZkeE9SVUdNYkhYRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzMvNGVkMTEwLTY0NzktNDJkNy04MWQ5LWU4NzZlYmY5NDQxNy8x
L29nUDFKNU9CcGVoZ1kxbUQxd0hHMmxHMmVzVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMv
NGVkMTEwLTY0NzktNDJkNy04MWQ5LWU4NzZlYmY5NDQxNy8xL1JPS2J4bkg1bmRX
YjJwUlZkeE9SVUdNYkhYRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANVtxzANBgkqhkiG9w0BAQsFAAOC
AQEAwjLRMfTxvLp2dsIlS2zTpMkPCVNRkYgXWMVl9BJSwzfydapkbvs5nAirqdGV
AvJzLVVq71s1Ts+4Wy6qXnAy1ib52UvoJ2xrDz/4K1s7/ibnSXvxPga3kpi0ijeh
f7Uf8ky1r2GepYUU00Hm2A3WsWSEHpW8Mnpcb6r6QfTq8E7Gt+GIUB9I8ZijeKFc
cLDMIZ2vSIkyp5hFzSDcEogT6dBj0AQ3KZ1/qvX516bi/HTTmdRPTJ2tpb1g8+5I
4ilZXVpzdyXHoFkNjJYhRSd8lhDgxf4HgcN78rND15d83MUJeJKf/1UHyfWvu0+O
NMkzSKDu4eQi9pzHsAIuR72Ncw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:29 2025 by rpki-client