Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/rBsO8Xyjk6I9yJbYYpD_ZWwhAss.roa
File: rBsO8Xyjk6I9yJbYYpD_ZWwhAss.roa (raw, json)
Hash identifier: L6U8FYVbO6NWOo3FxvmEAmq8al2ayk99LEiUGaw4O8Y=
Subject key identifier: AC:1B:0E:F1:7C:A3:93:A2:3D:C8:96:D8:62:90:FF:65:6C:21:02:CB
Certificate issuer: /CN=9ed40182815a34979fbc68e30c4008bf99b421bf
Certificate serial: 0103141A
Authority key identifier: 9E:D4:01:82:81:5A:34:97:9F:BC:68:E3:0C:40:08:BF:99:B4:21:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ntQBgoFaNJefvGjjDEAIv5m0Ib8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/rBsO8Xyjk6I9yJbYYpD_ZWwhAss.roa
Signing time: Mon 07 Mar 2022 17:38:49 +0000
ROA not before: Mon 07 Mar 2022 17:38:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 109.205.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16978970 (0x103141a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed40182815a34979fbc68e30c4008bf99b421bf
Validity
Not Before: Mar 7 17:38:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac1b0ef17ca393a23dc896d86290ff656c2102cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a4:32:54:f0:83:50:58:ef:8d:ce:fd:13:51:
21:83:a9:67:95:1c:f0:e9:e9:1c:d1:00:b2:1f:33:
15:b8:cb:d3:8b:d0:0f:ba:01:dd:2f:cb:57:7f:52:
97:f2:12:4c:5a:bd:e3:08:43:32:2c:91:c3:93:60:
9d:ec:1a:79:fe:81:28:56:56:43:12:d8:12:99:30:
43:e4:9c:c3:6a:2f:33:ac:72:ef:5e:01:0d:12:61:
94:b3:b5:5b:30:6e:5b:74:15:57:c6:3e:e9:f7:75:
31:81:5b:86:54:8e:4d:20:83:bd:10:62:63:12:48:
f3:d3:ab:ca:a8:fa:a6:21:4f:8f:eb:c7:48:c1:2e:
d7:a9:85:81:4e:52:03:67:1e:3d:18:89:ae:f4:cd:
a4:2c:c2:fd:d1:25:07:1e:87:01:1c:b0:87:fe:8a:
d6:2d:84:23:6d:78:a4:cf:a2:f0:87:f4:ac:f5:87:
49:c5:11:0f:b8:d0:ef:55:cc:ff:90:e1:c4:44:d9:
40:41:27:55:24:0f:9e:2b:a9:c9:66:01:ed:a8:d3:
f4:e7:d4:3b:1b:fd:b8:57:ce:6b:0b:15:fd:3e:35:
c8:20:47:dd:47:3a:d0:56:aa:1d:bd:10:fe:3f:b4:
81:0c:a0:94:04:30:9e:b8:a9:c5:09:52:b6:5c:8a:
21:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1B:0E:F1:7C:A3:93:A2:3D:C8:96:D8:62:90:FF:65:6C:21:02:CB
X509v3 Authority Key Identifier:
keyid:9E:D4:01:82:81:5A:34:97:9F:BC:68:E3:0C:40:08:BF:99:B4:21:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ntQBgoFaNJefvGjjDEAIv5m0Ib8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/rBsO8Xyjk6I9yJbYYpD_ZWwhAss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/ntQBgoFaNJefvGjjDEAIv5m0Ib8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.186.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:36:12:63:78:1b:fd:3c:44:d6:2c:21:5e:42:51:5c:39:4a:
ce:9c:48:69:7b:e9:f9:b3:eb:a5:23:85:b2:0a:55:61:14:d5:
e6:4d:cc:36:5d:6d:d8:6f:a5:45:85:28:06:0a:2b:ee:29:be:
00:a4:08:5b:75:eb:da:fa:61:78:de:9c:48:54:ea:ee:be:d8:
63:16:31:ec:e0:db:f5:5a:03:f2:5a:d6:92:9e:dd:31:60:19:
21:7f:7d:54:43:d4:86:72:4f:03:ba:d8:4d:1d:e6:bd:c9:86:
99:ff:65:a4:4e:ef:35:1c:da:94:05:91:8e:15:fb:dd:c1:96:
7d:32:e2:e8:33:9c:2a:49:13:92:e1:c7:eb:9d:4f:d1:4e:1f:
42:10:66:a5:92:ce:37:04:e7:2b:b2:77:bb:5f:e3:ff:f5:5d:
88:ed:56:72:d0:34:ad:c0:22:41:35:47:5e:43:be:c1:2b:96:
29:0e:fa:08:9e:0b:6f:1c:2d:4a:b4:f2:8b:d7:ac:81:cb:26:
ac:11:b3:f6:28:41:b1:f2:3b:96:d7:47:37:3d:fa:33:45:70:
dc:68:85:5c:68:d2:05:fa:c3:91:7d:a5:43:6f:61:b7:31:10:
95:5d:e6:58:49:3b:3b:c2:c0:c5:5e:f0:77:fd:e5:21:31:b2:
be:3d:bb:6d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAQMUGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZWQ0MDE4MjgxNWEzNDk3OWZiYzY4ZTMwYzQwMDhiZjk5YjQyMWJmMB4XDTIyMDMw
NzE3Mzg0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWMxYjBlZjE3Y2Ez
OTNhMjNkYzg5NmQ4NjI5MGZmNjU2YzIxMDJjYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALSkMlTwg1BY743O/RNRIYOpZ5Uc8OnpHNEAsh8zFbjL04vQ
D7oB3S/LV39Sl/ISTFq94whDMiyRw5Ngnewaef6BKFZWQxLYEpkwQ+Scw2ovM6xy
714BDRJhlLO1WzBuW3QVV8Y+6fd1MYFbhlSOTSCDvRBiYxJI89Oryqj6piFPj+vH
SMEu16mFgU5SA2cePRiJrvTNpCzC/dElBx6HARywh/6K1i2EI214pM+i8If0rPWH
ScURD7jQ71XM/5DhxETZQEEnVSQPniupyWYB7ajT9OfUOxv9uFfOawsV/T41yCBH
3Uc60FaqHb0Q/j+0gQyglAQwnripxQlStlyKIc0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSsGw7xfKOToj3IlthikP9lbCECyzAfBgNVHSMEGDAWgBSe1AGCgVo0l5+8
aOMMQAi/mbQhvzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L250UUJnb0ZhTkplZnZHampERUFJdjVtMEliOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjcvOGU1MTZhLWYyMDUtNDg2OS1hZDc0LWFiYzc2ZGYzMmQyOS8x
L3JCc084WHlqazZJOXlKYllZcERfWld3aEFzcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcv
OGU1MTZhLWYyMDUtNDg2OS1hZDc0LWFiYzc2ZGYzMmQyOS8xL250UUJnb0ZhTkpl
ZnZHampERUFJdjVtMEliOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG3NujANBgkqhkiG9w0BAQsFAAOC
AQEAbTYSY3gb/TxE1iwhXkJRXDlKzpxIaXvp+bPrpSOFsgpVYRTV5k3MNl1t2G+l
RYUoBgor7im+AKQIW3Xr2vpheN6cSFTq7r7YYxYx7ODb9VoD8lrWkp7dMWAZIX99
VEPUhnJPA7rYTR3mvcmGmf9lpE7vNRzalAWRjhX73cGWfTLi6DOcKkkTkuHH651P
0U4fQhBmpZLONwTnK7J3u1/j//VdiO1WctA0rcAiQTVHXkO+wSuWKQ76CJ4Lbxwt
SrTyi9esgcsmrBGz9ihBsfI7ltdHNz36M0Vw3GiFXGjSBfrDkX2lQ29htzEQlV3m
WEk7O8LAxV7wd/3lITGyvj27bQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org