Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/yh1ZwLArF1DWU-NQODIZipMocrc.roa
File: yh1ZwLArF1DWU-NQODIZipMocrc.roa (raw, json)
Hash identifier: SOMU9KVT02KI8g9nJorS87rC+VQg0IjtYvXw7mZ6HlA=
Subject key identifier: CA:1D:59:C0:B0:2B:17:50:D6:53:E3:50:38:32:19:8A:93:28:72:B7
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 03FB44A3
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/yh1ZwLArF1DWU-NQODIZipMocrc.roa
Signing time: Thu 21 Apr 2022 10:10:06 +0000
ROA not before: Thu 21 Apr 2022 10:10:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 141.11.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66798755 (0x3fb44a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Apr 21 10:10:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca1d59c0b02b1750d653e3503832198a932872b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:04:36:ef:78:31:70:6f:87:7f:14:67:94:4c:
9d:76:56:dd:12:c0:dc:cc:1a:d3:cc:09:9c:34:00:
0b:6e:05:4a:54:60:96:35:2d:63:34:fb:2b:a5:cc:
54:26:37:42:45:08:f0:48:c7:bd:02:f0:5d:b3:fb:
b3:b1:f8:9b:24:5f:9a:ee:0a:0f:ba:60:ca:2e:77:
2c:53:be:b2:5b:5d:2a:e8:49:51:d9:9a:b8:26:46:
08:4d:db:9e:20:16:0e:db:01:97:76:b9:50:23:26:
0a:7a:cb:35:ae:c6:af:90:26:6d:94:f2:8a:73:da:
b9:c2:d1:dc:12:6a:87:40:46:8b:6f:51:7e:8d:5a:
5d:a4:d8:f4:a6:a4:66:68:39:08:af:d0:cb:08:e0:
6f:a9:19:7f:ab:bb:5e:45:25:9d:ef:3a:3e:51:a6:
26:e6:cd:20:8e:1a:cd:c1:47:2f:63:a6:7f:d1:38:
11:cb:f6:1f:82:d7:39:ea:2f:68:36:98:ce:3c:23:
b8:80:7c:46:f7:db:a6:a8:a1:cf:0e:e7:ab:ab:f5:
1a:f6:ec:42:4e:63:71:5b:3b:c9:de:34:ca:36:71:
9d:3d:af:0f:59:cf:71:66:ef:e6:02:a0:fb:e8:b4:
2b:10:e5:cf:aa:d8:f4:1d:9d:cb:7a:98:f1:7a:ae:
9a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1D:59:C0:B0:2B:17:50:D6:53:E3:50:38:32:19:8A:93:28:72:B7
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/yh1ZwLArF1DWU-NQODIZipMocrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.71.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:63:72:f2:34:fe:1f:c3:54:4c:42:25:70:1a:4c:2e:62:5e:
6f:f7:1f:aa:bb:00:30:e3:8e:49:be:d5:61:1a:78:d9:e6:e9:
5e:b8:5b:0f:fa:ea:48:32:c7:7e:08:e7:e7:e0:ee:69:31:ae:
af:d7:92:12:3f:18:9c:99:c6:8a:7c:7e:9d:1f:85:8a:81:ec:
9b:f2:08:6d:ab:62:8b:31:7c:9d:77:dc:25:9e:c7:a8:35:01:
1c:e1:22:2e:2a:2a:75:a6:d5:be:d4:37:98:df:87:c5:5a:aa:
f8:16:f6:cf:56:21:0a:30:12:50:6f:49:82:42:25:c9:ff:b3:
53:55:a3:9b:22:4c:4a:71:26:95:4e:a1:8d:d5:3d:e8:97:fb:
90:9a:52:0d:67:60:5e:95:95:72:af:7b:ab:66:04:fb:ef:bc:
c3:a9:1e:a3:73:67:ed:da:d8:ae:03:83:f2:26:54:58:ec:31:
78:14:c2:10:1b:ec:8d:9e:80:bb:f9:6b:49:51:bc:e0:3b:72:
3a:53:78:23:b5:da:4e:15:8f:dd:d0:5e:73:a3:4b:87:bd:e0:
e6:85:ee:77:a0:ba:00:22:17:b9:b7:0c:4d:9e:59:bb:2e:a1:
59:85:35:52:19:a4:cc:ee:c9:24:b2:95:d1:7e:b7:5c:19:cc:
94:c4:22:8a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA/tEozANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzRjNzk4NmIxODJlY2MzNmFkNzRjNTM1YmVhZTcyOTliMzVjZTkyMB4XDTIyMDQy
MTEwMTAwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2ExZDU5YzBiMDJi
MTc1MGQ2NTNlMzUwMzgzMjE5OGE5MzI4NzJiNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ8ENu94MXBvh38UZ5RMnXZW3RLA3Mwa08wJnDQAC24FSlRg
ljUtYzT7K6XMVCY3QkUI8EjHvQLwXbP7s7H4myRfmu4KD7pgyi53LFO+sltdKuhJ
UdmauCZGCE3bniAWDtsBl3a5UCMmCnrLNa7Gr5AmbZTyinPaucLR3BJqh0BGi29R
fo1aXaTY9KakZmg5CK/Qywjgb6kZf6u7XkUlne86PlGmJubNII4azcFHL2Omf9E4
Ecv2H4LXOeovaDaYzjwjuIB8Rvfbpqihzw7nq6v1GvbsQk5jcVs7yd40yjZxnT2v
D1nPcWbv5gKg++i0KxDlz6rY9B2dy3qY8Xqumo8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTKHVnAsCsXUNZT41A4MhmKkyhytzAfBgNVHSMEGDAWgBRsTHmGsYLsw2rX
TFNb6ucpmzXOkjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JFeDVockdDN01OcTEweFRXLXJuS1pzMXpwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWYvYzRlNWNhLThhYTUtNGU2NC1hMDIyLTI2Y2ExNDhkMDdhZi8x
L3loMVp3TEFyRjFEV1UtTlFPRElaaXBNb2NyYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYv
YzRlNWNhLThhYTUtNGU2NC1hMDIyLTI2Y2ExNDhkMDdhZi8xL2JFeDVockdDN01O
cTEweFRXLXJuS1pzMXpwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAI0LRzANBgkqhkiG9w0BAQsFAAOC
AQEAPWNy8jT+H8NUTEIlcBpMLmJeb/cfqrsAMOOOSb7VYRp42ebpXrhbD/rqSDLH
fgjn5+DuaTGur9eSEj8YnJnGinx+nR+FioHsm/IIbatiizF8nXfcJZ7HqDUBHOEi
LioqdabVvtQ3mN+HxVqq+Bb2z1YhCjASUG9JgkIlyf+zU1WjmyJMSnEmlU6hjdU9
6Jf7kJpSDWdgXpWVcq97q2YE+++8w6keo3Nn7drYrgOD8iZUWOwxeBTCEBvsjZ6A
u/lrSVG84DtyOlN4I7XaThWP3dBec6NLh73g5oXud6C6ACIXubcMTZ5Zuy6hWYU1
UhmkzO7JJLKV0X63XBnMlMQiig==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:17 2023 by rpki-client on console-fra.rpki-client.org