Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/6da2d4-0919-4eaa-8a0c-040e105eeecd/1/MjvtwuD9r9GFS63unmdlK0uPei8.roa
File: MjvtwuD9r9GFS63unmdlK0uPei8.roa (raw, json)
Hash identifier: V7i+Pc1gEV3EEHo9yeoJRRZnVd8l03Kjx5VHvlrFFcc=
Subject key identifier: 32:3B:ED:C2:E0:FD:AF:D1:85:4B:AD:EE:9E:67:65:2B:4B:8F:7A:2F
Certificate issuer: /CN=b87b401f0d4506d887eaf628ff598911e67f9b7d
Certificate serial: 018CC5DBE3CCF3EF31CD21C3CAFDD68EE389
Authority key identifier: B8:7B:40:1F:0D:45:06:D8:87:EA:F6:28:FF:59:89:11:E6:7F:9B:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHtAHw1FBtiH6vYo_1mJEeZ_m30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/6da2d4-0919-4eaa-8a0c-040e105eeecd/1/MjvtwuD9r9GFS63unmdlK0uPei8.roa
Signing time: Mon 01 Jan 2024 16:29:31 +0000
ROA not before: Mon 01 Jan 2024 16:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198155
IP address blocks: 193.150.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:e3:cc:f3:ef:31:cd:21:c3:ca:fd:d6:8e:e3:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87b401f0d4506d887eaf628ff598911e67f9b7d
Validity
Not Before: Jan 1 16:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=323bedc2e0fdafd1854badee9e67652b4b8f7a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:02:99:53:72:f0:95:c7:62:8b:0b:26:86:44:
e0:3a:9f:76:be:b5:00:d3:84:96:a5:e1:e6:0a:63:
7b:ef:37:cd:a9:af:93:87:d9:29:49:ba:2f:e6:92:
94:6f:69:e0:43:e1:c0:04:ab:38:23:f2:fd:00:e4:
8b:9e:87:9c:a3:0d:63:82:8b:7c:27:74:3b:ad:f4:
68:8c:e1:f5:5a:42:9c:82:0c:2e:1e:5f:61:fb:ac:
6f:04:85:0c:41:0b:64:0d:69:50:85:46:94:2a:22:
5c:30:21:b0:4e:bd:a3:c2:70:11:56:5c:dc:36:fd:
bf:c0:c1:19:a5:1e:84:82:d8:e8:78:b0:d8:9b:c1:
ba:bf:0c:90:bf:f5:bf:f8:ee:76:3f:2f:8b:8e:d4:
96:9b:fb:71:64:89:4c:bc:db:6c:ad:83:4f:32:9a:
38:91:f2:78:91:80:ba:d1:a0:14:82:a1:52:5d:a9:
26:ce:10:d9:bf:f0:dd:f3:78:18:60:a5:4b:a7:7a:
fd:a5:b1:07:3c:ef:57:d7:c7:79:13:c6:e1:f9:e6:
9f:03:ef:06:c5:71:3a:54:9e:e2:c9:af:de:aa:1b:
fe:2b:9c:dc:55:b9:31:a5:39:4a:eb:c1:83:d8:13:
03:15:95:34:11:a0:a4:21:80:95:54:93:2f:9d:1f:
93:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3B:ED:C2:E0:FD:AF:D1:85:4B:AD:EE:9E:67:65:2B:4B:8F:7A:2F
X509v3 Authority Key Identifier:
keyid:B8:7B:40:1F:0D:45:06:D8:87:EA:F6:28:FF:59:89:11:E6:7F:9B:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHtAHw1FBtiH6vYo_1mJEeZ_m30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6da2d4-0919-4eaa-8a0c-040e105eeecd/1/MjvtwuD9r9GFS63unmdlK0uPei8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6da2d4-0919-4eaa-8a0c-040e105eeecd/1/uHtAHw1FBtiH6vYo_1mJEeZ_m30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.106.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:c4:df:ee:4c:ed:de:c1:52:f6:0c:e4:1e:17:99:3c:1b:5e:
a8:a5:eb:12:66:f5:24:82:27:99:5a:79:d2:21:f9:67:48:7e:
18:91:ce:5b:c7:2e:6c:cf:4d:f9:d0:ec:0f:31:c5:51:50:1c:
9d:f9:bd:d9:a8:ad:79:71:2c:04:ac:82:25:db:8a:dd:d3:dd:
52:ed:0a:9c:cf:61:df:df:08:67:17:15:cf:81:cb:b0:4a:94:
db:6e:63:72:3d:30:af:a3:b4:21:5d:4a:66:fd:69:03:80:5c:
98:2b:1d:11:fc:4b:b9:a1:26:8f:1f:92:32:e0:24:44:c8:e2:
58:3c:87:54:20:36:0a:44:69:38:28:89:b0:31:ef:5f:52:6d:
5f:46:53:a1:2f:c3:d4:33:8b:0a:de:64:24:aa:ba:ef:0f:05:
8f:23:6e:c7:88:11:66:ec:50:c7:29:8c:f9:bc:9f:b4:65:a5:
79:db:08:a9:94:2f:0d:48:9c:e1:c6:bf:14:9d:f2:54:ff:e3:
a1:ad:f0:11:8c:04:ed:5d:44:0d:39:88:60:cd:29:07:69:e6:
37:bf:4c:59:1b:ac:0a:56:b2:68:d5:dd:e0:14:1c:83:e9:c7:
50:1f:36:0c:d1:f7:a7:63:8e:99:11:93:be:3f:50:c9:f3:42:
b6:80:a8:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzF2+PM8+8xzSHDyv3WjuOJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4N2I0MDFmMGQ0NTA2ZDg4N2VhZjYyOGZmNTk4OTExZTY3
ZjliN2QwHhcNMjQwMTAxMTYyOTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjNiZWRjMmUwZmRhZmQxODU0YmFkZWU5ZTY3NjUyYjRiOGY3YTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgwKZU3LwlcdiiwsmhkTgOp92vrUA
04SWpeHmCmN77zfNqa+Th9kpSbov5pKUb2ngQ+HABKs4I/L9AOSLnoecow1jgot8
J3Q7rfRojOH1WkKcggwuHl9h+6xvBIUMQQtkDWlQhUaUKiJcMCGwTr2jwnARVlzc
Nv2/wMEZpR6EgtjoeLDYm8G6vwyQv/W/+O52Py+LjtSWm/txZIlMvNtsrYNPMpo4
kfJ4kYC60aAUgqFSXakmzhDZv/Dd83gYYKVLp3r9pbEHPO9X18d5E8bh+eafA+8G
xXE6VJ7iya/eqhv+K5zcVbkxpTlK68GD2BMDFZU0EaCkIYCVVJMvnR+TkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDI77cLg/a/RhUut7p5nZStLj3ovMB8GA1UdIwQY
MBaAFLh7QB8NRQbYh+r2KP9ZiRHmf5t9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUh0QUh3MUZCdGlINnZZb18xbUpFZVpfbTMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi82ZGEyZDQtMDkxOS00ZWFhLThhMGMt
MDQwZTEwNWVlZWNkLzEvTWp2dHd1RDlyOUdGUzYzdW5tZGxLMHVQZWk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi82ZGEyZDQtMDkxOS00ZWFhLThhMGMtMDQwZTEwNWVlZWNk
LzEvdUh0QUh3MUZCdGlINnZZb18xbUpFZVpfbTMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwZZqMA0G
CSqGSIb3DQEBCwUAA4IBAQBfxN/uTO3ewVL2DOQeF5k8G16opesSZvUkgieZWnnS
IflnSH4Ykc5bxy5sz0350OwPMcVRUByd+b3ZqK15cSwErIIl24rd091S7Qqcz2Hf
3whnFxXPgcuwSpTbbmNyPTCvo7QhXUpm/WkDgFyYKx0R/Eu5oSaPH5Iy4CREyOJY
PIdUIDYKRGk4KImwMe9fUm1fRlOhL8PUM4sK3mQkqrrvDwWPI27HiBFm7FDHKYz5
vJ+0ZaV52wiplC8NSJzhxr8UnfJU/+OhrfARjATtXUQNOYhgzSkHaeY3v0xZG6wK
VrJo1d3gFByD6cdQHzYM0fenY46ZEZO+P1DJ80K2gKil
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:36 2024 by rpki-client on console-fra.rpki-client.org