Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/3zI93iIbXyAOQsrXVqbIz1ARuag.roa
File: 3zI93iIbXyAOQsrXVqbIz1ARuag.roa (raw, json)
Hash identifier: PQTElBHtrVjz2Cmd3oUVdB40zwV6aE+TmRKOhQ0V2m8=
Subject key identifier: DF:32:3D:DE:22:1B:5F:20:0E:42:CA:D7:56:A6:C8:CF:50:11:B9:A8
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE927D5ABEB0E5E24C47A7DD5A9985
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/3zI93iIbXyAOQsrXVqbIz1ARuag.roa
Signing time: Mon 02 Jan 2023 09:44:49 +0000
ROA not before: Mon 02 Jan 2023 09:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 85.237.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:92:7d:5a:be:b0:e5:e2:4c:47:a7:dd:5a:99:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df323dde221b5f200e42cad756a6c8cf5011b9a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:28:99:07:d5:84:4d:78:de:33:74:0d:7e:eb:
0f:99:44:31:a6:a9:de:e8:3e:a5:50:0c:8e:31:b6:
cc:cd:12:6b:c3:a1:de:f4:75:0c:ca:5f:d5:54:00:
d7:01:e5:51:0f:ef:66:42:c4:b9:1e:7c:23:d8:c2:
37:e5:94:a0:ee:fc:27:05:5f:d2:49:4f:04:e5:1b:
3a:39:75:0b:69:75:ba:06:74:68:d7:0e:06:e8:71:
19:37:05:dd:1b:16:c1:41:09:13:97:6a:30:eb:c8:
33:ff:f4:84:04:93:14:5b:6b:2e:6b:39:99:25:8c:
0e:45:36:92:10:11:2a:17:bf:ee:40:75:85:49:8a:
cb:24:2e:93:cb:cd:18:f2:ab:2c:a3:3c:d7:fe:94:
b9:44:7c:cd:98:c9:48:2f:73:7c:55:e6:04:6a:d6:
99:51:69:e6:e8:9f:59:81:39:1a:76:3f:aa:c2:33:
d5:c6:e0:10:61:c0:bd:e5:e0:a3:d7:a0:67:9f:52:
89:7b:f4:74:a6:d0:fa:2a:63:1a:66:05:b4:9b:8f:
20:47:33:b8:d6:69:0b:10:a1:18:80:24:97:ed:88:
bb:1a:bb:5a:84:41:6e:02:b5:49:8e:7b:ae:5b:91:
64:5f:53:23:b7:3c:a0:5a:b7:53:2c:aa:da:86:0c:
99:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:32:3D:DE:22:1B:5F:20:0E:42:CA:D7:56:A6:C8:CF:50:11:B9:A8
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/3zI93iIbXyAOQsrXVqbIz1ARuag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.199.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:d8:82:67:7c:6e:3b:7a:ef:0b:59:83:d8:33:b3:dd:da:b6:
6c:d7:31:bb:e8:5f:55:00:83:47:55:cc:6f:7d:7e:c4:b8:b9:
1e:d4:bb:35:cd:d8:d9:2b:9a:23:0e:dd:fa:54:7e:a2:5d:d9:
0d:69:5a:cf:a1:6e:06:88:d4:6f:d0:7e:71:ad:fb:30:b1:ca:
de:dd:0d:e3:6c:83:45:c9:a0:66:75:0d:77:90:65:cb:a4:8b:
f5:68:37:a7:c0:35:ba:c9:b1:91:d5:f5:6a:17:ae:d8:b4:bd:
43:da:44:7f:30:bb:2b:41:eb:96:12:52:a6:48:43:a4:a7:42:
fd:69:06:26:48:09:c7:a4:54:29:df:f8:7c:15:ae:bb:51:95:
67:e2:c0:17:7e:cb:2a:af:cc:64:c7:c5:6c:8f:37:af:7b:a7:
b4:1c:ca:3b:f3:b2:1d:d9:35:fb:6c:14:0d:25:70:a8:da:22:
b5:a6:03:54:6a:43:ee:bd:2b:c8:05:da:c9:bb:b6:0c:f6:b9:
54:ad:b7:6a:97:b3:5d:5f:17:c7:3c:b4:54:02:28:c8:a3:d5:
fa:ce:11:dd:94:18:66:fa:54:9c:47:6c:ad:ec:96:ff:c4:c6:
d5:bd:ab:f9:bb:eb:58:b2:19:33:41:39:da:c1:d9:cf:be:5f:
c3:42:48:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx3pJ9Wr6w5eJMR6fdWpmFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MGI2NzM2OGM5MWI4NWU4NDg4OGM1ZWQyZTgyNGQxMzkw
ODEwYmIwHhcNMjMwMTAyMDk0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjMyM2RkZTIyMWI1ZjIwMGU0MmNhZDc1NmE2YzhjZjUwMTFiOWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoSiZB9WETXjeM3QNfusPmUQxpqne
6D6lUAyOMbbMzRJrw6He9HUMyl/VVADXAeVRD+9mQsS5Hnwj2MI35ZSg7vwnBV/S
SU8E5Rs6OXULaXW6BnRo1w4G6HEZNwXdGxbBQQkTl2ow68gz//SEBJMUW2suazmZ
JYwORTaSEBEqF7/uQHWFSYrLJC6Ty80Y8qssozzX/pS5RHzNmMlIL3N8VeYEataZ
UWnm6J9ZgTkadj+qwjPVxuAQYcC95eCj16Bnn1KJe/R0ptD6KmMaZgW0m48gRzO4
1mkLEKEYgCSX7Yi7GrtahEFuArVJjnuuW5FkX1MjtzygWrdTLKrahgyZdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN8yPd4iG18gDkLK11amyM9QEbmoMB8GA1UdIwQY
MBaAFDkLZzaMkbhehIiMXtLoJNE5CBC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYt
NWM5ZDYyNjI5Yzg2LzEvM3pJOTNpSWJYeUFPUXNyWFZxYkl6MUFSdWFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYtNWM5ZDYyNjI5Yzg2
LzEvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVe3HMA0G
CSqGSIb3DQEBCwUAA4IBAQCl2IJnfG47eu8LWYPYM7Pd2rZs1zG76F9VAINHVcxv
fX7EuLke1Ls1zdjZK5ojDt36VH6iXdkNaVrPoW4GiNRv0H5xrfswscre3Q3jbINF
yaBmdQ13kGXLpIv1aDenwDW6ybGR1fVqF67YtL1D2kR/MLsrQeuWElKmSEOkp0L9
aQYmSAnHpFQp3/h8Fa67UZVn4sAXfssqr8xkx8Vsjzeve6e0HMo787Id2TX7bBQN
JXCo2iK1pgNUakPuvSvIBdrJu7YM9rlUrbdql7NdXxfHPLRUAijIo9X6zhHdlBhm
+lScR2yt7Jb/xMbVvav5u+tYshkzQTnawdnPvl/DQkj6
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org