Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a47ac4-66ee-4ca4-a121-174dd79717a0/1/oirXc0DUMEa08r2UthsOgSZbvlM.roa
File: oirXc0DUMEa08r2UthsOgSZbvlM.roa (raw, json)
Hash identifier: fJSNnyCX4v/zGgMDwTbqDPnyJiQ5RvDK/yZPmiz4d2c=
Subject key identifier: A2:2A:D7:73:40:D4:30:46:B4:F2:BD:94:B6:1B:0E:81:26:5B:BE:53
Certificate issuer: /CN=be1fb6a86da58366d87e453abee51756135c4d6d
Certificate serial: 018570B09BC56B5FA4701038AC5AD41B08BE
Authority key identifier: BE:1F:B6:A8:6D:A5:83:66:D8:7E:45:3A:BE:E5:17:56:13:5C:4D:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vh-2qG2lg2bYfkU6vuUXVhNcTW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a47ac4-66ee-4ca4-a121-174dd79717a0/1/oirXc0DUMEa08r2UthsOgSZbvlM.roa
Signing time: Mon 02 Jan 2023 04:15:00 +0000
ROA not before: Mon 02 Jan 2023 04:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39838
IP address blocks: 194.36.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:9b:c5:6b:5f:a4:70:10:38:ac:5a:d4:1b:08:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1fb6a86da58366d87e453abee51756135c4d6d
Validity
Not Before: Jan 2 04:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a22ad77340d43046b4f2bd94b61b0e81265bbe53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a4:38:66:1d:b0:a0:dd:94:92:ef:da:58:df:
57:af:88:fc:c1:0b:4e:da:a6:c6:c5:0c:14:6f:6c:
71:53:3e:4c:ff:01:20:7c:62:c1:67:aa:2e:89:38:
62:96:57:ab:75:17:f1:5f:42:0b:22:c6:45:13:0f:
f8:1a:43:05:44:1d:a4:7d:e7:f8:dc:76:85:7c:b7:
21:08:57:cc:97:cc:38:36:34:97:2f:7e:3a:e3:0e:
66:85:8f:14:79:b2:83:1d:a4:2e:4d:fa:b1:6e:9c:
f0:31:27:44:e4:05:22:d6:ff:ec:81:a5:31:d9:c8:
d0:cd:54:51:c0:ed:b7:41:8f:2c:99:01:5d:6b:63:
e9:c7:67:07:88:88:c5:da:10:09:2e:07:c3:cb:b1:
cb:a4:f6:b8:d2:24:68:a4:a3:2e:87:9e:31:60:b6:
36:39:21:19:04:4b:d7:33:fd:36:df:ce:41:2e:23:
ca:a5:e1:2e:26:19:53:92:17:72:eb:8a:64:fb:3f:
ce:3e:36:7d:b4:7f:40:97:d3:22:cf:83:9e:0e:b1:
f0:5f:db:03:52:d5:af:4e:99:b4:70:0c:19:5d:c9:
38:ee:e7:2b:ad:87:9b:1b:97:a3:51:67:a4:a7:8e:
54:f6:fe:2d:00:02:f6:e0:16:79:5b:f0:aa:18:58:
a2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:2A:D7:73:40:D4:30:46:B4:F2:BD:94:B6:1B:0E:81:26:5B:BE:53
X509v3 Authority Key Identifier:
keyid:BE:1F:B6:A8:6D:A5:83:66:D8:7E:45:3A:BE:E5:17:56:13:5C:4D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh-2qG2lg2bYfkU6vuUXVhNcTW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a47ac4-66ee-4ca4-a121-174dd79717a0/1/oirXc0DUMEa08r2UthsOgSZbvlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a47ac4-66ee-4ca4-a121-174dd79717a0/1/vh-2qG2lg2bYfkU6vuUXVhNcTW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.138.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:62:65:2e:2a:07:b5:39:49:a4:a8:c9:37:0e:8e:f3:52:a4:
ec:41:17:65:62:6b:6c:5b:18:25:a1:34:36:09:87:f6:54:2a:
7a:87:00:90:bf:54:8d:92:94:ab:65:d4:8c:6f:f4:3d:69:d3:
2c:eb:78:22:ed:8d:65:c2:8a:32:36:25:3c:99:0c:c5:c6:c8:
2a:1b:98:54:d3:9a:6b:96:da:51:45:1c:7c:b6:ba:ac:83:92:
b4:24:87:1c:ad:1b:ad:49:46:9c:6c:47:b8:9d:3d:46:55:b9:
29:ac:cb:d7:ba:8f:f6:0c:00:b5:bd:49:73:61:32:99:d0:ef:
fa:4a:18:1f:bf:89:da:da:47:63:a4:e3:d5:4c:36:af:cf:9f:
5d:30:7a:1d:f6:05:ba:36:f8:1f:1e:fe:70:66:df:9a:5f:c4:
d2:be:43:f2:71:62:16:a6:a4:8b:e7:a2:96:f2:15:b7:2d:b9:
52:d4:bd:e5:a4:1f:a6:47:93:89:b4:bb:f7:eb:1b:e0:8b:0b:
f5:36:ab:b2:9c:e1:36:f9:1e:80:e2:ba:43:9a:b0:23:a7:56:
fc:bd:7e:81:cd:99:d7:da:e4:a5:06:ce:39:64:a4:57:c1:34:
4f:cb:13:a1:86:33:87:9e:8b:d0:eb:65:4a:4f:c5:f6:ff:b5:
74:49:03:ff
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwsJvFa1+kcBA4rFrUGwi+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlMWZiNmE4NmRhNTgzNjZkODdlNDUzYWJlZTUxNzU2MTM1
YzRkNmQwHhcNMjMwMTAyMDQxNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjJhZDc3MzQwZDQzMDQ2YjRmMmJkOTRiNjFiMGU4MTI2NWJiZTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhqQ4Zh2woN2Uku/aWN9Xr4j8wQtO
2qbGxQwUb2xxUz5M/wEgfGLBZ6ouiThillerdRfxX0ILIsZFEw/4GkMFRB2kfef4
3HaFfLchCFfMl8w4NjSXL3464w5mhY8UebKDHaQuTfqxbpzwMSdE5AUi1v/sgaUx
2cjQzVRRwO23QY8smQFda2Ppx2cHiIjF2hAJLgfDy7HLpPa40iRopKMuh54xYLY2
OSEZBEvXM/02385BLiPKpeEuJhlTkhdy64pk+z/OPjZ9tH9Al9Miz4OeDrHwX9sD
UtWvTpm0cAwZXck47ucrrYebG5ejUWekp45U9v4tAAL24BZ5W/CqGFiiyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKIq13NA1DBGtPK9lLYbDoEmW75TMB8GA1UdIwQY
MBaAFL4ftqhtpYNm2H5FOr7lF1YTXE1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmgtMnFHMmxnMmJZZmtVNnZ1VVhWaE5jVFcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hNDdhYzQtNjZlZS00Y2E0LWExMjEt
MTc0ZGQ3OTcxN2EwLzEvb2lyWGMwRFVNRWEwOHIyVXRoc09nU1pidmxNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9hNDdhYzQtNjZlZS00Y2E0LWExMjEtMTc0ZGQ3OTcxN2Ew
LzEvdmgtMnFHMmxnMmJZZmtVNnZ1VVhWaE5jVFcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiSKMA0G
CSqGSIb3DQEBCwUAA4IBAQA8YmUuKge1OUmkqMk3Do7zUqTsQRdlYmtsWxgloTQ2
CYf2VCp6hwCQv1SNkpSrZdSMb/Q9adMs63gi7Y1lwooyNiU8mQzFxsgqG5hU05pr
ltpRRRx8trqsg5K0JIccrRutSUacbEe4nT1GVbkprMvXuo/2DAC1vUlzYTKZ0O/6
Shgfv4na2kdjpOPVTDavz59dMHod9gW6NvgfHv5wZt+aX8TSvkPycWIWpqSL56KW
8hW3LblS1L3lpB+mR5OJtLv36xvgiwv1NquynOE2+R6A4rpDmrAjp1b8vX6BzZnX
2uSlBs45ZKRXwTRPyxOhhjOHnovQ62VKT8X2/7V0SQP/
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:25 2024 by rpki-client on console-ams.rpki-client.org