Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/31f397-4315-44f0-bad9-2649e1fda0f5/1/aSYJ4AOqSGs6io63l7pieq3BhZ0.roa
File: aSYJ4AOqSGs6io63l7pieq3BhZ0.roa (raw, json)
Hash identifier: k/efKPycNDG4NnOdTsvGrDEdXtu5Yka6NUolVlCOSSU=
Subject key identifier: 69:26:09:E0:03:AA:48:6B:3A:8A:8E:B7:97:BA:62:7A:AD:C1:85:9D
Certificate issuer: /CN=aa563f5200a4933024e7b47d778619458568adb0
Certificate serial: 0183A9539F0058EC139650A9842AAF56B972
Authority key identifier: AA:56:3F:52:00:A4:93:30:24:E7:B4:7D:77:86:19:45:85:68:AD:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlY_UgCkkzAk57R9d4YZRYVorbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/31f397-4315-44f0-bad9-2649e1fda0f5/1/aSYJ4AOqSGs6io63l7pieq3BhZ0.roa
Signing time: Wed 05 Oct 2022 18:06:13 +0000
ROA not before: Wed 05 Oct 2022 18:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 194.26.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a9:53:9f:00:58:ec:13:96:50:a9:84:2a:af:56:b9:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa563f5200a4933024e7b47d778619458568adb0
Validity
Not Before: Oct 5 18:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=692609e003aa486b3a8a8eb797ba627aadc1859d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9a:86:10:e8:74:4d:c4:11:1a:77:9c:c5:97:
e2:6f:71:fb:72:2e:81:06:84:88:4b:d6:0a:13:b6:
f7:97:2b:cc:59:29:da:3a:5a:75:01:56:59:6b:b4:
c2:cd:b0:98:c7:ef:f5:6a:f7:94:e9:3c:a2:93:a4:
57:52:4c:7e:6c:57:f3:ee:6b:19:82:c2:09:7b:4f:
ad:a7:e3:73:ed:b1:be:49:c8:e7:54:72:b0:81:ab:
49:b5:8e:cf:ae:de:49:83:d6:1e:71:63:29:7c:d0:
77:9a:b0:54:fd:74:ce:7b:c9:f0:22:06:43:15:25:
26:0f:93:97:fd:e0:6d:a1:5a:55:89:a2:d3:9e:ec:
4d:5f:21:21:93:6f:90:62:8b:ca:24:6b:ae:38:54:
8d:a7:78:b9:44:71:5e:92:3f:be:41:a0:45:74:7e:
a2:ff:09:01:54:24:4a:6f:38:45:93:ae:70:62:da:
91:95:3c:30:81:26:d8:26:3f:20:57:38:c2:20:e7:
54:de:30:62:3e:61:d1:3c:66:96:8b:29:28:51:be:
54:55:27:61:0f:09:17:b1:8c:18:5e:9d:d9:7e:b1:
7c:8b:f9:28:22:82:ec:79:11:af:8d:d4:5f:33:e5:
37:a4:e7:0b:c2:e7:3d:dd:32:1d:bb:96:cb:7c:c6:
41:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:26:09:E0:03:AA:48:6B:3A:8A:8E:B7:97:BA:62:7A:AD:C1:85:9D
X509v3 Authority Key Identifier:
keyid:AA:56:3F:52:00:A4:93:30:24:E7:B4:7D:77:86:19:45:85:68:AD:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlY_UgCkkzAk57R9d4YZRYVorbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/31f397-4315-44f0-bad9-2649e1fda0f5/1/aSYJ4AOqSGs6io63l7pieq3BhZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/31f397-4315-44f0-bad9-2649e1fda0f5/1/qlY_UgCkkzAk57R9d4YZRYVorbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.223.0/24
Signature Algorithm: sha256WithRSAEncryption
58:7e:d0:e5:07:eb:42:f1:ff:df:7c:a1:9c:5c:ab:07:a9:6a:
5b:48:8d:8e:b9:af:a1:4a:9f:4a:cd:80:c4:a8:97:c4:55:1c:
01:b4:69:eb:ed:18:33:e8:24:95:fb:cb:05:c3:4d:f7:45:f6:
68:4e:99:de:dd:4f:d7:3c:ff:89:2f:b7:13:91:00:26:1d:6e:
b8:45:90:7a:eb:65:a1:ea:3a:bd:5b:58:a0:b9:ec:90:b1:2a:
91:b7:9a:de:04:e6:cf:6c:5b:a1:c5:aa:98:f0:99:1e:67:c4:
85:1e:be:58:70:99:7d:95:a7:bc:13:52:bc:ea:ed:8e:8f:ef:
55:50:c7:59:68:80:47:e3:65:80:10:aa:f0:52:bc:08:2d:be:
3a:6f:3a:31:9b:ec:54:0b:12:98:25:a5:7d:31:13:93:2c:d9:
2b:f2:ff:d2:80:5c:27:7e:dd:db:90:0c:5a:dd:15:59:47:1e:
f4:07:55:62:9b:3d:4a:9b:5f:07:d8:85:f2:f3:67:f1:33:ab:
ca:ec:59:ec:63:cd:c6:45:63:28:34:5d:30:2e:e9:53:ac:32:
1b:50:10:f3:ca:82:c6:67:fc:fd:d6:ee:15:1a:0c:0d:53:e9:
92:af:4a:3b:a3:83:26:a2:90:fb:04:9c:8c:0c:89:62:e3:0f:
c8:2e:e2:74
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOpU58AWOwTllCphCqvVrlyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNTYzZjUyMDBhNDkzMzAyNGU3YjQ3ZDc3ODYxOTQ1ODU2
OGFkYjAwHhcNMjIxMDA1MTgwNjEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTI2MDllMDAzYWE0ODZiM2E4YThlYjc5N2JhNjI3YWFkYzE4NTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopqGEOh0TcQRGnecxZfib3H7ci6B
BoSIS9YKE7b3lyvMWSnaOlp1AVZZa7TCzbCYx+/1aveU6Tyik6RXUkx+bFfz7msZ
gsIJe0+tp+Nz7bG+ScjnVHKwgatJtY7Prt5Jg9YecWMpfNB3mrBU/XTOe8nwIgZD
FSUmD5OX/eBtoVpViaLTnuxNXyEhk2+QYovKJGuuOFSNp3i5RHFekj++QaBFdH6i
/wkBVCRKbzhFk65wYtqRlTwwgSbYJj8gVzjCIOdU3jBiPmHRPGaWiykoUb5UVSdh
DwkXsYwYXp3ZfrF8i/koIoLseRGvjdRfM+U3pOcLwuc93TIdu5bLfMZBDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGkmCeADqkhrOoqOt5e6YnqtwYWdMB8GA1UdIwQY
MBaAFKpWP1IApJMwJOe0fXeGGUWFaK2wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWxZX1VnQ2trekFrNTdSOWQ0WVpSWVZvcmJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8zMWYzOTctNDMxNS00NGYwLWJhZDkt
MjY0OWUxZmRhMGY1LzEvYVNZSjRBT3FTR3M2aW82M2w3cGllcTNCaFowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8zMWYzOTctNDMxNS00NGYwLWJhZDktMjY0OWUxZmRhMGY1
LzEvcWxZX1VnQ2trekFrNTdSOWQ0WVpSWVZvcmJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwhrfMA0G
CSqGSIb3DQEBCwUAA4IBAQBYftDlB+tC8f/ffKGcXKsHqWpbSI2Oua+hSp9KzYDE
qJfEVRwBtGnr7Rgz6CSV+8sFw033RfZoTpne3U/XPP+JL7cTkQAmHW64RZB662Wh
6jq9W1igueyQsSqRt5reBObPbFuhxaqY8JkeZ8SFHr5YcJl9lae8E1K86u2Oj+9V
UMdZaIBH42WAEKrwUrwILb46bzoxm+xUCxKYJaV9MROTLNkr8v/SgFwnft3bkAxa
3RVZRx70B1Vimz1Km18H2IXy82fxM6vK7FnsY83GRWMoNF0wLulTrDIbUBDzyoLG
Z/z91u4VGgwNU+mSr0o7o4MmopD7BJyMDIli4w/ILuJ0
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:01 2023 by rpki-client on console.sobornost.net