Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/5aec25-216d-43a7-abe1-3879e33802e6/1/I6llRfzbn-5gYy61xtuUZZcT1KM.roa
File: I6llRfzbn-5gYy61xtuUZZcT1KM.roa (raw, json)
Hash identifier: rRcdkh0GOZfo7bPqDscG+TMKmHjZ2U94bfFTMhOJ3BM=
Subject key identifier: 23:A9:65:45:FC:DB:9F:EE:60:63:2E:B5:C6:DB:94:65:97:13:D4:A3
Certificate issuer: /CN=4dc3c18f47ea5edd7135df247868e117c681c87f
Certificate serial: 02A36D4B
Authority key identifier: 4D:C3:C1:8F:47:EA:5E:DD:71:35:DF:24:78:68:E1:17:C6:81:C8:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TcPBj0fqXt1xNd8keGjhF8aByH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/5aec25-216d-43a7-abe1-3879e33802e6/1/I6llRfzbn-5gYy61xtuUZZcT1KM.roa
Signing time: Sat 05 Feb 2022 11:57:39 +0000
ROA not before: Sat 05 Feb 2022 11:57:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 190.92.168.0/21 maxlen: 24
193.30.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44264779 (0x2a36d4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dc3c18f47ea5edd7135df247868e117c681c87f
Validity
Not Before: Feb 5 11:57:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23a96545fcdb9fee60632eb5c6db94659713d4a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:87:ae:2f:6e:67:37:7a:cc:ee:d3:7c:cf:6d:
a5:cf:c9:31:c9:00:e4:46:51:2f:6a:96:40:69:4a:
ed:56:3c:23:f2:d5:d1:54:fa:c2:0e:43:d5:41:53:
17:13:06:d8:d6:ad:ba:d6:00:03:dc:fd:45:31:88:
f2:15:89:87:b4:16:55:50:1d:8e:9d:47:9c:a3:98:
28:13:34:49:d6:26:5c:9d:28:f0:d1:31:57:22:a3:
f6:be:b6:f0:65:72:d3:41:7f:3b:1b:01:ef:6a:a4:
77:f1:ef:61:3b:d6:0e:a9:c6:bf:b3:b8:5c:44:a6:
53:e0:9d:bc:b3:3c:5f:c0:7a:3a:a4:79:89:c8:dd:
6a:8f:54:0a:83:ca:d3:d7:db:86:69:fa:ad:2c:79:
6f:af:9b:cd:01:f6:74:f1:be:57:5e:e8:21:e2:b4:
3c:54:5a:21:55:55:20:0a:5c:66:2d:f3:38:7f:99:
95:cd:ac:a2:e0:4f:76:6e:0f:97:3c:d4:00:f9:15:
c6:34:28:84:4e:fa:97:2d:5c:b0:ab:a0:29:41:d3:
32:38:56:bb:43:01:b3:34:0b:dd:a8:05:6f:0c:f7:
61:99:d7:6b:51:b5:cd:c0:6b:f7:0e:ef:dd:2b:86:
14:e4:2a:4a:cd:32:24:64:42:11:4e:96:1d:6c:30:
b9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:A9:65:45:FC:DB:9F:EE:60:63:2E:B5:C6:DB:94:65:97:13:D4:A3
X509v3 Authority Key Identifier:
keyid:4D:C3:C1:8F:47:EA:5E:DD:71:35:DF:24:78:68:E1:17:C6:81:C8:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TcPBj0fqXt1xNd8keGjhF8aByH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/5aec25-216d-43a7-abe1-3879e33802e6/1/I6llRfzbn-5gYy61xtuUZZcT1KM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/5aec25-216d-43a7-abe1-3879e33802e6/1/TcPBj0fqXt1xNd8keGjhF8aByH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.92.168.0/21
193.30.117.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c5:2f:6e:7c:f4:19:c1:23:db:4a:a8:cf:93:6c:cf:c0:91:
d1:4a:f0:5b:bb:c8:0b:5b:dc:2c:06:c9:50:21:12:46:05:d5:
38:ed:23:65:bf:0b:9d:8b:51:59:49:d9:00:02:40:4a:1f:ec:
a3:06:cf:d0:b2:29:59:fd:dd:1d:1f:a7:2e:8d:85:cb:f8:41:
63:a3:bd:be:31:a3:b9:af:e7:e5:33:44:78:c6:46:34:bf:66:
6d:c4:3a:c2:ff:ab:b8:f2:12:b3:c7:ed:74:d8:58:c2:dc:1f:
61:58:81:db:3a:bf:61:52:cf:44:e7:32:5a:95:18:28:99:e1:
48:8c:a0:53:73:df:a4:f2:f5:71:93:d1:a6:0d:8f:2f:25:29:
86:8f:4d:21:e7:11:30:00:cd:a9:61:a5:33:69:60:67:d7:e4:
bb:fc:2d:93:6c:2a:fe:1c:55:3f:c2:c0:b4:5c:97:bb:dd:76:
f6:52:47:6f:9d:78:43:6e:1a:47:d4:cb:f4:f6:11:bb:a9:0e:
0e:42:18:3f:35:3e:6a:b8:0a:80:6b:f3:47:9c:7f:9a:db:bc:
78:0b:7e:92:6d:33:37:40:40:25:38:b8:eb:ab:55:40:6a:fd:
eb:a6:46:37:ed:39:69:02:e7:69:d3:44:61:08:33:ef:f4:95:
3e:d9:ee:0f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAqNtSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZGMzYzE4ZjQ3ZWE1ZWRkNzEzNWRmMjQ3ODY4ZTExN2M2ODFjODdmMB4XDTIyMDIw
NTExNTczOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjNhOTY1NDVmY2Ri
OWZlZTYwNjMyZWI1YzZkYjk0NjU5NzEzZDRhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAISHri9uZzd6zO7TfM9tpc/JMckA5EZRL2qWQGlK7VY8I/LV
0VT6wg5D1UFTFxMG2NatutYAA9z9RTGI8hWJh7QWVVAdjp1HnKOYKBM0SdYmXJ0o
8NExVyKj9r628GVy00F/OxsB72qkd/HvYTvWDqnGv7O4XESmU+CdvLM8X8B6OqR5
icjdao9UCoPK09fbhmn6rSx5b6+bzQH2dPG+V17oIeK0PFRaIVVVIApcZi3zOH+Z
lc2souBPdm4PlzzUAPkVxjQohE76ly1csKugKUHTMjhWu0MBszQL3agFbwz3YZnX
a1G1zcBr9w7v3SuGFOQqSs0yJGRCEU6WHWwwuZUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQjqWVF/Nuf7mBjLrXG25RllxPUozAfBgNVHSMEGDAWgBRNw8GPR+pe3XE1
3yR4aOEXxoHIfzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RjUEJqMGZxWHQxeE5kOGtlR2poRjhhQnlIOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTIvNWFlYzI1LTIxNmQtNDNhNy1hYmUxLTM4NzllMzM4MDJlNi8x
L0k2bGxSZnpibi01Z1l5NjF4dHVVWlpjVDFLTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIv
NWFlYzI1LTIxNmQtNDNhNy1hYmUxLTM4NzllMzM4MDJlNi8xL1RjUEJqMGZxWHQx
eE5kOGtlR2poRjhhQnlIOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA75cqAMEAMEedTANBgkqhkiG9w0B
AQsFAAOCAQEAHsUvbnz0GcEj20qoz5Nsz8CR0UrwW7vIC1vcLAbJUCESRgXVOO0j
Zb8LnYtRWUnZAAJASh/sowbP0LIpWf3dHR+nLo2Fy/hBY6O9vjGjua/n5TNEeMZG
NL9mbcQ6wv+ruPISs8ftdNhYwtwfYViB2zq/YVLPROcyWpUYKJnhSIygU3PfpPL1
cZPRpg2PLyUpho9NIecRMADNqWGlM2lgZ9fku/wtk2wq/hxVP8LAtFyXu9129lJH
b514Q24aR9TL9PYRu6kODkIYPzU+argKgGvzR5x/mtu8eAt+km0zN0BAJTi466tV
QGr966ZGN+05aQLnadNEYQgz7/SVPtnuDw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:49 2024 by rpki-client on console-fra.rpki-client.org