Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/2e432b-ba9c-40e0-ba91-15de12543bb4/1/89B8Sra87jHlbBQphTAPd8_Hjr0.roa
File: 89B8Sra87jHlbBQphTAPd8_Hjr0.roa (raw, json)
Hash identifier: J+04nkR16TBMvziu6yqOco1WYIy13npFAEfScGBCmCE=
Subject key identifier: F3:D0:7C:4A:B6:BC:EE:31:E5:6C:14:29:85:30:0F:77:CF:C7:8E:BD
Certificate issuer: /CN=e783c010ee0b0739fbf91ac8d31c0dd30c4a1ea0
Certificate serial: 0105B25A
Authority key identifier: E7:83:C0:10:EE:0B:07:39:FB:F9:1A:C8:D3:1C:0D:D3:0C:4A:1E:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/54PAEO4LBzn7-RrI0xwN0wxKHqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/2e432b-ba9c-40e0-ba91-15de12543bb4/1/89B8Sra87jHlbBQphTAPd8_Hjr0.roa
Signing time: Sat 01 Jan 2022 12:59:53 +0000
ROA not before: Sat 01 Jan 2022 12:59:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44853
IP address blocks: 81.16.24.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17150554 (0x105b25a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e783c010ee0b0739fbf91ac8d31c0dd30c4a1ea0
Validity
Not Before: Jan 1 12:59:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3d07c4ab6bcee31e56c142985300f77cfc78ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3e:3f:0a:d2:ee:00:f8:0c:21:f8:86:63:1f:
1c:07:fc:2d:db:a8:c7:2f:69:7e:1c:1f:09:40:63:
ec:29:3d:96:73:71:df:b2:87:ee:5b:b2:f4:39:97:
64:b0:36:4e:ab:a5:39:41:be:55:4e:f3:9c:a4:55:
af:d5:29:ea:df:d5:9e:9a:53:a5:1d:5f:6d:c5:da:
1d:18:78:f7:bc:5f:a1:10:e7:2d:83:d3:78:a6:30:
e9:57:c6:93:e9:bc:cf:7a:af:5b:04:c5:74:a1:95:
b0:bf:84:43:c4:41:88:f8:8c:11:19:f7:d8:21:26:
b5:da:3b:0d:07:4d:37:9d:0b:33:e5:32:b9:22:0f:
5e:4c:db:16:44:bb:25:f0:f0:6b:d1:83:15:12:ff:
4b:8c:13:8a:d6:f7:af:5f:cc:8f:14:a4:bf:b0:85:
5e:4b:bd:5e:95:43:2a:1e:9c:f4:4b:5a:9e:43:bf:
29:d5:7c:1b:a3:15:80:b2:23:e7:af:d3:07:7a:d5:
9e:e8:03:65:07:5f:ee:99:41:7c:98:ad:f1:a4:58:
f6:aa:e6:ce:90:19:59:1f:94:c1:06:c0:26:bb:87:
b8:cf:81:09:a0:c7:2a:f2:a2:33:46:7b:48:6c:e6:
9f:ef:d6:0a:d8:7f:30:69:f7:f4:16:8f:8d:8a:a8:
a3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D0:7C:4A:B6:BC:EE:31:E5:6C:14:29:85:30:0F:77:CF:C7:8E:BD
X509v3 Authority Key Identifier:
keyid:E7:83:C0:10:EE:0B:07:39:FB:F9:1A:C8:D3:1C:0D:D3:0C:4A:1E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/54PAEO4LBzn7-RrI0xwN0wxKHqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/2e432b-ba9c-40e0-ba91-15de12543bb4/1/89B8Sra87jHlbBQphTAPd8_Hjr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/2e432b-ba9c-40e0-ba91-15de12543bb4/1/54PAEO4LBzn7-RrI0xwN0wxKHqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.16.24.0/22
Signature Algorithm: sha256WithRSAEncryption
49:d3:2a:25:0b:3b:dd:63:ee:66:9e:95:c2:01:70:4b:b9:7f:
a3:96:7f:d7:0e:62:f9:a4:75:8d:99:4d:c3:44:fc:d8:c5:21:
38:7e:c2:50:78:af:62:56:88:95:bc:58:cd:96:1b:7c:a2:f8:
53:db:38:ff:e3:34:ed:b6:c6:ae:10:87:73:1d:4f:ee:33:1b:
85:bf:24:21:42:e2:5b:5a:4e:08:d7:48:ef:7c:8c:be:96:9a:
5c:d4:0f:84:be:45:b2:72:73:cb:50:e8:0e:c3:11:1f:e9:ea:
2f:5d:9e:4e:bb:11:cf:23:27:88:4b:61:14:a3:04:35:0b:3b:
cb:3b:af:92:9c:94:b2:26:bf:cf:af:e8:44:54:97:36:34:30:
87:f2:4e:ec:3e:f6:ee:15:34:2a:23:c2:e6:89:2b:53:91:e0:
4d:2a:d6:ef:b2:06:ae:2d:43:3f:05:4c:3d:fb:4e:5a:33:b1:
6d:7e:e2:32:e7:c8:b5:a0:28:2b:d8:44:26:eb:55:f6:f7:54:
df:9f:0f:19:8b:57:e2:73:0b:1f:af:9f:07:db:b9:54:7f:bb:
b2:7a:50:b0:bb:eb:80:b7:aa:5e:f0:d4:85:66:2e:d4:91:5d:
36:2d:34:de:b3:4a:ed:06:84:fa:5b:78:c7:95:94:9c:b4:3c:
0f:91:2c:b9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAQWyWjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NzgzYzAxMGVlMGIwNzM5ZmJmOTFhYzhkMzFjMGRkMzBjNGExZWEwMB4XDTIyMDEw
MTEyNTk1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjNkMDdjNGFiNmJj
ZWUzMWU1NmMxNDI5ODUzMDBmNzdjZmM3OGViZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALo+PwrS7gD4DCH4hmMfHAf8Lduoxy9pfhwfCUBj7Ck9lnNx
37KH7luy9DmXZLA2TqulOUG+VU7znKRVr9Up6t/VnppTpR1fbcXaHRh497xfoRDn
LYPTeKYw6VfGk+m8z3qvWwTFdKGVsL+EQ8RBiPiMERn32CEmtdo7DQdNN50LM+Uy
uSIPXkzbFkS7JfDwa9GDFRL/S4wTitb3r1/MjxSkv7CFXku9XpVDKh6c9EtankO/
KdV8G6MVgLIj56/TB3rVnugDZQdf7plBfJit8aRY9qrmzpAZWR+UwQbAJruHuM+B
CaDHKvKiM0Z7SGzmn+/WCth/MGn39BaPjYqoo2MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTz0HxKtrzuMeVsFCmFMA93z8eOvTAfBgNVHSMEGDAWgBTng8AQ7gsHOfv5
GsjTHA3TDEoeoDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzU0UEFFTzRMQnpuNy1SckkweHdOMHd4S0hxQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvMmU0MzJiLWJhOWMtNDBlMC1iYTkxLTE1ZGUxMjU0M2JiNC8x
Lzg5QjhTcmE4N2pIbGJCUXBoVEFQZDhfSGpyMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
MmU0MzJiLWJhOWMtNDBlMC1iYTkxLTE1ZGUxMjU0M2JiNC8xLzU0UEFFTzRMQnpu
Ny1SckkweHdOMHd4S0hxQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlEQGDANBgkqhkiG9w0BAQsFAAOC
AQEASdMqJQs73WPuZp6VwgFwS7l/o5Z/1w5i+aR1jZlNw0T82MUhOH7CUHivYlaI
lbxYzZYbfKL4U9s4/+M07bbGrhCHcx1P7jMbhb8kIULiW1pOCNdI73yMvpaaXNQP
hL5FsnJzy1DoDsMRH+nqL12eTrsRzyMniEthFKMENQs7yzuvkpyUsia/z6/oRFSX
NjQwh/JO7D727hU0KiPC5okrU5HgTSrW77IGri1DPwVMPftOWjOxbX7iMufItaAo
K9hEJutV9vdU358PGYtX4nMLH6+fB9u5VH+7snpQsLvrgLeqXvDUhWYu1JFdNi00
3rNK7QaE+lt4x5WUnLQ8D5EsuQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:10 2023 by rpki-client on console.sobornost.net