Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/5FMHmHD0wAy_4DRuooHfZIQGBLo.roa
File: 5FMHmHD0wAy_4DRuooHfZIQGBLo.roa (raw, json)
Hash identifier: VGcOC15/dE5/FGXXZyoRg3/1rRe9MMjbH+w7M8T1Or8=
Subject key identifier: E4:53:07:98:70:F4:C0:0C:BF:E0:34:6E:A2:81:DF:64:84:06:04:BA
Certificate issuer: /CN=f2f0a391aaa6d790aae280ca589b28f444f71f57
Certificate serial: 8E075F
Authority key identifier: F2:F0:A3:91:AA:A6:D7:90:AA:E2:80:CA:58:9B:28:F4:44:F7:1F:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8vCjkaqm15Cq4oDKWJso9ET3H1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/5FMHmHD0wAy_4DRuooHfZIQGBLo.roa
Signing time: Sat 01 Jan 2022 01:55:24 +0000
ROA not before: Sat 01 Jan 2022 01:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 195.96.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9307999 (0x8e075f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2f0a391aaa6d790aae280ca589b28f444f71f57
Validity
Not Before: Jan 1 01:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e453079870f4c00cbfe0346ea281df64840604ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b9:32:4e:9d:c7:28:17:fe:a1:06:ec:ea:75:
34:09:81:d1:31:fd:30:8b:95:3f:17:7a:b4:a8:03:
b4:82:9d:70:c6:9e:e8:64:f2:01:90:0e:3b:fc:a3:
ce:c3:67:9a:a6:c4:d6:8b:6e:d0:34:21:34:65:55:
d0:16:b0:bc:02:19:cf:4d:2d:a2:5a:f3:13:a0:fa:
65:d4:c1:4f:5c:77:bb:2c:8f:28:a0:e5:1f:a8:bf:
7d:e8:93:26:6b:d5:ef:20:5e:18:0e:96:c7:b2:41:
7c:69:46:17:27:63:74:8b:9b:48:86:a6:32:22:ee:
a7:dc:01:15:05:1a:a0:20:1a:96:88:a3:a0:71:d8:
8e:38:d1:0a:ca:65:42:63:ce:c8:10:24:d0:cb:c4:
48:ea:73:8a:e3:e6:98:c9:16:e7:df:76:f7:ad:98:
fb:70:ba:5c:18:b7:73:24:bc:ee:5c:48:7d:70:e6:
8d:d7:87:2b:4f:d9:3c:54:db:6b:8c:b6:10:26:7f:
51:9d:5a:cf:6a:d4:f7:63:ee:ae:1b:d7:c1:3e:8b:
34:91:dc:17:cc:fa:7d:5f:5b:22:e6:cf:68:63:18:
df:2b:e9:29:ab:5b:b6:d5:ec:be:46:fd:4c:2f:30:
1e:c7:d6:73:3e:9b:9d:8e:3c:7c:f4:57:ae:73:c2:
24:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:53:07:98:70:F4:C0:0C:BF:E0:34:6E:A2:81:DF:64:84:06:04:BA
X509v3 Authority Key Identifier:
keyid:F2:F0:A3:91:AA:A6:D7:90:AA:E2:80:CA:58:9B:28:F4:44:F7:1F:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8vCjkaqm15Cq4oDKWJso9ET3H1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/5FMHmHD0wAy_4DRuooHfZIQGBLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/8vCjkaqm15Cq4oDKWJso9ET3H1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.130.0/24
Signature Algorithm: sha256WithRSAEncryption
39:c6:96:22:1e:f3:d3:e1:14:43:95:49:4e:fd:00:78:1b:f6:
33:4f:a8:51:fa:42:41:04:d8:96:f5:de:17:94:16:66:4f:07:
46:33:d6:0b:65:34:12:57:da:a8:9b:cb:03:c5:ee:5f:67:3a:
9e:e2:70:10:18:38:f3:c7:b2:1a:9c:3c:f9:d0:25:53:fb:48:
36:d3:10:a3:dc:f7:7b:95:f8:eb:90:bd:7c:d3:c6:0f:d3:12:
3f:47:37:c0:9b:23:4d:bd:43:5b:ba:50:9b:97:48:5f:53:c7:
29:ff:9b:33:14:30:35:3c:4e:1e:fd:5a:7a:a4:4e:50:3f:55:
50:62:88:ea:41:f8:08:7d:f6:66:7f:f2:e5:8a:82:cb:fc:22:
a5:c2:a9:96:41:82:35:d0:c3:da:dc:63:1a:6a:4a:c5:56:84:
32:15:df:45:33:74:44:62:49:b3:75:40:26:a5:02:e3:3e:1a:
36:27:80:2b:71:b7:c9:ac:07:d8:f2:21:66:b2:df:ab:06:9e:
6a:78:2c:1f:7e:68:5b:a9:ab:46:72:df:96:c5:31:30:3d:ee:
40:b4:08:f2:17:f7:eb:a3:e8:e8:ac:b5:c9:14:fc:d5:da:86:
a9:31:21:0d:b5:b8:f0:55:10:39:67:d0:c7:6a:d8:d9:ca:98:
f8:8a:5e:bf
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAI4HXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MmYwYTM5MWFhYTZkNzkwYWFlMjgwY2E1ODliMjhmNDQ0ZjcxZjU3MB4XDTIyMDEw
MTAxNTUyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTQ1MzA3OTg3MGY0
YzAwY2JmZTAzNDZlYTI4MWRmNjQ4NDA2MDRiYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKi5Mk6dxygX/qEG7Op1NAmB0TH9MIuVPxd6tKgDtIKdcMae
6GTyAZAOO/yjzsNnmqbE1otu0DQhNGVV0BawvAIZz00tolrzE6D6ZdTBT1x3uyyP
KKDlH6i/feiTJmvV7yBeGA6Wx7JBfGlGFydjdIubSIamMiLup9wBFQUaoCAaloij
oHHYjjjRCsplQmPOyBAk0MvESOpziuPmmMkW5992962Y+3C6XBi3cyS87lxIfXDm
jdeHK0/ZPFTba4y2ECZ/UZ1az2rU92PurhvXwT6LNJHcF8z6fV9bIubPaGMY3yvp
KatbttXsvkb9TC8wHsfWcz6bnY48fPRXrnPCJM0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTkUweYcPTADL/gNG6igd9khAYEujAfBgNVHSMEGDAWgBTy8KORqqbXkKri
gMpYmyj0RPcfVzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzh2Q2prYXFtMTVDcTRvREtXSnNvOUVUM0gxYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDgvMDM4ZDFiLTg0MGItNDc3Mi1hZTdlLWRlZjAzZDUxZmVhNC8x
LzVGTUhtSEQwd0F5XzREUnVvb0hmWklRR0JMby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgv
MDM4ZDFiLTg0MGItNDc3Mi1hZTdlLWRlZjAzZDUxZmVhNC8xLzh2Q2prYXFtMTVD
cTRvREtXSnNvOUVUM0gxYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNggjANBgkqhkiG9w0BAQsFAAOC
AQEAOcaWIh7z0+EUQ5VJTv0AeBv2M0+oUfpCQQTYlvXeF5QWZk8HRjPWC2U0Elfa
qJvLA8XuX2c6nuJwEBg488eyGpw8+dAlU/tINtMQo9z3e5X465C9fNPGD9MSP0c3
wJsjTb1DW7pQm5dIX1PHKf+bMxQwNTxOHv1aeqROUD9VUGKI6kH4CH32Zn/y5YqC
y/wipcKplkGCNdDD2txjGmpKxVaEMhXfRTN0RGJJs3VAJqUC4z4aNieAK3G3yawH
2PIhZrLfqwaeangsH35oW6mrRnLflsUxMD3uQLQI8hf366Po6Ky1yRT81dqGqTEh
DbW48FUQOWfQx2rY2cqY+Ipevw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:56 2024 by rpki-client on console-ams.rpki-client.org