Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/_843_-mnNpkTBZ6j4_Md5lcrjWg.roa
File: _843_-mnNpkTBZ6j4_Md5lcrjWg.roa (raw, json)
Hash identifier: BW5vSTGCicY0DlwQWhxpFjpIdfcLrrwf/48Y1v/2JKM=
Subject key identifier: FF:CE:37:FF:E9:A7:36:99:13:05:9E:A3:E3:F3:1D:E6:57:2B:8D:68
Certificate issuer: /CN=64b59ae521952da55e03f779b885031c0c809cf9
Certificate serial: 01909BD1C4F2565A11AC24544EEA275B2B11
Authority key identifier: 64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/_843_-mnNpkTBZ6j4_Md5lcrjWg.roa
Signing time: Wed 10 Jul 2024 08:45:34 +0000
ROA not before: Wed 10 Jul 2024 08:45:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215603
IP address blocks: 209.177.176.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9b:d1:c4:f2:56:5a:11:ac:24:54:4e:ea:27:5b:2b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64b59ae521952da55e03f779b885031c0c809cf9
Validity
Not Before: Jul 10 08:45:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffce37ffe9a7369913059ea3e3f31de6572b8d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f9:a7:fb:29:05:96:a5:31:d6:dd:7d:5f:b4:
84:ab:c0:6f:84:ba:50:f7:02:9d:cd:a2:28:25:a2:
e9:5b:de:2a:7c:c8:b7:16:b4:99:f3:ec:a3:49:a2:
88:6d:b8:0c:0a:4d:c3:dd:8d:0a:1f:65:68:61:5c:
46:a0:af:29:42:4c:18:94:af:ff:fe:c0:81:f1:1e:
76:a6:a9:a0:90:20:0f:92:ae:2c:cb:9c:c0:0b:4c:
27:ea:71:0c:99:bd:04:bc:d4:7b:c4:77:8b:4c:39:
b8:8b:05:c5:54:8c:c5:50:41:70:a2:c3:86:8a:09:
df:94:4c:dc:d1:21:75:3c:df:2a:e3:59:3e:59:d6:
48:68:28:d7:d1:68:84:f1:0a:12:14:84:08:61:f0:
40:c6:7b:fb:10:d3:98:12:4c:fb:1c:ee:91:72:49:
c9:51:ee:cf:4f:b0:cc:30:d7:8b:9b:f6:63:83:0a:
e9:42:33:dd:c6:63:10:aa:28:1d:ce:3e:a5:c5:73:
7d:9f:1f:80:4f:7e:a7:01:89:c8:0d:fe:fd:05:88:
f7:4f:a1:25:84:97:82:34:82:a4:aa:80:ff:2b:58:
1c:e7:5a:2f:be:e6:94:8b:95:a2:12:e6:2e:6f:17:
90:29:26:b9:c4:57:91:ac:2a:2f:38:40:72:8e:bd:
e9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:CE:37:FF:E9:A7:36:99:13:05:9E:A3:E3:F3:1D:E6:57:2B:8D:68
X509v3 Authority Key Identifier:
keyid:64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/_843_-mnNpkTBZ6j4_Md5lcrjWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.177.176.0/23
Signature Algorithm: sha256WithRSAEncryption
75:2f:9b:44:ca:e1:f3:b0:87:ff:0e:99:0a:54:e7:ac:e9:75:
fa:5c:d8:28:cb:ca:f9:29:e3:07:fb:52:a8:6f:e0:e1:5b:67:
46:a4:32:d8:9d:55:d4:bd:2a:a8:30:83:28:8f:cb:d5:72:2a:
ab:9d:3a:a5:40:a8:33:25:5d:e2:c8:18:94:c9:b3:f9:e9:01:
4f:b8:8b:76:3b:8b:72:9f:e5:fc:ff:12:9f:84:22:96:9a:6a:
17:97:f9:63:1d:33:83:bb:3d:86:c6:f2:45:56:29:c5:16:7e:
a8:33:06:20:73:6e:d9:28:c8:02:2e:39:fe:06:7d:90:99:41:
93:03:2b:88:6a:b0:22:24:fb:59:3c:83:64:91:3b:ba:c4:38:
dd:d3:6e:fd:50:41:d2:9d:55:8e:17:22:c7:de:3e:ed:40:b6:
5e:c5:d2:93:6a:aa:28:d8:1a:fb:e5:77:a1:1d:4c:96:4c:89:
90:22:d8:e6:b0:dd:96:8a:58:d0:e7:97:30:ae:d3:a4:09:e0:
a6:62:2c:e5:6a:1f:a7:1c:a3:69:de:c0:81:9b:bf:5d:07:c3:
e6:7b:05:9b:96:68:2b:f0:77:65:2c:eb:51:8c:43:8e:ea:a3:
8f:d2:ce:04:42:a3:e7:4d:09:54:4a:7f:12:8b:58:30:08:73:
9d:dc:0a:e7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCb0cTyVloRrCRUTuonWysRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0YjU5YWU1MjE5NTJkYTU1ZTAzZjc3OWI4ODUwMzFjMGM4
MDljZjkwHhcNMjQwNzEwMDg0NTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmNlMzdmZmU5YTczNjk5MTMwNTllYTNlM2YzMWRlNjU3MmI4ZDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPmn+ykFlqUx1t19X7SEq8BvhLpQ
9wKdzaIoJaLpW94qfMi3FrSZ8+yjSaKIbbgMCk3D3Y0KH2VoYVxGoK8pQkwYlK//
/sCB8R52pqmgkCAPkq4sy5zAC0wn6nEMmb0EvNR7xHeLTDm4iwXFVIzFUEFwosOG
ignflEzc0SF1PN8q41k+WdZIaCjX0WiE8QoSFIQIYfBAxnv7ENOYEkz7HO6RcknJ
Ue7PT7DMMNeLm/ZjgwrpQjPdxmMQqigdzj6lxXN9nx+AT36nAYnIDf79BYj3T6El
hJeCNIKkqoD/K1gc51ovvuaUi5WiEuYubxeQKSa5xFeRrCovOEByjr3pIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP/ON//ppzaZEwWeo+PzHeZXK41oMB8GA1UdIwQY
MBaAFGS1muUhlS2lXgP3ebiFAxwMgJz5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkxXYTVTR1ZMYVZlQV9kNXVJVURIQXlBblBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi82YTZiMjItZmU2Ny00MjAyLWFjOTQt
NTFhZDAwZTU0MzMyLzEvXzg0M18tbW5OcGtUQlo2ajRfTWQ1bGNyaldnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi82YTZiMjItZmU2Ny00MjAyLWFjOTQtNTFhZDAwZTU0MzMy
LzEvWkxXYTVTR1ZMYVZlQV9kNXVJVURIQXlBblBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0bGwMA0G
CSqGSIb3DQEBCwUAA4IBAQB1L5tEyuHzsIf/DpkKVOes6XX6XNgoy8r5KeMH+1Ko
b+DhW2dGpDLYnVXUvSqoMIMoj8vVciqrnTqlQKgzJV3iyBiUybP56QFPuIt2O4ty
n+X8/xKfhCKWmmoXl/ljHTODuz2GxvJFVinFFn6oMwYgc27ZKMgCLjn+Bn2QmUGT
AyuIarAiJPtZPINkkTu6xDjd0279UEHSnVWOFyLH3j7tQLZexdKTaqoo2Br75Xeh
HUyWTImQItjmsN2WiljQ55cwrtOkCeCmYizlah+nHKNp3sCBm79dB8PmewWblmgr
8HdlLOtRjEOO6qOP0s4EQqPnTQlUSn8Si1gwCHOd3Arn
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:19 2024 by rpki-client on console.sobornost.net