Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e3494d-e7aa-4d21-a8ad-7d4c0b7d7861/1/l52siwAiJThofJ4AH5lp94K1qTg.roa
File: l52siwAiJThofJ4AH5lp94K1qTg.roa (raw, json)
Hash identifier: yDuPq0Ny7SDkdSsDPSI+mSevgPUoE3P/o1H2frZLjiQ=
Subject key identifier: 97:9D:AC:8B:00:22:25:38:68:7C:9E:00:1F:99:69:F7:82:B5:A9:38
Certificate issuer: /CN=73588934a0b0d648daf94dd9e629d3dd22ed5abf
Certificate serial: 018CC7274C1F998D2AA68864D2775D40391A
Authority key identifier: 73:58:89:34:A0:B0:D6:48:DA:F9:4D:D9:E6:29:D3:DD:22:ED:5A:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c1iJNKCw1kja-U3Z5inT3SLtWr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e3494d-e7aa-4d21-a8ad-7d4c0b7d7861/1/l52siwAiJThofJ4AH5lp94K1qTg.roa
Signing time: Mon 01 Jan 2024 22:31:30 +0000
ROA not before: Mon 01 Jan 2024 22:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212219
IP address blocks: 2.59.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:4c:1f:99:8d:2a:a6:88:64:d2:77:5d:40:39:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73588934a0b0d648daf94dd9e629d3dd22ed5abf
Validity
Not Before: Jan 1 22:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=979dac8b00222538687c9e001f9969f782b5a938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:71:a5:59:09:8a:d6:c9:63:20:7c:41:29:08:
2d:74:2d:1b:36:13:db:7b:b1:35:a4:07:80:89:67:
cd:77:cb:09:53:d5:2b:a8:a9:ef:3a:2e:9f:df:5d:
3b:ce:e0:15:2f:ea:6b:a2:66:25:f7:3d:02:bf:09:
5e:7a:52:12:bd:b2:3b:ad:bf:aa:da:91:72:c5:13:
29:6d:55:1e:4b:ef:cc:2b:87:a9:11:75:17:1d:20:
aa:42:f0:97:64:ba:0e:67:59:0c:10:c4:6b:a8:31:
0e:9f:be:56:a6:f9:83:e4:8e:2b:c3:de:29:b0:b9:
46:c3:1b:2c:a9:22:de:39:3a:8b:18:26:c9:76:05:
9d:e0:7f:e8:cf:9f:43:67:bb:45:5e:6c:93:ce:55:
94:8d:1d:18:23:b1:fb:1b:51:4c:79:99:28:52:80:
a0:26:1e:e1:d3:f1:8b:4d:b5:62:17:93:40:22:de:
d8:f1:a7:54:08:f5:a3:25:55:29:0c:2b:16:4b:3a:
db:96:d5:2d:b7:74:b2:8f:d8:78:0f:c6:62:95:0c:
06:76:e8:9c:a7:58:2e:01:bd:18:5b:2d:e4:bf:50:
c7:af:8f:10:be:ad:4e:c5:09:c3:dc:69:80:6c:ae:
24:e8:b8:5c:cb:f1:58:f8:9e:59:cb:06:26:b0:54:
3d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:9D:AC:8B:00:22:25:38:68:7C:9E:00:1F:99:69:F7:82:B5:A9:38
X509v3 Authority Key Identifier:
keyid:73:58:89:34:A0:B0:D6:48:DA:F9:4D:D9:E6:29:D3:DD:22:ED:5A:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1iJNKCw1kja-U3Z5inT3SLtWr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e3494d-e7aa-4d21-a8ad-7d4c0b7d7861/1/l52siwAiJThofJ4AH5lp94K1qTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e3494d-e7aa-4d21-a8ad-7d4c0b7d7861/1/c1iJNKCw1kja-U3Z5inT3SLtWr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.119.0/24
Signature Algorithm: sha256WithRSAEncryption
05:18:38:c5:5b:8f:c0:46:02:da:ce:bb:9a:1f:72:68:97:90:
7f:23:5b:ec:f0:3f:c8:d8:02:01:85:47:2d:8b:24:18:24:45:
c4:2a:f2:b5:e6:32:2b:4c:b1:72:e8:53:e9:7c:1c:42:1a:40:
d2:08:1d:35:0c:40:a0:c1:60:d6:ee:10:da:bb:e7:e5:50:73:
ed:aa:62:30:79:16:92:60:0d:d9:9d:78:04:c5:5d:a4:d9:80:
52:9d:0e:b5:46:d9:56:78:15:bf:e9:5d:fb:01:75:6f:f4:d7:
63:8a:9d:84:35:f0:9f:a3:ca:cb:15:3e:b9:19:99:5d:29:d0:
d3:49:a7:23:b1:0c:02:76:9c:b2:e3:84:63:a1:16:a0:4c:17:
90:84:23:6e:9f:13:1a:65:dd:fb:48:02:90:4e:d2:9c:bf:d9:
1b:b6:a4:56:f7:40:88:7b:8d:40:cf:2b:31:da:35:d7:7d:f8:
8a:0f:89:52:87:78:f8:ca:46:c4:04:c6:c2:c4:f5:5d:ea:8f:
a9:a6:e9:3d:0a:6d:d6:5d:41:da:af:26:2f:ed:3a:a7:3c:2e:
5e:4e:6e:d8:53:61:9e:20:da:1b:24:3f:4b:5e:2b:db:1f:0c:
e1:f7:46:70:e8:2b:32:44:a7:ba:55:0d:62:0d:5a:65:74:17:
22:e8:e4:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHJ0wfmY0qpohk0nddQDkaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczNTg4OTM0YTBiMGQ2NDhkYWY5NGRkOWU2MjlkM2RkMjJl
ZDVhYmYwHhcNMjQwMTAxMjIzMTMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzlkYWM4YjAwMjIyNTM4Njg3YzllMDAxZjk5NjlmNzgyYjVhOTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHGlWQmK1sljIHxBKQgtdC0bNhPb
e7E1pAeAiWfNd8sJU9UrqKnvOi6f3107zuAVL+promYl9z0CvwleelISvbI7rb+q
2pFyxRMpbVUeS+/MK4epEXUXHSCqQvCXZLoOZ1kMEMRrqDEOn75WpvmD5I4rw94p
sLlGwxssqSLeOTqLGCbJdgWd4H/oz59DZ7tFXmyTzlWUjR0YI7H7G1FMeZkoUoCg
Jh7h0/GLTbViF5NAIt7Y8adUCPWjJVUpDCsWSzrbltUtt3Syj9h4D8ZilQwGduic
p1guAb0YWy3kv1DHr48Qvq1OxQnD3GmAbK4k6Lhcy/FY+J5ZywYmsFQ99wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJedrIsAIiU4aHyeAB+ZafeCtak4MB8GA1UdIwQY
MBaAFHNYiTSgsNZI2vlN2eYp090i7Vq/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzFpSk5LQ3cxa2phLVUzWjVpblQzU0x0V3I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9lMzQ5NGQtZTdhYS00ZDIxLWE4YWQt
N2Q0YzBiN2Q3ODYxLzEvbDUyc2l3QWlKVGhvZko0QUg1bHA5NEsxcVRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9lMzQ5NGQtZTdhYS00ZDIxLWE4YWQtN2Q0YzBiN2Q3ODYx
LzEvYzFpSk5LQ3cxa2phLVUzWjVpblQzU0x0V3I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjt3MA0G
CSqGSIb3DQEBCwUAA4IBAQAFGDjFW4/ARgLazruaH3Jol5B/I1vs8D/I2AIBhUct
iyQYJEXEKvK15jIrTLFy6FPpfBxCGkDSCB01DECgwWDW7hDau+flUHPtqmIweRaS
YA3ZnXgExV2k2YBSnQ61RtlWeBW/6V37AXVv9Ndjip2ENfCfo8rLFT65GZldKdDT
SacjsQwCdpyy44RjoRagTBeQhCNunxMaZd37SAKQTtKcv9kbtqRW90CIe41Azysx
2jXXffiKD4lSh3j4ykbEBMbCxPVd6o+ppuk9Cm3WXUHaryYv7TqnPC5eTm7YU2Ge
INobJD9LXivbHwzh90Zw6CsyRKe6VQ1iDVpldBci6OSR
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:10 2024 by rpki-client on console-ams.rpki-client.org