Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9ca9bc-e41c-4931-9d9d-ead096812626/1/ObJPv8GIizkz8ZAc47_pIKvri6s.roa
File: ObJPv8GIizkz8ZAc47_pIKvri6s.roa (raw, json)
Hash identifier: Fv2JPn0osGIcKfdWtwpBtTQnLP7E4KJOG62/XGk8gkg=
Subject key identifier: 39:B2:4F:BF:C1:88:8B:39:33:F1:90:1C:E3:BF:E9:20:AB:EB:8B:AB
Certificate issuer: /CN=5a67da4c5acbd0d9a062f917c576df34acd43343
Certificate serial: 018CC42486AE2DCE80A8118D417EBB421051
Authority key identifier: 5A:67:DA:4C:5A:CB:D0:D9:A0:62:F9:17:C5:76:DF:34:AC:D4:33:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WmfaTFrL0NmgYvkXxXbfNKzUM0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9ca9bc-e41c-4931-9d9d-ead096812626/1/ObJPv8GIizkz8ZAc47_pIKvri6s.roa
Signing time: Mon 01 Jan 2024 08:29:37 +0000
ROA not before: Mon 01 Jan 2024 08:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42529
IP address blocks: 195.16.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:86:ae:2d:ce:80:a8:11:8d:41:7e:bb:42:10:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a67da4c5acbd0d9a062f917c576df34acd43343
Validity
Not Before: Jan 1 08:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39b24fbfc1888b3933f1901ce3bfe920abeb8bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:57:99:62:52:c6:2e:b7:f2:1e:ab:5f:8d:5b:
ad:3b:fc:d6:70:a5:5b:98:6b:07:45:f6:99:7f:9c:
a0:a4:f5:59:ba:47:8d:01:c8:4d:55:0e:88:a4:00:
1c:0f:dc:ef:26:5d:c0:38:76:02:3b:f3:d2:b7:26:
a6:f0:c8:cb:17:2a:f5:e2:65:19:fd:3e:13:1f:96:
31:5f:ba:8d:6c:70:11:d1:06:78:18:9d:4a:f1:7a:
9f:82:89:3c:c2:7b:f8:5b:20:cc:55:64:d4:cd:f7:
bf:7d:59:e8:34:52:83:14:ec:c4:91:3c:b1:61:9f:
44:b8:99:7a:d8:fa:e3:36:da:de:3c:f9:d8:f2:cd:
30:44:d6:02:50:d0:52:19:ef:a4:84:1c:92:74:e9:
86:f3:21:86:39:5c:6d:ac:4d:17:e4:2c:9d:f2:61:
a9:75:f9:fb:51:6c:6d:b5:cb:fc:59:a9:99:60:a9:
a9:f2:52:9a:30:e6:3d:0f:37:2c:b2:d2:23:c2:f9:
6c:83:f7:bb:69:07:19:00:c4:11:62:17:b9:61:b5:
ba:89:c2:1e:5e:01:2b:25:e8:82:d9:a2:5c:71:35:
0c:49:b3:5d:2d:37:b8:70:a3:a3:7d:ff:aa:11:e1:
fa:f5:1d:26:da:6e:c1:6f:a2:5b:73:31:5c:2c:01:
64:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B2:4F:BF:C1:88:8B:39:33:F1:90:1C:E3:BF:E9:20:AB:EB:8B:AB
X509v3 Authority Key Identifier:
keyid:5A:67:DA:4C:5A:CB:D0:D9:A0:62:F9:17:C5:76:DF:34:AC:D4:33:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WmfaTFrL0NmgYvkXxXbfNKzUM0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9ca9bc-e41c-4931-9d9d-ead096812626/1/ObJPv8GIizkz8ZAc47_pIKvri6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9ca9bc-e41c-4931-9d9d-ead096812626/1/WmfaTFrL0NmgYvkXxXbfNKzUM0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.95.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:b9:d9:95:33:4e:2e:c5:06:34:80:35:f4:32:4d:cd:4f:56:
0f:33:67:d9:de:e6:63:7d:f2:24:e7:64:0a:01:ff:3d:02:04:
dc:b3:d9:86:8b:96:ee:0b:59:65:86:01:d0:a1:2c:a7:c0:fc:
50:05:e1:01:9d:5b:a8:78:f7:b9:a3:71:be:a6:07:e4:f8:51:
0e:49:b9:02:ae:ef:dd:73:c0:2b:ce:73:f4:cc:26:3f:7f:13:
41:c2:34:f4:9d:27:d7:fa:49:96:22:d3:6a:37:16:8a:a8:c8:
33:5c:62:99:db:5f:5c:5e:df:a4:bf:22:d7:45:05:71:4a:0e:
73:8d:9f:cf:bc:fa:3d:31:3f:e0:af:23:77:36:86:7c:f3:48:
1d:8f:28:21:8b:ca:a6:de:24:2b:ed:37:67:f0:53:c9:45:70:
46:2d:16:b5:0e:63:98:4c:d9:4a:5d:e9:e6:89:9d:34:70:12:
ec:ad:44:4d:95:b9:d4:b4:9d:29:67:0c:ce:4c:7a:5d:12:9e:
02:91:cd:1e:c1:b2:56:fe:68:bd:ca:19:67:bd:2a:b2:35:66:
38:dc:ff:9a:5f:05:18:7f:31:10:bd:15:87:e3:f5:83:ed:7a:
82:21:62:3f:3d:dd:30:88:23:6b:52:ed:87:6d:b7:c4:b2:55:
57:ec:89:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJIauLc6AqBGNQX67QhBRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhNjdkYTRjNWFjYmQwZDlhMDYyZjkxN2M1NzZkZjM0YWNk
NDMzNDMwHhcNMjQwMTAxMDgyOTM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOWIyNGZiZmMxODg4YjM5MzNmMTkwMWNlM2JmZTkyMGFiZWI4YmFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqleZYlLGLrfyHqtfjVutO/zWcKVb
mGsHRfaZf5ygpPVZukeNAchNVQ6IpAAcD9zvJl3AOHYCO/PStyam8MjLFyr14mUZ
/T4TH5YxX7qNbHAR0QZ4GJ1K8Xqfgok8wnv4WyDMVWTUzfe/fVnoNFKDFOzEkTyx
YZ9EuJl62PrjNtrePPnY8s0wRNYCUNBSGe+khBySdOmG8yGGOVxtrE0X5Cyd8mGp
dfn7UWxttcv8WamZYKmp8lKaMOY9DzcsstIjwvlsg/e7aQcZAMQRYhe5YbW6icIe
XgErJeiC2aJccTUMSbNdLTe4cKOjff+qEeH69R0m2m7Bb6JbczFcLAFkSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDmyT7/BiIs5M/GQHOO/6SCr64urMB8GA1UdIwQY
MBaAFFpn2kxay9DZoGL5F8V23zSs1DNDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV21mYVRGckwwTm1nWXZrWHhYYmZOS3pVTTBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS85Y2E5YmMtZTQxYy00OTMxLTlkOWQt
ZWFkMDk2ODEyNjI2LzEvT2JKUHY4R0lpemt6OFpBYzQ3X3BJS3ZyaTZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS85Y2E5YmMtZTQxYy00OTMxLTlkOWQtZWFkMDk2ODEyNjI2
LzEvV21mYVRGckwwTm1nWXZrWHhYYmZOS3pVTTBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwxBfMA0G
CSqGSIb3DQEBCwUAA4IBAQBMudmVM04uxQY0gDX0Mk3NT1YPM2fZ3uZjffIk52QK
Af89AgTcs9mGi5buC1llhgHQoSynwPxQBeEBnVuoePe5o3G+pgfk+FEOSbkCru/d
c8ArznP0zCY/fxNBwjT0nSfX+kmWItNqNxaKqMgzXGKZ219cXt+kvyLXRQVxSg5z
jZ/PvPo9MT/gryN3NoZ880gdjyghi8qm3iQr7Tdn8FPJRXBGLRa1DmOYTNlKXenm
iZ00cBLsrURNlbnUtJ0pZwzOTHpdEp4Ckc0ewbJW/mi9yhlnvSqyNWY43P+aXwUY
fzEQvRWH4/WD7XqCIWI/Pd0wiCNrUu2HbbfEslVX7Iny
-----END CERTIFICATE-----
Generated at Tue Feb 27 00:59:21 2024 by rpki-client on console.sobornost.net