Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c67904-4f38-4a2a-96e2-23aa142444e1/1/mDv6ruMfHa4akkwYMufYkE8aahM.roa
File: mDv6ruMfHa4akkwYMufYkE8aahM.roa (raw, json)
Hash identifier: HWiEAkKnnD4g5cJ8z72XLLM6cCk44f+iNhSRNlU9buM=
Subject key identifier: 98:3B:FA:AE:E3:1F:1D:AE:1A:92:4C:18:32:E7:D8:90:4F:1A:6A:13
Certificate issuer: /CN=ff7997ef7f7f1e1da10e5c1d98ea31474b6dbb11
Certificate serial: 01857030793998178000E2A85E36730261EC
Authority key identifier: FF:79:97:EF:7F:7F:1E:1D:A1:0E:5C:1D:98:EA:31:47:4B:6D:BB:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_3mX739_Hh2hDlwdmOoxR0ttuxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c67904-4f38-4a2a-96e2-23aa142444e1/1/mDv6ruMfHa4akkwYMufYkE8aahM.roa
Signing time: Mon 02 Jan 2023 01:55:03 +0000
ROA not before: Mon 02 Jan 2023 01:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 193.163.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:79:39:98:17:80:00:e2:a8:5e:36:73:02:61:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff7997ef7f7f1e1da10e5c1d98ea31474b6dbb11
Validity
Not Before: Jan 2 01:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=983bfaaee31f1dae1a924c1832e7d8904f1a6a13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7f:c4:a4:d2:c9:eb:82:f0:9b:05:69:cf:e3:
88:96:df:ec:41:c7:f9:da:92:a1:52:0d:37:cd:5a:
33:7c:34:60:be:01:64:67:20:1d:e4:3a:ce:6b:db:
2b:3d:84:4e:cd:7a:1d:b4:14:7f:75:4f:14:3c:c9:
6f:70:a8:7f:1a:b8:69:fa:d8:dc:56:4c:cc:ca:3e:
22:e3:0f:8d:c2:f7:18:28:ff:a3:82:96:95:9e:dd:
b0:f0:70:1b:71:ab:93:1a:2b:3d:00:25:ed:63:93:
06:db:b2:ee:23:f9:95:11:55:eb:9e:78:de:80:d3:
95:86:2f:d8:da:75:d3:2b:4d:ac:e4:a4:47:7f:be:
1b:dd:f7:d0:b8:9b:94:50:e8:48:c0:1b:5c:76:18:
2e:82:e9:b7:a1:cf:d3:b2:00:bf:e2:fa:ce:93:38:
46:0d:82:ce:86:31:c2:df:49:2d:71:32:ac:c9:80:
d4:41:6c:0d:a7:18:ba:da:b6:1b:4d:3d:0b:05:9d:
3d:d0:20:2d:dc:32:f1:c1:8e:5e:de:ec:c1:7a:22:
b1:5f:3a:fb:71:b9:e7:a3:e5:19:e8:f1:04:d0:30:
be:3a:2c:8f:70:31:3c:7d:22:d4:23:bb:59:fa:87:
b1:16:74:33:9c:54:f3:4c:1b:51:7c:99:f8:3b:ff:
26:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:3B:FA:AE:E3:1F:1D:AE:1A:92:4C:18:32:E7:D8:90:4F:1A:6A:13
X509v3 Authority Key Identifier:
keyid:FF:79:97:EF:7F:7F:1E:1D:A1:0E:5C:1D:98:EA:31:47:4B:6D:BB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_3mX739_Hh2hDlwdmOoxR0ttuxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c67904-4f38-4a2a-96e2-23aa142444e1/1/mDv6ruMfHa4akkwYMufYkE8aahM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c67904-4f38-4a2a-96e2-23aa142444e1/1/_3mX739_Hh2hDlwdmOoxR0ttuxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.127.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c6:cc:64:77:d7:41:c4:02:a4:70:4b:18:a9:68:d8:26:43:
1d:b0:6f:e1:e9:d4:5f:cb:b8:b0:5f:40:30:5c:00:d5:ae:34:
48:0c:e0:37:e1:f9:27:c7:1e:b5:d3:a0:34:a2:9f:ea:1d:36:
64:38:47:30:1d:7e:14:b5:9f:e5:e0:72:dd:13:ee:3a:36:b5:
d1:42:c5:d3:73:0f:af:75:fd:b3:b2:51:59:c0:d4:43:13:9f:
3b:fc:12:ed:2b:06:9d:86:a4:b1:56:85:df:03:45:79:0a:77:
c1:bd:06:fc:45:58:2d:f5:6f:0c:91:64:19:21:7d:cc:31:95:
28:b7:fc:41:21:38:ad:a6:05:09:49:78:5e:e1:0c:93:50:bf:
e6:48:f7:c3:53:ae:f9:73:d8:dc:68:51:fc:67:e0:c4:29:5e:
2f:05:6f:0e:31:d3:4b:89:af:8f:c7:8f:46:ac:dd:68:77:c6:
60:d4:9f:44:67:9b:f5:ae:ab:25:85:07:44:bd:37:39:de:d6:
fb:8a:69:90:f3:4f:34:9d:ef:ec:76:9c:22:7f:8a:5e:7e:af:
5a:f5:3d:61:9f:45:be:b8:4b:1c:ac:fe:d6:51:57:6b:8c:5a:
a3:8e:68:72:ad:c4:98:12:9e:a3:66:c5:0c:74:c0:46:b3:44:
3f:67:fa:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwMHk5mBeAAOKoXjZzAmHsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmNzk5N2VmN2Y3ZjFlMWRhMTBlNWMxZDk4ZWEzMTQ3NGI2
ZGJiMTEwHhcNMjMwMTAyMDE1NTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODNiZmFhZWUzMWYxZGFlMWE5MjRjMTgzMmU3ZDg5MDRmMWE2YTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj3/EpNLJ64LwmwVpz+OIlt/sQcf5
2pKhUg03zVozfDRgvgFkZyAd5DrOa9srPYROzXodtBR/dU8UPMlvcKh/Grhp+tjc
VkzMyj4i4w+NwvcYKP+jgpaVnt2w8HAbcauTGis9ACXtY5MG27LuI/mVEVXrnnje
gNOVhi/Y2nXTK02s5KRHf74b3ffQuJuUUOhIwBtcdhgugum3oc/TsgC/4vrOkzhG
DYLOhjHC30ktcTKsyYDUQWwNpxi62rYbTT0LBZ090CAt3DLxwY5e3uzBeiKxXzr7
cbnno+UZ6PEE0DC+OiyPcDE8fSLUI7tZ+oexFnQznFTzTBtRfJn4O/8mRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJg7+q7jHx2uGpJMGDLn2JBPGmoTMB8GA1UdIwQY
MBaAFP95l+9/fx4doQ5cHZjqMUdLbbsRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzNtWDczOV9IaDJoRGx3ZG1Pb3hSMHR0dXhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9jNjc5MDQtNGYzOC00YTJhLTk2ZTIt
MjNhYTE0MjQ0NGUxLzEvbUR2NnJ1TWZIYTRha2t3WU11ZllrRThhYWhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS9jNjc5MDQtNGYzOC00YTJhLTk2ZTItMjNhYTE0MjQ0NGUx
LzEvXzNtWDczOV9IaDJoRGx3ZG1Pb3hSMHR0dXhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaN/MA0G
CSqGSIb3DQEBCwUAA4IBAQCTxsxkd9dBxAKkcEsYqWjYJkMdsG/h6dRfy7iwX0Aw
XADVrjRIDOA34fknxx6106A0op/qHTZkOEcwHX4UtZ/l4HLdE+46NrXRQsXTcw+v
df2zslFZwNRDE587/BLtKwadhqSxVoXfA0V5CnfBvQb8RVgt9W8MkWQZIX3MMZUo
t/xBITitpgUJSXhe4QyTUL/mSPfDU675c9jcaFH8Z+DEKV4vBW8OMdNLia+Px49G
rN1od8Zg1J9EZ5v1rqslhQdEvTc53tb7immQ8080ne/sdpwif4pefq9a9T1hn0W+
uEscrP7WUVdrjFqjjmhyrcSYEp6jZsUMdMBGs0Q/Z/rD
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:59 2023 by rpki-client on console.sobornost.net