Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/a74803-2dfb-46ae-a45f-baa224df960b/1/L5M5BedDm_W_ZeaPjiuisaH1Ibs.roa
File: L5M5BedDm_W_ZeaPjiuisaH1Ibs.roa (raw, json)
Hash identifier: A3bEgyHNfygnHAad2vmkKSdEQyHyFmiFOH/CS+RS1Fw=
Subject key identifier: 2F:93:39:05:E7:43:9B:F5:BF:65:E6:8F:8E:2B:A2:B1:A1:F5:21:BB
Certificate issuer: /CN=b8d5e2393d9949a2c4e1bdaeeadb5a94e6029be3
Certificate serial: 0185711E605056375C35BAC0EA0C379032AB
Authority key identifier: B8:D5:E2:39:3D:99:49:A2:C4:E1:BD:AE:EA:DB:5A:94:E6:02:9B:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNXiOT2ZSaLE4b2u6ttalOYCm-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/a74803-2dfb-46ae-a45f-baa224df960b/1/L5M5BedDm_W_ZeaPjiuisaH1Ibs.roa
Signing time: Mon 02 Jan 2023 06:14:54 +0000
ROA not before: Mon 02 Jan 2023 06:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 91.246.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:60:50:56:37:5c:35:ba:c0:ea:0c:37:90:32:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d5e2393d9949a2c4e1bdaeeadb5a94e6029be3
Validity
Not Before: Jan 2 06:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f933905e7439bf5bf65e68f8e2ba2b1a1f521bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b9:28:9c:42:66:00:b4:ba:10:ed:4b:a7:a0:
5c:38:fd:06:85:78:28:b4:20:bf:04:e9:d0:2b:f2:
08:09:8e:8b:8f:7d:83:e7:59:3e:5b:b3:62:75:db:
f2:bd:19:02:b2:58:b0:c9:ee:12:ae:b7:93:54:17:
fe:5a:5a:96:91:3e:fb:38:e5:b7:a4:ec:14:de:73:
81:dd:e7:48:44:90:8b:9f:55:30:21:8b:20:4a:bd:
d7:30:49:3b:7c:88:32:2f:71:fe:68:7e:b2:81:0d:
c6:3b:2d:cf:74:54:8c:af:5f:d5:eb:de:06:da:f7:
3b:3c:f9:a3:f6:8e:24:a3:e7:09:3e:14:d7:73:39:
b6:a1:3a:d4:af:02:df:11:de:28:0e:dd:45:71:c5:
c7:36:28:17:9b:1d:42:4c:f2:93:40:af:9e:49:db:
4a:6e:a8:12:e9:5b:34:77:68:02:40:d5:7e:c3:74:
e2:d2:65:15:59:5e:e3:54:75:51:c6:86:fa:57:58:
8c:18:9a:b1:57:ae:a2:98:03:b4:23:45:e8:b3:7c:
4a:50:01:77:eb:6e:6a:55:c8:ac:71:08:f2:a9:0a:
c7:23:92:89:86:0a:64:ec:b9:73:b8:31:55:0e:26:
c3:a5:76:96:b1:4d:8e:f3:6f:97:f7:74:bd:9e:13:
eb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:93:39:05:E7:43:9B:F5:BF:65:E6:8F:8E:2B:A2:B1:A1:F5:21:BB
X509v3 Authority Key Identifier:
keyid:B8:D5:E2:39:3D:99:49:A2:C4:E1:BD:AE:EA:DB:5A:94:E6:02:9B:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNXiOT2ZSaLE4b2u6ttalOYCm-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a74803-2dfb-46ae-a45f-baa224df960b/1/L5M5BedDm_W_ZeaPjiuisaH1Ibs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a74803-2dfb-46ae-a45f-baa224df960b/1/uNXiOT2ZSaLE4b2u6ttalOYCm-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.32.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:4a:de:9e:fb:72:76:7c:de:98:59:ee:64:5c:02:97:c6:e9:
fe:13:67:fd:32:51:ed:3c:0d:23:ee:bc:83:49:49:9d:be:50:
b2:17:a3:c9:bb:bc:4d:b2:6a:7c:fe:ce:a4:3e:9f:cc:29:54:
c8:04:fe:60:d4:02:bb:38:12:d9:d0:d5:da:3c:fb:b3:c2:19:
1c:be:08:30:86:04:4e:a3:aa:8d:9c:a5:bd:31:a6:14:18:8b:
57:56:15:41:9d:69:e7:a9:b2:89:a7:9c:44:98:ba:03:ba:b2:
56:21:21:14:5f:2f:27:ce:e8:04:4f:7b:29:ad:3e:42:d6:a0:
cf:98:c2:fd:f2:1e:77:be:0a:64:52:88:43:1e:0e:f9:d5:eb:
91:27:c8:a4:bb:84:3c:bb:cd:28:76:db:18:c8:7c:d4:98:2e:
fc:02:02:d9:7b:90:11:51:8d:70:01:d8:0e:7d:0a:ca:9a:0b:
e6:6f:ff:3d:2c:2b:55:bd:56:14:a7:22:fa:24:78:3d:9d:10:
41:33:46:2d:db:e8:ce:99:50:72:0c:01:c9:06:cc:1e:61:7b:
10:67:50:c0:74:06:71:bf:f3:6d:6f:7a:3e:16:22:bf:6d:29:
38:4f:b3:a2:04:c2:97:43:55:a8:7e:b4:bc:5a:d4:c6:83:2d:
dd:ed:a3:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxHmBQVjdcNbrA6gw3kDKrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4ZDVlMjM5M2Q5OTQ5YTJjNGUxYmRhZWVhZGI1YTk0ZTYw
MjliZTMwHhcNMjMwMTAyMDYxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjkzMzkwNWU3NDM5YmY1YmY2NWU2OGY4ZTJiYTJiMWExZjUyMWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7konEJmALS6EO1Lp6BcOP0GhXgo
tCC/BOnQK/IICY6Lj32D51k+W7NiddvyvRkCsliwye4SrreTVBf+WlqWkT77OOW3
pOwU3nOB3edIRJCLn1UwIYsgSr3XMEk7fIgyL3H+aH6ygQ3GOy3PdFSMr1/V694G
2vc7PPmj9o4ko+cJPhTXczm2oTrUrwLfEd4oDt1FccXHNigXmx1CTPKTQK+eSdtK
bqgS6Vs0d2gCQNV+w3Ti0mUVWV7jVHVRxob6V1iMGJqxV66imAO0I0Xos3xKUAF3
625qVciscQjyqQrHI5KJhgpk7LlzuDFVDibDpXaWsU2O82+X93S9nhPrFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC+TOQXnQ5v1v2Xmj44rorGh9SG7MB8GA1UdIwQY
MBaAFLjV4jk9mUmixOG9rurbWpTmApvjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdU5YaU9UMlpTYUxFNGIydTZ0dGFsT1lDbS1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9hNzQ4MDMtMmRmYi00NmFlLWE0NWYt
YmFhMjI0ZGY5NjBiLzEvTDVNNUJlZERtX1dfWmVhUGppdWlzYUgxSWJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9hNzQ4MDMtMmRmYi00NmFlLWE0NWYtYmFhMjI0ZGY5NjBi
LzEvdU5YaU9UMlpTYUxFNGIydTZ0dGFsT1lDbS1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/YgMA0G
CSqGSIb3DQEBCwUAA4IBAQCtSt6e+3J2fN6YWe5kXAKXxun+E2f9MlHtPA0j7ryD
SUmdvlCyF6PJu7xNsmp8/s6kPp/MKVTIBP5g1AK7OBLZ0NXaPPuzwhkcvggwhgRO
o6qNnKW9MaYUGItXVhVBnWnnqbKJp5xEmLoDurJWISEUXy8nzugET3sprT5C1qDP
mML98h53vgpkUohDHg751euRJ8iku4Q8u80odtsYyHzUmC78AgLZe5ARUY1wAdgO
fQrKmgvmb/89LCtVvVYUpyL6JHg9nRBBM0Yt2+jOmVByDAHJBsweYXsQZ1DAdAZx
v/Ntb3o+FiK/bSk4T7OiBMKXQ1WofrS8WtTGgy3d7aMr
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:56 2025 by rpki-client