Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/I2sUBCuxH0Ml-NN-apXWdUKEiU8.roa
File: I2sUBCuxH0Ml-NN-apXWdUKEiU8.roa (raw, json)
Hash identifier: 5x29KICrSC/jJHwZ6QkWgDmicwrY30bmWBzA7VnhkWo=
Subject key identifier: 23:6B:14:04:2B:B1:1F:43:25:F8:D3:7E:6A:95:D6:75:42:84:89:4F
Certificate issuer: /CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Certificate serial: 30DD422C
Authority key identifier: 6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/I2sUBCuxH0Ml-NN-apXWdUKEiU8.roa
Signing time: Sat 01 Jan 2022 10:55:35 +0000
ROA not before: Sat 01 Jan 2022 10:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8628
IP address blocks: 109.121.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 819806764 (0x30dd422c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Validity
Not Before: Jan 1 10:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=236b14042bb11f4325f8d37e6a95d6754284894f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:35:1f:af:7a:c3:db:47:b8:7a:3a:be:82:86:
04:ce:7c:b5:cb:13:14:8b:25:b6:e6:78:62:dc:f9:
16:76:1a:b9:41:02:55:1a:1a:7f:d8:68:ef:e1:6e:
e2:33:7f:7d:b4:f0:da:c5:9c:52:15:79:32:0a:be:
ba:69:dd:37:3c:23:14:c6:42:8d:16:eb:58:91:b7:
ac:8a:12:2e:1d:ee:88:88:e5:02:a4:0f:e0:bf:20:
6e:97:c0:0c:ed:15:9d:eb:5c:e2:8a:4a:c5:9d:9c:
dc:45:db:9c:a5:88:6b:13:c4:aa:64:10:b6:dc:a1:
5c:29:79:f2:2b:f2:cb:28:b5:13:49:6d:2c:9a:bc:
3e:4e:34:e7:bf:0e:f3:5c:c0:3f:fe:9d:d2:69:f1:
4f:8a:b6:03:45:3c:56:0a:8a:11:2b:ac:c9:17:7d:
ed:84:5a:07:b1:15:9e:be:39:88:81:3d:9d:1f:c7:
a9:98:73:4a:93:69:e1:f1:26:85:22:d7:8f:9a:e0:
35:df:20:ff:f9:6f:ba:54:82:52:ec:59:60:7c:cc:
cb:a6:20:c9:7c:e9:6d:c9:01:af:cf:ac:52:6b:53:
6e:7b:7b:03:6d:4a:d7:96:04:68:64:20:f4:5d:2c:
19:ea:8c:cc:f3:1e:d2:7e:19:74:53:22:02:04:24:
cb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:6B:14:04:2B:B1:1F:43:25:F8:D3:7E:6A:95:D6:75:42:84:89:4F
X509v3 Authority Key Identifier:
keyid:6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/I2sUBCuxH0Ml-NN-apXWdUKEiU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/bdLps6TXsks6aqFPPto_FPopx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.133.0/24
Signature Algorithm: sha256WithRSAEncryption
01:a4:53:11:db:0a:cc:82:ba:30:ec:89:ee:a7:1b:0f:a5:2e:
3c:5f:05:76:7d:85:ac:73:18:2a:53:09:67:70:47:22:ce:4c:
2c:90:67:20:06:91:b1:43:b7:e7:4f:f1:14:2d:33:f6:1d:ac:
5a:6c:2c:9c:aa:c5:a4:23:eb:81:36:e5:59:89:50:3e:8b:9e:
b3:b2:e9:72:ff:64:55:1e:c4:fb:43:92:d1:d0:22:b3:23:5e:
8e:a0:7d:fe:3b:d8:7b:94:38:09:97:88:de:9a:47:76:27:15:
5c:c2:12:d7:37:6e:2a:6e:e4:22:e4:e3:f4:ee:f9:d2:ee:31:
bf:69:0e:ea:a0:96:c7:a3:fd:87:62:ac:82:d8:d2:90:aa:fd:
fd:a5:63:ac:23:e7:c1:26:79:5a:4d:ce:17:a3:dc:4f:36:02:
e8:ae:ef:e2:cd:e7:6e:95:c0:db:c6:b5:d8:34:ff:13:ae:ad:
79:5f:78:a6:4d:ec:c2:68:09:34:ed:9c:f0:ca:84:59:1a:43:
9d:46:b9:34:45:06:6b:e9:60:de:9b:08:7a:76:a7:c1:44:5c:
ce:28:be:60:e7:0c:24:fe:f5:de:c9:47:2f:be:24:0b:2c:f0:
d1:52:a0:ec:3b:cc:b9:9a:7b:78:11:e4:0e:e9:5c:65:23:d3:
bd:ff:15:da
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMN1CLDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZGQyZTliM2E0ZDdiMjRiM2E2YWExNGYzZWRhM2YxNGZhMjljNzZiMB4XDTIyMDEw
MTEwNTUzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjM2YjE0MDQyYmIx
MWY0MzI1ZjhkMzdlNmE5NWQ2NzU0Mjg0ODk0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMk1H696w9tHuHo6voKGBM58tcsTFIsltuZ4Ytz5FnYauUEC
VRoaf9ho7+Fu4jN/fbTw2sWcUhV5Mgq+umndNzwjFMZCjRbrWJG3rIoSLh3uiIjl
AqQP4L8gbpfADO0Vnetc4opKxZ2c3EXbnKWIaxPEqmQQttyhXCl58ivyyyi1E0lt
LJq8Pk40578O81zAP/6d0mnxT4q2A0U8VgqKESusyRd97YRaB7EVnr45iIE9nR/H
qZhzSpNp4fEmhSLXj5rgNd8g//lvulSCUuxZYHzMy6YgyXzpbckBr8+sUmtTbnt7
A21K15YEaGQg9F0sGeqMzPMe0n4ZdFMiAgQkyzMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQjaxQEK7EfQyX4035qldZ1QoSJTzAfBgNVHSMEGDAWgBRt0umzpNeySzpq
oU8+2j8U+inHazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JkTHBzNlRYc2tzNmFxRlBQdG9fRlBvcHgycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvY2Q5YmM4LTExYzUtNGY1YS1iYjI1LTQ1YWU3YjNkYWU2OC8x
L0kyc1VCQ3V4SDBNbC1OTi1hcFhXZFVLRWlVOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
Y2Q5YmM4LTExYzUtNGY1YS1iYjI1LTQ1YWU3YjNkYWU2OC8xL2JkTHBzNlRYc2tz
NmFxRlBQdG9fRlBvcHgycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG15hTANBgkqhkiG9w0BAQsFAAOC
AQEAAaRTEdsKzIK6MOyJ7qcbD6UuPF8Fdn2FrHMYKlMJZ3BHIs5MLJBnIAaRsUO3
50/xFC0z9h2sWmwsnKrFpCPrgTblWYlQPoues7Lpcv9kVR7E+0OS0dAisyNejqB9
/jvYe5Q4CZeI3ppHdicVXMIS1zduKm7kIuTj9O750u4xv2kO6qCWx6P9h2KsgtjS
kKr9/aVjrCPnwSZ5Wk3OF6PcTzYC6K7v4s3nbpXA28a12DT/E66teV94pk3swmgJ
NO2c8MqEWRpDnUa5NEUGa+lg3psIenanwURczii+YOcMJP713slHL74kCyzw0VKg
7DvMuZp7eBHkDulcZSPTvf8V2g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-fra.rpki-client.org