Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/ba2876-ad98-4897-ab19-6380d04bb90d/1/FGtPkfZGiv1ogvVGxf07qXAkmxc.roa
File: FGtPkfZGiv1ogvVGxf07qXAkmxc.roa (raw, json)
Hash identifier: fzodu2k42dvnbRhY2Ydw9/LxCe4GP9CkPE6U96PvvUk=
Subject key identifier: 14:6B:4F:91:F6:46:8A:FD:68:82:F5:46:C5:FD:3B:A9:70:24:9B:17
Certificate issuer: /CN=2160df96aa0d10e347b027751353e3681e1a12de
Certificate serial: 01863A4CAABA2E302421337D5C9913A9B6B7
Authority key identifier: 21:60:DF:96:AA:0D:10:E3:47:B0:27:75:13:53:E3:68:1E:1A:12:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWDflqoNEONHsCd1E1PjaB4aEt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/ba2876-ad98-4897-ab19-6380d04bb90d/1/FGtPkfZGiv1ogvVGxf07qXAkmxc.roa
Signing time: Fri 10 Feb 2023 07:49:08 +0000
ROA not before: Fri 10 Feb 2023 07:49:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20668
IP address blocks: 193.56.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3a:4c:aa:ba:2e:30:24:21:33:7d:5c:99:13:a9:b6:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2160df96aa0d10e347b027751353e3681e1a12de
Validity
Not Before: Feb 10 07:49:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=146b4f91f6468afd6882f546c5fd3ba970249b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:64:15:da:c2:38:1b:f2:7e:08:98:cd:77:22:
e1:53:bd:9f:40:d8:2f:2c:04:9c:91:bc:52:4f:c5:
00:57:8e:cc:2d:8e:71:c7:90:3a:d2:25:ab:60:90:
9b:22:37:ae:46:b8:0f:d4:0c:9c:20:93:4b:23:15:
9a:cd:fe:d0:7c:23:ad:14:cc:01:15:a4:c5:4a:3c:
e6:bd:77:5d:a0:c5:ec:ce:a4:ec:19:5a:77:41:84:
5c:6e:66:08:2f:d8:0a:a2:13:bf:0c:d3:0b:88:28:
fe:23:77:ee:51:71:c7:5a:5b:1d:34:1e:01:91:db:
91:7d:66:21:f8:b5:78:10:e8:e7:a8:b5:2a:e1:c4:
04:c3:2d:d6:3e:cb:68:06:71:e1:3b:91:7c:ef:96:
7e:e5:ae:ef:05:e3:53:f3:29:86:58:1c:4e:c8:89:
9c:28:69:19:37:95:ef:71:f3:b5:0e:71:e9:2a:0a:
1f:9a:b0:f2:8a:fa:dd:df:54:9e:d5:a4:74:a0:f5:
53:cd:38:cb:0f:61:54:e0:9f:e1:94:2c:cd:9c:2d:
45:1a:7e:34:7a:f7:d9:d6:25:6e:35:1b:73:25:46:
be:77:e1:62:f6:1e:d0:da:b4:d4:2b:c4:ba:e9:68:
b5:2a:cb:c1:b6:a2:65:e3:99:4b:e8:f2:5a:01:e0:
05:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6B:4F:91:F6:46:8A:FD:68:82:F5:46:C5:FD:3B:A9:70:24:9B:17
X509v3 Authority Key Identifier:
keyid:21:60:DF:96:AA:0D:10:E3:47:B0:27:75:13:53:E3:68:1E:1A:12:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWDflqoNEONHsCd1E1PjaB4aEt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/ba2876-ad98-4897-ab19-6380d04bb90d/1/FGtPkfZGiv1ogvVGxf07qXAkmxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/ba2876-ad98-4897-ab19-6380d04bb90d/1/IWDflqoNEONHsCd1E1PjaB4aEt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.144.0/24
Signature Algorithm: sha256WithRSAEncryption
46:3a:54:03:75:c6:05:2c:cd:28:5e:18:2c:d6:f8:10:73:dc:
34:62:e5:b6:3e:24:bb:47:35:92:6f:1e:80:0a:a5:09:51:54:
4a:49:be:91:df:f9:7f:f0:5d:95:b3:64:5b:08:c4:b2:2f:08:
95:91:83:be:1e:32:2a:c4:4f:4c:92:0a:ac:b3:8c:cf:df:ed:
bc:51:75:93:75:b7:50:36:1d:17:4f:5a:e2:28:04:be:6a:99:
81:3d:9d:8a:e1:06:79:f4:47:ba:16:98:cd:4e:fe:aa:51:eb:
a1:56:9f:1a:95:66:23:0c:94:29:32:0c:69:a3:dc:06:84:6e:
8d:eb:1d:f8:f1:d5:a5:ed:fd:3b:6d:e8:46:8d:d8:9a:21:f4:
91:15:44:0e:4c:fb:4d:e9:3e:bf:fc:5f:87:7a:34:2a:4f:f3:
70:f8:b2:79:81:59:c1:5d:08:b5:ec:db:a4:b0:2d:b3:16:6f:
35:3f:e6:15:b6:eb:c7:c0:20:59:ed:a0:61:63:f8:e4:22:0a:
03:7e:f4:0f:0e:3f:c8:3e:a5:10:5a:66:57:e5:5f:9d:2a:6a:
db:fb:bc:37:b6:e1:d0:84:50:d1:40:81:a0:fa:7a:0d:84:ea:
5d:b8:ba:7f:f4:38:d9:cd:c1:08:4a:50:de:46:19:04:ae:d1:
8c:5f:20:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYY6TKq6LjAkITN9XJkTqba3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxNjBkZjk2YWEwZDEwZTM0N2IwMjc3NTEzNTNlMzY4MWUx
YTEyZGUwHhcNMjMwMjEwMDc0OTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDZiNGY5MWY2NDY4YWZkNjg4MmY1NDZjNWZkM2JhOTcwMjQ5YjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2QV2sI4G/J+CJjNdyLhU72fQNgv
LASckbxST8UAV47MLY5xx5A60iWrYJCbIjeuRrgP1AycIJNLIxWazf7QfCOtFMwB
FaTFSjzmvXddoMXszqTsGVp3QYRcbmYIL9gKohO/DNMLiCj+I3fuUXHHWlsdNB4B
kduRfWYh+LV4EOjnqLUq4cQEwy3WPstoBnHhO5F875Z+5a7vBeNT8ymGWBxOyImc
KGkZN5XvcfO1DnHpKgofmrDyivrd31Se1aR0oPVTzTjLD2FU4J/hlCzNnC1FGn40
evfZ1iVuNRtzJUa+d+Fi9h7Q2rTUK8S66Wi1KsvBtqJl45lL6PJaAeAFuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBRrT5H2Ror9aIL1RsX9O6lwJJsXMB8GA1UdIwQY
MBaAFCFg35aqDRDjR7AndRNT42geGhLeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVdEZmxxb05FT05Ic0NkMUUxUGphQjRhRXQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9iYTI4NzYtYWQ5OC00ODk3LWFiMTkt
NjM4MGQwNGJiOTBkLzEvRkd0UGtmWkdpdjFvZ3ZWR3hmMDdxWEFrbXhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi9iYTI4NzYtYWQ5OC00ODk3LWFiMTktNjM4MGQwNGJiOTBk
LzEvSVdEZmxxb05FT05Ic0NkMUUxUGphQjRhRXQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTiQMA0G
CSqGSIb3DQEBCwUAA4IBAQBGOlQDdcYFLM0oXhgs1vgQc9w0YuW2PiS7RzWSbx6A
CqUJUVRKSb6R3/l/8F2Vs2RbCMSyLwiVkYO+HjIqxE9Mkgqss4zP3+28UXWTdbdQ
Nh0XT1riKAS+apmBPZ2K4QZ59Ee6FpjNTv6qUeuhVp8alWYjDJQpMgxpo9wGhG6N
6x348dWl7f07behGjdiaIfSRFUQOTPtN6T6//F+HejQqT/Nw+LJ5gVnBXQi17Nuk
sC2zFm81P+YVtuvHwCBZ7aBhY/jkIgoDfvQPDj/IPqUQWmZX5V+dKmrb+7w3tuHQ
hFDRQIGg+noNhOpduLp/9DjZzcEISlDeRhkErtGMXyBz
-----END CERTIFICATE-----
Generated at Thu Dec 14 10:48:37 2023 by rpki-client on console-fra.rpki-client.org