Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/36c7b9-be29-46c7-834c-3d8f39022e44/1/tKGfme2L4ZEZsCgffCwS12kYkwY.roa
File: tKGfme2L4ZEZsCgffCwS12kYkwY.roa (raw, json)
Hash identifier: HZ2mXMqxzQH0rNOYAG50atcNrB76+SIwAaizVPxx5YQ=
Subject key identifier: B4:A1:9F:99:ED:8B:E1:91:19:B0:28:1F:7C:2C:12:D7:69:18:93:06
Certificate issuer: /CN=6b4b5e69148a3310c34871324bc56fe84b891dff
Certificate serial: 01884E57EC1CCF33C5A5BDBBB50DBB6C7449
Authority key identifier: 6B:4B:5E:69:14:8A:33:10:C3:48:71:32:4B:C5:6F:E8:4B:89:1D:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0teaRSKMxDDSHEyS8Vv6EuJHf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/36c7b9-be29-46c7-834c-3d8f39022e44/1/tKGfme2L4ZEZsCgffCwS12kYkwY.roa
Signing time: Wed 24 May 2023 15:19:24 +0000
ROA not before: Wed 24 May 2023 15:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209638
IP address blocks: 212.23.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4e:57:ec:1c:cf:33:c5:a5:bd:bb:b5:0d:bb:6c:74:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b4b5e69148a3310c34871324bc56fe84b891dff
Validity
Not Before: May 24 15:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4a19f99ed8be19119b0281f7c2c12d769189306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0d:ac:72:76:51:cb:66:09:5f:45:7f:aa:63:
e2:8b:50:b1:48:41:b3:a5:6a:18:8d:83:fa:a8:66:
01:80:26:30:1e:87:e1:51:92:69:1b:38:86:84:17:
0e:11:e7:37:70:be:0c:1a:c9:4d:ed:3e:d5:7f:e0:
3b:82:ff:25:97:74:a2:40:12:e8:67:8a:e3:3e:2f:
e6:2c:e8:b9:95:9b:a4:62:13:4b:ad:fb:c0:3a:6e:
62:8b:24:3e:0b:a9:cf:96:a5:91:17:01:8c:d2:56:
be:26:2f:f3:2a:ef:3a:64:5d:29:09:da:7f:38:ca:
17:68:63:26:39:79:c8:da:dc:cb:0d:68:7f:bd:dc:
da:eb:5a:56:12:39:f7:75:c8:b8:12:d7:05:d0:0e:
f9:33:34:7e:a2:45:09:f8:7c:b1:46:79:0a:8c:37:
7a:0d:0f:c0:18:26:23:97:83:38:db:d7:f6:b3:4a:
48:47:35:af:6b:d6:de:d3:07:6c:97:38:e8:02:b5:
8a:56:0d:73:b6:6b:3a:35:b0:2e:7a:2a:84:21:1d:
63:52:b8:ff:8a:85:fb:c7:fb:83:4f:47:e1:8b:b0:
96:e0:55:e1:c6:c9:0f:49:3f:36:80:05:dd:d6:e2:
75:27:c4:96:29:cf:75:d3:72:05:d9:13:ba:77:90:
0e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A1:9F:99:ED:8B:E1:91:19:B0:28:1F:7C:2C:12:D7:69:18:93:06
X509v3 Authority Key Identifier:
keyid:6B:4B:5E:69:14:8A:33:10:C3:48:71:32:4B:C5:6F:E8:4B:89:1D:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0teaRSKMxDDSHEyS8Vv6EuJHf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/36c7b9-be29-46c7-834c-3d8f39022e44/1/tKGfme2L4ZEZsCgffCwS12kYkwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/36c7b9-be29-46c7-834c-3d8f39022e44/1/a0teaRSKMxDDSHEyS8Vv6EuJHf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.214.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ce:80:f9:95:d4:be:15:48:a5:4a:5f:1a:f4:0d:35:fb:59:
ec:ba:3f:33:0b:7f:94:64:1a:a8:6a:b8:ee:cf:6a:a8:b6:6c:
5e:41:dd:12:85:8f:b2:36:ae:5f:d0:a5:81:6f:2d:e6:c0:47:
cc:a0:20:ad:fe:2d:1c:d6:72:b2:8d:fd:dc:04:b9:61:6e:a2:
89:fe:c2:9a:30:c5:86:c9:ac:2b:e9:0f:6f:01:e5:d1:40:48:
32:31:5b:52:5c:ac:26:b8:a5:f4:d1:16:62:53:71:80:d3:08:
90:06:02:71:ce:a0:28:29:85:4a:e6:12:84:e2:4b:17:6c:c3:
44:e6:96:81:e7:af:cb:68:e7:5f:8d:61:f5:86:60:e9:78:20:
7c:08:cd:11:b5:a2:5b:ba:e1:80:89:50:f5:17:88:13:5b:a5:
9f:62:7e:e8:01:fb:20:d7:97:5b:ef:40:9e:ca:18:1e:81:bc:
2f:1b:60:a3:57:3d:06:df:36:f5:1d:47:6b:81:17:71:d8:da:
90:af:68:b5:be:d7:3a:27:9d:21:37:c0:7d:62:0a:01:81:c7:
ab:80:ea:eb:1a:01:04:7a:02:73:79:d6:c4:71:a1:b2:5e:06:
01:4a:ba:d4:82:00:05:20:51:73:ee:ce:d8:a1:8b:54:15:b7:
0f:1d:e6:6d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhOV+wczzPFpb27tQ27bHRJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNGI1ZTY5MTQ4YTMzMTBjMzQ4NzEzMjRiYzU2ZmU4NGI4
OTFkZmYwHhcNMjMwNTI0MTUxOTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGExOWY5OWVkOGJlMTkxMTliMDI4MWY3YzJjMTJkNzY5MTg5MzA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxA2scnZRy2YJX0V/qmPii1CxSEGz
pWoYjYP6qGYBgCYwHofhUZJpGziGhBcOEec3cL4MGslN7T7Vf+A7gv8ll3SiQBLo
Z4rjPi/mLOi5lZukYhNLrfvAOm5iiyQ+C6nPlqWRFwGM0la+Ji/zKu86ZF0pCdp/
OMoXaGMmOXnI2tzLDWh/vdza61pWEjn3dci4EtcF0A75MzR+okUJ+HyxRnkKjDd6
DQ/AGCYjl4M429f2s0pIRzWva9be0wdslzjoArWKVg1ztms6NbAueiqEIR1jUrj/
ioX7x/uDT0fhi7CW4FXhxskPST82gAXd1uJ1J8SWKc9103IF2RO6d5AOeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLShn5nti+GRGbAoH3wsEtdpGJMGMB8GA1UdIwQY
MBaAFGtLXmkUijMQw0hxMkvFb+hLiR3/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTB0ZWFSU0tNeEREU0hFeVM4VnY2RXVKSGY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8zNmM3YjktYmUyOS00NmM3LTgzNGMt
M2Q4ZjM5MDIyZTQ0LzEvdEtHZm1lMkw0WkVac0NnZmZDd1MxMmtZa3dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy8zNmM3YjktYmUyOS00NmM3LTgzNGMtM2Q4ZjM5MDIyZTQ0
LzEvYTB0ZWFSU0tNeEREU0hFeVM4VnY2RXVKSGY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfWMA0G
CSqGSIb3DQEBCwUAA4IBAQBEzoD5ldS+FUilSl8a9A01+1nsuj8zC3+UZBqoarju
z2qotmxeQd0ShY+yNq5f0KWBby3mwEfMoCCt/i0c1nKyjf3cBLlhbqKJ/sKaMMWG
yawr6Q9vAeXRQEgyMVtSXKwmuKX00RZiU3GA0wiQBgJxzqAoKYVK5hKE4ksXbMNE
5paB56/LaOdfjWH1hmDpeCB8CM0RtaJbuuGAiVD1F4gTW6WfYn7oAfsg15db70Ce
yhgegbwvG2CjVz0G3zb1HUdrgRdx2NqQr2i1vtc6J50hN8B9YgoBgcergOrrGgEE
egJzedbEcaGyXgYBSrrUggAFIFFz7s7YoYtUFbcPHeZt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:53 2024 by rpki-client on console-fra.rpki-client.org