Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/3b1ce5-b58f-4622-a565-190692b700f8/1/dCMv5YhU2Vdvu9wkhhLCX49pii8.roa
File: dCMv5YhU2Vdvu9wkhhLCX49pii8.roa (raw, json)
Hash identifier: vy4VSl7+UCGm92/58Qh/id0WcWlv8mLzm3grCohDQ/A=
Subject key identifier: 74:23:2F:E5:88:54:D9:57:6F:BB:DC:24:86:12:C2:5F:8F:69:8A:2F
Certificate issuer: /CN=40f257a57bc23e9db0997db7272fa94091e17d09
Certificate serial: 018964C05C1A2333F0AF0BE0D87F1003E28D
Authority key identifier: 40:F2:57:A5:7B:C2:3E:9D:B0:99:7D:B7:27:2F:A9:40:91:E1:7D:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QPJXpXvCPp2wmX23Jy-pQJHhfQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/3b1ce5-b58f-4622-a565-190692b700f8/1/dCMv5YhU2Vdvu9wkhhLCX49pii8.roa
Signing time: Mon 17 Jul 2023 16:47:55 +0000
ROA not before: Mon 17 Jul 2023 16:47:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 176.100.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:5c:1a:23:33:f0:af:0b:e0:d8:7f:10:03:e2:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40f257a57bc23e9db0997db7272fa94091e17d09
Validity
Not Before: Jul 17 16:47:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74232fe58854d9576fbbdc248612c25f8f698a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:58:62:a6:16:ae:d8:7a:14:e6:18:fb:4d:de:
5a:4d:54:8b:0d:34:04:6a:eb:b1:7d:bc:21:cd:d5:
ca:38:59:74:9c:53:b2:7c:8a:f6:71:45:ea:5b:1c:
c3:6b:be:dc:3a:97:23:ea:ad:93:2d:51:1c:b1:b7:
37:72:35:6f:79:8f:d5:03:ab:20:51:77:39:71:33:
08:9d:bd:b5:de:0e:5a:56:6f:8d:4a:cf:05:56:25:
bb:c0:73:11:b9:cd:dd:a7:80:96:54:11:c3:72:0a:
73:9b:ae:22:da:d0:f9:0c:f4:a0:d4:e4:b3:f6:43:
cc:e0:48:e1:97:3e:0d:7e:6f:bd:29:54:e2:3f:5d:
80:c3:25:96:cb:95:ad:f5:04:5c:0b:eb:9d:1c:53:
d8:fb:ef:3c:b3:7d:ac:7c:31:70:e7:e7:5e:a6:08:
97:1b:da:bf:77:98:5c:29:db:19:53:35:67:10:16:
7d:0f:ea:e1:ad:f5:8d:dc:20:f5:73:d5:38:9c:d8:
4d:3c:bb:8e:96:31:97:aa:7c:17:f1:5b:e4:6f:3e:
91:3f:05:fc:99:26:94:46:0c:0c:aa:ce:b1:53:a8:
84:4d:3c:77:22:1b:2a:6b:80:88:b2:76:d2:b1:5f:
c4:a3:fd:87:0b:65:52:64:64:c4:0f:9e:c1:94:67:
af:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:23:2F:E5:88:54:D9:57:6F:BB:DC:24:86:12:C2:5F:8F:69:8A:2F
X509v3 Authority Key Identifier:
keyid:40:F2:57:A5:7B:C2:3E:9D:B0:99:7D:B7:27:2F:A9:40:91:E1:7D:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QPJXpXvCPp2wmX23Jy-pQJHhfQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3b1ce5-b58f-4622-a565-190692b700f8/1/dCMv5YhU2Vdvu9wkhhLCX49pii8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3b1ce5-b58f-4622-a565-190692b700f8/1/QPJXpXvCPp2wmX23Jy-pQJHhfQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.47.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:ea:2b:09:ba:1e:96:b9:cd:b8:01:e3:4a:e0:b4:59:10:36:
99:db:c7:57:9e:11:db:81:1c:a7:7b:b0:52:b1:d0:38:0e:3c:
d8:d6:51:3b:12:96:ec:68:d0:39:89:c4:23:48:eb:bf:52:12:
d9:c8:a6:81:19:4a:9c:4c:81:48:cc:6c:36:b7:2e:59:cf:c6:
7d:41:4e:4b:46:fa:f0:88:31:47:e0:ed:5d:53:93:ba:7c:9c:
ea:35:29:d3:71:97:62:2f:33:45:ea:77:19:e9:6e:da:91:f8:
1a:78:f4:96:dd:82:ee:50:1b:c4:e3:16:81:b4:9d:89:68:d1:
ea:7e:25:ce:2a:5f:ed:ac:92:62:1c:25:0d:ee:43:4a:43:5a:
93:95:37:e0:2c:64:ed:03:c4:f0:ad:51:4d:8f:82:f1:f2:71:
00:db:f6:16:54:29:83:ab:51:43:0b:28:70:36:f8:92:60:d1:
61:0f:a0:26:18:5b:3a:14:55:1d:65:3f:ae:39:aa:a5:48:bd:
a8:a1:8c:9e:cc:83:61:35:19:f1:90:a6:ce:dc:9a:78:89:c6:
ef:5c:51:42:3d:67:cd:34:6c:bf:84:cc:d3:15:36:d5:58:14:
0a:11:38:90:8f:40:49:ab:8f:b0:2b:a5:39:0e:f5:02:5d:3a:
9a:6d:62:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlkwFwaIzPwrwvg2H8QA+KNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwZjI1N2E1N2JjMjNlOWRiMDk5N2RiNzI3MmZhOTQwOTFl
MTdkMDkwHhcNMjMwNzE3MTY0NzU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDIzMmZlNTg4NTRkOTU3NmZiYmRjMjQ4NjEyYzI1ZjhmNjk4YTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklhiphau2HoU5hj7Td5aTVSLDTQE
auuxfbwhzdXKOFl0nFOyfIr2cUXqWxzDa77cOpcj6q2TLVEcsbc3cjVveY/VA6sg
UXc5cTMInb213g5aVm+NSs8FViW7wHMRuc3dp4CWVBHDcgpzm64i2tD5DPSg1OSz
9kPM4Ejhlz4Nfm+9KVTiP12AwyWWy5Wt9QRcC+udHFPY++88s32sfDFw5+depgiX
G9q/d5hcKdsZUzVnEBZ9D+rhrfWN3CD1c9U4nNhNPLuOljGXqnwX8Vvkbz6RPwX8
mSaURgwMqs6xU6iETTx3Ihsqa4CIsnbSsV/Eo/2HC2VSZGTED57BlGevlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHQjL+WIVNlXb7vcJIYSwl+PaYovMB8GA1UdIwQY
MBaAFEDyV6V7wj6dsJl9tycvqUCR4X0JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVBKWHBYdkNQcDJ3bVgyM0p5LXBRSkhoZlFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8zYjFjZTUtYjU4Zi00NjIyLWE1NjUt
MTkwNjkyYjcwMGY4LzEvZENNdjVZaFUyVmR2dTl3a2hoTENYNDlwaWk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8zYjFjZTUtYjU4Zi00NjIyLWE1NjUtMTkwNjkyYjcwMGY4
LzEvUVBKWHBYdkNQcDJ3bVgyM0p5LXBRSkhoZlFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGQvMA0G
CSqGSIb3DQEBCwUAA4IBAQA86isJuh6Wuc24AeNK4LRZEDaZ28dXnhHbgRyne7BS
sdA4DjzY1lE7EpbsaNA5icQjSOu/UhLZyKaBGUqcTIFIzGw2ty5Zz8Z9QU5LRvrw
iDFH4O1dU5O6fJzqNSnTcZdiLzNF6ncZ6W7akfgaePSW3YLuUBvE4xaBtJ2JaNHq
fiXOKl/trJJiHCUN7kNKQ1qTlTfgLGTtA8TwrVFNj4Lx8nEA2/YWVCmDq1FDCyhw
NviSYNFhD6AmGFs6FFUdZT+uOaqlSL2ooYyezINhNRnxkKbO3Jp4icbvXFFCPWfN
NGy/hMzTFTbVWBQKETiQj0BJq4+wK6U5DvUCXTqabWJq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:22 2024 by rpki-client on console-fra.rpki-client.org