Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/82ab60-910e-4772-a722-68948f1d3efa/1/kVeE_XPOq56pIVcY80jyElc_CU8.roa
File: kVeE_XPOq56pIVcY80jyElc_CU8.roa (raw, json)
Hash identifier: 3Fg4Xr9oEknC+7VM/dY9FfckUOECXzeQOdF2DQN9ops=
Subject key identifier: 91:57:84:FD:73:CE:AB:9E:A9:21:57:18:F3:48:F2:12:57:3F:09:4F
Certificate issuer: /CN=300ab0a402e3ce413b4741cf3a0a36638e4c2699
Certificate serial: 01856F022E1FC15C9AE063C618BD37CC7C70
Authority key identifier: 30:0A:B0:A4:02:E3:CE:41:3B:47:41:CF:3A:0A:36:63:8E:4C:26:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAqwpALjzkE7R0HPOgo2Y45MJpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/82ab60-910e-4772-a722-68948f1d3efa/1/kVeE_XPOq56pIVcY80jyElc_CU8.roa
Signing time: Sun 01 Jan 2023 20:24:51 +0000
ROA not before: Sun 01 Jan 2023 20:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210009
IP address blocks: 193.148.76.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:2e:1f:c1:5c:9a:e0:63:c6:18:bd:37:cc:7c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=300ab0a402e3ce413b4741cf3a0a36638e4c2699
Validity
Not Before: Jan 1 20:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=915784fd73ceab9ea9215718f348f212573f094f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:fb:d5:e8:22:2e:2c:6f:9e:bb:f2:99:62:5f:
a3:d4:c3:ba:b1:af:0e:65:68:7a:1c:40:f9:4f:17:
2e:50:c3:85:dc:03:15:ba:34:93:4b:d7:8f:c5:f9:
5e:da:51:b8:2a:25:13:ec:eb:72:11:72:ee:e9:1e:
a3:dd:a6:0c:90:ba:a1:62:32:65:3e:ec:01:ed:fc:
5d:10:18:a4:f6:80:3c:2e:09:dd:79:29:ef:0a:97:
6e:54:6f:3f:a2:fc:4e:ae:ca:57:f2:70:48:eb:a0:
b1:b8:97:4f:a2:e2:29:e0:53:ff:6d:a5:50:c3:35:
49:e2:c1:4a:26:d3:69:a3:99:af:49:4a:87:7d:e3:
9d:96:87:27:33:a2:8d:1e:41:aa:a4:de:06:41:18:
8f:e6:a5:50:ca:af:e6:f3:18:a3:af:f5:f4:8e:63:
af:50:f1:21:c5:9c:2f:e9:f7:5f:7a:94:d0:79:2c:
09:c0:2e:5e:f3:9a:9e:4a:0d:76:85:47:41:72:2f:
eb:a1:c2:5e:f5:9c:3c:53:22:86:f2:cb:6d:bb:63:
55:21:04:81:5e:8e:ca:28:46:2c:32:38:4a:91:a8:
0a:18:d6:a8:7f:7c:77:c9:5f:96:43:58:fc:10:1f:
ca:2c:30:70:0c:2c:8f:ab:87:90:48:82:80:45:14:
6e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:57:84:FD:73:CE:AB:9E:A9:21:57:18:F3:48:F2:12:57:3F:09:4F
X509v3 Authority Key Identifier:
keyid:30:0A:B0:A4:02:E3:CE:41:3B:47:41:CF:3A:0A:36:63:8E:4C:26:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAqwpALjzkE7R0HPOgo2Y45MJpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/82ab60-910e-4772-a722-68948f1d3efa/1/kVeE_XPOq56pIVcY80jyElc_CU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/82ab60-910e-4772-a722-68948f1d3efa/1/MAqwpALjzkE7R0HPOgo2Y45MJpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.76.0/22
Signature Algorithm: sha256WithRSAEncryption
70:05:10:6c:2d:35:38:a4:d6:92:f4:82:0f:a7:94:4f:af:f2:
76:d8:af:20:e2:d7:3a:7d:83:a1:16:0a:98:be:d2:52:8c:b7:
0e:8a:af:84:d5:81:18:f2:e3:b8:37:e5:25:1c:a0:95:f7:45:
ac:f1:af:b3:df:97:43:da:ff:97:0d:48:c9:b5:fd:97:b5:a9:
95:96:82:f3:e9:db:38:f5:f0:2b:e8:a6:b8:58:0f:76:1f:b8:
32:f8:6c:7a:f8:7a:71:88:b4:d3:dc:91:be:e5:fc:8e:26:27:
fa:82:c4:d5:ad:44:d9:5e:19:c9:10:d5:d6:5c:e7:77:af:2d:
53:4f:2e:b2:a9:59:2d:59:e5:cb:c7:5a:b4:c4:34:d4:ef:1c:
aa:1a:97:dc:0c:fe:30:f3:39:5f:2f:08:2b:b9:83:22:52:ea:
32:64:7e:f2:4a:a1:c8:e1:fd:79:ca:a5:45:56:99:35:db:6f:
7c:ca:16:d9:2c:30:9a:55:36:68:e7:4f:12:33:a7:15:ca:bc:
88:ae:ed:7d:24:9e:3a:d0:6e:7b:bc:ee:38:e5:92:31:a9:f0:
55:bc:a3:09:e3:c0:b8:ba:06:e1:75:ed:03:3f:2c:d2:b8:e1:
79:6d:8b:f7:8e:96:0a:e6:a1:12:64:ff:81:f4:47:1a:c9:0f:
b7:26:c8:77
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvAi4fwVya4GPGGL03zHxwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwMGFiMGE0MDJlM2NlNDEzYjQ3NDFjZjNhMGEzNjYzOGU0
YzI2OTkwHhcNMjMwMTAxMjAyNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTU3ODRmZDczY2VhYjllYTkyMTU3MThmMzQ4ZjIxMjU3M2YwOTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjvvV6CIuLG+eu/KZYl+j1MO6sa8O
ZWh6HED5TxcuUMOF3AMVujSTS9ePxfle2lG4KiUT7OtyEXLu6R6j3aYMkLqhYjJl
PuwB7fxdEBik9oA8LgndeSnvCpduVG8/ovxOrspX8nBI66CxuJdPouIp4FP/baVQ
wzVJ4sFKJtNpo5mvSUqHfeOdlocnM6KNHkGqpN4GQRiP5qVQyq/m8xijr/X0jmOv
UPEhxZwv6fdfepTQeSwJwC5e85qeSg12hUdBci/rocJe9Zw8UyKG8sttu2NVIQSB
Xo7KKEYsMjhKkagKGNaof3x3yV+WQ1j8EB/KLDBwDCyPq4eQSIKARRRuhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJFXhP1zzqueqSFXGPNI8hJXPwlPMB8GA1UdIwQY
MBaAFDAKsKQC485BO0dBzzoKNmOOTCaZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUFxd3BBTGp6a0U3UjBIUE9nbzJZNDVNSnBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy84MmFiNjAtOTEwZS00NzcyLWE3MjIt
Njg5NDhmMWQzZWZhLzEva1ZlRV9YUE9xNTZwSVZjWTgwanlFbGNfQ1U4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy84MmFiNjAtOTEwZS00NzcyLWE3MjItNjg5NDhmMWQzZWZh
LzEvTUFxd3BBTGp6a0U3UjBIUE9nbzJZNDVNSnBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwZRMMA0G
CSqGSIb3DQEBCwUAA4IBAQBwBRBsLTU4pNaS9IIPp5RPr/J22K8g4tc6fYOhFgqY
vtJSjLcOiq+E1YEY8uO4N+UlHKCV90Ws8a+z35dD2v+XDUjJtf2XtamVloLz6ds4
9fAr6Ka4WA92H7gy+Gx6+HpxiLTT3JG+5fyOJif6gsTVrUTZXhnJENXWXOd3ry1T
Ty6yqVktWeXLx1q0xDTU7xyqGpfcDP4w8zlfLwgruYMiUuoyZH7ySqHI4f15yqVF
Vpk12298yhbZLDCaVTZo508SM6cVyryIru19JJ460G57vO445ZIxqfBVvKMJ48C4
ugbhde0DPyzSuOF5bYv3jpYK5qESZP+B9EcayQ+3Jsh3
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:25 2024 by rpki-client on console-ams.rpki-client.org