Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/pTaQzTmHxzOS0GG6HAX3Glthn-o.roa
File: pTaQzTmHxzOS0GG6HAX3Glthn-o.roa (raw, json)
Hash identifier: uF0036Gs6+dQRd1LP7XPX8IWLUtjwZ4WeCZlBePHO4U=
Subject key identifier: A5:36:90:CD:39:87:C7:33:92:D0:61:BA:1C:05:F7:1A:5B:61:9F:EA
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018A4AFE275B7BF84F786A907961ED42295F
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/pTaQzTmHxzOS0GG6HAX3Glthn-o.roa
Signing time: Thu 31 Aug 2023 09:48:04 +0000
ROA not before: Thu 31 Aug 2023 09:48:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209437
IP address blocks: 192.71.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:fe:27:5b:7b:f8:4f:78:6a:90:79:61:ed:42:29:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Aug 31 09:48:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a53690cd3987c73392d061ba1c05f71a5b619fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:7c:d2:23:ad:50:7a:93:7b:b8:df:69:c7:
b5:c0:2e:18:4a:8a:a2:c2:0c:61:01:52:e0:b4:4c:
e8:20:4a:a3:aa:62:8b:bf:ef:6c:f0:0e:38:f8:c5:
50:42:30:b8:b8:92:c6:6f:b5:5e:2d:80:f8:15:66:
f9:5e:1f:7e:26:01:6e:8e:1c:bb:6a:58:d1:af:88:
e7:10:a3:3c:61:ca:3d:9a:f9:f6:5c:ee:b7:43:35:
dc:9e:41:88:0c:87:b4:ca:68:3d:c4:08:78:cb:24:
00:b1:44:ee:fe:64:de:3a:8c:4d:16:c1:81:5a:85:
16:fb:ac:f6:15:b9:34:5d:0d:e6:b1:6f:4a:fe:90:
5a:c2:e9:7c:1e:f0:95:b2:d3:ae:bd:64:2f:58:17:
e4:39:f8:19:2e:62:50:d9:3e:1f:0d:3b:45:0b:23:
6e:2e:5e:42:80:90:d7:fa:f1:eb:e3:7e:21:18:a0:
0d:73:d5:22:fb:92:26:0d:83:c2:52:c7:8c:6f:9b:
9b:f7:84:d4:04:41:5f:58:9f:12:db:d5:f6:63:14:
c5:0a:8b:bb:86:06:53:71:33:4e:c1:1b:c9:79:66:
38:b3:7f:72:0a:c9:25:02:bc:ac:9c:81:f0:dd:63:
98:68:8f:09:de:98:7a:8e:d7:a8:73:be:9e:b4:f5:
8c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:36:90:CD:39:87:C7:33:92:D0:61:BA:1C:05:F7:1A:5B:61:9F:EA
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/pTaQzTmHxzOS0GG6HAX3Glthn-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.184.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:0f:f9:a1:4d:fb:08:ed:2e:23:07:bf:4f:00:34:76:0f:23:
b0:5d:9c:bf:bf:cc:8f:3a:39:c8:62:b4:81:08:03:89:96:1d:
69:ff:8a:f5:ee:8d:ea:d6:d8:d3:72:88:c7:f6:21:b3:11:bc:
0d:1d:6b:9c:6a:ce:c8:f1:1c:1c:92:f8:ed:bc:ed:74:55:40:
a4:30:54:08:b8:18:91:81:ca:14:e9:fb:d2:36:d9:82:0d:c4:
41:24:da:6f:6e:56:43:0f:4c:bf:df:6a:c6:f2:0e:29:f0:cf:
dd:e7:cb:8e:ac:cd:f3:41:51:8c:46:53:eb:68:18:b9:b3:fc:
e2:9b:10:3c:8a:67:eb:23:d1:60:71:2c:92:d7:61:f2:de:41:
72:41:55:8c:5c:61:83:44:ff:b5:54:35:3e:e3:74:4c:89:e3:
45:e0:ce:e7:9c:ec:4b:cf:4b:ec:7e:4d:85:b7:0f:4f:f1:30:
83:25:a3:9f:5e:91:9f:b3:d2:54:c7:c2:3a:c4:c5:52:74:60:
49:2a:f5:c9:ac:e6:41:84:f8:17:45:c7:ba:72:13:a9:5d:72:
a8:43:5b:37:db:b6:57:e7:f4:b7:6e:53:94:75:c3:81:05:78:
fa:89:29:09:7b:4c:75:f7:8b:1f:fa:63:d4:6e:4b:70:d6:a2:
82:2e:16:bb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpK/idbe/hPeGqQeWHtQilfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjMwODMxMDk0ODA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTM2OTBjZDM5ODdjNzMzOTJkMDYxYmExYzA1ZjcxYTViNjE5ZmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuJ80iOtUHqTe7jface1wC4YSoqi
wgxhAVLgtEzoIEqjqmKLv+9s8A44+MVQQjC4uJLGb7VeLYD4FWb5Xh9+JgFujhy7
aljRr4jnEKM8Yco9mvn2XO63QzXcnkGIDIe0ymg9xAh4yyQAsUTu/mTeOoxNFsGB
WoUW+6z2Fbk0XQ3msW9K/pBawul8HvCVstOuvWQvWBfkOfgZLmJQ2T4fDTtFCyNu
Ll5CgJDX+vHr434hGKANc9Ui+5ImDYPCUseMb5ub94TUBEFfWJ8S29X2YxTFCou7
hgZTcTNOwRvJeWY4s39yCsklArysnIHw3WOYaI8J3ph6jteoc76etPWMrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKU2kM05h8czktBhuhwF9xpbYZ/qMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvcFRhUXpUbUh4ek9TMEdHNkhBWDNHbHRobi1vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwEe4MA0G
CSqGSIb3DQEBCwUAA4IBAQA9D/mhTfsI7S4jB79PADR2DyOwXZy/v8yPOjnIYrSB
CAOJlh1p/4r17o3q1tjTcojH9iGzEbwNHWucas7I8RwckvjtvO10VUCkMFQIuBiR
gcoU6fvSNtmCDcRBJNpvblZDD0y/32rG8g4p8M/d58uOrM3zQVGMRlPraBi5s/zi
mxA8imfrI9FgcSyS12Hy3kFyQVWMXGGDRP+1VDU+43RMieNF4M7nnOxLz0vsfk2F
tw9P8TCDJaOfXpGfs9JUx8I6xMVSdGBJKvXJrOZBhPgXRce6chOpXXKoQ1s327ZX
5/S3blOUdcOBBXj6iSkJe0x194sf+mPUbktw1qKCLha7
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:37 2025 by rpki-client