Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/h-AWgPN4FWupqEEONNWnEn5r4mQ.roa
File: h-AWgPN4FWupqEEONNWnEn5r4mQ.roa (raw, json)
Hash identifier: tgbphbEI9ZlUWUEpTsyw7bEKvI00faOv2kY+Ot5ZOGw=
Subject key identifier: 87:E0:16:80:F3:78:15:6B:A9:A8:41:0E:34:D5:A7:12:7E:6B:E2:64
Certificate issuer: /CN=ac5fddd0a8bb6761e41afcf2db765deb56cdb856
Certificate serial: D1E1DD
Authority key identifier: AC:5F:DD:D0:A8:BB:67:61:E4:1A:FC:F2:DB:76:5D:EB:56:CD:B8:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rF_d0Ki7Z2HkGvzy23Zd61bNuFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/h-AWgPN4FWupqEEONNWnEn5r4mQ.roa
Signing time: Sat 01 Jan 2022 05:52:00 +0000
ROA not before: Sat 01 Jan 2022 05:52:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 194.104.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13754845 (0xd1e1dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5fddd0a8bb6761e41afcf2db765deb56cdb856
Validity
Not Before: Jan 1 05:52:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87e01680f378156ba9a8410e34d5a7127e6be264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:88:dd:be:8c:28:7d:b3:ca:99:8a:ae:fc:03:
55:7a:06:d7:a0:c9:bb:19:4f:d3:02:c4:fd:f4:3b:
62:4b:df:a6:ab:e1:30:28:5d:85:cd:f6:bf:d6:9f:
87:99:65:f6:f9:b4:bd:4b:53:e4:ab:fd:d9:c9:4d:
d4:37:87:1d:f7:14:87:17:13:cc:9a:12:52:6f:34:
60:fb:47:03:b6:3e:c6:be:24:af:fd:e9:38:f1:c6:
2b:87:d5:69:1e:28:52:53:5d:62:f7:cf:4c:9d:87:
7f:5d:4f:27:f2:3c:af:27:95:d1:ad:6b:e8:dc:f0:
a7:bf:ce:90:60:db:d0:28:ce:1e:73:11:82:6e:a7:
bc:9f:5b:df:c4:af:af:ab:74:ad:66:15:5f:09:89:
59:dd:b2:0e:81:c4:93:42:26:3d:ae:9b:4a:41:cc:
1c:64:ef:51:bb:91:b4:07:4d:f2:96:d6:9f:ab:06:
dc:35:42:9e:36:a3:66:66:5f:af:a3:48:a2:01:ce:
7f:37:c8:0e:06:a5:f0:0b:f2:50:9f:16:76:9d:82:
a3:80:4e:d8:08:cf:66:51:6f:7d:ed:69:2a:33:04:
b0:c3:99:4a:0f:a7:ca:40:9d:9c:92:4d:4d:c3:d1:
03:a1:96:35:85:f3:22:dd:d3:a4:25:75:e7:7b:59:
b9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E0:16:80:F3:78:15:6B:A9:A8:41:0E:34:D5:A7:12:7E:6B:E2:64
X509v3 Authority Key Identifier:
keyid:AC:5F:DD:D0:A8:BB:67:61:E4:1A:FC:F2:DB:76:5D:EB:56:CD:B8:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rF_d0Ki7Z2HkGvzy23Zd61bNuFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/h-AWgPN4FWupqEEONNWnEn5r4mQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/rF_d0Ki7Z2HkGvzy23Zd61bNuFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.142.0/24
Signature Algorithm: sha256WithRSAEncryption
53:55:61:ae:d4:d7:91:cf:eb:8c:ba:03:e1:55:d1:cd:f3:94:
f6:3d:50:47:5f:3d:74:48:39:38:13:02:0a:d9:84:d6:12:ed:
21:b2:81:c2:80:26:07:a9:d7:1c:ca:f5:3d:24:45:7f:e2:fb:
57:01:09:da:64:d9:00:f0:3a:2a:bc:4d:09:bb:ea:70:d1:9d:
0f:b4:2c:96:df:00:7a:67:79:04:5d:fb:fd:af:71:04:5c:d5:
6e:6b:85:8b:45:43:3b:1d:49:e3:77:79:d7:ae:6a:dc:36:45:
4e:f6:e1:29:28:d2:1a:5b:8e:f4:e1:f9:92:8f:ea:8b:09:5c:
77:d4:a1:a1:1a:a9:06:4b:03:f5:98:0d:f3:18:5e:4a:98:e7:
7f:b7:2f:c3:3f:5b:a9:40:92:6c:5a:0a:13:9e:06:b9:7d:a0:
1d:a5:85:45:5f:96:b2:45:1a:64:3d:03:76:b5:d5:56:5b:35:
8a:c4:67:bd:04:26:4f:b1:ce:16:17:c5:26:fa:db:99:32:ab:
ac:63:43:83:2f:48:46:cf:30:07:fa:d6:09:64:20:3f:21:12:
b0:40:a3:68:ba:6b:b5:c3:0f:a8:c1:26:bb:87:48:4f:8d:af:
15:6e:4f:bb:b9:7c:44:4d:f0:9a:1b:40:b0:5d:45:33:aa:01:
96:56:b1:f2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEANHh3TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YzVmZGRkMGE4YmI2NzYxZTQxYWZjZjJkYjc2NWRlYjU2Y2RiODU2MB4XDTIyMDEw
MTA1NTIwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODdlMDE2ODBmMzc4
MTU2YmE5YTg0MTBlMzRkNWE3MTI3ZTZiZTI2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMuI3b6MKH2zypmKrvwDVXoG16DJuxlP0wLE/fQ7Ykvfpqvh
MChdhc32v9afh5ll9vm0vUtT5Kv92clN1DeHHfcUhxcTzJoSUm80YPtHA7Y+xr4k
r/3pOPHGK4fVaR4oUlNdYvfPTJ2Hf11PJ/I8ryeV0a1r6Nzwp7/OkGDb0CjOHnMR
gm6nvJ9b38Svr6t0rWYVXwmJWd2yDoHEk0ImPa6bSkHMHGTvUbuRtAdN8pbWn6sG
3DVCnjajZmZfr6NIogHOfzfIDgal8AvyUJ8Wdp2Co4BO2AjPZlFvfe1pKjMEsMOZ
Sg+nykCdnJJNTcPRA6GWNYXzIt3TpCV153tZuQ8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSH4BaA83gVa6moQQ401acSfmviZDAfBgNVHSMEGDAWgBSsX93QqLtnYeQa
/PLbdl3rVs24VjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JGX2QwS2k3WjJIa0d2enkyM1pkNjFiTnVGWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvYzkzOGFmLTQ2YjItNDRmMy04MGRlLTA1MmY1ZmQ0ZTI4Yi8x
L2gtQVdnUE40Rld1cHFFRU9OTlduRW41cjRtUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
YzkzOGFmLTQ2YjItNDRmMy04MGRlLTA1MmY1ZmQ0ZTI4Yi8xL3JGX2QwS2k3WjJI
a0d2enkyM1pkNjFiTnVGWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJojjANBgkqhkiG9w0BAQsFAAOC
AQEAU1VhrtTXkc/rjLoD4VXRzfOU9j1QR189dEg5OBMCCtmE1hLtIbKBwoAmB6nX
HMr1PSRFf+L7VwEJ2mTZAPA6KrxNCbvqcNGdD7Qslt8Aemd5BF37/a9xBFzVbmuF
i0VDOx1J43d5165q3DZFTvbhKSjSGluO9OH5ko/qiwlcd9ShoRqpBksD9ZgN8xhe
Spjnf7cvwz9bqUCSbFoKE54GuX2gHaWFRV+WskUaZD0DdrXVVls1isRnvQQmT7HO
FhfFJvrbmTKrrGNDgy9IRs8wB/rWCWQgPyESsECjaLprtcMPqMEmu4dIT42vFW5P
u7l8RE3wmhtAsF1FM6oBllax8g==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:27 2023 by rpki-client on console.sobornost.net