Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/293987-2751-4baf-bc54-03834f364be0/1/9UkN9NKwicaYfew7QSIjROIF0mE.roa
File: 9UkN9NKwicaYfew7QSIjROIF0mE.roa (raw, json)
Hash identifier: N3j9Td7v/9ACFbhhsBRXlPVlvgV0ViQOqk2AvL0W0l8=
Subject key identifier: F5:49:0D:F4:D2:B0:89:C6:98:7D:EC:3B:41:22:23:44:E2:05:D2:61
Certificate issuer: /CN=9eed03b5634b0effb0b4cfd086fd4c2c1904dc32
Certificate serial: 01856D5D10641B2690A6E2CB317B99527F63
Authority key identifier: 9E:ED:03:B5:63:4B:0E:FF:B0:B4:CF:D0:86:FD:4C:2C:19:04:DC:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nu0DtWNLDv-wtM_Qhv1MLBkE3DI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/293987-2751-4baf-bc54-03834f364be0/1/9UkN9NKwicaYfew7QSIjROIF0mE.roa
Signing time: Sun 01 Jan 2023 12:44:53 +0000
ROA not before: Sun 01 Jan 2023 12:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203641
IP address blocks: 185.107.160.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:10:64:1b:26:90:a6:e2:cb:31:7b:99:52:7f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eed03b5634b0effb0b4cfd086fd4c2c1904dc32
Validity
Not Before: Jan 1 12:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5490df4d2b089c6987dec3b41222344e205d261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e4:82:44:1a:16:40:bc:c4:09:ed:19:17:46:
09:9b:d4:d5:0b:d7:99:a9:81:48:24:2c:4f:bb:64:
d4:01:0e:49:9e:11:6d:e7:15:52:21:70:a3:1a:ac:
7e:c2:69:af:a8:30:bc:99:ba:4f:58:fb:4c:eb:ae:
2e:84:e8:94:cb:d3:91:a6:60:b6:d3:c2:30:91:9f:
25:82:dc:f0:e6:62:f1:e4:da:33:d4:6d:50:d5:f3:
71:ab:c9:db:83:57:24:96:6f:f5:10:24:e6:f9:bd:
70:a8:65:00:08:e0:52:86:26:ef:4f:78:cc:09:bf:
5b:82:91:30:cc:2b:08:ae:0b:82:7d:ae:0e:79:33:
5a:bd:7d:f3:49:c9:18:30:ce:4f:a8:22:4f:9b:e6:
3c:24:bf:9d:6d:f1:39:5d:ea:5d:b0:54:c3:28:ce:
2c:56:c0:30:10:f0:b1:1e:06:b5:67:cd:b4:94:9e:
c9:67:ff:bb:b6:8e:4a:b6:be:73:e3:47:70:d0:f2:
9d:fb:78:e5:d0:ee:87:fe:06:c7:86:0a:c8:b3:a4:
cf:b3:1a:0a:ba:3a:38:5f:b1:f4:e4:d7:04:59:b8:
2b:07:b1:ea:06:b1:dc:19:5c:1e:c4:db:87:44:22:
cd:7d:82:87:f3:f0:b7:26:67:1d:70:ee:f6:9a:52:
81:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:49:0D:F4:D2:B0:89:C6:98:7D:EC:3B:41:22:23:44:E2:05:D2:61
X509v3 Authority Key Identifier:
keyid:9E:ED:03:B5:63:4B:0E:FF:B0:B4:CF:D0:86:FD:4C:2C:19:04:DC:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nu0DtWNLDv-wtM_Qhv1MLBkE3DI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/293987-2751-4baf-bc54-03834f364be0/1/9UkN9NKwicaYfew7QSIjROIF0mE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/293987-2751-4baf-bc54-03834f364be0/1/nu0DtWNLDv-wtM_Qhv1MLBkE3DI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.160.0/22
Signature Algorithm: sha256WithRSAEncryption
09:1f:e8:79:f8:15:ae:2c:84:bf:48:b2:cd:87:ab:fe:46:6c:
a2:1f:3b:f4:13:3c:60:37:1e:16:e6:5d:9a:63:38:77:94:4c:
b8:9f:50:ca:4f:ef:59:da:eb:a5:18:6e:5b:d5:51:b7:96:0c:
bb:9b:08:af:62:1c:3c:80:17:14:b4:80:c0:23:35:53:8f:6a:
94:5f:83:57:2d:5f:76:66:a9:40:56:3b:78:b7:92:f8:9e:e3:
2e:b1:bd:35:8b:a8:46:1b:c5:20:7a:07:7a:4f:b7:2d:4b:81:
cd:d4:ae:ac:0b:67:30:82:6a:2a:9b:52:11:e3:f4:76:f2:b4:
13:89:65:26:96:92:53:e4:09:c3:6c:82:14:9d:90:27:25:9f:
21:fc:da:d4:c8:6a:04:cd:f7:a6:b1:ae:a0:1f:3b:13:31:59:
15:a2:41:bc:7e:2f:d5:bc:a9:55:7d:3d:14:96:d3:16:51:98:
69:b0:ba:c2:57:ff:5c:34:2e:b1:f7:9f:6d:e2:7b:0d:73:b6:
24:c6:24:52:f4:21:d6:f1:02:14:4b:99:34:83:a2:2d:35:cb:
7e:91:ef:21:ff:f0:d8:07:f7:77:fd:45:a2:90:f8:94:43:ea:
cf:14:38:28:5e:92:db:0e:96:0e:27:33:94:79:78:fb:60:75:
c8:91:07:5d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtXRBkGyaQpuLLMXuZUn9jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllZWQwM2I1NjM0YjBlZmZiMGI0Y2ZkMDg2ZmQ0YzJjMTkw
NGRjMzIwHhcNMjMwMTAxMTI0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTQ5MGRmNGQyYjA4OWM2OTg3ZGVjM2I0MTIyMjM0NGUyMDVkMjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+SCRBoWQLzECe0ZF0YJm9TVC9eZ
qYFIJCxPu2TUAQ5JnhFt5xVSIXCjGqx+wmmvqDC8mbpPWPtM664uhOiUy9ORpmC2
08IwkZ8lgtzw5mLx5Noz1G1Q1fNxq8nbg1cklm/1ECTm+b1wqGUACOBShibvT3jM
Cb9bgpEwzCsIrguCfa4OeTNavX3zSckYMM5PqCJPm+Y8JL+dbfE5XepdsFTDKM4s
VsAwEPCxHga1Z820lJ7JZ/+7to5Ktr5z40dw0PKd+3jl0O6H/gbHhgrIs6TPsxoK
ujo4X7H05NcEWbgrB7HqBrHcGVwexNuHRCLNfYKH8/C3JmcdcO72mlKBTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPVJDfTSsInGmH3sO0EiI0TiBdJhMB8GA1UdIwQY
MBaAFJ7tA7VjSw7/sLTP0Ib9TCwZBNwyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnUwRHRXTkxEdi13dE1fUWh2MU1MQmtFM0RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yOTM5ODctMjc1MS00YmFmLWJjNTQt
MDM4MzRmMzY0YmUwLzEvOVVrTjlOS3dpY2FZZmV3N1FTSWpST0lGMG1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi8yOTM5ODctMjc1MS00YmFmLWJjNTQtMDM4MzRmMzY0YmUw
LzEvbnUwRHRXTkxEdi13dE1fUWh2MU1MQmtFM0RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWugMA0G
CSqGSIb3DQEBCwUAA4IBAQAJH+h5+BWuLIS/SLLNh6v+RmyiHzv0EzxgNx4W5l2a
Yzh3lEy4n1DKT+9Z2uulGG5b1VG3lgy7mwivYhw8gBcUtIDAIzVTj2qUX4NXLV92
ZqlAVjt4t5L4nuMusb01i6hGG8Ugegd6T7ctS4HN1K6sC2cwgmoqm1IR4/R28rQT
iWUmlpJT5AnDbIIUnZAnJZ8h/NrUyGoEzfemsa6gHzsTMVkVokG8fi/VvKlVfT0U
ltMWUZhpsLrCV/9cNC6x959t4nsNc7YkxiRS9CHW8QIUS5k0g6ItNct+ke8h//DY
B/d3/UWikPiUQ+rPFDgoXpLbDpYOJzOUeXj7YHXIkQdd
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:22 2023 by rpki-client on console.sobornost.net