Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/43r1emDxVXlkonIHhD1AcpwUYLc.roa
File: 43r1emDxVXlkonIHhD1AcpwUYLc.roa (raw, json)
Hash identifier: +aOzdo+lTdsJPWru/EEv+VNloSYCQmmn5/BXoha2WwA=
Subject key identifier: E3:7A:F5:7A:60:F1:55:79:64:A2:72:07:84:3D:40:72:9C:14:60:B7
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D0932DA9460A2816DF4D2A8AE31C8
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/43r1emDxVXlkonIHhD1AcpwUYLc.roa
Signing time: Sun 01 Jan 2023 13:54:46 +0000
ROA not before: Sun 01 Jan 2023 13:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 82.118.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:09:32:da:94:60:a2:81:6d:f4:d2:a8:ae:31:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e37af57a60f1557964a27207843d40729c1460b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c6:69:5b:fc:44:5f:ff:53:8c:7b:2c:d0:9a:
27:7f:41:7b:4a:c9:f3:70:a8:27:63:a6:6d:97:86:
2e:48:8b:71:ec:05:3a:48:bb:a7:37:c6:83:81:c0:
a5:fd:b0:2e:2c:ca:8c:80:63:13:71:ca:ab:55:75:
eb:e8:2f:b2:de:c5:7c:d7:4d:2d:af:a9:66:1e:7c:
5a:72:13:e4:3e:f0:22:a2:16:3f:37:ae:5f:38:82:
04:48:3d:57:a2:0d:09:07:61:ba:82:87:2f:3b:71:
f0:6d:9a:d2:6e:3b:22:03:b8:1b:5d:e6:ab:10:93:
07:79:18:f2:07:51:41:04:49:22:e9:03:b5:32:fe:
00:aa:59:7a:fd:d0:02:3c:86:0b:8d:ca:ec:08:61:
bf:e4:df:ee:6f:16:16:4c:b6:6e:ed:7a:3a:22:e4:
8a:a1:4d:09:bb:82:ee:fe:09:f6:36:d4:64:fd:50:
34:bc:c8:0d:64:d1:8e:95:03:c0:5f:5d:7a:c4:21:
de:ae:1d:02:44:85:96:c3:2a:14:45:1f:58:70:e7:
aa:6b:74:c3:19:81:49:48:3e:24:45:62:09:ab:38:
18:86:6c:c4:a6:53:92:4e:d5:1a:62:7a:e7:3b:1e:
35:32:79:1d:91:7b:f4:17:7f:cf:80:e6:23:07:84:
33:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:7A:F5:7A:60:F1:55:79:64:A2:72:07:84:3D:40:72:9C:14:60:B7
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/43r1emDxVXlkonIHhD1AcpwUYLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.31.0/24
Signature Algorithm: sha256WithRSAEncryption
39:f7:a0:8f:bc:e6:dc:6e:e0:13:ec:ac:c0:54:9d:48:d9:df:
a8:28:e7:dd:16:5e:5c:03:05:9a:b0:91:a0:47:23:0e:bb:ee:
94:02:ef:4b:a9:66:55:c8:79:89:75:c3:f2:5a:f6:83:74:8b:
9f:fc:18:a1:35:fa:b9:62:e8:88:a8:04:a4:2c:a4:83:fb:92:
e4:41:42:93:e6:6a:5a:76:ae:af:a8:11:34:b0:ce:d6:23:bf:
6a:4a:b6:c5:4c:7c:c9:03:d6:cc:24:d5:1d:4e:6f:91:c8:a2:
7e:91:fc:90:40:17:68:bd:6a:31:ba:17:cd:f8:5e:ea:25:46:
70:54:6a:60:f9:c8:72:37:f3:7e:f0:88:de:f7:c5:4c:6b:3c:
85:ae:1b:6c:92:3c:05:df:08:30:7d:e7:b2:2e:9e:1b:ea:7f:
e2:a7:8c:f8:63:82:b0:6c:8c:2c:ae:fb:b9:6e:26:be:02:f2:
0a:2f:fe:f5:32:ba:56:0a:ef:1b:23:b9:72:00:5b:80:dc:2b:
14:e7:8e:57:b3:53:45:ae:8a:2e:54:2f:c8:e8:1f:34:cf:64:
9c:dd:69:d7:9d:77:03:59:98:4a:0a:6f:d1:2a:95:a5:15:ed:
55:2b:89:19:1d:fc:03:85:10:71:e1:65:50:7b:5c:85:9a:f0:
4f:35:a0:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtnQky2pRgooFt9NKorjHIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxODE0Y2YyY2EzZTE3OTkzNDljY2Q0YzdlNmE3NmQ2M2Y4
MzRhM2QwHhcNMjMwMTAxMTM1NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzdhZjU3YTYwZjE1NTc5NjRhMjcyMDc4NDNkNDA3MjljMTQ2MGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhsZpW/xEX/9TjHss0Jonf0F7Ssnz
cKgnY6Ztl4YuSItx7AU6SLunN8aDgcCl/bAuLMqMgGMTccqrVXXr6C+y3sV8100t
r6lmHnxachPkPvAiohY/N65fOIIESD1Xog0JB2G6gocvO3HwbZrSbjsiA7gbXear
EJMHeRjyB1FBBEki6QO1Mv4Aqll6/dACPIYLjcrsCGG/5N/ubxYWTLZu7Xo6IuSK
oU0Ju4Lu/gn2NtRk/VA0vMgNZNGOlQPAX116xCHerh0CRIWWwyoURR9YcOeqa3TD
GYFJSD4kRWIJqzgYhmzEplOSTtUaYnrnOx41MnkdkXv0F3/PgOYjB4QzsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFON69Xpg8VV5ZKJyB4Q9QHKcFGC3MB8GA1UdIwQY
MBaAFCGBTPLKPheZNJzNTH5qdtY/g0o9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVlGTThzby1GNWswbk0xTWZtcDIxai1EU2owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8wMWY4NTMtZDQ0NS00YWNlLWE4ZDgt
MjI3MDFiNGJiNDA3LzEvNDNyMWVtRHhWWGxrb25JSGhEMUFjcHdVWUxjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8wMWY4NTMtZDQ0NS00YWNlLWE4ZDgtMjI3MDFiNGJiNDA3
LzEvSVlGTThzby1GNWswbk0xTWZtcDIxai1EU2owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUnYfMA0G
CSqGSIb3DQEBCwUAA4IBAQA596CPvObcbuAT7KzAVJ1I2d+oKOfdFl5cAwWasJGg
RyMOu+6UAu9LqWZVyHmJdcPyWvaDdIuf/BihNfq5YuiIqASkLKSD+5LkQUKT5mpa
dq6vqBE0sM7WI79qSrbFTHzJA9bMJNUdTm+RyKJ+kfyQQBdovWoxuhfN+F7qJUZw
VGpg+chyN/N+8Ije98VMazyFrhtskjwF3wgwfeeyLp4b6n/ip4z4Y4KwbIwsrvu5
bia+AvIKL/71MrpWCu8bI7lyAFuA3CsU545Xs1NFroouVC/I6B80z2Sc3WnXnXcD
WZhKCm/RKpWlFe1VK4kZHfwDhRBx4WVQe1yFmvBPNaCW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org