Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/c425fd-980a-4646-a162-9c2914ef8753/1/APPGWYoSO-Nbo0A-JqkbNNSC4KY.roa
File: APPGWYoSO-Nbo0A-JqkbNNSC4KY.roa (raw, json)
Hash identifier: Fc5NperqK5ICT5Ug+Lu4nKhw+M0ragU7w9l/7xBlOrE=
Subject key identifier: 00:F3:C6:59:8A:12:3B:E3:5B:A3:40:3E:26:A9:1B:34:D4:82:E0:A6
Certificate issuer: /CN=454bef73c5a47687b2b5c5276b0dbc070bb9cb50
Certificate serial: CA3AD4
Authority key identifier: 45:4B:EF:73:C5:A4:76:87:B2:B5:C5:27:6B:0D:BC:07:0B:B9:CB:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RUvvc8WkdoeytcUnaw28Bwu5y1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/c425fd-980a-4646-a162-9c2914ef8753/1/APPGWYoSO-Nbo0A-JqkbNNSC4KY.roa
Signing time: Sat 01 Jan 2022 07:57:47 +0000
ROA not before: Sat 01 Jan 2022 07:57:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 185.253.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13253332 (0xca3ad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=454bef73c5a47687b2b5c5276b0dbc070bb9cb50
Validity
Not Before: Jan 1 07:57:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00f3c6598a123be35ba3403e26a91b34d482e0a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:16:59:c5:e6:5c:b6:cb:25:2d:e6:1f:0c:3b:
fc:23:60:90:1b:47:8d:6c:f8:43:ce:da:78:4b:2a:
70:d8:20:20:23:e6:a8:05:1b:8d:e7:f7:e9:89:14:
ab:9f:1d:26:7c:5b:41:c1:e3:58:13:79:58:b3:7f:
a3:4c:e9:9a:0b:d8:98:f0:a5:ed:f5:b1:c7:cf:6b:
9f:6f:01:3e:d0:f9:8d:33:51:c1:3a:98:e6:5f:0a:
f9:13:3c:3f:2d:ba:1d:c5:fd:ed:78:f8:11:3f:70:
62:07:85:d8:35:1d:c8:82:df:12:ba:b7:35:d8:62:
81:ea:07:7d:4d:0b:31:85:f2:fe:a9:2a:b1:42:99:
68:04:57:1e:f1:f3:6f:cf:7b:04:2f:ca:a9:97:de:
7f:12:9b:69:d7:9b:24:fc:28:28:4c:08:42:06:e7:
dc:b8:41:03:99:54:03:e6:f0:1d:2d:a9:aa:5b:cb:
07:b1:84:65:09:68:d5:88:7d:6c:d9:ff:53:5a:82:
a5:e7:e7:06:52:e0:61:8c:d8:c5:df:23:9a:1d:95:
1d:76:07:a8:5d:a6:11:09:60:9f:48:01:0a:c2:2e:
97:40:c9:7a:14:c3:23:48:cb:e0:20:1d:25:9e:f7:
97:3d:82:c2:99:0a:ad:c8:4e:2f:31:ca:ee:ee:1e:
9f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F3:C6:59:8A:12:3B:E3:5B:A3:40:3E:26:A9:1B:34:D4:82:E0:A6
X509v3 Authority Key Identifier:
keyid:45:4B:EF:73:C5:A4:76:87:B2:B5:C5:27:6B:0D:BC:07:0B:B9:CB:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RUvvc8WkdoeytcUnaw28Bwu5y1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c425fd-980a-4646-a162-9c2914ef8753/1/APPGWYoSO-Nbo0A-JqkbNNSC4KY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/c425fd-980a-4646-a162-9c2914ef8753/1/RUvvc8WkdoeytcUnaw28Bwu5y1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.3.0/24
Signature Algorithm: sha256WithRSAEncryption
42:d3:9e:d2:9d:8b:7b:f6:6e:61:7a:c8:23:a6:bb:f6:c6:a2:
a3:46:da:14:63:f6:4a:56:b3:40:46:2f:97:15:15:54:dd:0a:
b2:3d:33:0e:9f:f2:08:be:0c:46:a8:64:6c:ca:0e:df:cf:79:
bf:ee:c0:21:e5:21:a9:d0:c3:9a:94:80:fa:2e:13:0a:a8:e5:
9c:0e:46:d6:7b:58:2d:15:98:94:95:14:3d:22:02:36:8f:9b:
d3:aa:d8:54:3a:1a:ad:dc:a2:47:eb:45:52:40:5e:c3:da:4f:
ee:7c:9a:d2:68:1f:e8:b3:d8:b4:1b:11:57:0c:ce:d7:7c:dc:
ca:b1:0c:03:59:ca:62:95:fd:a3:d1:73:65:96:04:09:ca:2a:
77:34:8d:11:6c:6c:66:a2:ca:c5:7d:95:cd:8c:3b:58:6f:e7:
4d:d7:43:1d:25:76:99:38:ab:b1:1b:81:7b:e6:93:d7:14:59:
eb:bf:11:f3:c7:74:e8:57:d8:7b:16:94:05:6d:78:95:e1:54:
73:01:ea:66:5f:ed:95:c4:c5:15:d6:de:29:e5:7a:71:ac:d1:
37:4e:11:be:9d:d2:86:a8:5a:2d:61:96:af:ee:5f:dd:a6:37:
b1:ba:09:14:75:b4:c9:8b:70:ca:81:15:89:8e:fc:80:c5:44:
9e:e6:62:d3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAMo61DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NTRiZWY3M2M1YTQ3Njg3YjJiNWM1Mjc2YjBkYmMwNzBiYjljYjUwMB4XDTIyMDEw
MTA3NTc0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDBmM2M2NTk4YTEy
M2JlMzViYTM0MDNlMjZhOTFiMzRkNDgyZTBhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL0WWcXmXLbLJS3mHww7/CNgkBtHjWz4Q87aeEsqcNggICPm
qAUbjef36YkUq58dJnxbQcHjWBN5WLN/o0zpmgvYmPCl7fWxx89rn28BPtD5jTNR
wTqY5l8K+RM8Py26HcX97Xj4ET9wYgeF2DUdyILfErq3NdhigeoHfU0LMYXy/qkq
sUKZaARXHvHzb897BC/KqZfefxKbadebJPwoKEwIQgbn3LhBA5lUA+bwHS2pqlvL
B7GEZQlo1Yh9bNn/U1qCpefnBlLgYYzYxd8jmh2VHXYHqF2mEQlgn0gBCsIul0DJ
ehTDI0jL4CAdJZ73lz2CwpkKrchOLzHK7u4en1UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQA88ZZihI741ujQD4mqRs01ILgpjAfBgNVHSMEGDAWgBRFS+9zxaR2h7K1
xSdrDbwHC7nLUDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JVdnZjOFdrZG9leXRjVW5hdzI4Qnd1NXkxQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDQvYzQyNWZkLTk4MGEtNDY0Ni1hMTYyLTljMjkxNGVmODc1My8x
L0FQUEdXWW9TTy1OYm8wQS1KcWtiTk5TQzRLWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQv
YzQyNWZkLTk4MGEtNDY0Ni1hMTYyLTljMjkxNGVmODc1My8xL1JVdnZjOFdrZG9l
eXRjVW5hdzI4Qnd1NXkxQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALn9AzANBgkqhkiG9w0BAQsFAAOC
AQEAQtOe0p2Le/ZuYXrII6a79saio0baFGP2SlazQEYvlxUVVN0Ksj0zDp/yCL4M
RqhkbMoO3895v+7AIeUhqdDDmpSA+i4TCqjlnA5G1ntYLRWYlJUUPSICNo+b06rY
VDoardyiR+tFUkBew9pP7nya0mgf6LPYtBsRVwzO13zcyrEMA1nKYpX9o9FzZZYE
CcoqdzSNEWxsZqLKxX2VzYw7WG/nTddDHSV2mTirsRuBe+aT1xRZ678R88d06FfY
exaUBW14leFUcwHqZl/tlcTFFdbeKeV6cazRN04Rvp3ShqhaLWGWr+5f3aY3sboJ
FHW0yYtwyoEViY78gMVEnuZi0w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:30 2024 by rpki-client on console-fra.rpki-client.org