Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/bM0BWly4Qp7uRMMmdNyRUpjDdPk.roa
File: bM0BWly4Qp7uRMMmdNyRUpjDdPk.roa (raw, json)
Hash identifier: o9lLAcLqHAZBVtXNYG+wuG6CWMvrbXmZhO7TZRemQng=
Subject key identifier: 6C:CD:01:5A:5C:B8:42:9E:EE:44:C3:26:74:DC:91:52:98:C3:74:F9
Certificate issuer: /CN=45dab507c08976cc29d177373de627a1ce86efae
Certificate serial: 01856F022010FFB6D800E24B21540DF78CD5
Authority key identifier: 45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/bM0BWly4Qp7uRMMmdNyRUpjDdPk.roa
Signing time: Sun 01 Jan 2023 20:24:48 +0000
ROA not before: Sun 01 Jan 2023 20:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 194.32.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:20:10:ff:b6:d8:00:e2:4b:21:54:0d:f7:8c:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45dab507c08976cc29d177373de627a1ce86efae
Validity
Not Before: Jan 1 20:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ccd015a5cb8429eee44c32674dc915298c374f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3f:81:fb:ff:00:73:17:0d:d0:86:cd:bd:34:
eb:32:16:a4:12:89:3f:aa:4e:70:8a:44:63:80:69:
17:ab:c5:40:3d:52:9a:52:04:f1:21:b6:90:eb:37:
21:88:02:04:cb:6f:9e:7c:53:d0:d6:af:b4:55:d0:
f9:5e:bf:f2:d0:82:b4:cd:e8:25:74:3c:69:60:b0:
ba:22:06:3b:b2:b6:66:a7:38:d1:5a:3a:d5:36:72:
d5:58:7b:b7:d9:7d:f1:58:90:24:2d:0f:2c:af:de:
03:bd:42:1a:82:0e:dc:31:44:ac:39:fe:85:9f:dd:
cb:82:14:5c:2e:26:eb:83:74:30:be:7a:f9:32:fe:
be:f7:3a:8b:37:c1:07:88:e3:46:00:2c:1c:ff:ec:
3c:97:f6:ef:d3:44:10:9f:c9:03:83:53:e0:ab:f1:
4c:68:e2:7e:f3:a3:49:33:b9:7c:2a:32:81:5f:33:
29:25:9d:25:68:41:01:6c:8b:1c:e4:aa:8b:dd:33:
43:1f:31:9d:2d:26:f1:d2:43:60:33:01:cd:c8:4f:
b4:0f:31:ba:93:47:18:39:ba:4c:dd:d3:8b:54:66:
bf:06:f2:4b:8f:50:80:7d:8b:96:7c:d3:90:a5:6d:
71:59:0f:9d:a5:ac:94:e9:8f:df:4b:6a:5e:97:8a:
72:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:CD:01:5A:5C:B8:42:9E:EE:44:C3:26:74:DC:91:52:98:C3:74:F9
X509v3 Authority Key Identifier:
keyid:45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/bM0BWly4Qp7uRMMmdNyRUpjDdPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.71.0/24
Signature Algorithm: sha256WithRSAEncryption
20:50:4b:14:b6:5f:d9:17:ab:71:3b:a9:c1:c0:2c:e4:60:0b:
b0:bc:8b:28:bd:bb:b9:43:d7:cf:34:35:71:fe:2a:04:5d:fe:
4d:f0:6d:a1:3a:77:f0:d1:26:da:3a:64:50:03:d3:1b:aa:e6:
0f:ce:67:4b:7b:de:11:af:32:42:c4:ec:59:54:62:78:fa:df:
ab:c8:6e:68:0a:18:f1:32:61:12:8e:8a:92:67:ab:2c:cd:b3:
45:ea:da:c8:24:88:16:22:78:cd:88:34:45:0c:ba:7e:d0:cd:
81:ce:44:0e:7b:10:75:1b:22:18:0e:06:21:df:89:86:16:f1:
38:ce:bf:c3:26:c5:36:57:37:d0:b2:74:d5:78:94:68:74:6c:
dc:68:fe:ec:c9:e5:30:3f:b9:ea:6f:b1:40:41:ea:16:4c:49:
2f:65:28:70:0d:4c:34:33:f5:f3:3c:51:bc:b8:bc:a4:d1:e9:
a0:e0:00:4d:48:e5:ae:e3:8a:cf:24:39:c3:94:51:54:1d:43:
30:23:03:86:82:77:09:73:05:75:f5:9d:ce:01:2f:a2:91:57:
f9:08:f9:22:fa:66:13:93:b4:f9:da:b5:47:dc:56:b0:79:93:
31:2c:10:d9:7e:6e:f9:4e:d0:a0:ae:3f:be:43:a2:54:f4:7f:
c3:a9:ba:90
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvAiAQ/7bYAOJLIVQN94zVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1ZGFiNTA3YzA4OTc2Y2MyOWQxNzczNzNkZTYyN2ExY2U4
NmVmYWUwHhcNMjMwMTAxMjAyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2NkMDE1YTVjYjg0MjllZWU0NGMzMjY3NGRjOTE1Mjk4YzM3NGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1D+B+/8AcxcN0IbNvTTrMhakEok/
qk5wikRjgGkXq8VAPVKaUgTxIbaQ6zchiAIEy2+efFPQ1q+0VdD5Xr/y0IK0zegl
dDxpYLC6IgY7srZmpzjRWjrVNnLVWHu32X3xWJAkLQ8sr94DvUIagg7cMUSsOf6F
n93LghRcLibrg3Qwvnr5Mv6+9zqLN8EHiONGACwc/+w8l/bv00QQn8kDg1Pgq/FM
aOJ+86NJM7l8KjKBXzMpJZ0laEEBbIsc5KqL3TNDHzGdLSbx0kNgMwHNyE+0DzG6
k0cYObpM3dOLVGa/BvJLj1CAfYuWfNOQpW1xWQ+dpayU6Y/fS2pel4py5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGzNAVpcuEKe7kTDJnTckVKYw3T5MB8GA1UdIwQY
MBaAFEXatQfAiXbMKdF3Nz3mJ6HOhu+uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmRxMUI4Q0pkc3dwMFhjM1BlWW5vYzZHNzY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC85YWE1MDAtZjNiZC00NzdiLTkwODIt
YWEwYjExNTY0YTMyLzEvYk0wQldseTRRcDd1Uk1NbWROeVJVcGpEZFBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC85YWE1MDAtZjNiZC00NzdiLTkwODItYWEwYjExNTY0YTMy
LzEvUmRxMUI4Q0pkc3dwMFhjM1BlWW5vYzZHNzY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiBHMA0G
CSqGSIb3DQEBCwUAA4IBAQAgUEsUtl/ZF6txO6nBwCzkYAuwvIsovbu5Q9fPNDVx
/ioEXf5N8G2hOnfw0SbaOmRQA9MbquYPzmdLe94RrzJCxOxZVGJ4+t+ryG5oChjx
MmESjoqSZ6sszbNF6trIJIgWInjNiDRFDLp+0M2BzkQOexB1GyIYDgYh34mGFvE4
zr/DJsU2VzfQsnTVeJRodGzcaP7syeUwP7nqb7FAQeoWTEkvZShwDUw0M/XzPFG8
uLyk0emg4ABNSOWu44rPJDnDlFFUHUMwIwOGgncJcwV19Z3OAS+ikVf5CPki+mYT
k7T52rVH3FaweZMxLBDZfm75TtCgrj++Q6JU9H/DqbqQ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:13 2023 by rpki-client on console-fra.rpki-client.org