Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/hksbm-0TK2b3rV6ojjej3Eu0ozs.roa
File: hksbm-0TK2b3rV6ojjej3Eu0ozs.roa (raw, json)
Hash identifier: S8aKb0VSEwaYdj1ybpuUzDToiL+RRpWohAWLJESlXoI=
Subject key identifier: 86:4B:1B:9B:ED:13:2B:66:F7:AD:5E:A8:8E:37:A3:DC:4B:B4:A3:3B
Certificate issuer: /CN=45dab507c08976cc29d177373de627a1ce86efae
Certificate serial: 0DA10321
Authority key identifier: 45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/hksbm-0TK2b3rV6ojjej3Eu0ozs.roa
Signing time: Sat 01 Jan 2022 08:59:28 +0000
ROA not before: Sat 01 Jan 2022 08:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 194.32.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228655905 (0xda10321)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45dab507c08976cc29d177373de627a1ce86efae
Validity
Not Before: Jan 1 08:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=864b1b9bed132b66f7ad5ea88e37a3dc4bb4a33b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b7:ab:61:fa:db:79:11:2e:df:e9:a0:57:b6:
62:e2:40:69:fa:a8:54:5c:b4:db:52:31:fa:3d:58:
f2:15:81:12:1c:0b:07:71:b7:28:8c:7b:fa:e4:a0:
aa:88:f4:9b:a1:ee:b8:67:0e:c0:73:34:88:50:87:
2a:08:f7:f0:f8:8f:58:58:5d:b8:15:56:ba:34:d4:
a5:57:ab:39:82:f0:b7:99:95:d1:74:e4:bb:f5:38:
de:1e:74:03:b0:ae:ef:3b:3b:15:37:5d:53:c1:3a:
98:db:43:7d:7b:c5:26:87:4c:41:95:be:ec:62:39:
c9:b3:f7:be:6c:0f:95:31:9e:a3:cc:07:bf:e7:94:
cd:3d:01:b0:4a:f8:a1:40:cb:09:53:1c:45:ad:13:
74:7a:ca:74:20:4d:65:9c:92:ff:5e:8b:6b:fb:36:
59:3a:24:be:5c:ad:ff:58:0e:a8:fe:dd:b8:0e:32:
ee:89:68:49:aa:e4:b8:27:f1:dc:22:67:0e:19:6d:
b3:68:6f:f8:fd:6d:80:36:8d:45:69:0b:19:11:8d:
8d:02:f9:d5:27:60:ad:0f:00:06:4e:b4:f1:c8:91:
c0:36:a2:74:5c:2e:3b:8e:ce:ac:51:7d:59:0a:75:
67:91:76:a1:77:98:89:53:9f:8b:6d:20:07:93:e9:
c0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:4B:1B:9B:ED:13:2B:66:F7:AD:5E:A8:8E:37:A3:DC:4B:B4:A3:3B
X509v3 Authority Key Identifier:
keyid:45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/hksbm-0TK2b3rV6ojjej3Eu0ozs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.71.0/24
Signature Algorithm: sha256WithRSAEncryption
20:84:c6:63:77:86:ef:27:28:88:39:fe:29:d2:8e:29:d4:47:
3a:b8:d3:31:46:b4:12:e9:9e:82:92:1d:f0:17:83:ae:54:a4:
9a:e6:b7:e3:5a:75:af:18:52:4d:db:0a:af:19:61:cf:40:b1:
54:e0:84:75:4d:26:05:77:bd:62:6a:da:21:8a:77:fc:7e:2c:
01:6f:ab:e7:5d:81:1d:a2:0d:bc:a2:07:d4:16:91:f5:bf:92:
4b:9c:6f:6a:3a:38:db:03:11:5f:08:0f:e9:e1:f4:84:66:c0:
c5:68:c1:42:a9:21:b7:5a:74:e8:aa:d5:ca:84:1a:01:df:e8:
ea:1b:81:84:a3:57:7e:d4:df:b2:89:7a:a9:c2:b8:96:12:6f:
56:82:13:71:0d:6a:32:12:c3:62:b6:cf:5f:51:70:a6:20:a5:
98:4d:7b:df:bc:cc:31:be:f7:1a:04:a2:a3:9f:8c:ae:f7:7e:
e6:f2:55:15:8d:e0:bf:09:b3:a3:74:26:aa:06:90:77:8d:0f:
75:8f:85:dc:e0:44:64:c3:a9:f0:5f:08:a2:da:9e:37:6e:d7:
87:2a:b7:01:52:46:fe:fb:61:d5:13:66:06:ee:aa:f5:39:bb:
16:3d:36:ac:b6:be:c5:80:e1:52:4b:93:2d:3a:97:f4:b4:af:
98:c4:ee:5f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDaEDITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NWRhYjUwN2MwODk3NmNjMjlkMTc3MzczZGU2MjdhMWNlODZlZmFlMB4XDTIyMDEw
MTA4NTkyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODY0YjFiOWJlZDEz
MmI2NmY3YWQ1ZWE4OGUzN2EzZGM0YmI0YTMzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM63q2H623kRLt/poFe2YuJAafqoVFy021Ix+j1Y8hWBEhwL
B3G3KIx7+uSgqoj0m6HuuGcOwHM0iFCHKgj38PiPWFhduBVWujTUpVerOYLwt5mV
0XTku/U43h50A7Cu7zs7FTddU8E6mNtDfXvFJodMQZW+7GI5ybP3vmwPlTGeo8wH
v+eUzT0BsEr4oUDLCVMcRa0TdHrKdCBNZZyS/16La/s2WTokvlyt/1gOqP7duA4y
7oloSarkuCfx3CJnDhlts2hv+P1tgDaNRWkLGRGNjQL51SdgrQ8ABk608ciRwDai
dFwuO47OrFF9WQp1Z5F2oXeYiVOfi20gB5PpwCkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSGSxub7RMrZvetXqiON6PcS7SjOzAfBgNVHSMEGDAWgBRF2rUHwIl2zCnR
dzc95iehzobvrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JkcTFCOENKZHN3cDBYYzNQZVlub2M2Rzc2NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvOWFhNTAwLWYzYmQtNDc3Yi05MDgyLWFhMGIxMTU2NGEzMi8x
L2hrc2JtLTBUSzJiM3JWNm9qamVqM0V1MG96cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
OWFhNTAwLWYzYmQtNDc3Yi05MDgyLWFhMGIxMTU2NGEzMi8xL1JkcTFCOENKZHN3
cDBYYzNQZVlub2M2Rzc2NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIgRzANBgkqhkiG9w0BAQsFAAOC
AQEAIITGY3eG7ycoiDn+KdKOKdRHOrjTMUa0EumegpId8BeDrlSkmua341p1rxhS
TdsKrxlhz0CxVOCEdU0mBXe9YmraIYp3/H4sAW+r512BHaINvKIH1BaR9b+SS5xv
ajo42wMRXwgP6eH0hGbAxWjBQqkht1p06KrVyoQaAd/o6huBhKNXftTfsol6qcK4
lhJvVoITcQ1qMhLDYrbPX1FwpiClmE1737zMMb73GgSio5+Mrvd+5vJVFY3gvwmz
o3QmqgaQd40PdY+F3OBEZMOp8F8IotqeN27Xhyq3AVJG/vth1RNmBu6q9Tm7Fj02
rLa+xYDhUkuTLTqX9LSvmMTuXw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:05 2023 by rpki-client on console-ams.rpki-client.org