Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/_daZnveivt0JrPJwKW4-yqUMDOA.roa
File: _daZnveivt0JrPJwKW4-yqUMDOA.roa (raw, json)
Hash identifier: fJ0MXYWwZBqF2fNRtFGtOcF6gJkSF5BHnN2dwGhpX0U=
Subject key identifier: FD:D6:99:9E:F7:A2:BE:DD:09:AC:F2:70:29:6E:3E:CA:A5:0C:0C:E0
Certificate issuer: /CN=41467c769bf66ada7d5780a69dce1371be9849de
Certificate serial: 01842E684F5DFC8459F5F7AA89FBE5453642
Authority key identifier: 41:46:7C:76:9B:F6:6A:DA:7D:57:80:A6:9D:CE:13:71:BE:98:49:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/_daZnveivt0JrPJwKW4-yqUMDOA.roa
Signing time: Mon 31 Oct 2022 14:18:18 +0000
ROA not before: Mon 31 Oct 2022 14:18:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29124
IP address blocks: 185.225.202.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2e:68:4f:5d:fc:84:59:f5:f7:aa:89:fb:e5:45:36:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41467c769bf66ada7d5780a69dce1371be9849de
Validity
Not Before: Oct 31 14:18:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdd6999ef7a2bedd09acf270296e3ecaa50c0ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:09:07:94:36:7c:07:26:4c:cb:fa:ce:49:73:
2f:25:43:5b:82:81:77:9a:40:98:98:35:77:14:7a:
10:98:dd:83:aa:f0:e9:d6:c4:2a:ad:1e:55:5f:3f:
bd:0f:31:36:94:3c:7b:0f:14:85:18:f2:2f:ed:0c:
4d:78:fb:c6:a4:02:12:ce:c3:9f:13:8c:f5:e0:19:
34:b0:4a:61:7d:8c:d9:05:8a:b5:f7:a9:04:cb:86:
c6:33:5b:80:05:d5:9e:35:ac:4a:c0:f3:5f:b4:44:
ff:a9:7a:55:83:08:62:5d:d6:28:03:b2:01:1a:76:
e2:84:c2:f2:3c:15:d7:5f:a9:3d:aa:b5:bd:90:f0:
96:44:48:43:a1:1f:c7:5f:1b:cd:7f:46:1f:34:0c:
3b:f1:84:34:ee:2e:b8:45:35:96:23:c6:c3:b4:31:
d6:72:45:e3:fd:25:23:d1:0b:3f:52:e1:20:ee:3c:
78:18:33:9b:d0:07:3d:29:57:da:ec:ce:3d:7a:b7:
6a:7c:06:ff:da:7c:1e:bb:8d:88:f4:d7:da:63:2a:
45:8d:5d:9d:fb:50:ec:49:ca:8c:c1:d3:7a:b5:8d:
20:40:65:52:3b:59:8c:1d:90:e1:15:98:12:0e:65:
b3:f2:79:c8:f5:64:25:b1:d0:4f:0b:5d:44:0a:5b:
c4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D6:99:9E:F7:A2:BE:DD:09:AC:F2:70:29:6E:3E:CA:A5:0C:0C:E0
X509v3 Authority Key Identifier:
keyid:41:46:7C:76:9B:F6:6A:DA:7D:57:80:A6:9D:CE:13:71:BE:98:49:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/_daZnveivt0JrPJwKW4-yqUMDOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.202.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:17:4e:5c:ee:9c:3d:a3:e4:17:2b:84:32:b3:bd:3e:13:18:
61:97:a1:9e:53:70:f3:d6:f2:73:69:2b:8c:58:1d:66:75:d2:
69:fe:ad:7b:00:fe:18:90:c7:de:f5:49:2d:4d:5f:a2:64:0c:
40:bc:02:68:78:b2:b6:1c:65:85:b2:a2:d7:cc:3a:ec:28:0f:
cc:ba:52:5f:4d:51:a3:ba:56:cc:9a:ad:4a:1c:b0:21:ab:b1:
1f:1a:03:ac:25:5f:fa:ce:b5:8b:2b:17:26:d9:2e:77:42:e0:
b9:bc:d1:79:fa:33:a2:9f:a6:86:47:10:e6:45:22:41:4b:ff:
0f:35:b6:10:f8:ee:0a:fb:35:2f:a3:b2:5d:07:aa:a0:67:d6:
53:3e:55:42:7f:63:32:b9:2d:0c:43:a6:96:f2:f0:02:3c:43:
db:96:eb:53:5d:36:d9:30:4c:d6:c3:f7:c7:03:05:63:56:f2:
db:f0:be:9d:f9:9b:8a:87:c9:97:d8:6f:e3:8f:4f:d2:62:69:
41:63:df:37:ac:58:17:a1:3f:79:8e:c9:2e:0a:92:28:c9:f8:
26:b4:92:62:f5:78:21:09:d4:4d:47:eb:bc:fe:9c:2a:49:df:
90:8f:96:74:26:93:b4:20:f0:42:31:b1:c3:a1:bd:89:30:11:
d8:60:fe:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQuaE9d/IRZ9feqifvlRTZCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxNDY3Yzc2OWJmNjZhZGE3ZDU3ODBhNjlkY2UxMzcxYmU5
ODQ5ZGUwHhcNMjIxMDMxMTQxODE4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZGQ2OTk5ZWY3YTJiZWRkMDlhY2YyNzAyOTZlM2VjYWE1MGMwY2UwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAkHlDZ8ByZMy/rOSXMvJUNbgoF3
mkCYmDV3FHoQmN2DqvDp1sQqrR5VXz+9DzE2lDx7DxSFGPIv7QxNePvGpAISzsOf
E4z14Bk0sEphfYzZBYq196kEy4bGM1uABdWeNaxKwPNftET/qXpVgwhiXdYoA7IB
GnbihMLyPBXXX6k9qrW9kPCWREhDoR/HXxvNf0YfNAw78YQ07i64RTWWI8bDtDHW
ckXj/SUj0Qs/UuEg7jx4GDOb0Ac9KVfa7M49erdqfAb/2nweu42I9NfaYypFjV2d
+1DsScqMwdN6tY0gQGVSO1mMHZDhFZgSDmWz8nnI9WQlsdBPC11EClvE0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP3WmZ73or7dCazycCluPsqlDAzgMB8GA1UdIwQY
MBaAFEFGfHab9mrafVeApp3OE3G+mEneMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVVaOGRwdjJhdHA5VjRDbW5jNFRjYjZZU2Q0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS81Y2YzZmQtZTc3ZC00YzgyLWI0Yzct
NTIxNTU2YmU4MTNhLzEvX2RhWm52ZWl2dDBKclBKd0tXNC15cVVNRE9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS81Y2YzZmQtZTc3ZC00YzgyLWI0YzctNTIxNTU2YmU4MTNh
LzEvUVVaOGRwdjJhdHA5VjRDbW5jNFRjYjZZU2Q0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBueHKMA0G
CSqGSIb3DQEBCwUAA4IBAQAPF05c7pw9o+QXK4Qys70+Exhhl6GeU3Dz1vJzaSuM
WB1mddJp/q17AP4YkMfe9UktTV+iZAxAvAJoeLK2HGWFsqLXzDrsKA/MulJfTVGj
ulbMmq1KHLAhq7EfGgOsJV/6zrWLKxcm2S53QuC5vNF5+jOin6aGRxDmRSJBS/8P
NbYQ+O4K+zUvo7JdB6qgZ9ZTPlVCf2MyuS0MQ6aW8vACPEPblutTXTbZMEzWw/fH
AwVjVvLb8L6d+ZuKh8mX2G/jj0/SYmlBY983rFgXoT95jskuCpIoyfgmtJJi9Xgh
CdRNR+u8/pwqSd+Qj5Z0JpO0IPBCMbHDob2JMBHYYP4a
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:17 2024 by rpki-client on console-fra.rpki-client.org