Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/e4cf15-a282-436d-9d05-c4da5939d7f5/1/ofn9HllIjx_bFdeQ_RljKKCDhAg.roa
File: ofn9HllIjx_bFdeQ_RljKKCDhAg.roa (raw, json)
Hash identifier: psXJVGhqb9YAUP4dL1YQ7+EPEPU042aMU7F2ppntpik=
Subject key identifier: A1:F9:FD:1E:59:48:8F:1F:DB:15:D7:90:FD:19:63:28:A0:83:84:08
Certificate issuer: /CN=7368829f60ad997182dff3f8c2230edc3f5dcadc
Certificate serial: 9CF25B
Authority key identifier: 73:68:82:9F:60:AD:99:71:82:DF:F3:F8:C2:23:0E:DC:3F:5D:CA:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2iCn2CtmXGC3_P4wiMO3D9dytw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/e4cf15-a282-436d-9d05-c4da5939d7f5/1/ofn9HllIjx_bFdeQ_RljKKCDhAg.roa
Signing time: Sat 01 Jan 2022 04:01:30 +0000
ROA not before: Sat 01 Jan 2022 04:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 109.107.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10285659 (0x9cf25b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7368829f60ad997182dff3f8c2230edc3f5dcadc
Validity
Not Before: Jan 1 04:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1f9fd1e59488f1fdb15d790fd196328a0838408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d7:58:19:aa:1e:b8:e9:e3:f0:d6:ff:be:5d:
29:58:9d:5e:79:0a:b6:18:38:6e:9d:1d:3e:5b:a2:
26:a7:e3:a4:0e:7f:8e:1f:1d:06:d0:59:cc:ed:59:
ff:04:ff:c8:ec:ac:46:d1:04:44:b2:5d:0a:b7:48:
04:0d:67:7b:f1:80:da:75:17:9c:d2:57:60:95:54:
05:66:59:f9:85:31:48:6d:b5:26:97:ec:3c:ca:9d:
96:db:9b:45:f7:07:bc:f9:eb:11:10:82:5a:e2:85:
06:64:4a:a0:ce:a8:12:4d:ff:ef:0d:99:8e:02:50:
6d:db:d0:11:d7:b2:7f:6c:cb:94:6d:40:b8:10:17:
61:ed:cf:e8:e9:d9:b6:3e:de:b0:01:c0:0e:f8:46:
0a:e3:70:64:dd:d2:bd:d5:51:d0:27:19:7b:b4:07:
31:5a:aa:0e:b4:2a:24:87:3a:d0:a5:59:b4:f2:66:
64:bf:ce:42:9d:4a:d6:7d:64:9d:3c:1e:bf:2d:1d:
39:94:d4:55:6e:38:bf:35:1b:37:10:1e:c4:33:2d:
56:f5:93:d9:86:75:a0:41:7b:41:79:01:d8:ec:78:
21:87:51:7c:4e:e7:88:61:b6:a2:8c:af:6e:b4:1a:
2c:76:1e:e7:d4:c0:44:d9:09:91:a1:7f:c6:2a:e5:
bb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F9:FD:1E:59:48:8F:1F:DB:15:D7:90:FD:19:63:28:A0:83:84:08
X509v3 Authority Key Identifier:
keyid:73:68:82:9F:60:AD:99:71:82:DF:F3:F8:C2:23:0E:DC:3F:5D:CA:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2iCn2CtmXGC3_P4wiMO3D9dytw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e4cf15-a282-436d-9d05-c4da5939d7f5/1/ofn9HllIjx_bFdeQ_RljKKCDhAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e4cf15-a282-436d-9d05-c4da5939d7f5/1/c2iCn2CtmXGC3_P4wiMO3D9dytw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.144.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:d3:19:79:33:d6:61:e3:63:ff:dc:60:7a:f8:d0:57:0e:a4:
ad:78:78:76:39:e4:95:48:ac:d7:57:dd:fb:d4:7a:1a:5b:1f:
9c:bc:0f:53:d7:cb:59:b7:30:b6:f5:25:28:8e:de:82:81:04:
c2:77:c5:8c:0e:4f:20:95:3a:cd:e4:3e:da:97:96:28:4f:8e:
ba:03:fd:73:d4:17:ac:69:e5:e4:3a:11:67:bb:f4:1e:0c:32:
3e:2f:22:2c:26:f4:bd:b2:06:a3:d8:70:dc:96:69:1c:c9:5b:
42:55:46:db:ca:bb:db:85:35:35:bb:4e:a4:b6:f3:b0:18:42:
1e:23:4e:2a:46:b7:46:37:9d:d8:d1:e8:26:d9:03:75:dc:7f:
8f:0b:ae:c2:a4:f3:c0:71:38:72:aa:32:f7:72:8b:9c:08:b1:
6f:80:24:e4:99:1b:0f:47:89:46:f1:43:2a:cb:9f:ca:43:2f:
0e:a6:45:56:b6:74:ed:0e:a8:d7:aa:8b:c6:c8:9a:37:b9:32:
b0:66:f6:1d:b0:89:83:80:5e:1a:4a:6f:00:9e:23:ae:2e:ff:
dd:0e:69:3c:71:dc:f5:4a:9e:a5:1e:55:2d:e8:a2:65:ee:04:
4e:ea:71:66:61:62:2a:2f:63:5f:87:54:e8:b6:5c:28:3f:15:
2a:4a:61:b6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJzyWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MzY4ODI5ZjYwYWQ5OTcxODJkZmYzZjhjMjIzMGVkYzNmNWRjYWRjMB4XDTIyMDEw
MTA0MDEzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTFmOWZkMWU1OTQ4
OGYxZmRiMTVkNzkwZmQxOTYzMjhhMDgzODQwODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMjXWBmqHrjp4/DW/75dKVidXnkKthg4bp0dPluiJqfjpA5/
jh8dBtBZzO1Z/wT/yOysRtEERLJdCrdIBA1ne/GA2nUXnNJXYJVUBWZZ+YUxSG21
JpfsPMqdltubRfcHvPnrERCCWuKFBmRKoM6oEk3/7w2ZjgJQbdvQEdeyf2zLlG1A
uBAXYe3P6OnZtj7esAHADvhGCuNwZN3SvdVR0CcZe7QHMVqqDrQqJIc60KVZtPJm
ZL/OQp1K1n1knTwevy0dOZTUVW44vzUbNxAexDMtVvWT2YZ1oEF7QXkB2Ox4IYdR
fE7niGG2ooyvbrQaLHYe59TARNkJkaF/xirlu40CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSh+f0eWUiPH9sV15D9GWMooIOECDAfBgNVHSMEGDAWgBRzaIKfYK2ZcYLf
8/jCIw7cP13K3DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2MyaUNuMkN0bVhHQzNfUDR3aU1PM0Q5ZHl0dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWUvZTRjZjE1LWEyODItNDM2ZC05ZDA1LWM0ZGE1OTM5ZDdmNS8x
L29mbjlIbGxJanhfYkZkZVFfUmxqS0tDRGhBZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUv
ZTRjZjE1LWEyODItNDM2ZC05ZDA1LWM0ZGE1OTM5ZDdmNS8xL2MyaUNuMkN0bVhH
QzNfUDR3aU1PM0Q5ZHl0dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1rkDANBgkqhkiG9w0BAQsFAAOC
AQEAntMZeTPWYeNj/9xgevjQVw6krXh4djnklUis11fd+9R6GlsfnLwPU9fLWbcw
tvUlKI7egoEEwnfFjA5PIJU6zeQ+2peWKE+OugP9c9QXrGnl5DoRZ7v0HgwyPi8i
LCb0vbIGo9hw3JZpHMlbQlVG28q724U1NbtOpLbzsBhCHiNOKka3Rjed2NHoJtkD
ddx/jwuuwqTzwHE4cqoy93KLnAixb4Ak5JkbD0eJRvFDKsufykMvDqZFVrZ07Q6o
16qLxsiaN7kysGb2HbCJg4BeGkpvAJ4jri7/3Q5pPHHc9UqepR5VLeiiZe4ETupx
ZmFiKi9jX4dU6LZcKD8VKkphtg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:29 2024 by rpki-client on console-ams.rpki-client.org