Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/Z94aX7LJhhBjLG4dC2aXEd207Wo.roa
File: Z94aX7LJhhBjLG4dC2aXEd207Wo.roa (raw, json)
Hash identifier: IC864KuC/zUYGQqgXYoPSNsRhM1wmpGJR4wiCPESZfA=
Subject key identifier: 67:DE:1A:5F:B2:C9:86:10:63:2C:6E:1D:0B:66:97:11:DD:B4:ED:6A
Certificate issuer: /CN=5ab4349405298585f1efcb658537618f25d4335e
Certificate serial: 01869DEAE80D9F1ABEA7BB95466F1A50A595
Authority key identifier: 5A:B4:34:94:05:29:85:85:F1:EF:CB:65:85:37:61:8F:25:D4:33:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrQ0lAUphYXx78tlhTdhjyXUM14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/Z94aX7LJhhBjLG4dC2aXEd207Wo.roa
Signing time: Wed 01 Mar 2023 16:04:22 +0000
ROA not before: Wed 01 Mar 2023 16:04:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200010
IP address blocks: 89.107.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:ea:e8:0d:9f:1a:be:a7:bb:95:46:6f:1a:50:a5:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ab4349405298585f1efcb658537618f25d4335e
Validity
Not Before: Mar 1 16:04:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67de1a5fb2c98610632c6e1d0b669711ddb4ed6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:43:19:6f:c3:d8:fb:10:a0:d4:5c:cb:0c:75:
f2:21:12:97:7a:2c:c3:37:e5:0a:18:cd:f5:6c:c4:
f2:97:04:65:cd:52:eb:2d:67:55:08:15:67:25:c1:
7d:b3:28:cb:b8:e8:f7:03:4e:85:b5:cc:07:09:bc:
6e:b8:8f:08:7b:d7:6d:c6:76:19:f6:49:5d:94:01:
a1:ef:8b:5e:52:f5:e9:c9:85:36:09:ea:3b:46:6e:
11:da:42:3a:15:97:e9:a9:7d:02:43:6d:44:67:7a:
6d:51:57:d3:d4:bd:48:11:d8:74:0b:22:49:3b:ab:
b0:69:3e:e9:30:ab:bc:de:5d:73:70:54:80:a3:9e:
a1:ab:15:29:19:bf:da:43:d8:16:c2:2b:70:61:b8:
aa:07:65:f7:d0:76:c0:11:14:85:5a:76:0d:38:a2:
3e:ba:18:3d:01:72:75:4e:e6:e5:2b:b6:fe:a8:5b:
4c:95:4e:2c:7d:ac:58:3f:6a:48:c7:26:1b:fe:06:
d5:4a:00:9c:cb:2f:96:8e:b6:90:75:d2:d6:b1:3c:
c4:1f:c1:bd:1a:a2:06:f2:3c:c5:4e:a3:02:4f:66:
1e:a0:c8:e8:3a:ff:ab:ea:b8:9c:ff:18:40:b3:39:
04:6b:13:3f:72:42:19:a4:e7:35:14:de:d7:82:5b:
50:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:DE:1A:5F:B2:C9:86:10:63:2C:6E:1D:0B:66:97:11:DD:B4:ED:6A
X509v3 Authority Key Identifier:
keyid:5A:B4:34:94:05:29:85:85:F1:EF:CB:65:85:37:61:8F:25:D4:33:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrQ0lAUphYXx78tlhTdhjyXUM14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/Z94aX7LJhhBjLG4dC2aXEd207Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/WrQ0lAUphYXx78tlhTdhjyXUM14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.8.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:57:8e:ff:45:12:05:21:6d:93:c5:31:f4:37:65:05:bb:c9:
bc:6a:45:4a:9b:44:38:cc:ac:ec:20:5b:84:89:f5:98:2c:1e:
6b:97:01:ba:d1:50:26:0a:f2:d5:67:1f:9d:86:b1:10:29:1c:
63:3c:83:47:24:2d:13:0b:11:0a:ef:23:dd:d6:ed:95:d9:db:
fd:01:2a:cf:64:2e:5c:c1:58:24:5e:3d:8e:ee:86:87:19:1e:
58:d4:9c:74:99:cd:27:5c:88:0f:72:f7:ae:c2:cb:ed:b8:d8:
ba:ef:94:7b:25:c7:76:2b:b4:db:83:7e:d3:ec:30:29:04:6a:
dd:af:41:60:de:cb:f5:b2:51:f8:74:1d:4f:ee:ff:b3:d7:18:
74:e5:f5:a5:d5:6b:7f:23:2e:e8:4c:03:2b:d9:6e:e3:ec:8a:
df:d6:64:15:01:1f:2d:d4:c8:2a:40:bb:ce:2c:d7:99:c5:6c:
ad:68:15:02:49:3d:22:2a:53:a5:3e:34:d7:e4:97:0c:25:3c:
4d:49:69:0a:aa:8d:91:49:dc:64:87:1f:95:bc:cd:fc:f2:b2:
1a:26:dd:e0:58:06:a1:c3:26:8e:4f:db:1e:ef:02:31:42:d2:
2f:58:d4:d5:15:19:55:b0:4d:33:14:86:ee:3b:95:9e:d9:82:
4d:96:ca:7a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYad6ugNnxq+p7uVRm8aUKWVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhYjQzNDk0MDUyOTg1ODVmMWVmY2I2NTg1Mzc2MThmMjVk
NDMzNWUwHhcNMjMwMzAxMTYwNDIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2N2RlMWE1ZmIyYzk4NjEwNjMyYzZlMWQwYjY2OTcxMWRkYjRlZDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUMZb8PY+xCg1FzLDHXyIRKXeizD
N+UKGM31bMTylwRlzVLrLWdVCBVnJcF9syjLuOj3A06FtcwHCbxuuI8Ie9dtxnYZ
9kldlAGh74teUvXpyYU2Ceo7Rm4R2kI6FZfpqX0CQ21EZ3ptUVfT1L1IEdh0CyJJ
O6uwaT7pMKu83l1zcFSAo56hqxUpGb/aQ9gWwitwYbiqB2X30HbAERSFWnYNOKI+
uhg9AXJ1TublK7b+qFtMlU4sfaxYP2pIxyYb/gbVSgCcyy+WjraQddLWsTzEH8G9
GqIG8jzFTqMCT2YeoMjoOv+r6ric/xhAszkEaxM/ckIZpOc1FN7XgltQEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGfeGl+yyYYQYyxuHQtmlxHdtO1qMB8GA1UdIwQY
MBaAFFq0NJQFKYWF8e/LZYU3YY8l1DNeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3JRMGxBVXBoWVh4Nzh0bGhUZGhqeVhVTTE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi82MTI3YTYtMjA2ZS00NjA2LTk5NjAt
YjM5NDA4ODQ0NGQ4LzEvWjk0YVg3TEpoaEJqTEc0ZEMyYVhFZDIwN1dvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi82MTI3YTYtMjA2ZS00NjA2LTk5NjAtYjM5NDA4ODQ0NGQ4
LzEvV3JRMGxBVXBoWVh4Nzh0bGhUZGhqeVhVTTE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWWsIMA0G
CSqGSIb3DQEBCwUAA4IBAQC4V47/RRIFIW2TxTH0N2UFu8m8akVKm0Q4zKzsIFuE
ifWYLB5rlwG60VAmCvLVZx+dhrEQKRxjPINHJC0TCxEK7yPd1u2V2dv9ASrPZC5c
wVgkXj2O7oaHGR5Y1Jx0mc0nXIgPcveuwsvtuNi675R7Jcd2K7Tbg37T7DApBGrd
r0Fg3sv1slH4dB1P7v+z1xh05fWl1Wt/Iy7oTAMr2W7j7Irf1mQVAR8t1MgqQLvO
LNeZxWytaBUCST0iKlOlPjTX5JcMJTxNSWkKqo2RSdxkhx+VvM388rIaJt3gWAah
wyaOT9se7wIxQtIvWNTVFRlVsE0zFIbuO5We2YJNlsp6
-----END CERTIFICATE-----
Generated at Thu Apr 17 02:21:27 2025 by rpki-client