Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/zffaIYr2PRzrjGVwjGVka1LPzjk.roa
File: zffaIYr2PRzrjGVwjGVka1LPzjk.roa (raw, json)
Hash identifier: nlheoGDWEbGCvkpSE99uOjFtRIqTAgNx8FO4OyC+5zg=
Subject key identifier: CD:F7:DA:21:8A:F6:3D:1C:EB:8C:65:70:8C:65:64:6B:52:CF:CE:39
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D1921570B6B21C7CC6CAFD079AC63
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/zffaIYr2PRzrjGVwjGVka1LPzjk.roa
Signing time: Sun 01 Jan 2023 13:54:50 +0000
ROA not before: Sun 01 Jan 2023 13:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204115
IP address blocks: 45.146.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:19:21:57:0b:6b:21:c7:cc:6c:af:d0:79:ac:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdf7da218af63d1ceb8c65708c65646b52cfce39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ad:e4:23:a6:0e:50:08:5a:ad:63:6e:af:c0:
ba:a5:89:de:8f:08:39:ff:6c:db:53:7f:25:82:7f:
13:03:28:e3:af:3f:de:b8:2e:97:69:2e:86:db:44:
0a:db:d1:19:2f:e4:5d:0e:bd:2f:19:c9:92:7e:db:
5c:ad:2e:3e:88:4f:84:43:8c:ef:08:cd:d6:6c:77:
79:d2:af:27:94:3e:21:f1:52:36:f3:94:61:14:36:
5b:3f:8a:b6:e7:5e:b2:a6:50:5b:56:3f:f0:ae:e5:
55:7c:62:9b:e6:9d:90:98:cc:5c:0f:09:5e:ff:ae:
e0:9d:b6:76:da:12:47:dc:69:ae:fa:4b:14:87:3a:
b0:f7:7b:7b:cf:c0:78:f6:70:3b:e0:fc:da:14:00:
34:2a:84:e1:63:ef:32:09:57:3f:c0:74:71:f1:bd:
b7:e4:12:f5:fa:86:ea:57:9c:88:ef:9d:0d:c0:52:
df:98:a3:48:33:4f:a0:02:88:1a:a7:99:d3:08:35:
36:e4:5a:f5:70:54:01:8d:46:f7:10:99:0b:88:4f:
2f:c4:53:b3:05:6d:9e:71:40:82:97:ec:a3:64:39:
4d:a7:d4:ec:b7:d6:e6:f9:01:46:ac:be:8b:64:ef:
f3:bb:c1:8a:81:8d:ba:a8:e4:21:74:cb:cf:53:e0:
22:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F7:DA:21:8A:F6:3D:1C:EB:8C:65:70:8C:65:64:6B:52:CF:CE:39
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/zffaIYr2PRzrjGVwjGVka1LPzjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.106.0/24
Signature Algorithm: sha256WithRSAEncryption
87:85:e5:ac:82:01:7b:49:5e:17:4c:fb:5c:03:7a:69:b1:67:
80:d6:12:17:5b:7b:d5:58:4a:d0:13:4a:89:20:d6:83:bd:cf:
0e:bf:38:d2:cc:45:a2:b0:ba:88:fb:73:dd:92:91:9d:25:de:
df:c1:27:52:60:17:7a:33:37:af:b6:d1:e3:e1:1e:5f:24:93:
68:e5:ac:df:37:b7:f8:f1:d5:41:ef:7e:8c:ac:13:56:6d:50:
f9:21:ca:96:35:0c:dc:a9:d0:0d:25:7a:95:53:ff:7c:93:c0:
cd:f1:3f:c9:c3:8f:41:db:20:d2:10:7e:07:26:e7:50:43:6e:
58:ea:45:d0:4b:0d:b1:79:1f:c6:95:29:3d:2b:08:e6:02:21:
0d:32:b9:ce:da:e4:51:50:12:e0:d1:48:94:cd:bd:71:ef:d3:
22:aa:2c:3a:cb:26:7c:c4:ea:97:6a:90:e8:14:f6:f0:3d:bf:
a7:a6:64:5e:8f:06:a0:72:92:a5:97:ef:bc:ad:c3:1f:b3:bb:
84:ec:73:08:f1:a0:0d:5a:2e:e7:d3:6d:33:61:43:dc:55:78:
ba:9b:91:23:69:d9:f6:c9:5b:63:2d:87:c8:65:46:f4:1c:86:
9f:c4:63:74:66:02:ba:e9:e0:aa:10:7a:cd:6e:64:65:6e:39:
d5:ba:78:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtnRkhVwtrIcfMbK/QeaxjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxODE0Y2YyY2EzZTE3OTkzNDljY2Q0YzdlNmE3NmQ2M2Y4
MzRhM2QwHhcNMjMwMTAxMTM1NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZGY3ZGEyMThhZjYzZDFjZWI4YzY1NzA4YzY1NjQ2YjUyY2ZjZTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg63kI6YOUAharWNur8C6pYnejwg5
/2zbU38lgn8TAyjjrz/euC6XaS6G20QK29EZL+RdDr0vGcmSfttcrS4+iE+EQ4zv
CM3WbHd50q8nlD4h8VI285RhFDZbP4q2516yplBbVj/wruVVfGKb5p2QmMxcDwle
/67gnbZ22hJH3Gmu+ksUhzqw93t7z8B49nA74PzaFAA0KoThY+8yCVc/wHRx8b23
5BL1+obqV5yI750NwFLfmKNIM0+gAogap5nTCDU25Fr1cFQBjUb3EJkLiE8vxFOz
BW2ecUCCl+yjZDlNp9Tst9bm+QFGrL6LZO/zu8GKgY26qOQhdMvPU+AiCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM332iGK9j0c64xlcIxlZGtSz845MB8GA1UdIwQY
MBaAFCGBTPLKPheZNJzNTH5qdtY/g0o9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVlGTThzby1GNWswbk0xTWZtcDIxai1EU2owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8wMWY4NTMtZDQ0NS00YWNlLWE4ZDgt
MjI3MDFiNGJiNDA3LzEvemZmYUlZcjJQUnpyakdWd2pHVmthMUxQemprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8wMWY4NTMtZDQ0NS00YWNlLWE4ZDgtMjI3MDFiNGJiNDA3
LzEvSVlGTThzby1GNWswbk0xTWZtcDIxai1EU2owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZJqMA0G
CSqGSIb3DQEBCwUAA4IBAQCHheWsggF7SV4XTPtcA3ppsWeA1hIXW3vVWErQE0qJ
INaDvc8OvzjSzEWisLqI+3PdkpGdJd7fwSdSYBd6MzevttHj4R5fJJNo5azfN7f4
8dVB736MrBNWbVD5IcqWNQzcqdANJXqVU/98k8DN8T/Jw49B2yDSEH4HJudQQ25Y
6kXQSw2xeR/GlSk9KwjmAiENMrnO2uRRUBLg0UiUzb1x79Miqiw6yyZ8xOqXapDo
FPbwPb+npmRejwagcpKll++8rcMfs7uE7HMI8aANWi7n020zYUPcVXi6m5Ejadn2
yVtjLYfIZUb0HIafxGN0ZgK66eCqEHrNbmRlbjnVunjQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org