Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ld_ud1kKWq2HhjjM4ZEFVyRIWDY.roa
File: ld_ud1kKWq2HhjjM4ZEFVyRIWDY.roa (raw, json)
Hash identifier: hpq43qFZCTzSyBuFzZJ4VuHGJRQ275hYKs+AipUKwo8=
Subject key identifier: 95:DF:EE:77:59:0A:5A:AD:87:86:38:CC:E1:91:05:57:24:48:58:36
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018534E5265C827381268751A0D899C79BD1
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ld_ud1kKWq2HhjjM4ZEFVyRIWDY.roa
Signing time: Wed 21 Dec 2022 13:35:10 +0000
ROA not before: Wed 21 Dec 2022 13:35:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 85.237.211.0/24 maxlen: 24
85.237.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:e5:26:5c:82:73:81:26:87:51:a0:d8:99:c7:9b:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Dec 21 13:35:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95dfee77590a5aad878638cce191055724485836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4b:f2:d0:10:6c:da:8f:9b:f9:19:d7:c1:f2:
4d:00:c4:4d:cc:74:ed:e4:52:34:07:9c:67:cc:df:
c6:ec:20:f8:20:5f:74:54:58:c7:95:e0:32:e0:a1:
2f:89:8f:65:f9:c4:16:84:64:61:e5:6e:1b:28:87:
1e:04:fd:84:c4:fc:1f:8d:74:8d:38:bf:90:94:ca:
c6:a4:15:58:fb:a4:1e:dc:11:26:34:da:d4:66:33:
c2:5c:01:38:93:db:47:c8:34:4c:cc:d5:c3:6b:cf:
95:eb:60:66:a0:5d:da:63:d4:9f:e3:61:e6:27:73:
4d:1f:c2:8b:9c:e3:a8:0e:9f:cf:93:85:bf:20:a1:
d1:89:d5:27:d7:16:9a:21:58:05:2a:54:4e:f7:70:
33:4b:86:99:82:26:df:ee:f2:6d:0e:f6:bc:2b:e3:
b4:92:00:24:c1:13:1e:53:77:1f:4c:16:55:51:f2:
a3:20:9d:5a:c4:fe:6d:60:7c:10:23:3a:15:c3:f0:
60:a4:c9:8e:10:d6:d8:df:0d:3d:a8:d8:0c:b3:f1:
c1:68:30:38:e0:75:fd:c6:d2:af:74:8a:86:0a:e3:
f9:d8:d0:1b:09:2a:2d:5e:c0:ba:e4:25:f0:29:69:
58:ac:57:fd:83:fd:82:79:5f:82:f7:9e:cb:83:f6:
22:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DF:EE:77:59:0A:5A:AD:87:86:38:CC:E1:91:05:57:24:48:58:36
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ld_ud1kKWq2HhjjM4ZEFVyRIWDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.211.0/24
85.237.216.0/24
Signature Algorithm: sha256WithRSAEncryption
81:0f:94:d3:17:b9:d1:14:29:4d:80:ee:77:2d:e2:a9:a5:7d:
ce:dd:7b:ee:36:23:a1:1a:19:f5:1a:22:9a:32:68:d9:a4:50:
31:7c:b5:3a:b9:83:3f:18:97:01:8b:5e:0e:bd:52:f6:0b:e4:
2e:f0:4f:07:c8:b0:72:79:58:0a:43:6d:b8:a2:b9:98:94:df:
b2:81:af:60:dc:f5:0e:1d:1e:03:4d:b3:36:6d:a1:a3:34:a5:
85:34:b3:2a:e7:35:ff:61:c7:93:e7:28:c3:17:f0:e2:e2:d7:
bc:4d:65:c4:cb:e8:4d:2f:2c:88:48:6f:1f:77:b2:b8:51:07:
e6:2f:ce:7f:45:89:38:8b:17:14:19:e1:d2:0e:ee:7b:36:f7:
5a:2b:16:cd:42:7f:75:3f:97:f6:31:01:3f:72:26:0f:0e:79:
7d:9b:41:95:26:7d:87:f4:ce:93:45:22:72:ae:1b:59:bc:23:
96:a6:2c:c7:e8:69:b7:df:13:cb:6a:eb:2b:d4:06:69:e0:b8:
c6:71:e0:53:b8:3d:eb:90:73:f8:46:24:3f:06:54:f2:de:a5:
82:49:60:ba:fa:8a:32:1d:4e:68:ab:a3:e6:81:fe:17:52:6d:
f1:97:58:04:94:e6:22:6b:b4:e4:4f:57:77:8d:58:81:7c:a2:
f7:d8:c7:b0
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYU05SZcgnOBJodRoNiZx5vRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MGI2NzM2OGM5MWI4NWU4NDg4OGM1ZWQyZTgyNGQxMzkw
ODEwYmIwHhcNMjIxMjIxMTMzNTEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWRmZWU3NzU5MGE1YWFkODc4NjM4Y2NlMTkxMDU1NzI0NDg1ODM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0vy0BBs2o+b+RnXwfJNAMRNzHTt
5FI0B5xnzN/G7CD4IF90VFjHleAy4KEviY9l+cQWhGRh5W4bKIceBP2ExPwfjXSN
OL+QlMrGpBVY+6Qe3BEmNNrUZjPCXAE4k9tHyDRMzNXDa8+V62BmoF3aY9Sf42Hm
J3NNH8KLnOOoDp/Pk4W/IKHRidUn1xaaIVgFKlRO93AzS4aZgibf7vJtDva8K+O0
kgAkwRMeU3cfTBZVUfKjIJ1axP5tYHwQIzoVw/BgpMmOENbY3w09qNgMs/HBaDA4
4HX9xtKvdIqGCuP52NAbCSotXsC65CXwKWlYrFf9g/2CeV+C957Lg/Yi0QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJXf7ndZClqth4Y4zOGRBVckSFg2MB8GA1UdIwQY
MBaAFDkLZzaMkbhehIiMXtLoJNE5CBC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYt
NWM5ZDYyNjI5Yzg2LzEvbGRfdWQxa0tXcTJIaGpqTTRaRUZWeVJJV0RZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYtNWM5ZDYyNjI5Yzg2
LzEvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVe3TAwQA
Ve3YMA0GCSqGSIb3DQEBCwUAA4IBAQCBD5TTF7nRFClNgO53LeKppX3O3XvuNiOh
Ghn1GiKaMmjZpFAxfLU6uYM/GJcBi14OvVL2C+Qu8E8HyLByeVgKQ224ormYlN+y
ga9g3PUOHR4DTbM2baGjNKWFNLMq5zX/YceT5yjDF/Di4te8TWXEy+hNLyyISG8f
d7K4UQfmL85/RYk4ixcUGeHSDu57NvdaKxbNQn91P5f2MQE/ciYPDnl9m0GVJn2H
9M6TRSJyrhtZvCOWpizH6Gm33xPLausr1AZp4LjGceBTuD3rkHP4RiQ/BlTy3qWC
SWC6+ooyHU5oq6Pmgf4XUm3xl1gElOYia7TkT1d3jViBfKL32Mew
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org