Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/B4ePyl8zrlHMFntPTOIW1YNARmQ.roa
File: B4ePyl8zrlHMFntPTOIW1YNARmQ.roa (raw, json)
Hash identifier: NsYSHixU7ehjp7s5ABMDG2cR8f5hOjA7w8kyS5SW1bU=
Subject key identifier: 07:87:8F:CA:5F:33:AE:51:CC:16:7B:4F:4C:E2:16:D5:83:40:46:64
Certificate issuer: /CN=543b0e6e50655043357a552d4b6c2b302de597f0
Certificate serial: 01856DE64282914E3B2C37BA550FEEFBADB9
Authority key identifier: 54:3B:0E:6E:50:65:50:43:35:7A:55:2D:4B:6C:2B:30:2D:E5:97:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDsOblBlUEM1elUtS2wrMC3ll_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/B4ePyl8zrlHMFntPTOIW1YNARmQ.roa
Signing time: Sun 01 Jan 2023 15:14:44 +0000
ROA not before: Sun 01 Jan 2023 15:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212369
IP address blocks: 193.3.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:42:82:91:4e:3b:2c:37:ba:55:0f:ee:fb:ad:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543b0e6e50655043357a552d4b6c2b302de597f0
Validity
Not Before: Jan 1 15:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07878fca5f33ae51cc167b4f4ce216d583404664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:51:5d:16:d6:98:20:f0:53:46:85:a6:64:28:
57:52:09:73:c8:f4:d9:f2:45:fb:6a:a7:08:c5:67:
3a:87:94:61:4b:a2:b2:cf:99:1e:9d:ce:09:51:8b:
de:23:3d:a7:e9:f5:db:a2:a9:5e:bd:00:4b:5b:e3:
b6:da:c8:a2:8f:cb:55:1b:95:ab:b2:55:9f:37:00:
d6:6b:9e:f3:f1:a7:bd:29:d6:bf:d1:4a:b3:7f:38:
10:8e:3c:7b:c6:b9:5a:0d:28:5d:ca:bd:84:43:68:
1b:6e:d4:ce:74:f1:8d:62:c7:45:26:9c:be:29:5e:
ef:38:87:1d:7c:53:f4:0a:e5:27:2f:ac:07:ee:b8:
aa:e0:a9:87:08:0f:82:85:96:71:5f:12:4c:ae:0c:
51:3d:33:6b:a0:b5:a2:a6:fe:5d:c2:93:74:f1:92:
db:75:93:4c:9f:ae:fa:e1:24:52:78:4b:7f:93:bb:
2e:7d:ab:0a:d1:e2:75:b5:3b:d2:91:22:64:97:ef:
cb:95:bc:b1:e6:5b:0a:47:1f:8c:57:6e:5b:46:5a:
b8:97:36:bd:05:f1:47:81:b7:1e:21:fa:6b:bd:0f:
9b:40:78:72:40:ad:b1:6f:10:48:dc:87:d6:d7:68:
7e:43:10:83:9d:c9:f9:76:60:44:0a:cd:07:af:d4:
4d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:87:8F:CA:5F:33:AE:51:CC:16:7B:4F:4C:E2:16:D5:83:40:46:64
X509v3 Authority Key Identifier:
keyid:54:3B:0E:6E:50:65:50:43:35:7A:55:2D:4B:6C:2B:30:2D:E5:97:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDsOblBlUEM1elUtS2wrMC3ll_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/B4ePyl8zrlHMFntPTOIW1YNARmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/1c2a4a-0b62-4df3-99a3-54ec3e27129a/1/VDsOblBlUEM1elUtS2wrMC3ll_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.167.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:d4:da:a4:53:a1:1d:4d:4d:9e:69:9a:63:c0:29:d6:f3:40:
d0:6c:a0:0b:b9:5e:52:82:9a:8e:f5:72:19:48:df:6c:6c:ed:
a7:b4:f4:09:e5:a1:6b:81:3c:18:b0:eb:e1:d0:4f:51:57:44:
44:40:5f:f6:1e:9e:f0:4d:e3:be:49:20:77:0a:85:75:b0:77:
ec:be:f3:72:10:98:40:d7:a5:11:39:b3:98:87:2d:a9:99:b9:
16:00:fc:5b:12:e0:79:5b:6a:a9:d8:b6:a0:2c:f2:7c:ae:dd:
ee:6d:3e:c0:92:84:e1:c9:96:db:16:33:e8:2a:41:03:0a:24:
00:6f:1d:9a:55:cd:f3:bf:8a:18:ec:e1:d0:c6:05:d4:33:d2:
eb:62:11:80:6a:c5:fd:90:47:3c:3d:0e:f5:af:e0:a8:65:9e:
ac:b2:e1:9f:78:1f:9d:97:f4:96:4c:3f:fb:d3:82:00:5d:b8:
19:0b:ba:cb:1a:61:81:23:70:a2:47:2b:2c:18:24:bf:dd:d6:
43:c2:14:91:70:5e:50:0a:46:10:a2:36:3a:88:61:b1:a0:6e:
43:aa:02:71:97:65:45:61:fc:2c:40:01:62:99:f6:0c:d8:3a:
25:22:56:3c:2c:47:ea:af:2e:ac:9d:b7:00:bb:32:c5:64:ab:
81:fe:f3:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt5kKCkU47LDe6VQ/u+625MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0M2IwZTZlNTA2NTUwNDMzNTdhNTUyZDRiNmMyYjMwMmRl
NTk3ZjAwHhcNMjMwMTAxMTUxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzg3OGZjYTVmMzNhZTUxY2MxNjdiNGY0Y2UyMTZkNTgzNDA0NjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1FdFtaYIPBTRoWmZChXUglzyPTZ
8kX7aqcIxWc6h5RhS6Kyz5kenc4JUYveIz2n6fXboqlevQBLW+O22siij8tVG5Wr
slWfNwDWa57z8ae9Kda/0UqzfzgQjjx7xrlaDShdyr2EQ2gbbtTOdPGNYsdFJpy+
KV7vOIcdfFP0CuUnL6wH7riq4KmHCA+ChZZxXxJMrgxRPTNroLWipv5dwpN08ZLb
dZNMn6764SRSeEt/k7sufasK0eJ1tTvSkSJkl+/Llbyx5lsKRx+MV25bRlq4lza9
BfFHgbceIfprvQ+bQHhyQK2xbxBI3IfW12h+QxCDncn5dmBECs0Hr9RNmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAeHj8pfM65RzBZ7T0ziFtWDQEZkMB8GA1UdIwQY
MBaAFFQ7Dm5QZVBDNXpVLUtsKzAt5ZfwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkRzT2JsQmxVRU0xZWxVdFMyd3JNQzNsbF9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8xYzJhNGEtMGI2Mi00ZGYzLTk5YTMt
NTRlYzNlMjcxMjlhLzEvQjRlUHlsOHpybEhNRm50UFRPSVcxWU5BUm1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8xYzJhNGEtMGI2Mi00ZGYzLTk5YTMtNTRlYzNlMjcxMjlh
LzEvVkRzT2JsQmxVRU0xZWxVdFMyd3JNQzNsbF9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQOnMA0G
CSqGSIb3DQEBCwUAA4IBAQAr1NqkU6EdTU2eaZpjwCnW80DQbKALuV5SgpqO9XIZ
SN9sbO2ntPQJ5aFrgTwYsOvh0E9RV0REQF/2Hp7wTeO+SSB3CoV1sHfsvvNyEJhA
16URObOYhy2pmbkWAPxbEuB5W2qp2LagLPJ8rt3ubT7AkoThyZbbFjPoKkEDCiQA
bx2aVc3zv4oY7OHQxgXUM9LrYhGAasX9kEc8PQ71r+CoZZ6ssuGfeB+dl/SWTD/7
04IAXbgZC7rLGmGBI3CiRyssGCS/3dZDwhSRcF5QCkYQojY6iGGxoG5DqgJxl2VF
YfwsQAFimfYM2DolIlY8LEfqry6snbcAuzLFZKuB/vPT
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:48 2024 by rpki-client on console-ams.rpki-client.org