Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/oXnSwMakzSYltWrQzLoHuC4iJYU.roa
File: oXnSwMakzSYltWrQzLoHuC4iJYU.roa (raw, json)
Hash identifier: Zx2KdervSgRdDqz5IIfCydlYMWB/eGCQ6fSUSrBOxbo=
Subject key identifier: A1:79:D2:C0:C6:A4:CD:26:25:B5:6A:D0:CC:BA:07:B8:2E:22:25:85
Certificate issuer: /CN=6deedc2210677512b9d728a891c1f2451d3d46aa
Certificate serial: D58E81
Authority key identifier: 6D:EE:DC:22:10:67:75:12:B9:D7:28:A8:91:C1:F2:45:1D:3D:46:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/be7cIhBndRK51yiokcHyRR09Rqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/oXnSwMakzSYltWrQzLoHuC4iJYU.roa
Signing time: Wed 09 Feb 2022 14:36:58 +0000
ROA not before: Wed 09 Feb 2022 14:36:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 212.23.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13995649 (0xd58e81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6deedc2210677512b9d728a891c1f2451d3d46aa
Validity
Not Before: Feb 9 14:36:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a179d2c0c6a4cd2625b56ad0ccba07b82e222585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8a:ce:ef:c4:4e:f1:68:ad:ec:cb:17:54:95:
8a:76:d1:54:39:70:cd:df:78:cf:c8:17:53:58:9c:
45:f9:2b:fa:f2:6f:9f:02:7a:3c:fb:e8:b9:e5:4d:
c3:fa:3e:1d:18:3f:0a:3e:ef:36:92:be:ce:9e:0a:
0c:ff:67:9c:ce:87:d2:66:7d:32:e6:89:85:68:51:
2d:61:d7:27:1a:2d:f6:d7:85:79:a4:b6:03:00:f9:
2b:d8:ca:81:53:6c:d1:2e:49:16:4f:f1:78:a7:d7:
f8:dd:74:4c:f1:88:a5:7b:1e:9e:70:e3:c3:be:b8:
33:fe:35:19:7a:d1:17:3b:d8:e4:e1:be:43:92:df:
55:40:c0:cf:13:8c:5a:9d:c2:0e:aa:c2:f3:1c:0b:
5d:71:67:26:cb:96:bd:39:91:e6:08:e9:4b:0f:d6:
97:71:c0:ca:51:cb:53:3b:51:ed:4b:08:9d:f1:41:
c3:31:ba:33:cd:f8:86:d5:c2:50:59:8b:b5:85:3b:
63:40:a8:1d:a8:52:a8:4f:57:1c:d9:e1:91:9f:20:
6d:1e:0a:1f:ec:61:33:07:bd:32:36:bb:7a:54:49:
5e:17:e5:75:b7:f5:23:50:f8:36:a2:7f:8b:4a:69:
36:01:0a:04:36:38:6a:6b:73:ee:8d:14:fa:2d:4c:
5f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:79:D2:C0:C6:A4:CD:26:25:B5:6A:D0:CC:BA:07:B8:2E:22:25:85
X509v3 Authority Key Identifier:
keyid:6D:EE:DC:22:10:67:75:12:B9:D7:28:A8:91:C1:F2:45:1D:3D:46:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/be7cIhBndRK51yiokcHyRR09Rqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/oXnSwMakzSYltWrQzLoHuC4iJYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/be7cIhBndRK51yiokcHyRR09Rqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.219.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e5:2f:fe:0b:52:68:04:de:98:d7:2f:c7:9b:fa:94:64:4d:
6c:b3:32:6d:d8:8a:87:bf:a5:9c:b3:1f:c2:3d:3f:98:5c:da:
d1:14:fc:2a:9a:ab:c7:31:3b:33:8d:d6:ae:69:50:98:01:f1:
b7:f4:21:92:dc:d2:d2:88:c4:7f:c2:62:69:31:80:47:61:b3:
e2:72:e9:d5:51:0f:c6:26:bf:ad:09:14:b6:f0:9b:92:b6:e8:
0f:04:8a:14:9d:fd:a6:37:30:46:61:5c:4f:a8:cb:5a:8f:f5:
c6:b2:ea:cd:a5:af:82:32:95:66:9b:3f:c7:33:a9:72:e0:a1:
2c:6e:88:5d:69:6b:ea:a3:39:b0:4f:1e:78:e3:8c:d7:24:bc:
f0:13:5e:e2:47:34:0c:47:44:85:5d:08:8b:9f:ef:5b:42:22:
01:08:31:ea:4c:5a:14:fa:a0:2d:03:5a:ef:9b:10:28:bf:c6:
5e:b3:68:87:0d:61:fd:28:79:6a:04:a0:89:5d:99:bd:7c:ab:
97:bb:3e:ac:6d:3d:58:af:33:36:b7:70:6f:e9:a3:18:22:1a:
55:68:ed:8e:c0:4f:05:a1:d4:d0:85:18:97:ab:b3:28:9d:a4:
3f:2e:66:29:cb:df:3e:ae:ce:95:4c:0a:fc:59:c1:80:7c:12:
59:e6:13:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEANWOgTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZGVlZGMyMjEwNjc3NTEyYjlkNzI4YTg5MWMxZjI0NTFkM2Q0NmFhMB4XDTIyMDIw
OTE0MzY1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTE3OWQyYzBjNmE0
Y2QyNjI1YjU2YWQwY2NiYTA3YjgyZTIyMjU4NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKSKzu/ETvForezLF1SVinbRVDlwzd94z8gXU1icRfkr+vJv
nwJ6PPvoueVNw/o+HRg/Cj7vNpK+zp4KDP9nnM6H0mZ9MuaJhWhRLWHXJxot9teF
eaS2AwD5K9jKgVNs0S5JFk/xeKfX+N10TPGIpXsennDjw764M/41GXrRFzvY5OG+
Q5LfVUDAzxOMWp3CDqrC8xwLXXFnJsuWvTmR5gjpSw/Wl3HAylHLUztR7UsInfFB
wzG6M834htXCUFmLtYU7Y0CoHahSqE9XHNnhkZ8gbR4KH+xhMwe9Mja7elRJXhfl
dbf1I1D4NqJ/i0ppNgEKBDY4amtz7o0U+i1MXyECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBShedLAxqTNJiW1atDMuge4LiIlhTAfBgNVHSMEGDAWgBRt7twiEGd1ErnX
KKiRwfJFHT1GqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JlN2NJaEJuZFJLNTF5aW9rY0h5UlIwOVJxby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvNzBmOTg1LWNlMmEtNDgxYS1iYzVkLTgzZGNiYTI1MDNkMC8x
L29YblN3TWFrelNZbHRXclF6TG9IdUM0aUpZVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
NzBmOTg1LWNlMmEtNDgxYS1iYzVkLTgzZGNiYTI1MDNkMC8xL2JlN2NJaEJuZFJL
NTF5aW9rY0h5UlIwOVJxby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANQX2zANBgkqhkiG9w0BAQsFAAOC
AQEAoeUv/gtSaATemNcvx5v6lGRNbLMybdiKh7+lnLMfwj0/mFza0RT8KpqrxzE7
M43WrmlQmAHxt/QhktzS0ojEf8JiaTGAR2Gz4nLp1VEPxia/rQkUtvCbkrboDwSK
FJ39pjcwRmFcT6jLWo/1xrLqzaWvgjKVZps/xzOpcuChLG6IXWlr6qM5sE8eeOOM
1yS88BNe4kc0DEdEhV0Ii5/vW0IiAQgx6kxaFPqgLQNa75sQKL/GXrNohw1h/Sh5
agSgiV2ZvXyrl7s+rG09WK8zNrdwb+mjGCIaVWjtjsBPBaHU0IUYl6uzKJ2kPy5m
KcvfPq7OlUwK/FnBgHwSWeYTSA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:12 2023 by rpki-client on console-fra.rpki-client.org