Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/ShI3FN7z_1ie6VoEMQuztKDp7S0.roa
File: ShI3FN7z_1ie6VoEMQuztKDp7S0.roa (raw, json)
Hash identifier: UlA9J9ZksmzB7YmkIiPX00OZFrmQsLGYFInLn9fUm7E=
Subject key identifier: 4A:12:37:14:DE:F3:FF:58:9E:E9:5A:04:31:0B:B3:B4:A0:E9:ED:2D
Certificate issuer: /CN=dbcac48fdc9543c40704165ae85949431ec3b6e3
Certificate serial: 01856B6EB2A98EA56CF1CBB5161B245FE82E
Authority key identifier: DB:CA:C4:8F:DC:95:43:C4:07:04:16:5A:E8:59:49:43:1E:C3:B6:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28rEj9yVQ8QHBBZa6FlJQx7DtuM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/ShI3FN7z_1ie6VoEMQuztKDp7S0.roa
Signing time: Sun 01 Jan 2023 03:44:54 +0000
ROA not before: Sun 01 Jan 2023 03:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48722
IP address blocks: 185.140.132.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:6e:b2:a9:8e:a5:6c:f1:cb:b5:16:1b:24:5f:e8:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcac48fdc9543c40704165ae85949431ec3b6e3
Validity
Not Before: Jan 1 03:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a123714def3ff589ee95a04310bb3b4a0e9ed2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ca:ac:15:d0:22:49:5e:de:6a:60:d4:0b:4c:
b0:47:0b:36:15:65:e5:af:7d:b0:56:32:54:32:03:
4d:fe:e7:38:c5:37:03:bb:28:9a:e4:fe:3d:13:50:
49:25:e6:37:47:cd:32:9a:dc:c1:2b:dd:db:75:a4:
25:e5:fd:f2:74:88:ef:56:c7:ac:1a:43:ac:05:73:
70:23:55:6c:e0:86:b0:9b:a2:40:9b:fa:09:ee:f8:
3e:2f:33:7f:20:d9:c0:35:e2:52:fd:80:c7:39:35:
01:f7:39:68:5d:de:b0:a2:ab:92:31:76:2b:10:b1:
23:1f:88:98:a5:b3:cb:3b:bd:1a:ac:4d:4a:f0:f6:
33:9a:9f:2c:47:ee:8a:4f:d2:4d:49:c3:d9:cf:97:
48:3e:e1:38:9b:22:14:b7:02:b6:ea:60:2a:8d:76:
84:87:b1:a0:21:fc:3a:4c:c5:2a:ae:eb:0b:96:c3:
9c:0d:e6:bc:a1:39:2b:0a:90:c8:b3:06:a4:f7:52:
81:2e:e6:be:64:89:1e:dd:f4:1b:11:ed:4f:c2:b4:
7e:9e:7c:36:32:b3:09:61:9e:5a:ed:0b:c0:a3:84:
29:eb:ec:59:6f:0e:36:78:e6:78:8a:6f:23:2e:5a:
1c:dc:33:c5:98:04:56:51:bd:26:7f:b8:e7:2a:b5:
42:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:12:37:14:DE:F3:FF:58:9E:E9:5A:04:31:0B:B3:B4:A0:E9:ED:2D
X509v3 Authority Key Identifier:
keyid:DB:CA:C4:8F:DC:95:43:C4:07:04:16:5A:E8:59:49:43:1E:C3:B6:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28rEj9yVQ8QHBBZa6FlJQx7DtuM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/ShI3FN7z_1ie6VoEMQuztKDp7S0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/28rEj9yVQ8QHBBZa6FlJQx7DtuM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.132.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:6a:50:12:3b:7f:f9:6b:90:c5:df:6f:b5:95:a2:70:4d:a2:
ba:29:f0:d2:42:0d:8d:b3:fa:c8:58:d7:8c:54:9a:41:0c:ae:
47:57:09:28:08:f2:fc:d7:21:65:91:6b:fe:21:32:fd:27:e3:
a1:c5:53:57:55:76:34:19:d2:0a:42:86:5a:2c:49:a5:67:ac:
19:81:a7:af:1b:b6:a9:1c:5f:d3:6c:4b:6f:9a:e7:11:d2:89:
77:a9:5f:7f:c1:1b:f5:d0:a7:24:cd:39:c0:c3:be:28:ca:6b:
f2:73:1f:9d:24:e4:35:ae:ff:fe:e7:bc:5c:91:54:d3:a1:62:
06:aa:c9:65:dd:ca:50:6c:26:fd:f3:c5:ea:67:85:41:51:f9:
42:d9:93:27:cd:20:63:7f:a5:46:56:5f:a2:d6:86:a5:42:d1:
e9:d0:fb:28:6e:36:9e:dd:db:da:8e:08:08:17:78:68:15:05:
cd:2f:85:d9:b2:dd:2c:b6:d6:82:5c:89:fb:ef:e3:4c:1c:e9:
c5:1b:af:e6:27:4a:e8:7b:8a:19:ea:b5:b4:ce:60:cf:4c:e9:
ea:7a:49:1e:b4:a9:2f:b9:c1:bb:26:9b:ba:89:55:0e:cc:1c:
bd:8d:67:21:70:c1:1c:04:c6:87:36:77:b8:f2:e7:6a:a9:f5:
55:65:75:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrbrKpjqVs8cu1FhskX+guMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiY2FjNDhmZGM5NTQzYzQwNzA0MTY1YWU4NTk0OTQzMWVj
M2I2ZTMwHhcNMjMwMTAxMDM0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTEyMzcxNGRlZjNmZjU4OWVlOTVhMDQzMTBiYjNiNGEwZTllZDJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMqsFdAiSV7eamDUC0ywRws2FWXl
r32wVjJUMgNN/uc4xTcDuyia5P49E1BJJeY3R80ymtzBK93bdaQl5f3ydIjvVses
GkOsBXNwI1Vs4Iawm6JAm/oJ7vg+LzN/INnANeJS/YDHOTUB9zloXd6woquSMXYr
ELEjH4iYpbPLO70arE1K8PYzmp8sR+6KT9JNScPZz5dIPuE4myIUtwK26mAqjXaE
h7GgIfw6TMUqrusLlsOcDea8oTkrCpDIswak91KBLua+ZIke3fQbEe1PwrR+nnw2
MrMJYZ5a7QvAo4Qp6+xZbw42eOZ4im8jLloc3DPFmARWUb0mf7jnKrVCqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEoSNxTe8/9YnulaBDELs7Sg6e0tMB8GA1UdIwQY
MBaAFNvKxI/clUPEBwQWWuhZSUMew7bjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjhyRWo5eVZROFFIQkJaYTZGbEpReDdEdHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9mNjAyZjItZDRhYS00Y2JiLTk5ZjMt
MjJhNTRkMWZlMDY5LzEvU2hJM0ZON3pfMWllNlZvRU1RdXp0S0RwN1MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9mNjAyZjItZDRhYS00Y2JiLTk5ZjMtMjJhNTRkMWZlMDY5
LzEvMjhyRWo5eVZROFFIQkJaYTZGbEpReDdEdHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYyEMA0G
CSqGSIb3DQEBCwUAA4IBAQCNalASO3/5a5DF32+1laJwTaK6KfDSQg2Ns/rIWNeM
VJpBDK5HVwkoCPL81yFlkWv+ITL9J+OhxVNXVXY0GdIKQoZaLEmlZ6wZgaevG7ap
HF/TbEtvmucR0ol3qV9/wRv10KckzTnAw74oymvycx+dJOQ1rv/+57xckVTToWIG
qsll3cpQbCb988XqZ4VBUflC2ZMnzSBjf6VGVl+i1oalQtHp0Psobjae3dvajggI
F3hoFQXNL4XZst0sttaCXIn77+NMHOnFG6/mJ0roe4oZ6rW0zmDPTOnqekketKkv
ucG7Jpu6iVUOzBy9jWchcMEcBMaHNne48udqqfVVZXVU
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:04 2025 by rpki-client