Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/cmDHYvXMElBAzdehXvW-o9rKV5M.roa
File: cmDHYvXMElBAzdehXvW-o9rKV5M.roa (raw, json)
Hash identifier: s32kEJ8i3fKn+PgW5j9PyX+9n6suImYuCCFqjiWeGvs=
Subject key identifier: 72:60:C7:62:F5:CC:12:50:40:CD:D7:A1:5E:F5:BE:A3:DA:CA:57:93
Certificate issuer: /CN=77f8e7fbd4ab69507fb1fe3579af343a56639086
Certificate serial: 01903175142DAF415B9B51B05C754DCADDA1
Authority key identifier: 77:F8:E7:FB:D4:AB:69:50:7F:B1:FE:35:79:AF:34:3A:56:63:90:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/cmDHYvXMElBAzdehXvW-o9rKV5M.roa
Signing time: Wed 19 Jun 2024 17:04:34 +0000
ROA not before: Wed 19 Jun 2024 17:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215643
IP address blocks: 109.107.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:31:75:14:2d:af:41:5b:9b:51:b0:5c:75:4d:ca:dd:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f8e7fbd4ab69507fb1fe3579af343a56639086
Validity
Not Before: Jun 19 17:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7260c762f5cc125040cdd7a15ef5bea3daca5793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ee:f7:8e:1c:e8:6d:d5:d7:78:d7:c4:55:07:
f1:c6:23:fb:db:33:e9:98:3a:5d:b5:a0:c4:06:57:
5c:11:97:7c:82:41:88:ab:60:72:1c:53:ea:0e:bf:
5c:82:33:eb:8e:12:fc:98:64:c4:64:b2:1a:a1:14:
7c:e1:72:11:39:82:7d:7e:ce:5b:21:87:7e:e8:20:
48:aa:93:20:14:29:a4:e1:30:17:04:6f:7a:bc:ec:
ed:ec:a1:29:dd:39:8c:19:c0:cd:f8:b9:6d:f0:30:
0c:c9:46:4a:52:59:93:3a:d4:a6:7d:a3:b2:81:8d:
75:fa:5b:16:9b:1f:af:7d:13:3a:c9:c4:47:b0:a1:
3d:2a:b5:0e:48:b1:4c:43:06:fe:4c:14:b5:22:28:
ab:fd:fc:e7:88:6a:7b:d4:70:95:29:b3:f2:7c:3a:
11:81:9c:70:ef:19:e8:d6:9c:18:37:54:1a:6f:8b:
c0:2b:c2:90:ba:f4:32:97:01:43:a7:aa:b6:97:3e:
55:90:22:d3:8e:43:84:48:e1:cc:60:0a:14:ff:30:
14:e6:1a:54:51:b0:ad:97:6c:f6:02:7d:74:45:f4:
9c:0c:b0:99:d0:d3:0b:ec:ea:4d:4d:e6:8f:f7:9c:
7b:67:ae:c1:51:df:f5:bc:05:af:55:f2:03:f0:c0:
81:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:60:C7:62:F5:CC:12:50:40:CD:D7:A1:5E:F5:BE:A3:DA:CA:57:93
X509v3 Authority Key Identifier:
keyid:77:F8:E7:FB:D4:AB:69:50:7F:B1:FE:35:79:AF:34:3A:56:63:90:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/cmDHYvXMElBAzdehXvW-o9rKV5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/d_jn-9SraVB_sf41ea80OlZjkIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.138.0/24
Signature Algorithm: sha256WithRSAEncryption
61:f6:a7:8c:2e:e8:80:b3:03:2c:9b:e8:5d:cc:d2:23:75:49:
31:60:74:17:e1:34:d2:c8:39:63:36:12:0c:a1:df:5e:1a:67:
02:8f:fe:49:b7:7e:73:7f:7b:5e:2c:90:16:9c:3c:8d:5f:c5:
75:96:23:d9:f7:1e:b0:d5:3e:25:c0:42:39:5a:c3:7f:c7:e1:
57:85:69:d3:21:b6:2a:1e:a0:30:df:8e:19:19:83:c5:6d:bb:
da:89:b0:63:ee:2c:3a:e6:c8:9c:e2:07:e3:c8:6e:a5:7e:da:
1e:01:d8:b4:13:b0:9d:88:2d:df:7d:51:f2:5d:10:9f:a6:10:
6e:de:bf:b6:81:e9:90:f8:94:77:62:d6:af:df:63:4e:d1:bc:
79:dd:a1:fc:6f:8d:3c:d3:32:32:fe:9c:a4:50:fc:1c:3d:c7:
9a:65:69:0c:0c:ef:3d:0d:d2:a5:39:d3:d4:f5:8d:f7:b7:59:
9b:39:8b:b9:2d:77:ff:b1:92:d1:c1:2b:82:b2:27:fd:08:d8:
27:5d:0d:03:30:2e:ad:8d:b7:ef:22:42:da:28:f9:a0:a3:5f:
94:d6:91:24:e6:21:0a:b1:62:99:be:87:e9:35:21:96:0f:d8:
db:c1:04:c9:02:dc:49:54:3d:07:db:86:55:06:6c:5f:7d:61:
99:b2:e5:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZAxdRQtr0Fbm1GwXHVNyt2hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZjhlN2ZiZDRhYjY5NTA3ZmIxZmUzNTc5YWYzNDNhNTY2
MzkwODYwHhcNMjQwNjE5MTcwNDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MjYwYzc2MmY1Y2MxMjUwNDBjZGQ3YTE1ZWY1YmVhM2RhY2E1NzkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4u73jhzobdXXeNfEVQfxxiP72zPp
mDpdtaDEBldcEZd8gkGIq2ByHFPqDr9cgjPrjhL8mGTEZLIaoRR84XIROYJ9fs5b
IYd+6CBIqpMgFCmk4TAXBG96vOzt7KEp3TmMGcDN+Llt8DAMyUZKUlmTOtSmfaOy
gY11+lsWmx+vfRM6ycRHsKE9KrUOSLFMQwb+TBS1Iiir/fzniGp71HCVKbPyfDoR
gZxw7xno1pwYN1Qab4vAK8KQuvQylwFDp6q2lz5VkCLTjkOESOHMYAoU/zAU5hpU
UbCtl2z2An10RfScDLCZ0NML7OpNTeaP95x7Z67BUd/1vAWvVfID8MCBiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHJgx2L1zBJQQM3XoV71vqPayleTMB8GA1UdIwQY
MBaAFHf45/vUq2lQf7H+NXmvNDpWY5CGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZF9qbi05U3JhVkJfc2Y0MWVhODBPbFpqa0lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC82YzI3MzYtYWIwMi00ODk3LTk1Njgt
NzdmNmU5NGUzZGNjLzEvY21ESFl2WE1FbEJBemRlaFh2Vy1vOXJLVjVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC82YzI3MzYtYWIwMi00ODk3LTk1NjgtNzdmNmU5NGUzZGNj
LzEvZF9qbi05U3JhVkJfc2Y0MWVhODBPbFpqa0lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWuKMA0G
CSqGSIb3DQEBCwUAA4IBAQBh9qeMLuiAswMsm+hdzNIjdUkxYHQX4TTSyDljNhIM
od9eGmcCj/5Jt35zf3teLJAWnDyNX8V1liPZ9x6w1T4lwEI5WsN/x+FXhWnTIbYq
HqAw344ZGYPFbbvaibBj7iw65sic4gfjyG6lftoeAdi0E7CdiC3ffVHyXRCfphBu
3r+2gemQ+JR3Ytav32NO0bx53aH8b4080zIy/pykUPwcPceaZWkMDO89DdKlOdPU
9Y33t1mbOYu5LXf/sZLRwSuCsif9CNgnXQ0DMC6tjbfvIkLaKPmgo1+U1pEk5iEK
sWKZvofpNSGWD9jbwQTJAtxJVD0H24ZVBmxffWGZsuVj
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:13 2024 by rpki-client on console.sobornost.net