Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1e8c8d-f650-4d5a-9e8c-2016b1e97f9b/1/O--DznBtXcwSOoAsrm7-vvgf__k.roa
File: O--DznBtXcwSOoAsrm7-vvgf__k.roa (raw, json)
Hash identifier: EnCh7/uF7+yiE6+I7jr4PTDX+bKAVZs7J6+h7ujyy+c=
Subject key identifier: 3B:EF:83:CE:70:6D:5D:CC:12:3A:80:2C:AE:6E:FE:BE:F8:1F:FF:F9
Certificate issuer: /CN=7ae9beb14e5572bac4fc930b26cacf3d92029662
Certificate serial: 03E92095
Authority key identifier: 7A:E9:BE:B1:4E:55:72:BA:C4:FC:93:0B:26:CA:CF:3D:92:02:96:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eum-sU5VcrrE_JMLJsrPPZIClmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1e8c8d-f650-4d5a-9e8c-2016b1e97f9b/1/O--DznBtXcwSOoAsrm7-vvgf__k.roa
Signing time: Sat 01 Jan 2022 09:56:45 +0000
ROA not before: Sat 01 Jan 2022 09:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9186
IP address blocks: 217.74.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65609877 (0x3e92095)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ae9beb14e5572bac4fc930b26cacf3d92029662
Validity
Not Before: Jan 1 09:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bef83ce706d5dcc123a802cae6efebef81ffff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bf:48:1b:0c:b5:42:1e:5d:13:34:03:e6:b8:
3e:cd:b5:88:9a:d4:15:4e:53:06:ba:f9:b2:85:9f:
eb:c5:12:f0:f6:33:97:b8:1e:1b:f7:64:f2:e2:71:
18:ce:e6:15:ae:d3:fb:84:48:86:be:c2:23:f4:6a:
20:f6:62:8a:ed:b6:c0:3b:d1:1d:15:ca:40:ec:c5:
95:1f:d0:af:96:42:25:3c:0d:1a:e3:10:ed:58:c7:
bf:54:13:ab:e8:96:c9:71:9c:6c:1d:b5:05:c6:de:
18:4e:a9:fb:69:3a:f3:70:b2:29:11:a5:77:c8:fd:
f8:94:0d:b9:d1:25:12:1a:f1:35:c9:3a:3a:07:f6:
8e:f9:f7:04:74:6e:8c:f8:3a:23:e3:72:a9:49:4c:
db:ef:58:87:31:28:37:f4:bf:33:06:80:51:23:cb:
69:b1:a5:0f:2d:f5:c7:64:b1:eb:e6:33:1f:77:8a:
d6:1e:86:8a:2e:1f:ed:03:24:66:88:06:4b:c0:8f:
da:bd:68:67:cb:ad:98:d5:fe:24:da:6e:18:d0:d7:
db:50:57:08:32:a1:30:8c:47:92:52:d7:dc:ca:e3:
0b:4f:53:2c:38:ac:45:43:03:6d:67:64:a1:74:46:
3c:a5:09:cb:56:fb:62:70:aa:1e:c0:d3:87:ef:31:
5c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:EF:83:CE:70:6D:5D:CC:12:3A:80:2C:AE:6E:FE:BE:F8:1F:FF:F9
X509v3 Authority Key Identifier:
keyid:7A:E9:BE:B1:4E:55:72:BA:C4:FC:93:0B:26:CA:CF:3D:92:02:96:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eum-sU5VcrrE_JMLJsrPPZIClmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1e8c8d-f650-4d5a-9e8c-2016b1e97f9b/1/O--DznBtXcwSOoAsrm7-vvgf__k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1e8c8d-f650-4d5a-9e8c-2016b1e97f9b/1/eum-sU5VcrrE_JMLJsrPPZIClmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.74.20.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:91:05:21:bd:2e:40:d4:03:35:a3:7c:1b:a2:34:b4:46:e9:
1b:fd:0c:86:e7:de:c9:3d:a6:6b:b5:12:ca:8b:97:8b:88:07:
30:b5:87:75:80:ce:4e:dc:f6:cf:86:63:68:d9:d7:48:53:fa:
6c:56:65:fc:c1:76:06:05:30:30:73:80:8d:f8:8d:c0:1e:7d:
dc:c6:ad:41:e5:4a:4b:48:c4:4c:0e:2f:df:ed:87:db:7d:77:
12:3d:b0:61:18:fa:ed:a5:03:cf:f7:31:b2:e7:ec:dc:53:6f:
4d:c8:9a:c3:27:90:8f:22:0e:eb:7a:69:cc:9f:21:bb:63:72:
88:4d:19:44:90:86:a6:a4:17:41:a9:44:e6:0d:89:2b:0f:71:
e5:32:53:4e:df:63:0b:62:b1:0f:bc:5b:fb:3a:d0:26:e6:15:
5a:34:1f:25:87:27:10:eb:6d:9e:5d:d2:94:6c:f3:75:e6:ac:
4a:de:e0:f5:c0:54:66:27:03:f2:5f:c3:0a:7c:1d:d5:c7:1b:
e6:9f:58:79:3b:f3:b4:2a:6a:b2:61:fb:6d:4d:77:33:40:89:
3d:6e:6d:4f:3f:ad:0d:60:e4:2a:77:0e:65:a5:9c:86:8f:c5:
7d:2d:00:52:5e:33:ed:46:bc:ec:5d:ed:07:cd:fd:80:04:30:
0e:5c:11:e6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA+kglTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YWU5YmViMTRlNTU3MmJhYzRmYzkzMGIyNmNhY2YzZDkyMDI5NjYyMB4XDTIyMDEw
MTA5NTY0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2JlZjgzY2U3MDZk
NWRjYzEyM2E4MDJjYWU2ZWZlYmVmODFmZmZmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMK/SBsMtUIeXRM0A+a4Ps21iJrUFU5TBrr5soWf68US8PYz
l7geG/dk8uJxGM7mFa7T+4RIhr7CI/RqIPZiiu22wDvRHRXKQOzFlR/Qr5ZCJTwN
GuMQ7VjHv1QTq+iWyXGcbB21BcbeGE6p+2k683CyKRGld8j9+JQNudElEhrxNck6
Ogf2jvn3BHRujPg6I+NyqUlM2+9YhzEoN/S/MwaAUSPLabGlDy31x2Sx6+YzH3eK
1h6Gii4f7QMkZogGS8CP2r1oZ8utmNX+JNpuGNDX21BXCDKhMIxHklLX3MrjC09T
LDisRUMDbWdkoXRGPKUJy1b7YnCqHsDTh+8xXDMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ774POcG1dzBI6gCyubv6++B//+TAfBgNVHSMEGDAWgBR66b6xTlVyusT8
kwsmys89kgKWYjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2V1bS1zVTVWY3JyRV9KTUxKc3JQUFpJQ2xtSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvMWU4YzhkLWY2NTAtNGQ1YS05ZThjLTIwMTZiMWU5N2Y5Yi8x
L08tLUR6bkJ0WGN3U09vQXNybTctdnZnZl9fay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
MWU4YzhkLWY2NTAtNGQ1YS05ZThjLTIwMTZiMWU5N2Y5Yi8xL2V1bS1zVTVWY3Jy
RV9KTUxKc3JQUFpJQ2xtSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANlKFDANBgkqhkiG9w0BAQsFAAOC
AQEAnJEFIb0uQNQDNaN8G6I0tEbpG/0MhufeyT2ma7USyouXi4gHMLWHdYDOTtz2
z4ZjaNnXSFP6bFZl/MF2BgUwMHOAjfiNwB593MatQeVKS0jETA4v3+2H2313Ej2w
YRj67aUDz/cxsufs3FNvTciawyeQjyIO63ppzJ8hu2NyiE0ZRJCGpqQXQalE5g2J
Kw9x5TJTTt9jC2KxD7xb+zrQJuYVWjQfJYcnEOttnl3SlGzzdeasSt7g9cBUZicD
8l/DCnwd1ccb5p9YeTvztCpqsmH7bU13M0CJPW5tTz+tDWDkKncOZaWcho/FfS0A
Ul4z7Ua87F3tB839gAQwDlwR5g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:06 2024 by rpki-client on console-fra.rpki-client.org