Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/90dae6-c190-4eb8-b6a2-60a165560bdb/1/gS41N7u540wu07tZ0xvfhe9vMNE.roa
File: gS41N7u540wu07tZ0xvfhe9vMNE.roa (raw, json)
Hash identifier: FA5zAaiZwCyKgUFoB2gGfrnfU03wXkwGpYGt+2ykBoc=
Subject key identifier: 81:2E:35:37:BB:B9:E3:4C:2E:D3:BB:59:D3:1B:DF:85:EF:6F:30:D1
Certificate issuer: /CN=36b87886d68b45a1e05efb11cab7dc4775e3fc5f
Certificate serial: 0185448FA0D988BCE6081E16EE993C7CE829
Authority key identifier: 36:B8:78:86:D6:8B:45:A1:E0:5E:FB:11:CA:B7:DC:47:75:E3:FC:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nrh4htaLRaHgXvsRyrfcR3Xj_F8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/90dae6-c190-4eb8-b6a2-60a165560bdb/1/gS41N7u540wu07tZ0xvfhe9vMNE.roa
Signing time: Sat 24 Dec 2022 14:35:41 +0000
ROA not before: Sat 24 Dec 2022 14:35:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210030
IP address blocks: 84.54.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:44:8f:a0:d9:88:bc:e6:08:1e:16:ee:99:3c:7c:e8:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36b87886d68b45a1e05efb11cab7dc4775e3fc5f
Validity
Not Before: Dec 24 14:35:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=812e3537bbb9e34c2ed3bb59d31bdf85ef6f30d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:08:60:91:93:51:e5:f8:f8:48:b5:6e:ba:70:
26:05:0c:03:43:81:23:80:b1:4f:f0:18:e7:3b:31:
cc:9b:f7:4e:46:5b:35:19:26:31:df:89:96:5b:e7:
36:e4:a3:ca:dd:f0:98:bf:d7:0b:17:83:91:56:56:
e5:b3:19:7c:6c:5d:31:3d:59:2c:c6:f4:25:ba:2c:
df:13:b4:a9:d6:e4:fc:8a:82:0e:ba:de:aa:8b:8f:
85:57:81:b4:ef:f8:ab:db:e3:1e:4b:d9:bc:78:cd:
3c:60:fb:b0:58:ea:90:16:07:bc:bb:8b:fa:8f:ef:
8d:3b:dd:dd:4a:83:bc:e5:af:c4:e6:1b:2e:e1:93:
8a:f2:a2:ee:4a:68:6d:86:a4:28:2b:82:a8:0e:f1:
bb:c7:31:54:c1:09:82:06:41:85:7f:c6:04:fc:c4:
13:fe:01:10:a4:3c:e6:b0:c7:3e:fd:48:d5:c1:1d:
65:3f:b9:7f:af:89:09:98:01:a0:d6:b5:0b:e0:09:
17:3b:76:bb:4b:17:b3:11:14:c3:83:d2:b2:ca:67:
75:db:8e:2d:a2:9e:f5:51:4e:ec:61:e3:ef:b9:94:
f2:5e:33:12:6b:41:c9:ea:98:a4:66:57:ed:d6:c3:
95:1f:d7:02:8f:f5:02:fd:7e:e8:1b:c3:33:8f:bf:
34:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2E:35:37:BB:B9:E3:4C:2E:D3:BB:59:D3:1B:DF:85:EF:6F:30:D1
X509v3 Authority Key Identifier:
keyid:36:B8:78:86:D6:8B:45:A1:E0:5E:FB:11:CA:B7:DC:47:75:E3:FC:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nrh4htaLRaHgXvsRyrfcR3Xj_F8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/90dae6-c190-4eb8-b6a2-60a165560bdb/1/gS41N7u540wu07tZ0xvfhe9vMNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/90dae6-c190-4eb8-b6a2-60a165560bdb/1/Nrh4htaLRaHgXvsRyrfcR3Xj_F8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.32.0/24
Signature Algorithm: sha256WithRSAEncryption
84:0b:48:8c:6a:fe:82:d4:84:18:e0:12:90:98:5e:31:87:df:
45:1b:72:5a:b0:7f:08:1e:07:b2:f5:33:3c:a0:64:8f:55:fd:
42:85:cf:48:91:83:f1:78:e2:80:c4:2a:c2:4a:62:5a:31:09:
cc:e6:5d:c3:73:81:ad:62:e8:43:0f:2d:0e:db:e8:ab:1d:6a:
8f:e3:e7:b4:59:81:a5:1e:96:5a:29:e5:ad:e6:7c:41:44:ff:
86:4a:dd:6f:24:e3:d0:d9:62:79:15:dd:bf:54:57:a2:66:b5:
6a:11:06:2e:28:4e:8e:47:c0:79:79:22:eb:28:58:11:7f:09:
49:c7:d9:aa:43:da:07:e1:1b:cd:e0:99:69:1e:45:c3:05:80:
13:09:0e:f8:3b:2a:bb:39:80:aa:ef:78:3f:ac:53:2f:8f:75:
db:aa:8d:39:f5:46:b0:3a:1a:3c:3f:47:b9:c8:bd:81:43:03:
37:6f:e0:24:c2:73:d0:0b:af:8d:a8:02:b5:52:21:53:b2:3f:
a6:e0:01:9c:37:ec:0b:96:12:93:eb:6f:2c:54:68:5a:e6:04:
04:84:9f:08:8a:ea:0b:63:c8:67:50:59:ae:dd:81:b7:1c:1b:
b2:56:e9:ef:9a:96:90:87:3d:24:55:77:a1:16:b7:bf:43:f8:
df:07:75:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVEj6DZiLzmCB4W7pk8fOgpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2Yjg3ODg2ZDY4YjQ1YTFlMDVlZmIxMWNhYjdkYzQ3NzVl
M2ZjNWYwHhcNMjIxMjI0MTQzNTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTJlMzUzN2JiYjllMzRjMmVkM2JiNTlkMzFiZGY4NWVmNmYzMGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAhgkZNR5fj4SLVuunAmBQwDQ4Ej
gLFP8BjnOzHMm/dORls1GSYx34mWW+c25KPK3fCYv9cLF4ORVlblsxl8bF0xPVks
xvQluizfE7Sp1uT8ioIOut6qi4+FV4G07/ir2+MeS9m8eM08YPuwWOqQFge8u4v6
j++NO93dSoO85a/E5hsu4ZOK8qLuSmhthqQoK4KoDvG7xzFUwQmCBkGFf8YE/MQT
/gEQpDzmsMc+/UjVwR1lP7l/r4kJmAGg1rUL4AkXO3a7SxezERTDg9Kyymd1244t
op71UU7sYePvuZTyXjMSa0HJ6pikZlft1sOVH9cCj/UC/X7oG8Mzj780oQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIEuNTe7ueNMLtO7WdMb34XvbzDRMB8GA1UdIwQY
MBaAFDa4eIbWi0Wh4F77Ecq33Ed14/xfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnJoNGh0YUxSYUhnWHZzUnlyZmNSM1hqX0Y4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy85MGRhZTYtYzE5MC00ZWI4LWI2YTIt
NjBhMTY1NTYwYmRiLzEvZ1M0MU43dTU0MHd1MDd0WjB4dmZoZTl2TU5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy85MGRhZTYtYzE5MC00ZWI4LWI2YTItNjBhMTY1NTYwYmRi
LzEvTnJoNGh0YUxSYUhnWHZzUnlyZmNSM1hqX0Y4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVDYgMA0G
CSqGSIb3DQEBCwUAA4IBAQCEC0iMav6C1IQY4BKQmF4xh99FG3JasH8IHgey9TM8
oGSPVf1Chc9IkYPxeOKAxCrCSmJaMQnM5l3Dc4GtYuhDDy0O2+irHWqP4+e0WYGl
HpZaKeWt5nxBRP+GSt1vJOPQ2WJ5Fd2/VFeiZrVqEQYuKE6OR8B5eSLrKFgRfwlJ
x9mqQ9oH4RvN4JlpHkXDBYATCQ74Oyq7OYCq73g/rFMvj3Xbqo059UawOho8P0e5
yL2BQwM3b+AkwnPQC6+NqAK1UiFTsj+m4AGcN+wLlhKT628sVGha5gQEhJ8IiuoL
Y8hnUFmu3YG3HBuyVunvmpaQhz0kVXehFre/Q/jfB3VJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:25 2024 by rpki-client on console-ams.rpki-client.org