Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/1mhX2ViL-qjRm-6RTnLET_o9oqY.roa
File: 1mhX2ViL-qjRm-6RTnLET_o9oqY.roa (raw, json)
Hash identifier: uGoITUVqMKLt2QB2ZMQgsk6GkMYkw7b5wzabyJrbf0E=
Subject key identifier: D6:68:57:D9:58:8B:FA:A8:D1:9B:EE:91:4E:72:C4:4F:FA:3D:A2:A6
Certificate issuer: /CN=4e259d806139f953e47c350904aaceec6cc39a1f
Certificate serial: 01079502
Authority key identifier: 4E:25:9D:80:61:39:F9:53:E4:7C:35:09:04:AA:CE:EC:6C:C3:9A:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TiWdgGE5-VPkfDUJBKrO7GzDmh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/1mhX2ViL-qjRm-6RTnLET_o9oqY.roa
Signing time: Sat 01 Jan 2022 03:56:27 +0000
ROA not before: Sat 01 Jan 2022 03:56:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 178.255.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17274114 (0x1079502)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e259d806139f953e47c350904aaceec6cc39a1f
Validity
Not Before: Jan 1 03:56:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d66857d9588bfaa8d19bee914e72c44ffa3da2a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:56:e7:ec:d5:2f:21:0b:4c:c9:01:0e:bd:1b:
b5:20:d2:36:8a:ab:e6:1d:4c:6a:5a:e0:63:f0:8d:
fc:22:53:8e:f9:37:af:1a:d9:22:c3:b6:c5:0c:ca:
fa:88:d2:70:6d:44:c1:f2:ba:c3:6b:46:4d:a5:f4:
8c:00:11:88:1f:10:02:58:16:13:09:b5:b9:1d:5b:
98:e2:28:96:50:c8:b9:d6:e8:73:24:2e:b0:ad:8f:
a2:8d:61:0c:5c:4d:ab:0a:15:fe:b0:a7:44:70:54:
30:2d:d9:f6:4f:6c:8d:91:a8:dc:c3:4d:2a:9c:db:
7d:ce:f6:74:f0:17:d8:af:76:84:49:95:0a:ec:d2:
78:a8:e1:8c:0e:14:70:17:1a:79:52:20:3a:26:66:
f6:1c:ef:14:59:34:dd:16:62:0d:21:34:b2:32:42:
94:dd:12:82:dd:93:53:f5:67:96:30:0b:f0:76:ce:
74:df:88:b0:16:1b:d8:69:7b:9d:20:dc:0f:09:b4:
c5:b9:49:14:ea:ca:4b:c9:c1:ec:f7:a5:16:cb:4c:
fe:94:95:2e:3a:b3:7a:9f:b7:18:8a:94:55:85:64:
e6:04:cf:65:1a:e9:d3:7e:bc:af:45:4d:67:1b:73:
f3:7a:0a:ef:c2:77:95:0e:90:00:e5:56:54:02:8e:
5a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:68:57:D9:58:8B:FA:A8:D1:9B:EE:91:4E:72:C4:4F:FA:3D:A2:A6
X509v3 Authority Key Identifier:
keyid:4E:25:9D:80:61:39:F9:53:E4:7C:35:09:04:AA:CE:EC:6C:C3:9A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TiWdgGE5-VPkfDUJBKrO7GzDmh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/1mhX2ViL-qjRm-6RTnLET_o9oqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/TiWdgGE5-VPkfDUJBKrO7GzDmh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.221.0/24
Signature Algorithm: sha256WithRSAEncryption
39:1c:67:1d:b8:8e:d8:0e:86:60:6b:54:40:cf:8f:29:31:a0:
71:de:89:da:b4:1f:8a:fb:fd:02:b8:27:87:1d:cb:88:c7:e2:
50:68:f7:02:ab:06:20:2a:bc:e7:7c:0a:5a:0d:0e:bc:8d:e7:
29:d9:30:4f:60:a3:a9:98:25:f6:87:a1:03:c7:ef:fc:6f:38:
13:9b:d2:b1:94:98:4f:8e:be:f8:c5:97:42:49:d4:57:f3:fc:
e1:dd:65:f1:02:2b:30:b2:3f:67:12:32:2b:bf:3c:40:54:3e:
2e:71:8f:dc:92:c2:f7:25:e2:35:d8:27:d1:ea:24:5c:20:54:
e9:52:a0:d3:97:67:2f:9d:80:b0:78:e0:b7:c3:df:56:c5:c8:
2e:1f:c7:ed:ea:28:78:3d:d7:b5:70:a2:fd:1e:75:d4:29:37:
55:75:06:bc:ff:d6:d2:7d:7b:07:5d:b8:51:10:bd:a2:71:90:
3f:8b:f2:5b:d9:6c:ba:c3:19:8c:30:66:03:13:d8:da:40:2f:
c8:87:cd:2c:8b:57:31:6c:73:be:f8:85:1d:04:75:2b:a6:49:
f7:66:5b:da:69:9a:c1:cc:f3:62:64:98:98:87:be:73:96:d8:
5e:b0:c0:c9:a0:da:09:16:60:1e:72:18:32:dd:ae:60:ff:da:
5a:3c:46:a4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAQeVAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZTI1OWQ4MDYxMzlmOTUzZTQ3YzM1MDkwNGFhY2VlYzZjYzM5YTFmMB4XDTIyMDEw
MTAzNTYyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDY2ODU3ZDk1ODhi
ZmFhOGQxOWJlZTkxNGU3MmM0NGZmYTNkYTJhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVW5+zVLyELTMkBDr0btSDSNoqr5h1MalrgY/CN/CJTjvk3
rxrZIsO2xQzK+ojScG1EwfK6w2tGTaX0jAARiB8QAlgWEwm1uR1bmOIollDIudbo
cyQusK2Poo1hDFxNqwoV/rCnRHBUMC3Z9k9sjZGo3MNNKpzbfc72dPAX2K92hEmV
CuzSeKjhjA4UcBcaeVIgOiZm9hzvFFk03RZiDSE0sjJClN0Sgt2TU/VnljAL8HbO
dN+IsBYb2Gl7nSDcDwm0xblJFOrKS8nB7PelFstM/pSVLjqzep+3GIqUVYVk5gTP
ZRrp0368r0VNZxtz83oK78J3lQ6QAOVWVAKOWkkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTWaFfZWIv6qNGb7pFOcsRP+j2ipjAfBgNVHSMEGDAWgBROJZ2AYTn5U+R8
NQkEqs7sbMOaHzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RpV2RnR0U1LVZQa2ZEVUpCS3JPN0d6RG1oOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDcvNzFjNWZkLWUzNmYtNDJmNi05MjZiLTU4YTI0NTdjNmZkNS8x
LzFtaFgyVmlMLXFqUm0tNlJUbkxFVF9vOW9xWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcv
NzFjNWZkLWUzNmYtNDJmNi05MjZiLTU4YTI0NTdjNmZkNS8xL1RpV2RnR0U1LVZQ
a2ZEVUpCS3JPN0d6RG1oOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALL/3TANBgkqhkiG9w0BAQsFAAOC
AQEAORxnHbiO2A6GYGtUQM+PKTGgcd6J2rQfivv9Argnhx3LiMfiUGj3AqsGICq8
53wKWg0OvI3nKdkwT2CjqZgl9oehA8fv/G84E5vSsZSYT46++MWXQknUV/P84d1l
8QIrMLI/ZxIyK788QFQ+LnGP3JLC9yXiNdgn0eokXCBU6VKg05dnL52AsHjgt8Pf
VsXILh/H7eooeD3XtXCi/R511Ck3VXUGvP/W0n17B124URC9onGQP4vyW9lsusMZ
jDBmAxPY2kAvyIfNLItXMWxzvviFHQR1K6ZJ92Zb2mmawczzYmSYmIe+c5bYXrDA
yaDaCRZgHnIYMt2uYP/aWjxGpA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:50 2024 by rpki-client on console-fra.rpki-client.org