Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/59CaNLQdF3JLRkSnIrG1ugBH7RU.roa
File: 59CaNLQdF3JLRkSnIrG1ugBH7RU.roa (raw, json)
Hash identifier: amuOvcX54GgRXJpdwybzplt1sMKvhF5d+YRspO0t5jU=
Subject key identifier: E7:D0:9A:34:B4:1D:17:72:4B:46:44:A7:22:B1:B5:BA:00:47:ED:15
Certificate issuer: /CN=74c17c3f45fc59ee6675f10914ec3a9e68b7238f
Certificate serial: 053010DA
Authority key identifier: 74:C1:7C:3F:45:FC:59:EE:66:75:F1:09:14:EC:3A:9E:68:B7:23:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dMF8P0X8We5mdfEJFOw6nmi3I48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/59CaNLQdF3JLRkSnIrG1ugBH7RU.roa
Signing time: Sat 01 Jan 2022 16:04:54 +0000
ROA not before: Sat 01 Jan 2022 16:04:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41626
IP address blocks: 86.111.228.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87036122 (0x53010da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74c17c3f45fc59ee6675f10914ec3a9e68b7238f
Validity
Not Before: Jan 1 16:04:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7d09a34b41d17724b4644a722b1b5ba0047ed15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:91:2f:17:00:b6:de:e9:a5:05:3f:7f:26:ae:
7e:e2:7f:a9:f8:b0:e5:8f:dc:8c:1c:db:c1:1b:6d:
51:8d:a5:b1:f2:83:19:a8:80:08:e2:47:12:42:6a:
6c:09:ac:2c:59:75:94:c5:d3:18:5e:10:e5:cb:e8:
8f:b2:1e:c7:29:14:38:01:63:89:fd:07:e1:b7:e3:
29:eb:c4:5e:0c:ad:b8:f4:82:d4:75:e1:c6:fb:72:
00:e2:68:0b:6b:56:16:69:8b:53:12:82:ea:ed:e5:
05:06:8b:47:72:10:40:69:22:7b:44:10:c8:b4:7b:
2e:a8:f2:1a:dd:b5:6b:8b:67:f6:1b:e6:db:18:2b:
f0:52:a6:c3:a5:d1:af:40:b3:f4:e4:5c:77:59:7b:
32:94:f6:06:e7:80:5f:ee:36:b4:ac:b2:55:c4:c5:
24:57:8e:bf:fc:3f:f3:c6:c2:98:84:db:91:f5:da:
55:38:71:55:91:ca:80:f1:a5:50:6d:0f:ab:03:51:
01:25:fc:61:24:1d:49:22:ca:20:59:89:e9:84:ba:
46:a3:ec:fd:42:e0:60:26:ab:6e:f3:25:52:0f:f8:
fd:44:ab:b5:76:b0:46:0e:e1:5e:cf:93:54:3b:87:
bb:55:40:60:41:e7:17:55:bc:e9:9b:a1:60:67:ef:
a8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D0:9A:34:B4:1D:17:72:4B:46:44:A7:22:B1:B5:BA:00:47:ED:15
X509v3 Authority Key Identifier:
keyid:74:C1:7C:3F:45:FC:59:EE:66:75:F1:09:14:EC:3A:9E:68:B7:23:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dMF8P0X8We5mdfEJFOw6nmi3I48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/59CaNLQdF3JLRkSnIrG1ugBH7RU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/dMF8P0X8We5mdfEJFOw6nmi3I48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.228.0/23
Signature Algorithm: sha256WithRSAEncryption
24:ee:be:2b:02:3c:2a:6c:80:57:4c:75:93:5f:9e:64:61:90:
75:45:1f:27:e7:38:40:9e:af:4d:56:78:1f:95:9b:c0:c7:6f:
7d:55:14:85:b7:76:f9:c4:ed:f4:73:bd:7e:78:4c:69:d6:d6:
64:3c:06:a5:25:f4:f0:16:35:63:f8:0c:15:4c:05:a5:7e:68:
8b:63:d0:ef:da:4d:91:ed:bc:4f:26:0e:a8:46:63:5d:4c:48:
59:d4:9e:0e:3c:32:71:78:d0:75:ea:8c:b3:0c:a8:64:a5:59:
9d:da:48:9d:9a:3c:8e:01:47:7d:5d:99:d4:0e:a1:e9:69:e4:
c1:e1:0b:13:51:b1:5e:f9:ee:2f:07:ac:1e:3f:26:dc:ee:76:
16:af:73:23:b6:cd:ae:86:11:05:80:37:d8:09:16:63:db:61:
33:95:e3:7b:66:a0:10:15:04:8d:45:7f:9f:ba:c6:96:67:e1:
c1:d2:e8:aa:e9:a2:f0:58:94:99:43:bd:8d:39:c4:f7:b7:6c:
74:38:72:ee:5c:e6:34:86:03:4c:74:24:01:fa:ac:4d:7f:6c:
70:2d:4b:35:b1:e4:87:28:e6:b4:6f:56:e2:57:d8:e2:52:bb:
e2:4b:a2:d7:37:89:17:14:f3:e8:8c:37:86:e2:73:86:1d:0e:
b8:d6:06:6d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBTAQ2jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NGMxN2MzZjQ1ZmM1OWVlNjY3NWYxMDkxNGVjM2E5ZTY4YjcyMzhmMB4XDTIyMDEw
MTE2MDQ1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTdkMDlhMzRiNDFk
MTc3MjRiNDY0NGE3MjJiMWI1YmEwMDQ3ZWQxNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALKRLxcAtt7ppQU/fyaufuJ/qfiw5Y/cjBzbwRttUY2lsfKD
GaiACOJHEkJqbAmsLFl1lMXTGF4Q5cvoj7IexykUOAFjif0H4bfjKevEXgytuPSC
1HXhxvtyAOJoC2tWFmmLUxKC6u3lBQaLR3IQQGkie0QQyLR7LqjyGt21a4tn9hvm
2xgr8FKmw6XRr0Cz9ORcd1l7MpT2BueAX+42tKyyVcTFJFeOv/w/88bCmITbkfXa
VThxVZHKgPGlUG0PqwNRASX8YSQdSSLKIFmJ6YS6RqPs/ULgYCarbvMlUg/4/USr
tXawRg7hXs+TVDuHu1VAYEHnF1W86ZuhYGfvqJkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTn0Jo0tB0XcktGRKcisbW6AEftFTAfBgNVHSMEGDAWgBR0wXw/RfxZ7mZ1
8QkU7DqeaLcjjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RNRjhQMFg4V2U1bWRmRUpGT3c2bm1pM0k0OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWIvYzJjZmFmLWIxYWUtNDZkOC05MmE3LWQwMTc0YTcxMzhhNC8x
LzU5Q2FOTFFkRjNKTFJrU25JckcxdWdCSDdSVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIv
YzJjZmFmLWIxYWUtNDZkOC05MmE3LWQwMTc0YTcxMzhhNC8xL2RNRjhQMFg4V2U1
bWRmRUpGT3c2bm1pM0k0OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVZv5DANBgkqhkiG9w0BAQsFAAOC
AQEAJO6+KwI8KmyAV0x1k1+eZGGQdUUfJ+c4QJ6vTVZ4H5WbwMdvfVUUhbd2+cTt
9HO9fnhMadbWZDwGpSX08BY1Y/gMFUwFpX5oi2PQ79pNke28TyYOqEZjXUxIWdSe
DjwycXjQdeqMswyoZKVZndpInZo8jgFHfV2Z1A6h6WnkweELE1GxXvnuLwesHj8m
3O52Fq9zI7bNroYRBYA32AkWY9thM5Xje2agEBUEjUV/n7rGlmfhwdLoqumi8FiU
mUO9jTnE97dsdDhy7lzmNIYDTHQkAfqsTX9scC1LNbHkhyjmtG9W4lfY4lK74kui
1zeJFxTz6Iw3huJzhh0OuNYGbQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:26 2024 by rpki-client on console-fra.rpki-client.org