Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/AaHQ0RD7iPn3L11zKyTazazlBVU.roa
File: AaHQ0RD7iPn3L11zKyTazazlBVU.roa (raw, json)
Hash identifier: 0ZSato/tHYheNmUHM2ArlIz2YdJ0D/+o/889n1nA+1M=
Subject key identifier: 01:A1:D0:D1:10:FB:88:F9:F7:2F:5D:73:2B:24:DA:CD:AC:E5:05:55
Certificate issuer: /CN=ff40503cb21a922897971726f6b7eecc253f1193
Certificate serial: 01856FB118930B0560D2B1FF3E082F6C7710
Authority key identifier: FF:40:50:3C:B2:1A:92:28:97:97:17:26:F6:B7:EE:CC:25:3F:11:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0BQPLIakiiXlxcm9rfuzCU_EZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/AaHQ0RD7iPn3L11zKyTazazlBVU.roa
Signing time: Sun 01 Jan 2023 23:35:55 +0000
ROA not before: Sun 01 Jan 2023 23:35:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 193.40.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:18:93:0b:05:60:d2:b1:ff:3e:08:2f:6c:77:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff40503cb21a922897971726f6b7eecc253f1193
Validity
Not Before: Jan 1 23:35:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01a1d0d110fb88f9f72f5d732b24dacdace50555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cb:8b:bb:29:16:31:7d:66:87:33:c0:39:45:
18:be:4b:44:47:53:1b:90:a4:85:b4:52:9f:cb:38:
55:4e:7e:d2:c8:76:66:1e:3e:b0:c1:98:b5:a9:a8:
20:cc:d9:12:4d:24:cd:d7:2e:33:8c:33:54:22:35:
29:c9:cd:ba:dd:10:d3:1e:22:d1:04:1a:75:e3:20:
b1:81:c9:f1:ee:5c:31:c3:71:7a:11:93:8b:97:1a:
ae:e4:3d:25:64:19:60:2f:be:cf:5a:35:61:bd:f1:
ae:c1:22:6b:3d:19:04:67:81:b5:a9:d0:1c:3f:5c:
ef:4e:e3:b6:4f:c0:bf:35:5f:4e:86:e2:09:91:1a:
1a:c3:bd:50:58:b4:1b:e5:4e:8a:32:a2:df:98:86:
ac:75:bf:37:46:4f:70:c9:7e:ac:a9:45:ea:ed:e3:
23:a8:00:50:32:3d:31:e7:2d:b0:02:e8:3d:e7:4c:
ec:0c:70:44:b8:cd:a7:d4:e7:1c:29:9a:2d:bb:5a:
21:7d:7f:47:f2:e9:d0:68:03:5a:59:87:ba:f0:c8:
49:0f:7f:7d:e6:bb:69:3f:07:59:c1:39:df:85:ae:
b2:56:75:19:b0:ad:f1:b0:99:83:29:82:58:6a:b1:
d2:0e:4d:89:0b:47:71:5d:bc:3c:e5:cf:2b:df:57:
a2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A1:D0:D1:10:FB:88:F9:F7:2F:5D:73:2B:24:DA:CD:AC:E5:05:55
X509v3 Authority Key Identifier:
keyid:FF:40:50:3C:B2:1A:92:28:97:97:17:26:F6:B7:EE:CC:25:3F:11:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0BQPLIakiiXlxcm9rfuzCU_EZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/AaHQ0RD7iPn3L11zKyTazazlBVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/_0BQPLIakiiXlxcm9rfuzCU_EZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.40.195.0/24
Signature Algorithm: sha256WithRSAEncryption
20:e2:8c:44:a4:ea:16:2a:da:d9:62:58:20:83:67:c3:9e:b8:
0b:15:a7:99:c1:4a:7a:01:12:9b:bc:c0:f7:50:6c:fd:2f:72:
60:dd:88:ee:c9:af:13:02:58:38:47:a2:c5:ba:d5:2f:a6:13:
0f:4b:98:8e:20:e3:52:a1:e2:70:55:e1:ed:7f:6b:d1:2c:28:
42:56:5e:15:9e:c2:18:60:e4:e4:0d:ef:ad:fd:fe:59:b6:25:
25:7a:56:26:9a:ed:be:60:27:5e:42:5e:96:b8:64:10:8f:70:
68:72:01:54:c9:11:ad:15:b0:fe:72:8b:e8:24:0a:bf:fc:1b:
77:19:bc:94:d4:2d:64:59:a8:d6:68:b0:cf:01:73:5e:f6:25:
ef:07:28:89:4d:b7:3e:e2:f7:16:b3:10:38:1b:51:36:1f:1a:
70:47:69:8d:81:5f:b5:53:1d:51:94:9f:a9:60:72:47:00:6c:
1a:4e:c6:60:fb:4d:73:38:e8:c2:5d:a3:56:46:74:77:ea:23:
1c:af:5a:6e:23:7a:d5:d3:a9:2c:4e:d0:46:9e:7c:e5:ad:92:
25:ec:71:52:3f:f6:2f:4c:a2:cb:68:3c:ff:47:75:a5:5d:9c:
4e:98:82:4a:8f:b1:cc:5c:ea:d9:d1:0e:b7:c2:94:0f:61:76:
59:33:04:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvsRiTCwVg0rH/PggvbHcQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmNDA1MDNjYjIxYTkyMjg5Nzk3MTcyNmY2YjdlZWNjMjUz
ZjExOTMwHhcNMjMwMTAxMjMzNTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWExZDBkMTEwZmI4OGY5ZjcyZjVkNzMyYjI0ZGFjZGFjZTUwNTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAksuLuykWMX1mhzPAOUUYvktER1Mb
kKSFtFKfyzhVTn7SyHZmHj6wwZi1qaggzNkSTSTN1y4zjDNUIjUpyc263RDTHiLR
BBp14yCxgcnx7lwxw3F6EZOLlxqu5D0lZBlgL77PWjVhvfGuwSJrPRkEZ4G1qdAc
P1zvTuO2T8C/NV9OhuIJkRoaw71QWLQb5U6KMqLfmIasdb83Rk9wyX6sqUXq7eMj
qABQMj0x5y2wAug950zsDHBEuM2n1OccKZotu1ohfX9H8unQaANaWYe68MhJD399
5rtpPwdZwTnfha6yVnUZsK3xsJmDKYJYarHSDk2JC0dxXbw85c8r31eiNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAGh0NEQ+4j59y9dcysk2s2s5QVVMB8GA1UdIwQY
MBaAFP9AUDyyGpIol5cXJva37swlPxGTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzBCUVBMSWFraWlYbHhjbTlyZnV6Q1VfRVpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81Mjk0MTQtZDdhNS00OWViLTliZDYt
Y2JmMWJiYjBmZDE4LzEvQWFIUTBSRDdpUG4zTDExekt5VGF6YXpsQlZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS81Mjk0MTQtZDdhNS00OWViLTliZDYtY2JmMWJiYjBmZDE4
LzEvXzBCUVBMSWFraWlYbHhjbTlyZnV6Q1VfRVpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSjDMA0G
CSqGSIb3DQEBCwUAA4IBAQAg4oxEpOoWKtrZYlggg2fDnrgLFaeZwUp6ARKbvMD3
UGz9L3Jg3Yjuya8TAlg4R6LFutUvphMPS5iOIONSoeJwVeHtf2vRLChCVl4VnsIY
YOTkDe+t/f5ZtiUlelYmmu2+YCdeQl6WuGQQj3BocgFUyRGtFbD+covoJAq//Bt3
GbyU1C1kWajWaLDPAXNe9iXvByiJTbc+4vcWsxA4G1E2HxpwR2mNgV+1Ux1RlJ+p
YHJHAGwaTsZg+01zOOjCXaNWRnR36iMcr1puI3rV06ksTtBGnnzlrZIl7HFSP/Yv
TKLLaDz/R3WlXZxOmIJKj7HMXOrZ0Q63wpQPYXZZMwSV
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net