Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/D8TfoQPJFLMAJHac40oRsiWJby0.roa
File: D8TfoQPJFLMAJHac40oRsiWJby0.roa (raw, json)
Hash identifier: eEi+E4bBJjl0HSsOAYUJJBbuR+qbiVOK23UNiKVYZbw=
Subject key identifier: 0F:C4:DF:A1:03:C9:14:B3:00:24:76:9C:E3:4A:11:B2:25:89:6F:2D
Certificate issuer: /CN=0141c53a7e41acca08f2ceb069a3cfff68f485eb
Certificate serial: 0183E63E661004336FBEAD37434B135E1962
Authority key identifier: 01:41:C5:3A:7E:41:AC:CA:08:F2:CE:B0:69:A3:CF:FF:68:F4:85:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUHFOn5BrMoI8s6waaPP_2j0hes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/D8TfoQPJFLMAJHac40oRsiWJby0.roa
Signing time: Mon 17 Oct 2022 13:59:52 +0000
ROA not before: Mon 17 Oct 2022 13:59:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22653
IP address blocks: 194.49.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:3e:66:10:04:33:6f:be:ad:37:43:4b:13:5e:19:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0141c53a7e41acca08f2ceb069a3cfff68f485eb
Validity
Not Before: Oct 17 13:59:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fc4dfa103c914b30024769ce34a11b225896f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ae:ee:97:f2:c9:6a:34:96:24:b3:d7:ac:d5:
84:51:3e:ee:5e:7e:73:83:58:c5:c2:95:15:e1:d5:
e9:68:d3:30:f4:14:3c:9d:3c:07:11:d8:5e:9f:53:
6e:07:a4:12:69:91:f1:fd:82:dc:ee:1c:3d:23:bd:
51:60:60:7a:40:d7:b8:46:ad:99:76:85:e9:54:8d:
b4:ef:6c:79:c9:78:f6:fe:4f:00:17:86:db:c2:c9:
b9:86:9c:1e:94:50:f2:8d:42:16:13:15:5f:72:a4:
90:59:cc:ab:34:04:87:c1:a1:e6:5f:d2:af:09:0a:
4d:a1:cf:b0:fb:a5:f9:0d:d9:a1:49:2f:1e:2d:9b:
f8:71:ba:4b:26:52:50:d3:15:d5:86:a8:d4:ac:1d:
87:31:1a:8e:6a:c1:46:05:8f:4a:c0:1b:12:f8:43:
a8:02:f7:64:ec:36:14:87:56:d6:9a:22:38:ff:90:
7f:f4:8d:6f:fd:57:a7:0e:94:89:44:39:2d:70:c9:
5c:86:5d:20:cd:89:1f:ce:5e:ab:77:57:43:8d:2c:
1e:b6:ac:c0:cb:b2:96:0a:b5:d4:15:ce:7a:3f:f3:
2c:73:b2:34:0c:a1:53:2d:a4:23:62:95:98:3e:81:
7a:d9:c3:35:30:93:b7:e1:2a:35:46:63:31:49:51:
bd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C4:DF:A1:03:C9:14:B3:00:24:76:9C:E3:4A:11:B2:25:89:6F:2D
X509v3 Authority Key Identifier:
keyid:01:41:C5:3A:7E:41:AC:CA:08:F2:CE:B0:69:A3:CF:FF:68:F4:85:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUHFOn5BrMoI8s6waaPP_2j0hes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/D8TfoQPJFLMAJHac40oRsiWJby0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/AUHFOn5BrMoI8s6waaPP_2j0hes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.86.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:7f:b6:58:3a:e5:09:7a:46:cf:f6:0a:77:e1:8e:2c:bd:31:
90:09:4e:ba:72:fa:ce:fe:66:e9:c4:be:3d:6e:0d:9e:01:35:
e7:de:f9:f2:e0:67:3f:43:58:78:e9:e4:b6:82:ed:f9:d9:69:
c5:e3:ab:f9:d9:c4:24:f2:d8:50:34:ee:ea:72:2e:62:96:c6:
90:b4:6e:fe:f2:73:c5:e1:bd:e1:a2:fe:9c:06:ea:1b:e4:d4:
a2:04:67:10:29:40:e1:1f:ee:99:1e:27:c0:d8:7e:38:c3:8e:
50:78:d4:b4:3f:e3:6c:78:4c:ae:4f:6b:e2:e3:0a:5e:aa:cb:
9e:8a:3b:d3:25:d3:cc:75:ac:76:03:ac:6e:67:7c:eb:16:ee:
8a:4d:4f:01:c3:cb:b5:5a:fe:0b:6e:ba:88:e3:a9:60:1d:a2:
0b:dd:f1:8c:ad:25:68:67:20:d0:44:19:37:16:b5:b8:39:8c:
f9:a1:97:8b:6d:e0:d9:d3:b1:a4:d4:92:49:c6:7a:5e:01:e3:
19:3d:db:f7:ea:f9:9e:27:a6:24:3c:93:17:45:92:6c:29:db:
b7:c9:71:db:89:a9:0f:fb:0b:ff:fd:82:a3:3b:69:0b:e4:69:
ba:55:7d:bc:93:1b:98:20:5f:c2:77:01:85:4a:64:76:96:fc:
ff:75:c1:1d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPmPmYQBDNvvq03Q0sTXhliMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxNDFjNTNhN2U0MWFjY2EwOGYyY2ViMDY5YTNjZmZmNjhm
NDg1ZWIwHhcNMjIxMDE3MTM1OTUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmM0ZGZhMTAzYzkxNGIzMDAyNDc2OWNlMzRhMTFiMjI1ODk2ZjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmK7ul/LJajSWJLPXrNWEUT7uXn5z
g1jFwpUV4dXpaNMw9BQ8nTwHEdhen1NuB6QSaZHx/YLc7hw9I71RYGB6QNe4Rq2Z
doXpVI2072x5yXj2/k8AF4bbwsm5hpwelFDyjUIWExVfcqSQWcyrNASHwaHmX9Kv
CQpNoc+w+6X5DdmhSS8eLZv4cbpLJlJQ0xXVhqjUrB2HMRqOasFGBY9KwBsS+EOo
Avdk7DYUh1bWmiI4/5B/9I1v/VenDpSJRDktcMlchl0gzYkfzl6rd1dDjSwetqzA
y7KWCrXUFc56P/Msc7I0DKFTLaQjYpWYPoF62cM1MJO34So1RmMxSVG9cQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA/E36EDyRSzACR2nONKEbIliW8tMB8GA1UdIwQY
MBaAFAFBxTp+QazKCPLOsGmjz/9o9IXrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVVIRk9uNUJyTW9JOHM2d2FhUFBfMmowaGVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC84ZjE3ZmEtZjQyOC00ZGQxLWIyOGIt
NDQzNjIwMzhkNWQxLzEvRDhUZm9RUEpGTE1BSkhhYzQwb1JzaVdKYnkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC84ZjE3ZmEtZjQyOC00ZGQxLWIyOGItNDQzNjIwMzhkNWQx
LzEvQVVIRk9uNUJyTW9JOHM2d2FhUFBfMmowaGVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjFWMA0G
CSqGSIb3DQEBCwUAA4IBAQBLf7ZYOuUJekbP9gp34Y4svTGQCU66cvrO/mbpxL49
bg2eATXn3vny4Gc/Q1h46eS2gu352WnF46v52cQk8thQNO7qci5ilsaQtG7+8nPF
4b3hov6cBuob5NSiBGcQKUDhH+6ZHifA2H44w45QeNS0P+NseEyuT2vi4wpeqsue
ijvTJdPMdax2A6xuZ3zrFu6KTU8Bw8u1Wv4LbrqI46lgHaIL3fGMrSVoZyDQRBk3
FrW4OYz5oZeLbeDZ07Gk1JJJxnpeAeMZPdv36vmeJ6YkPJMXRZJsKdu3yXHbiakP
+wv//YKjO2kL5Gm6VX28kxuYIF/CdwGFSmR2lvz/dcEd
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org