Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/R1_1UfN9fmzEdxTYHQihrIvAnoQ.roa
File: R1_1UfN9fmzEdxTYHQihrIvAnoQ.roa (raw, json)
Hash identifier: 9mFY7iLZ9PM04AElU1VtPGqGvJcy/LnvSh5/gRYqiDM=
Subject key identifier: 47:5F:F5:51:F3:7D:7E:6C:C4:77:14:D8:1D:08:A1:AC:8B:C0:9E:84
Certificate issuer: /CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Certificate serial: 09ACABC8
Authority key identifier: 3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/R1_1UfN9fmzEdxTYHQihrIvAnoQ.roa
Signing time: Sat 01 Jan 2022 14:59:36 +0000
ROA not before: Sat 01 Jan 2022 14:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 139.28.24.0/24 maxlen: 24
139.28.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162311112 (0x9acabc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Validity
Not Before: Jan 1 14:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=475ff551f37d7e6cc47714d81d08a1ac8bc09e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:02:3a:f7:20:87:13:9a:26:1f:75:09:5f:ec:
71:4d:69:3a:b5:83:0f:5d:80:88:cf:75:c6:fc:19:
63:06:18:34:5d:a5:be:fb:11:0d:93:20:3c:4f:2b:
eb:c4:c1:e3:1c:76:41:0d:0f:37:a8:dc:27:c3:fb:
d5:a6:c7:6d:d4:79:23:a3:98:eb:34:1b:df:05:54:
ea:92:75:83:c0:79:ea:ce:6d:d7:99:4e:81:b8:66:
ad:3e:33:67:5f:51:1f:74:8f:8e:c3:8b:eb:3a:8d:
e8:74:62:f5:7e:d9:39:41:69:a2:a2:64:a3:3a:e9:
32:94:53:2e:92:47:2d:09:b4:b5:09:da:40:1a:a7:
47:59:e8:b1:ba:40:3d:4c:86:62:d6:09:51:5a:cb:
ba:46:b1:98:2a:46:8b:65:2c:5b:94:63:fe:ef:b3:
27:7a:ef:ab:fa:5c:73:01:f5:bf:8b:72:89:d3:4c:
a5:8e:ee:86:43:16:47:47:99:60:af:9d:1e:e1:b6:
e3:a8:bb:50:18:01:75:c5:89:11:75:e7:9a:aa:9d:
88:b3:05:1d:18:a6:d5:93:12:e9:64:61:2e:18:ae:
f1:67:d8:23:ef:85:ad:39:00:07:a4:4a:37:25:25:
92:a4:f4:67:83:a1:3d:52:5b:55:9f:c9:44:19:4a:
ea:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5F:F5:51:F3:7D:7E:6C:C4:77:14:D8:1D:08:A1:AC:8B:C0:9E:84
X509v3 Authority Key Identifier:
keyid:3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/R1_1UfN9fmzEdxTYHQihrIvAnoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/OuUa1QQPRQOvxx3FAYnEqWTRzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.24.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:a6:8b:a8:f5:52:21:52:7e:d6:7f:d8:a7:c2:3f:b0:5a:c5:
a6:54:2f:72:05:91:a9:30:c0:e3:41:bb:a2:8f:33:dd:b1:d2:
85:af:c0:bd:4c:4d:f7:47:76:31:c9:71:7d:66:7b:07:0e:cc:
2c:98:3c:2d:6d:8a:7a:8d:12:46:1b:11:63:cb:5b:b1:92:3e:
39:99:29:6f:b2:cc:24:e8:2e:a3:3b:61:45:61:ce:d5:a3:b7:
73:a4:d9:5a:c9:75:79:8a:b7:38:9c:eb:80:1d:d4:fd:fb:3b:
69:9e:16:2a:57:7d:b6:5c:c9:1a:6b:76:78:90:2f:41:58:9a:
aa:fe:a0:14:51:52:e8:01:7c:7b:19:0d:f0:35:a9:35:24:fb:
25:89:08:e0:d2:44:40:92:32:20:cb:d9:31:70:73:c5:45:7f:
aa:5d:45:d4:9d:cf:b2:3d:3b:1f:c4:a6:e4:8f:c8:5f:49:6c:
ae:7c:b9:8e:1f:cf:be:4b:ad:09:44:75:68:57:a0:ef:a4:d9:
c7:b1:72:0d:00:d5:e4:83:a8:8b:38:ea:a3:2e:ed:5d:e2:00:
2f:b8:00:3f:c8:09:bb:ab:15:35:3b:6a:75:d1:bb:34:e2:59:
b5:ae:5d:d2:ae:b5:39:fe:01:17:00:a9:56:d1:d1:98:7d:7c:
1a:4c:a6:c0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECayryDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YWU1MWFkNTA0MGY0NTAzYWZjNzFkYzUwMTg5YzRhOTY0ZDFjZDQwMB4XDTIyMDEw
MTE0NTkzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDc1ZmY1NTFmMzdk
N2U2Y2M0NzcxNGQ4MWQwOGExYWM4YmMwOWU4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANECOvcghxOaJh91CV/scU1pOrWDD12AiM91xvwZYwYYNF2l
vvsRDZMgPE8r68TB4xx2QQ0PN6jcJ8P71abHbdR5I6OY6zQb3wVU6pJ1g8B56s5t
15lOgbhmrT4zZ19RH3SPjsOL6zqN6HRi9X7ZOUFpoqJkozrpMpRTLpJHLQm0tQna
QBqnR1nosbpAPUyGYtYJUVrLukaxmCpGi2UsW5Rj/u+zJ3rvq/pccwH1v4tyidNM
pY7uhkMWR0eZYK+dHuG246i7UBgBdcWJEXXnmqqdiLMFHRim1ZMS6WRhLhiu8WfY
I++FrTkAB6RKNyUlkqT0Z4OhPVJbVZ/JRBlK6s8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHX/VR831+bMR3FNgdCKGsi8CehDAfBgNVHSMEGDAWgBQ65RrVBA9FA6/H
HcUBicSpZNHNQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L091VWExUVFQUlFPdnh4M0ZBWW5FcVdUUnpVQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmQvMDk1NjBkLTI5MjMtNDM0OS1hZjVjLWE1ODNmMTcwODJhYS8x
L1IxXzFVZk45Zm16RWR4VFlIUWlockl2QW5vUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQv
MDk1NjBkLTI5MjMtNDM0OS1hZjVjLWE1ODNmMTcwODJhYS8xL091VWExUVFQUlFP
dnh4M0ZBWW5FcVdUUnpVQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAYscGDANBgkqhkiG9w0BAQsFAAOC
AQEAPKaLqPVSIVJ+1n/Yp8I/sFrFplQvcgWRqTDA40G7oo8z3bHSha/AvUxN90d2
MclxfWZ7Bw7MLJg8LW2Keo0SRhsRY8tbsZI+OZkpb7LMJOguozthRWHO1aO3c6TZ
Wsl1eYq3OJzrgB3U/fs7aZ4WKld9tlzJGmt2eJAvQViaqv6gFFFS6AF8exkN8DWp
NST7JYkI4NJEQJIyIMvZMXBzxUV/ql1F1J3Psj07H8Sm5I/IX0lsrny5jh/Pvkut
CUR1aFeg76TZx7FyDQDV5IOoizjqoy7tXeIAL7gAP8gJu6sVNTtqddG7NOJZta5d
0q61Of4BFwCpVtHRmH18GkymwA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:45 2023 by rpki-client on console.sobornost.net