Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/3NPdy97GjB-bNstpDZa5-JBNl-8.roa
File: 3NPdy97GjB-bNstpDZa5-JBNl-8.roa (raw, json)
Hash identifier: fH8AHfxMKDAZIPP7Y+Yd/RN5EMACzcD7ap5/iGcIQOs=
Subject key identifier: DC:D3:DD:CB:DE:C6:8C:1F:9B:36:CB:69:0D:96:B9:F8:90:4D:97:EF
Certificate issuer: /CN=f2f0a391aaa6d790aae280ca589b28f444f71f57
Certificate serial: 8DA299
Authority key identifier: F2:F0:A3:91:AA:A6:D7:90:AA:E2:80:CA:58:9B:28:F4:44:F7:1F:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8vCjkaqm15Cq4oDKWJso9ET3H1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/3NPdy97GjB-bNstpDZa5-JBNl-8.roa
Signing time: Sat 01 Jan 2022 01:55:23 +0000
ROA not before: Sat 01 Jan 2022 01:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 195.96.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9282201 (0x8da299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2f0a391aaa6d790aae280ca589b28f444f71f57
Validity
Not Before: Jan 1 01:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcd3ddcbdec68c1f9b36cb690d96b9f8904d97ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ac:9b:c5:65:59:b7:72:ec:09:a0:77:28:a7:
28:84:4c:20:9c:9e:28:6d:0b:89:27:87:bf:c3:2e:
6b:2f:36:98:1d:b8:17:71:9b:f9:d7:f7:0c:3a:59:
ea:42:7c:5b:52:b7:af:a9:e1:b0:c8:d6:c4:8b:90:
db:1c:a6:28:ae:0e:bc:c8:44:ec:5d:bd:8f:b5:3d:
65:01:8d:4f:1c:63:65:44:34:08:84:e5:20:5a:c3:
7b:7e:38:11:25:1e:4b:96:37:ed:48:17:cd:d5:be:
91:04:c2:24:c1:86:b8:17:5d:63:75:f3:30:8b:ee:
df:ce:62:26:bd:9e:1e:e1:c5:99:7b:9f:d7:af:05:
f5:c1:45:31:1e:39:6a:bd:ff:b3:44:49:2b:59:d5:
bc:5b:7c:2b:38:1d:38:9b:e4:e3:f8:ee:5a:be:3e:
c1:22:b9:3d:ce:04:13:6c:88:6a:c3:70:ba:05:49:
06:2a:1b:f8:66:b9:8a:37:e9:f6:43:0c:97:47:e0:
ee:4b:8a:a4:89:9a:53:a5:c5:78:b4:46:21:2a:4b:
ff:5e:be:37:b1:8e:a2:70:ad:fb:e8:2a:48:e4:f8:
5f:13:96:b6:e5:05:3f:d9:97:c9:6b:bc:ce:94:35:
c4:bb:47:dd:bc:41:cb:56:39:5c:f7:1e:4e:b6:99:
ae:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D3:DD:CB:DE:C6:8C:1F:9B:36:CB:69:0D:96:B9:F8:90:4D:97:EF
X509v3 Authority Key Identifier:
keyid:F2:F0:A3:91:AA:A6:D7:90:AA:E2:80:CA:58:9B:28:F4:44:F7:1F:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8vCjkaqm15Cq4oDKWJso9ET3H1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/3NPdy97GjB-bNstpDZa5-JBNl-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/8vCjkaqm15Cq4oDKWJso9ET3H1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.130.0/24
Signature Algorithm: sha256WithRSAEncryption
44:c3:ed:ea:62:a1:07:d6:fc:9a:27:70:75:37:92:9b:56:52:
ab:f5:39:a4:a3:e5:ea:f0:33:2e:e0:52:c6:98:4c:b3:5a:8f:
92:d3:72:ef:4a:c8:19:9a:e8:7b:a0:4d:c4:72:e3:fe:cb:7d:
b7:54:73:f8:06:28:20:75:d6:12:b8:40:f4:85:38:d2:33:7b:
8f:d5:9d:62:1a:a6:69:0f:8c:79:24:7d:03:50:77:8c:5a:a5:
06:e7:2e:07:a3:20:39:8c:ec:39:d5:5a:b6:14:5d:83:cf:43:
e9:b0:42:26:3f:1b:d3:1c:2c:ab:25:5e:10:4e:9f:c3:81:ba:
b2:e8:67:72:27:68:45:bd:05:dc:7a:52:4f:a3:ab:4f:6a:81:
a1:b7:a7:69:76:53:5a:3e:e1:26:8c:b1:65:7c:f6:ad:c6:7b:
2c:13:63:79:9e:33:69:80:b7:98:43:2b:c1:7d:09:1f:cd:fb:
aa:4e:28:8f:98:29:15:1f:30:b0:2b:3a:af:f7:17:be:27:6a:
f8:17:5c:1d:d1:c1:95:09:4d:73:c9:53:0c:0b:a3:bb:10:cb:
34:19:2c:a3:d0:53:a0:96:f8:bb:79:53:7c:46:a5:42:3c:fa:
2e:ea:62:8f:90:02:68:62:d5:e6:df:67:8f:fb:97:53:88:fe:
27:44:eb:b1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAI2imTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MmYwYTM5MWFhYTZkNzkwYWFlMjgwY2E1ODliMjhmNDQ0ZjcxZjU3MB4XDTIyMDEw
MTAxNTUyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGNkM2RkY2JkZWM2
OGMxZjliMzZjYjY5MGQ5NmI5Zjg5MDRkOTdlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOOsm8VlWbdy7AmgdyinKIRMIJyeKG0LiSeHv8Muay82mB24
F3Gb+df3DDpZ6kJ8W1K3r6nhsMjWxIuQ2xymKK4OvMhE7F29j7U9ZQGNTxxjZUQ0
CITlIFrDe344ESUeS5Y37UgXzdW+kQTCJMGGuBddY3XzMIvu385iJr2eHuHFmXuf
168F9cFFMR45ar3/s0RJK1nVvFt8KzgdOJvk4/juWr4+wSK5Pc4EE2yIasNwugVJ
Biob+Ga5ijfp9kMMl0fg7kuKpImaU6XFeLRGISpL/16+N7GOonCt++gqSOT4XxOW
tuUFP9mXyWu8zpQ1xLtH3bxBy1Y5XPceTraZrvMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTc093L3saMH5s2y2kNlrn4kE2X7zAfBgNVHSMEGDAWgBTy8KORqqbXkKri
gMpYmyj0RPcfVzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzh2Q2prYXFtMTVDcTRvREtXSnNvOUVUM0gxYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDgvMDM4ZDFiLTg0MGItNDc3Mi1hZTdlLWRlZjAzZDUxZmVhNC8x
LzNOUGR5OTdHakItYk5zdHBEWmE1LUpCTmwtOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgv
MDM4ZDFiLTg0MGItNDc3Mi1hZTdlLWRlZjAzZDUxZmVhNC8xLzh2Q2prYXFtMTVD
cTRvREtXSnNvOUVUM0gxYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNggjANBgkqhkiG9w0BAQsFAAOC
AQEARMPt6mKhB9b8midwdTeSm1ZSq/U5pKPl6vAzLuBSxphMs1qPktNy70rIGZro
e6BNxHLj/st9t1Rz+AYoIHXWErhA9IU40jN7j9WdYhqmaQ+MeSR9A1B3jFqlBucu
B6MgOYzsOdVathRdg89D6bBCJj8b0xwsqyVeEE6fw4G6suhncidoRb0F3HpST6Or
T2qBobenaXZTWj7hJoyxZXz2rcZ7LBNjeZ4zaYC3mEMrwX0JH837qk4oj5gpFR8w
sCs6r/cXvidq+BdcHdHBlQlNc8lTDAujuxDLNBkso9BToJb4u3lTfEalQjz6Lupi
j5ACaGLV5t9nj/uXU4j+J0TrsQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:56 2024 by rpki-client on console-ams.rpki-client.org