Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/UrhY3B1KhpwkzjLkLxEGomtnmP8.roa
File: UrhY3B1KhpwkzjLkLxEGomtnmP8.roa (raw, json)
Hash identifier: qwFl03v4y8DM2hV7GUEw6zeiQ9svJRWGMnSrR2UsvTE=
Subject key identifier: 52:B8:58:DC:1D:4A:86:9C:24:CE:32:E4:2F:11:06:A2:6B:67:98:FF
Certificate issuer: /CN=5ab4349405298585f1efcb658537618f25d4335e
Certificate serial: 01869DEAE73530A4341D3732110BB18D7893
Authority key identifier: 5A:B4:34:94:05:29:85:85:F1:EF:CB:65:85:37:61:8F:25:D4:33:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrQ0lAUphYXx78tlhTdhjyXUM14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/UrhY3B1KhpwkzjLkLxEGomtnmP8.roa
Signing time: Wed 01 Mar 2023 16:04:22 +0000
ROA not before: Wed 01 Mar 2023 16:04:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 89.107.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:ea:e7:35:30:a4:34:1d:37:32:11:0b:b1:8d:78:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ab4349405298585f1efcb658537618f25d4335e
Validity
Not Before: Mar 1 16:04:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52b858dc1d4a869c24ce32e42f1106a26b6798ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8d:d2:d7:3d:de:75:15:f2:2d:c7:3b:40:b0:
77:23:ee:23:fc:15:86:f9:6d:b8:28:7c:30:8e:df:
5e:c1:c7:4a:6f:47:5c:06:f0:13:37:53:47:d6:54:
e6:f3:89:6f:a8:3f:f9:77:aa:10:48:c8:af:03:91:
fb:9e:0e:2c:d1:6e:fb:ec:4c:24:3c:db:7b:83:bb:
7c:62:2d:2d:19:36:47:46:7c:a1:fe:09:04:55:a6:
bf:56:37:1b:02:84:9a:ec:78:1f:cd:dd:db:e2:50:
cc:5d:57:c2:f7:8a:f7:bf:18:f0:8f:b4:93:fb:3c:
73:24:b0:5b:c1:54:9a:53:a1:72:98:fc:9b:b1:a2:
0b:cb:75:cd:da:cb:36:ec:f7:6d:9c:30:d0:1f:b7:
6e:76:7f:25:47:6a:bc:ef:01:c2:12:34:cc:5a:5e:
4b:19:df:c9:9a:8b:91:4d:15:b0:98:fe:d3:b4:ca:
e2:30:b3:75:82:2a:98:af:10:5e:a8:2d:7e:2a:95:
02:cb:c6:6f:44:83:b0:a6:59:79:25:b1:09:0c:99:
83:08:3f:83:81:6f:94:80:61:03:96:5c:5e:fa:54:
7f:70:aa:4d:ae:03:95:54:1f:54:0a:5f:7f:f6:f6:
68:5b:f3:aa:30:89:25:ee:51:59:4c:f4:42:61:c4:
6a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B8:58:DC:1D:4A:86:9C:24:CE:32:E4:2F:11:06:A2:6B:67:98:FF
X509v3 Authority Key Identifier:
keyid:5A:B4:34:94:05:29:85:85:F1:EF:CB:65:85:37:61:8F:25:D4:33:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrQ0lAUphYXx78tlhTdhjyXUM14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/UrhY3B1KhpwkzjLkLxEGomtnmP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/WrQ0lAUphYXx78tlhTdhjyXUM14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.8.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:d7:25:2f:80:b2:59:b5:a7:ce:03:f5:35:4c:8a:35:e0:db:
8a:61:7d:83:03:cb:e1:d0:ce:fd:0e:90:25:36:d3:2b:a5:b3:
dd:54:d6:c5:60:02:fa:54:0e:8a:4c:fb:4b:3b:28:92:02:bd:
e1:0f:be:8c:e8:6a:d1:b0:6b:a4:5e:f7:8c:1b:52:bc:63:0d:
58:b9:37:41:83:f8:0e:f0:95:6f:ee:ba:b2:ed:48:82:53:69:
b4:19:3b:06:2d:99:95:80:38:7b:03:46:88:d9:df:9c:38:c6:
ee:d2:82:85:a2:f3:d1:55:63:e9:b0:e0:31:8c:a6:c3:42:e4:
cb:f6:96:cf:2e:33:62:50:0d:02:f8:5d:ca:e1:01:0a:08:8c:
ff:a0:2d:2a:96:31:59:86:2d:81:b7:9a:81:b2:d6:5f:5b:90:
50:7f:ba:7a:a7:c4:a2:c8:96:db:c9:a6:ae:26:ed:d0:87:1d:
8c:5d:8f:a8:eb:45:58:e5:c7:8c:cd:15:65:fe:0c:4e:f3:f7:
f0:ef:72:49:6c:0f:74:0f:4a:55:d2:0a:85:f5:17:2c:47:41:
ff:ea:e4:12:01:a7:4d:34:89:18:df:28:3e:2e:b9:9d:0a:5d:
64:f7:35:f9:fa:eb:f4:bb:03:d9:fe:7b:95:8f:7e:a4:24:10:
3d:a9:79:14
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYad6uc1MKQ0HTcyEQuxjXiTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhYjQzNDk0MDUyOTg1ODVmMWVmY2I2NTg1Mzc2MThmMjVk
NDMzNWUwHhcNMjMwMzAxMTYwNDIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmI4NThkYzFkNGE4NjljMjRjZTMyZTQyZjExMDZhMjZiNjc5OGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh43S1z3edRXyLcc7QLB3I+4j/BWG
+W24KHwwjt9ewcdKb0dcBvATN1NH1lTm84lvqD/5d6oQSMivA5H7ng4s0W777Ewk
PNt7g7t8Yi0tGTZHRnyh/gkEVaa/VjcbAoSa7Hgfzd3b4lDMXVfC94r3vxjwj7ST
+zxzJLBbwVSaU6FymPybsaILy3XN2ss27PdtnDDQH7dudn8lR2q87wHCEjTMWl5L
Gd/JmouRTRWwmP7TtMriMLN1giqYrxBeqC1+KpUCy8ZvRIOwpll5JbEJDJmDCD+D
gW+UgGEDllxe+lR/cKpNrgOVVB9UCl9/9vZoW/OqMIkl7lFZTPRCYcRq3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFK4WNwdSoacJM4y5C8RBqJrZ5j/MB8GA1UdIwQY
MBaAFFq0NJQFKYWF8e/LZYU3YY8l1DNeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3JRMGxBVXBoWVh4Nzh0bGhUZGhqeVhVTTE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi82MTI3YTYtMjA2ZS00NjA2LTk5NjAt
YjM5NDA4ODQ0NGQ4LzEvVXJoWTNCMUtocHdrempMa0x4RUdvbXRubVA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi82MTI3YTYtMjA2ZS00NjA2LTk5NjAtYjM5NDA4ODQ0NGQ4
LzEvV3JRMGxBVXBoWVh4Nzh0bGhUZGhqeVhVTTE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWWsIMA0G
CSqGSIb3DQEBCwUAA4IBAQDZ1yUvgLJZtafOA/U1TIo14NuKYX2DA8vh0M79DpAl
NtMrpbPdVNbFYAL6VA6KTPtLOyiSAr3hD76M6GrRsGukXveMG1K8Yw1YuTdBg/gO
8JVv7rqy7UiCU2m0GTsGLZmVgDh7A0aI2d+cOMbu0oKFovPRVWPpsOAxjKbDQuTL
9pbPLjNiUA0C+F3K4QEKCIz/oC0qljFZhi2Bt5qBstZfW5BQf7p6p8SiyJbbyaau
Ju3Qhx2MXY+o60VY5ceMzRVl/gxO8/fw73JJbA90D0pV0gqF9RcsR0H/6uQSAadN
NIkY3yg+LrmdCl1k9zX5+uv0uwPZ/nuVj36kJBA9qXkU
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:58 2024 by rpki-client on console-fra.rpki-client.org