Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/19e5d8-8d29-4d81-b52d-4cd6de9fa902/1/qpDntE3U9kR4Px7_po0n5irupLY.roa
File: qpDntE3U9kR4Px7_po0n5irupLY.roa (raw, json)
Hash identifier: LpV/BXN7IZsk+7EUEwEZ80LM7a48/x1E+huMMq2D3Ao=
Subject key identifier: AA:90:E7:B4:4D:D4:F6:44:78:3F:1E:FF:A6:8D:27:E6:2A:EE:A4:B6
Certificate issuer: /CN=009361c22d26a22a8b3b2c53ab5c57a77032f36e
Certificate serial: 0185719E862E5411192892B31CE735611E47
Authority key identifier: 00:93:61:C2:2D:26:A2:2A:8B:3B:2C:53:AB:5C:57:A7:70:32:F3:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJNhwi0moiqLOyxTq1xXp3Ay824.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/19e5d8-8d29-4d81-b52d-4cd6de9fa902/1/qpDntE3U9kR4Px7_po0n5irupLY.roa
Signing time: Mon 02 Jan 2023 08:34:52 +0000
ROA not before: Mon 02 Jan 2023 08:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8860
IP address blocks: 194.145.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:86:2e:54:11:19:28:92:b3:1c:e7:35:61:1e:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009361c22d26a22a8b3b2c53ab5c57a77032f36e
Validity
Not Before: Jan 2 08:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa90e7b44dd4f644783f1effa68d27e62aeea4b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a2:1e:f9:f4:b9:f4:5e:42:31:ab:b0:20:28:
2b:1c:63:90:11:a6:61:89:b9:e8:c1:45:5c:4c:f3:
78:b4:1c:26:c6:f0:b7:5f:6b:22:f7:2b:b5:b6:10:
1a:c9:8f:76:12:b2:1c:77:c2:be:fc:89:39:23:9b:
8b:18:f1:83:5a:f0:71:b9:cd:e9:5d:6a:54:15:0e:
63:7c:ef:08:22:a3:96:09:bc:82:9e:24:d8:ca:27:
0d:b5:0b:fb:6d:21:4a:c7:93:37:9b:04:97:5d:20:
76:2f:55:6c:99:5b:08:c2:33:1f:d0:2f:73:52:da:
a4:a0:9b:b5:59:98:a7:12:c6:0d:cf:34:59:23:6a:
d4:68:14:09:cd:01:b8:c3:fa:f3:18:fa:12:54:fb:
87:90:3d:cc:a5:d7:f6:02:75:e9:ab:90:e9:12:be:
84:18:a6:03:7e:0f:06:97:57:43:f9:52:f3:f4:42:
31:24:60:b8:b7:ad:b3:9d:49:3e:5e:87:1c:a2:f3:
71:61:e5:f5:04:79:45:07:96:69:e7:e8:c8:9b:70:
64:33:98:d0:e4:d4:eb:de:df:a6:c8:f4:9c:1f:63:
dd:10:e1:7c:a2:a0:ca:e7:9c:80:17:c4:7f:c0:fe:
54:48:e5:84:18:52:c7:f2:ba:68:de:cd:b7:80:6a:
be:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:90:E7:B4:4D:D4:F6:44:78:3F:1E:FF:A6:8D:27:E6:2A:EE:A4:B6
X509v3 Authority Key Identifier:
keyid:00:93:61:C2:2D:26:A2:2A:8B:3B:2C:53:AB:5C:57:A7:70:32:F3:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJNhwi0moiqLOyxTq1xXp3Ay824.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/19e5d8-8d29-4d81-b52d-4cd6de9fa902/1/qpDntE3U9kR4Px7_po0n5irupLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/19e5d8-8d29-4d81-b52d-4cd6de9fa902/1/AJNhwi0moiqLOyxTq1xXp3Ay824.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.63.0/24
Signature Algorithm: sha256WithRSAEncryption
05:29:7c:5d:a8:41:1f:fd:79:a2:8a:57:77:f2:f7:a8:2d:e1:
60:8a:c5:bb:92:7b:9e:70:2e:a9:62:e3:fa:6c:22:db:bc:e9:
4f:d2:09:71:8f:81:a7:fa:f0:96:a4:e1:95:c6:ae:35:94:de:
22:1b:f4:b2:fd:28:4e:60:d3:f1:83:73:17:d0:da:f4:ef:5e:
96:58:42:8d:eb:1c:1e:63:49:82:da:f3:c4:ea:33:d2:af:15:
26:84:0f:4f:0e:c1:f2:4d:f1:53:65:20:8b:73:d5:a8:a2:b7:
23:7f:bf:0e:03:c5:9a:64:2d:21:c5:d9:5d:3c:cb:c3:5d:f8:
24:af:a8:15:63:e1:8a:7d:dd:b4:e2:dc:4b:84:75:5f:34:b6:
bd:97:23:ae:d6:48:5f:7f:6f:df:49:a4:c1:18:b9:5e:b8:3c:
bc:47:ea:bf:f1:fb:d5:bd:f2:25:3b:37:8d:37:ab:68:ae:b9:
d1:ad:ce:bd:93:56:4f:dd:b2:dd:12:9b:2b:d1:d8:e7:2e:81:
56:90:38:94:44:1f:15:40:c0:cc:17:ec:02:72:33:aa:24:2e:
9f:48:f6:e1:43:74:ff:59:bd:af:9f:22:f8:c2:4b:fb:2d:8a:
76:4f:55:01:30:41:04:88:1f:d5:ee:38:8e:1b:c6:54:dd:2c:
e7:a0:45:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxnoYuVBEZKJKzHOc1YR5HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwOTM2MWMyMmQyNmEyMmE4YjNiMmM1M2FiNWM1N2E3NzAz
MmYzNmUwHhcNMjMwMTAyMDgzNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTkwZTdiNDRkZDRmNjQ0NzgzZjFlZmZhNjhkMjdlNjJhZWVhNGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqIe+fS59F5CMauwICgrHGOQEaZh
ibnowUVcTPN4tBwmxvC3X2si9yu1thAayY92ErIcd8K+/Ik5I5uLGPGDWvBxuc3p
XWpUFQ5jfO8IIqOWCbyCniTYyicNtQv7bSFKx5M3mwSXXSB2L1VsmVsIwjMf0C9z
UtqkoJu1WZinEsYNzzRZI2rUaBQJzQG4w/rzGPoSVPuHkD3Mpdf2AnXpq5DpEr6E
GKYDfg8Gl1dD+VLz9EIxJGC4t62znUk+XoccovNxYeX1BHlFB5Zp5+jIm3BkM5jQ
5NTr3t+myPScH2PdEOF8oqDK55yAF8R/wP5USOWEGFLH8rpo3s23gGq+UQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKqQ57RN1PZEeD8e/6aNJ+Yq7qS2MB8GA1UdIwQY
MBaAFACTYcItJqIqizssU6tcV6dwMvNuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUpOaHdpMG1vaXFMT3l4VHExeFhwM0F5ODI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8xOWU1ZDgtOGQyOS00ZDgxLWI1MmQt
NGNkNmRlOWZhOTAyLzEvcXBEbnRFM1U5a1I0UHg3X3BvMG41aXJ1cExZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8xOWU1ZDgtOGQyOS00ZDgxLWI1MmQtNGNkNmRlOWZhOTAy
LzEvQUpOaHdpMG1vaXFMT3l4VHExeFhwM0F5ODI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpE/MA0G
CSqGSIb3DQEBCwUAA4IBAQAFKXxdqEEf/Xmiild38veoLeFgisW7knuecC6pYuP6
bCLbvOlP0glxj4Gn+vCWpOGVxq41lN4iG/Sy/ShOYNPxg3MX0Nr0716WWEKN6xwe
Y0mC2vPE6jPSrxUmhA9PDsHyTfFTZSCLc9Woorcjf78OA8WaZC0hxdldPMvDXfgk
r6gVY+GKfd204txLhHVfNLa9lyOu1khff2/fSaTBGLleuDy8R+q/8fvVvfIlOzeN
N6torrnRrc69k1ZP3bLdEpsr0djnLoFWkDiURB8VQMDMF+wCcjOqJC6fSPbhQ3T/
Wb2vnyL4wkv7LYp2T1UBMEEEiB/V7jiOG8ZU3SznoEVl
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:21 2023 by rpki-client on console.sobornost.net