Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/MQZlVjrgTlG9TYBtO-D_5AhvkSU.roa
File: MQZlVjrgTlG9TYBtO-D_5AhvkSU.roa (raw, json)
Hash identifier: 1BKXG2DxxU5jBoodTYzq0ipxMDNdsjPtNcaPJa63tqk=
Subject key identifier: 31:06:65:56:3A:E0:4E:51:BD:4D:80:6D:3B:E0:FF:E4:08:6F:91:25
Certificate issuer: /CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Certificate serial: 0CF6240A
Authority key identifier: 00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/MQZlVjrgTlG9TYBtO-D_5AhvkSU.roa
Signing time: Tue 17 May 2022 06:50:29 +0000
ROA not before: Tue 17 May 2022 06:50:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211883
IP address blocks: 185.153.92.0/24 maxlen: 24
2a0c:f280:1::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217457674 (0xcf6240a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Validity
Not Before: May 17 06:50:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=310665563ae04e51bd4d806d3be0ffe4086f9125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ee:05:5b:68:b6:9c:cc:19:ed:b8:a5:a0:fe:
45:2a:15:94:ff:e6:81:ef:0f:53:74:57:66:2f:77:
a9:2d:b8:f7:86:4b:eb:7d:0e:24:1e:fc:5b:07:15:
d6:52:b8:0c:86:ad:2a:5a:bd:fd:81:dc:3a:10:8f:
a5:97:b2:78:04:e8:76:8e:bc:8e:2b:8f:b2:1a:36:
f4:52:ce:c7:3b:ce:c7:30:1c:cd:06:89:ef:59:f6:
c9:e6:f8:8f:c1:c4:23:39:a5:0b:f2:d8:e5:5b:52:
0d:e9:38:27:d0:b9:b8:48:af:d0:8d:c2:78:7b:78:
bc:95:93:74:8f:7b:d5:6c:e0:bf:6f:3e:d4:06:4c:
db:34:f0:2e:05:ca:36:da:fd:5c:07:8e:cf:12:68:
7a:82:50:fd:5e:6b:91:45:f0:b7:12:89:38:bf:c8:
e7:22:52:a8:61:9a:66:cf:61:2c:56:83:15:65:2a:
06:c0:97:f1:1d:0e:d3:fc:b5:03:fc:f9:44:20:f5:
82:84:76:90:48:ee:b3:7b:a0:9c:80:56:78:ef:eb:
63:5b:55:a3:33:a6:72:33:b5:cd:a6:b2:bd:f7:cb:
a8:4a:46:07:ed:ea:a0:9d:4c:0d:9f:0a:16:79:8f:
2b:1c:69:11:01:19:7a:e6:8c:5a:b2:bf:dd:cc:db:
0c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:06:65:56:3A:E0:4E:51:BD:4D:80:6D:3B:E0:FF:E4:08:6F:91:25
X509v3 Authority Key Identifier:
keyid:00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/MQZlVjrgTlG9TYBtO-D_5AhvkSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/AG5kPQtn9LMz_qzcRhbU5PPeMs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.92.0/24
IPv6:
2a0c:f280:1::/48
Signature Algorithm: sha256WithRSAEncryption
70:82:82:07:85:f2:cc:0d:c1:5d:83:28:ab:81:2b:4d:94:65:
73:3f:3a:29:09:25:85:56:0c:6d:9d:df:55:e8:c0:a9:9e:34:
a1:3f:43:e1:32:b5:3a:c3:62:72:66:e7:67:1d:21:38:bf:c4:
35:55:ab:5c:ce:a7:36:62:f4:c0:06:8e:c3:7e:db:fc:b0:e3:
6e:e7:07:e3:d7:65:76:25:e7:ee:b1:13:3f:a9:70:93:ff:40:
cf:49:5d:e6:cc:4b:37:6a:76:47:70:c1:20:c6:02:e3:80:e0:
2c:e4:ef:95:ad:0d:02:31:15:8a:42:22:87:9a:e2:61:b6:8d:
53:42:7a:a2:51:48:02:c7:57:d6:4e:0c:08:37:d2:8c:5e:bf:
2d:5a:30:f4:4c:ea:6c:28:60:16:9f:3e:20:87:f4:4f:61:12:
b3:70:e9:38:5f:29:b2:f1:41:49:99:a6:06:8d:da:dc:47:4f:
3c:d2:f4:f4:32:aa:5b:bf:50:cb:a3:a7:a4:81:75:cb:7b:cf:
f5:ab:d2:ef:75:22:90:44:e8:31:0d:42:45:0e:bd:ac:f4:60:
da:70:37:03:6f:b2:7f:44:d9:5b:76:05:34:80:3e:0d:e3:12:
b3:43:4b:92:2d:91:94:4a:d0:d0:9c:2e:e3:fc:93:fc:62:77:
67:4b:8a:4a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEDPYkCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MDZlNjQzZDBiNjdmNGIzMzNmZWFjZGM0NjE2ZDRlNGYzZGUzMmNkMB4XDTIyMDUx
NzA2NTAyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzEwNjY1NTYzYWUw
NGU1MWJkNGQ4MDZkM2JlMGZmZTQwODZmOTEyNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL7uBVtotpzMGe24paD+RSoVlP/mge8PU3RXZi93qS2494ZL
630OJB78WwcV1lK4DIatKlq9/YHcOhCPpZeyeATodo68jiuPsho29FLOxzvOxzAc
zQaJ71n2yeb4j8HEIzmlC/LY5VtSDek4J9C5uEiv0I3CeHt4vJWTdI971Wzgv28+
1AZM2zTwLgXKNtr9XAeOzxJoeoJQ/V5rkUXwtxKJOL/I5yJSqGGaZs9hLFaDFWUq
BsCX8R0O0/y1A/z5RCD1goR2kEjus3ugnIBWeO/rY1tVozOmcjO1zaayvffLqEpG
B+3qoJ1MDZ8KFnmPKxxpEQEZeuaMWrK/3czbDOMCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQxBmVWOuBOUb1NgG074P/kCG+RJTAfBgNVHSMEGDAWgBQAbmQ9C2f0szP+
rNxGFtTk894yzTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FHNWtQUXRuOUxNel9xemNSaGJVNVBQZU1zMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvYjdhYTdiLTk3YzItNGJkOC04Y2FhLWRjY2UyOGU5MzQ2YS8x
L01RWmxWanJnVGxHOVRZQnRPLURfNUFodmtTVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
YjdhYTdiLTk3YzItNGJkOC04Y2FhLWRjY2UyOGU5MzQ2YS8xL0FHNWtQUXRuOUxN
el9xemNSaGJVNVBQZU1zMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALmZXDAPBAIAAjAJAwcAKgzygAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQBwgoIHhfLMDcFdgyirgStNlGVzPzopCSWFVgxt
nd9V6MCpnjShP0PhMrU6w2JyZudnHSE4v8Q1Vatczqc2YvTABo7Dftv8sONu5wfj
12V2JefusRM/qXCT/0DPSV3mzEs3anZHcMEgxgLjgOAs5O+VrQ0CMRWKQiKHmuJh
to1TQnqiUUgCx1fWTgwIN9KMXr8tWjD0TOpsKGAWnz4gh/RPYRKzcOk4Xymy8UFJ
maYGjdrcR0880vT0Mqpbv1DLo6ekgXXLe8/1q9LvdSKQROgxDUJFDr2s9GDacDcD
b7J/RNlbdgU0gD4N4xKzQ0uSLZGUStDQnC7j/JP8YndnS4pK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org