Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/m_P2kPcbRgXqBsLNhSFrI_utl_w.roa
File: m_P2kPcbRgXqBsLNhSFrI_utl_w.roa (raw, json)
Hash identifier: KesrQ/pDPmyqAPbhpMqOMPib3GS8BNF8auBTPBYyJ8A=
Subject key identifier: 9B:F3:F6:90:F7:1B:46:05:EA:06:C2:CD:85:21:6B:23:FB:AD:97:FC
Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial: 035A9842
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/m_P2kPcbRgXqBsLNhSFrI_utl_w.roa
Signing time: Sat 01 Jan 2022 02:00:48 +0000
ROA not before: Sat 01 Jan 2022 02:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.54.124.0/24 maxlen: 24
185.54.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56268866 (0x35a9842)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Validity
Not Before: Jan 1 02:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bf3f690f71b4605ea06c2cd85216b23fbad97fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:31:28:2c:18:56:90:fa:d5:df:6d:68:16:4f:
74:86:d8:62:84:cb:89:c6:cf:36:f8:a5:8d:2c:63:
63:36:78:9c:bd:eb:d9:9d:6d:02:f8:a2:c5:f2:d5:
7e:ed:6d:0d:fd:ae:bc:d6:c8:bb:d1:14:83:64:5a:
b1:d5:3a:0e:29:92:61:a5:2a:bc:04:55:97:68:84:
18:95:13:67:9e:b1:84:6d:dd:d3:1f:36:49:6d:69:
c4:a1:53:bd:e7:71:5e:2f:98:ec:f3:3e:60:a8:59:
3a:15:01:ed:00:0e:3a:fb:93:fb:1e:db:69:1c:10:
51:b6:5a:ec:83:c3:72:9e:2a:ce:83:d5:80:d0:4f:
cf:c0:00:4c:ac:f9:0a:98:7e:ac:77:8d:4c:b6:ad:
de:36:f8:dc:bf:f7:dd:86:05:fb:df:fe:11:21:b2:
62:7e:ec:c1:6e:77:f1:3a:06:94:d6:51:7d:98:0b:
4a:3b:2e:46:fd:0d:75:61:a1:db:89:91:f6:19:5a:
85:8e:59:3a:72:98:f4:c5:ec:58:dd:b8:12:6d:4a:
0b:31:09:71:c4:27:c4:55:3d:a1:cd:62:94:aa:2c:
5b:e3:bd:44:27:5e:d2:53:13:41:63:63:a8:7c:3f:
eb:ec:ec:c6:68:a7:b6:f4:e3:8c:9d:9d:ad:bc:5b:
77:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:F3:F6:90:F7:1B:46:05:EA:06:C2:CD:85:21:6B:23:FB:AD:97:FC
X509v3 Authority Key Identifier:
keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/m_P2kPcbRgXqBsLNhSFrI_utl_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.124.0/24
185.54.126.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:cf:21:a4:0d:cd:48:e0:06:03:0a:ef:6a:36:60:ba:f4:92:
be:d2:d4:61:64:a1:15:1e:f0:5f:21:d6:8d:09:62:03:8a:6c:
ce:d0:c6:f9:a1:ab:99:4c:5b:9f:79:73:dd:b9:59:2a:99:0b:
be:37:79:bf:3a:f9:9d:7c:5d:90:7c:8b:5c:17:49:ea:06:60:
61:d7:64:7d:b9:cf:f9:3a:7f:74:9b:14:c8:b0:49:86:c4:54:
98:9d:aa:82:e3:06:2d:41:db:70:f2:86:51:dc:52:04:fe:81:
c0:1d:94:5a:e2:5d:d4:0b:77:a8:68:a0:c5:68:ae:41:4c:ed:
2f:04:88:b6:6b:5c:f0:11:9c:d8:b7:a1:13:81:aa:bd:76:85:
79:39:82:0c:04:ed:4a:e8:0a:7d:67:f7:66:14:53:de:83:29:
1a:5b:72:8d:e7:0a:b2:d3:55:15:93:43:97:fe:3e:04:80:cb:
e9:11:8d:5e:0d:63:3e:a3:15:37:e9:0c:d6:c6:ea:09:c2:5f:
cb:ef:28:84:c7:54:42:6a:25:ff:ea:98:ae:5e:22:ac:11:c9:
88:8c:65:37:31:0d:23:b5:b7:be:04:f1:f6:15:39:4f:16:9e:
84:2d:66:f8:30:ce:dd:85:79:4b:7f:e7:f7:2f:30:2f:ce:39:
da:48:c3:00
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA1qYQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
Mzc4N2NkNzk0NmUxMGQ4ODY0NmFjNzlkZTU3Y2M2ZWM1OWU0MTMyMB4XDTIyMDEw
MTAyMDA0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWJmM2Y2OTBmNzFi
NDYwNWVhMDZjMmNkODUyMTZiMjNmYmFkOTdmYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN0xKCwYVpD61d9taBZPdIbYYoTLicbPNviljSxjYzZ4nL3r
2Z1tAviixfLVfu1tDf2uvNbIu9EUg2RasdU6DimSYaUqvARVl2iEGJUTZ56xhG3d
0x82SW1pxKFTvedxXi+Y7PM+YKhZOhUB7QAOOvuT+x7baRwQUbZa7IPDcp4qzoPV
gNBPz8AATKz5Cph+rHeNTLat3jb43L/33YYF+9/+ESGyYn7swW538ToGlNZRfZgL
SjsuRv0NdWGh24mR9hlahY5ZOnKY9MXsWN24Em1KCzEJccQnxFU9oc1ilKosW+O9
RCde0lMTQWNjqHw/6+zsxmintvTjjJ2drbxbdwUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSb8/aQ9xtGBeoGws2FIWsj+62X/DAfBgNVHSMEGDAWgBRTeHzXlG4Q2IZG
rHneV8xuxZ5BMjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1UzaDgxNVJ1RU5pR1JxeDUzbGZNYnNXZVFUSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvYzc3ODI1LTY4YTMtNGIzZS1iYzkwLTUyM2ZkODZhMDdjNy8x
L21fUDJrUGNiUmdYcUJzTE5oU0ZySV91dGxfdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
Yzc3ODI1LTY4YTMtNGIzZS1iYzkwLTUyM2ZkODZhMDdjNy8xL1UzaDgxNVJ1RU5p
R1JxeDUzbGZNYnNXZVFUSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALk2fAMEALk2fjANBgkqhkiG9w0B
AQsFAAOCAQEAbs8hpA3NSOAGAwrvajZguvSSvtLUYWShFR7wXyHWjQliA4psztDG
+aGrmUxbn3lz3blZKpkLvjd5vzr5nXxdkHyLXBdJ6gZgYddkfbnP+Tp/dJsUyLBJ
hsRUmJ2qguMGLUHbcPKGUdxSBP6BwB2UWuJd1At3qGigxWiuQUztLwSItmtc8BGc
2LehE4GqvXaFeTmCDATtSugKfWf3ZhRT3oMpGltyjecKstNVFZNDl/4+BIDL6RGN
Xg1jPqMVN+kM1sbqCcJfy+8ohMdUQmol/+qYrl4irBHJiIxlNzENI7W3vgTx9hU5
TxaehC1m+DDO3YV5S3/n9y8wL8452kjDAA==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:32 2025 by rpki-client