Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/IUMus7xx5r7lpqbLqYTG_9VOpS0.roa
File: IUMus7xx5r7lpqbLqYTG_9VOpS0.roa (raw, json)
Hash identifier: qswqUebtI5f7gqHX//J7mw3jN0z6UHPWv2nEOfj8RT8=
Subject key identifier: 21:43:2E:B3:BC:71:E6:BE:E5:A6:A6:CB:A9:84:C6:FF:D5:4E:A5:2D
Certificate issuer: /CN=41467c769bf66ada7d5780a69dce1371be9849de
Certificate serial: 36B02BA6
Authority key identifier: 41:46:7C:76:9B:F6:6A:DA:7D:57:80:A6:9D:CE:13:71:BE:98:49:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/IUMus7xx5r7lpqbLqYTG_9VOpS0.roa
Signing time: Wed 29 Jun 2022 14:02:03 +0000
ROA not before: Wed 29 Jun 2022 14:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29124
IP address blocks: 77.105.154.0/23 maxlen: 23
185.225.202.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 917515174 (0x36b02ba6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41467c769bf66ada7d5780a69dce1371be9849de
Validity
Not Before: Jun 29 14:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21432eb3bc71e6bee5a6a6cba984c6ffd54ea52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:29:b3:7e:a2:e4:16:72:50:ff:02:33:ad:e8:
11:0c:7b:40:1a:b5:56:da:19:e8:86:b9:72:af:c0:
b4:c3:45:f0:47:5f:8f:8d:39:19:cd:af:52:58:80:
5e:17:2d:39:ca:6e:59:68:f5:b7:f0:92:b8:14:92:
2e:48:86:e4:75:45:22:bb:7c:76:fe:1c:ef:92:12:
ec:70:ef:40:9c:9f:2b:a1:49:6a:4c:aa:19:f6:5a:
b0:6c:6f:49:91:0c:b0:fc:a5:78:9f:29:2c:a7:15:
1a:b9:87:fa:6f:8b:be:fa:20:7a:d1:d0:fc:f4:18:
7a:33:4e:aa:85:5c:cc:0f:70:a0:f9:6f:58:04:70:
36:11:31:d7:e5:16:56:d9:5b:b4:8c:dc:94:78:84:
2d:ed:0c:28:bc:3a:3a:95:3b:2e:7a:16:01:7d:9c:
70:1f:80:89:30:7d:e4:70:1f:96:99:fa:e0:50:ac:
27:8d:a7:ce:3c:60:cd:e9:b6:ee:33:e9:29:62:9c:
28:1d:a4:df:3f:20:81:da:35:b5:a5:c2:ef:8c:c4:
e1:ff:dc:e2:ce:23:01:1a:17:fd:01:13:50:7b:e9:
41:ec:3a:42:02:9a:f9:f2:79:ef:f7:1f:1d:6c:12:
24:e2:7d:dc:b2:74:fd:a4:8f:db:2e:53:63:09:e6:
c4:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:43:2E:B3:BC:71:E6:BE:E5:A6:A6:CB:A9:84:C6:FF:D5:4E:A5:2D
X509v3 Authority Key Identifier:
keyid:41:46:7C:76:9B:F6:6A:DA:7D:57:80:A6:9D:CE:13:71:BE:98:49:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/IUMus7xx5r7lpqbLqYTG_9VOpS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.154.0/23
185.225.202.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:32:94:3c:1e:74:7b:79:80:fa:02:6d:55:4d:4a:73:26:94:
c0:6c:ff:8a:d4:1e:ea:6c:29:90:d7:7d:cb:1a:da:65:a2:6e:
02:b8:42:59:09:b2:1a:03:70:13:08:a5:0e:cb:d6:f5:35:35:
1a:13:f6:bb:e8:a7:89:2b:e0:82:06:c2:9e:ea:51:2c:92:3c:
d4:8b:ec:ec:98:e5:e3:f9:6d:aa:fa:98:cc:5d:b4:4c:05:c1:
38:4e:a7:02:9a:ad:22:f2:c8:26:aa:92:3a:2f:62:30:90:be:
7f:44:02:ad:d4:ec:1d:a9:a0:d1:05:55:30:b3:47:fe:47:31:
4e:b9:bd:2f:09:4d:e6:60:cc:67:8c:59:e3:59:c8:bd:df:e5:
92:ce:28:69:18:1a:fc:d1:97:fd:8e:58:8e:7a:83:8b:d6:bc:
01:07:35:75:84:b9:0d:76:ff:ff:42:8f:d7:b4:94:d1:46:64:
65:24:6d:9e:ce:58:d6:ef:ca:8a:85:83:4d:80:07:ff:d5:48:
6f:7f:7f:97:3d:80:fb:28:09:a1:c4:8f:f5:7b:cb:f9:60:97:
84:5b:61:c1:ff:c5:74:d8:78:9c:3d:12:19:1f:31:32:e1:e1:
95:a9:dd:1c:80:a5:01:43:cf:46:64:ba:f3:49:18:8c:8b:75:
a8:25:78:c4
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIENrArpjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MTQ2N2M3NjliZjY2YWRhN2Q1NzgwYTY5ZGNlMTM3MWJlOTg0OWRlMB4XDTIyMDYy
OTE0MDIwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjE0MzJlYjNiYzcx
ZTZiZWU1YTZhNmNiYTk4NGM2ZmZkNTRlYTUyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANIps36i5BZyUP8CM63oEQx7QBq1VtoZ6Ia5cq/AtMNF8Edf
j405Gc2vUliAXhctOcpuWWj1t/CSuBSSLkiG5HVFIrt8dv4c75IS7HDvQJyfK6FJ
akyqGfZasGxvSZEMsPyleJ8pLKcVGrmH+m+LvvogetHQ/PQYejNOqoVczA9woPlv
WARwNhEx1+UWVtlbtIzclHiELe0MKLw6OpU7LnoWAX2ccB+AiTB95HAflpn64FCs
J42nzjxgzem27jPpKWKcKB2k3z8ggdo1taXC74zE4f/c4s4jARoX/QETUHvpQew6
QgKa+fJ57/cfHWwSJOJ93LJ0/aSP2y5TYwnmxB0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQhQy6zvHHmvuWmpsuphMb/1U6lLTAfBgNVHSMEGDAWgBRBRnx2m/Zq2n1X
gKadzhNxvphJ3jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FVWjhkcHYyYXRwOVY0Q21uYzRUY2I2WVNkNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjkvNWNmM2ZkLWU3N2QtNGM4Mi1iNGM3LTUyMTU1NmJlODEzYS8x
L0lVTXVzN3h4NXI3bHBxYkxxWVRHXzlWT3BTMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkv
NWNmM2ZkLWU3N2QtNGM4Mi1iNGM3LTUyMTU1NmJlODEzYS8xL1FVWjhkcHYyYXRw
OVY0Q21uYzRUY2I2WVNkNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAU1pmgMEAbnhyjANBgkqhkiG9w0B
AQsFAAOCAQEASzKUPB50e3mA+gJtVU1KcyaUwGz/itQe6mwpkNd9yxraZaJuArhC
WQmyGgNwEwilDsvW9TU1GhP2u+iniSvgggbCnupRLJI81Ivs7Jjl4/ltqvqYzF20
TAXBOE6nApqtIvLIJqqSOi9iMJC+f0QCrdTsHamg0QVVMLNH/kcxTrm9LwlN5mDM
Z4xZ41nIvd/lks4oaRga/NGX/Y5YjnqDi9a8AQc1dYS5DXb//0KP17SU0UZkZSRt
ns5Y1u/KioWDTYAH/9VIb39/lz2A+ygJocSP9XvL+WCXhFthwf/FdNh4nD0SGR8x
MuHhlandHIClAUPPRmS680kYjIt1qCV4xA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:30 2024 by rpki-client on console-ams.rpki-client.org