Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/efcf1d-319c-4519-aa11-b6d150c5ca5d/1/XUYeAVFYPwEEtfApwCH08OKCWMw.roa
File: XUYeAVFYPwEEtfApwCH08OKCWMw.roa (raw, json)
Hash identifier: zW2bKG8jRHxapoS8hesUv/QmwuWDeHGIuawMwXioN7Q=
Subject key identifier: 5D:46:1E:01:51:58:3F:01:04:B5:F0:29:C0:21:F4:F0:E2:82:58:CC
Certificate issuer: /CN=e32cbc07e38404e2343d851a88a7066a1bd7ecc3
Certificate serial: 1B4DDE3A
Authority key identifier: E3:2C:BC:07:E3:84:04:E2:34:3D:85:1A:88:A7:06:6A:1B:D7:EC:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4yy8B-OEBOI0PYUaiKcGahvX7MM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/efcf1d-319c-4519-aa11-b6d150c5ca5d/1/XUYeAVFYPwEEtfApwCH08OKCWMw.roa
Signing time: Tue 29 Mar 2022 07:53:05 +0000
ROA not before: Tue 29 Mar 2022 07:53:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62451
IP address blocks: 185.35.152.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458087994 (0x1b4dde3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e32cbc07e38404e2343d851a88a7066a1bd7ecc3
Validity
Not Before: Mar 29 07:53:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d461e0151583f0104b5f029c021f4f0e28258cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bd:04:c4:5a:23:0b:2b:f1:ef:6c:82:68:5d:
5c:57:e6:94:ac:79:f8:08:2c:cd:84:cc:02:86:8d:
f3:82:a5:b6:9a:fa:96:e1:b2:d3:d5:05:c0:83:e3:
56:dc:92:f6:99:d3:f2:02:ca:48:c4:12:2d:0d:49:
8f:41:2c:f5:96:42:27:5a:f7:77:d2:b9:1f:dd:66:
88:d2:a0:e6:40:8f:dd:af:c7:75:28:b0:82:51:3c:
c7:62:46:5a:0f:78:02:3a:03:82:34:88:ca:5d:1e:
d0:c1:5d:3b:a8:43:8b:e9:8c:f1:86:fe:e4:22:78:
5f:92:4d:a0:b4:4e:c0:58:bc:1a:9f:66:66:fb:72:
4c:37:77:b4:c8:ca:7b:24:64:bb:b3:76:6a:63:a7:
51:55:b6:68:6e:a6:35:45:6e:11:a6:e3:87:8f:b3:
a4:0e:97:2a:e8:21:a2:b2:60:f4:d1:56:b0:15:78:
de:91:2a:4f:08:49:fc:a9:2a:fd:84:d8:17:01:ad:
1f:8b:c2:7d:c9:3d:32:ed:1e:d1:42:c8:40:2d:ed:
22:f9:1e:18:f5:fa:c1:4f:b1:a4:6f:69:b1:ee:9e:
e5:5e:69:62:10:ae:94:41:89:23:41:86:d9:f5:7e:
6a:80:40:7b:ea:a3:ab:7b:1b:06:21:65:32:95:90:
b3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:46:1E:01:51:58:3F:01:04:B5:F0:29:C0:21:F4:F0:E2:82:58:CC
X509v3 Authority Key Identifier:
keyid:E3:2C:BC:07:E3:84:04:E2:34:3D:85:1A:88:A7:06:6A:1B:D7:EC:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4yy8B-OEBOI0PYUaiKcGahvX7MM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/efcf1d-319c-4519-aa11-b6d150c5ca5d/1/XUYeAVFYPwEEtfApwCH08OKCWMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/efcf1d-319c-4519-aa11-b6d150c5ca5d/1/4yy8B-OEBOI0PYUaiKcGahvX7MM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.152.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:1a:89:58:9b:af:bd:c1:f3:58:ad:56:24:d4:34:71:b6:7a:
28:5d:96:59:19:1c:82:97:f9:80:93:20:de:88:51:e6:32:b0:
1f:48:6b:85:76:9f:07:06:3e:2a:3f:fc:cc:cb:74:86:c4:d7:
99:b6:fb:da:64:a7:12:d8:15:72:59:92:0b:c3:91:9b:04:58:
3f:c8:d5:e4:7c:4d:d4:92:53:ab:67:ab:d9:6d:47:34:27:58:
b2:3f:0a:d4:ea:00:cd:38:27:67:ec:c3:2f:01:81:fc:df:e2:
4d:e7:29:0a:c0:88:f5:37:f2:0a:8e:73:d5:9e:cd:0f:0d:8f:
35:59:fc:d1:99:bc:d6:75:91:8d:57:25:8c:8c:9d:19:48:71:
97:ae:ee:90:55:a3:f9:4d:38:14:d0:b2:2f:d6:52:fa:00:04:
63:74:e7:00:04:aa:17:a2:f4:0f:f8:f1:f8:83:c6:31:f4:88:
7e:27:5b:b8:df:0f:b3:0e:8d:ea:cf:06:4e:95:20:91:08:4b:
f3:7b:a7:52:0a:9c:7b:3e:37:7a:f0:38:94:57:e3:08:68:4e:
f9:ce:ae:90:c2:a1:e9:8a:1e:9b:2e:5e:51:74:18:ca:33:86:
1e:c5:e0:10:1c:3c:a5:1b:3e:53:5a:b9:61:4f:a9:c3:05:ba:
7e:2b:9b:b1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEG03eOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MzJjYmMwN2UzODQwNGUyMzQzZDg1MWE4OGE3MDY2YTFiZDdlY2MzMB4XDTIyMDMy
OTA3NTMwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWQ0NjFlMDE1MTU4
M2YwMTA0YjVmMDI5YzAyMWY0ZjBlMjgyNThjYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALm9BMRaIwsr8e9sgmhdXFfmlKx5+AgszYTMAoaN84Kltpr6
luGy09UFwIPjVtyS9pnT8gLKSMQSLQ1Jj0Es9ZZCJ1r3d9K5H91miNKg5kCP3a/H
dSiwglE8x2JGWg94AjoDgjSIyl0e0MFdO6hDi+mM8Yb+5CJ4X5JNoLROwFi8Gp9m
ZvtyTDd3tMjKeyRku7N2amOnUVW2aG6mNUVuEabjh4+zpA6XKughorJg9NFWsBV4
3pEqTwhJ/Kkq/YTYFwGtH4vCfck9Mu0e0ULIQC3tIvkeGPX6wU+xpG9pse6e5V5p
YhCulEGJI0GG2fV+aoBAe+qjq3sbBiFlMpWQs+cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRdRh4BUVg/AQS18CnAIfTw4oJYzDAfBgNVHSMEGDAWgBTjLLwH44QE4jQ9
hRqIpwZqG9fswzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzR5eThCLU9FQk9JMFBZVWFpS2NHYWh2WDdNTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvZWZjZjFkLTMxOWMtNDUxOS1hYTExLWI2ZDE1MGM1Y2E1ZC8x
L1hVWWVBVkZZUHdFRXRmQXB3Q0gwOE9LQ1dNdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
ZWZjZjFkLTMxOWMtNDUxOS1hYTExLWI2ZDE1MGM1Y2E1ZC8xLzR5eThCLU9FQk9J
MFBZVWFpS2NHYWh2WDdNTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkjmDANBgkqhkiG9w0BAQsFAAOC
AQEATBqJWJuvvcHzWK1WJNQ0cbZ6KF2WWRkcgpf5gJMg3ohR5jKwH0hrhXafBwY+
Kj/8zMt0hsTXmbb72mSnEtgVclmSC8ORmwRYP8jV5HxN1JJTq2er2W1HNCdYsj8K
1OoAzTgnZ+zDLwGB/N/iTecpCsCI9TfyCo5z1Z7NDw2PNVn80Zm81nWRjVcljIyd
GUhxl67ukFWj+U04FNCyL9ZS+gAEY3TnAASqF6L0D/jx+IPGMfSIfidbuN8Psw6N
6s8GTpUgkQhL83unUgqcez43evA4lFfjCGhO+c6ukMKh6Yoemy5eUXQYyjOGHsXg
EBw8pRs+U1q5YU+pwwW6fiubsQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:05 2025 by rpki-client