Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9e7bc0-3b77-4077-b2f1-4eb5f6cc53aa/1/nBclbkjbNFkMEMgXngtyT9NWDEc.roa
File: nBclbkjbNFkMEMgXngtyT9NWDEc.roa (raw, json)
Hash identifier: gReNlLwBg+46CvKi5xpmB/6knvP2Vpwo4At5jjauMbg=
Subject key identifier: 9C:17:25:6E:48:DB:34:59:0C:10:C8:17:9E:0B:72:4F:D3:56:0C:47
Certificate issuer: /CN=dc519b8bbfb8613c30d5a5173784723af266eb33
Certificate serial: 01856B9C529A7B1D237B48332D17FB94CDA0
Authority key identifier: DC:51:9B:8B:BF:B8:61:3C:30:D5:A5:17:37:84:72:3A:F2:66:EB:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3FGbi7-4YTww1aUXN4RyOvJm6zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9e7bc0-3b77-4077-b2f1-4eb5f6cc53aa/1/nBclbkjbNFkMEMgXngtyT9NWDEc.roa
Signing time: Sun 01 Jan 2023 04:34:44 +0000
ROA not before: Sun 01 Jan 2023 04:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39563
IP address blocks: 85.8.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:52:9a:7b:1d:23:7b:48:33:2d:17:fb:94:cd:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc519b8bbfb8613c30d5a5173784723af266eb33
Validity
Not Before: Jan 1 04:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c17256e48db34590c10c8179e0b724fd3560c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b5:28:eb:1e:2c:04:d4:08:08:7f:3f:35:3a:
bd:9b:55:4a:3b:70:42:fa:6f:b7:cd:75:0c:40:b4:
8b:8e:c6:37:22:04:c1:15:48:06:87:ac:3e:4d:dd:
ed:da:03:5b:fa:a8:52:2a:98:b3:bb:61:f7:bf:aa:
07:13:04:5f:fc:2b:c2:2c:54:f7:c4:56:37:32:8b:
75:1e:64:5e:be:85:6f:c1:e2:74:9a:ba:95:c9:10:
0e:99:75:c5:91:ec:ee:73:67:b5:bb:2c:e1:90:32:
00:00:d8:e4:2e:b3:e0:e0:ec:c0:37:4b:f6:38:9f:
24:db:71:4f:f3:bf:59:b5:2c:44:55:fb:0f:b9:f7:
86:10:62:a7:c0:59:95:c6:cc:6e:bf:36:9b:02:2e:
40:e5:40:bb:a4:a2:51:c1:ff:f6:4b:a1:2f:c4:19:
2e:70:99:d0:07:b1:fd:8b:f2:8b:fe:ce:ec:15:7f:
13:43:98:f4:52:32:dc:ca:dd:e7:ac:86:04:70:00:
1e:25:f3:dc:23:72:88:5d:2f:49:ca:d2:8a:07:82:
aa:13:46:2c:64:5b:f7:9a:fc:7c:f5:d7:75:ac:72:
92:a6:75:ed:c7:0a:04:7d:2a:27:52:4e:dc:76:ea:
e3:da:5b:47:5a:67:80:10:64:f4:6c:4e:ac:9f:70:
0f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:17:25:6E:48:DB:34:59:0C:10:C8:17:9E:0B:72:4F:D3:56:0C:47
X509v3 Authority Key Identifier:
keyid:DC:51:9B:8B:BF:B8:61:3C:30:D5:A5:17:37:84:72:3A:F2:66:EB:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3FGbi7-4YTww1aUXN4RyOvJm6zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9e7bc0-3b77-4077-b2f1-4eb5f6cc53aa/1/nBclbkjbNFkMEMgXngtyT9NWDEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9e7bc0-3b77-4077-b2f1-4eb5f6cc53aa/1/3FGbi7-4YTww1aUXN4RyOvJm6zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.131.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:73:91:dc:62:01:0c:e8:c6:57:b0:69:8a:a7:c2:ca:6b:22:
e3:ad:a4:20:42:53:ac:ce:76:c0:19:b9:53:ca:2a:c0:a8:4f:
69:19:fa:d2:07:3e:17:a0:45:7d:4a:fd:2b:97:35:2d:7e:ff:
96:78:e1:ee:8b:9c:35:39:67:5a:b4:d1:53:e0:21:66:89:ab:
33:42:c0:97:61:37:a0:93:04:28:19:dd:a5:71:60:5d:18:56:
f9:2c:35:55:dc:92:0b:79:5a:5e:45:05:3b:5f:c7:0f:25:f4:
60:13:9b:fd:fc:e3:43:ff:3f:8a:e9:53:68:e0:13:2b:5f:3e:
0d:c2:d5:83:f4:fd:23:d0:61:4b:75:ea:2c:59:b7:20:78:91:
33:0b:8d:14:2a:e5:93:1d:4e:5c:1f:72:3d:9d:32:71:98:db:
03:8e:97:bf:a4:58:53:cf:8c:04:4e:28:f9:6b:af:ab:ae:37:
d5:1b:28:fe:7f:55:ab:9c:7d:4b:ab:1d:9e:29:c6:47:64:01:
03:04:dd:30:34:45:e3:0e:3a:f3:16:a7:c4:a5:ed:ad:07:6d:
df:54:9b:08:8c:a8:da:fa:ca:e9:4f:0f:32:4e:a1:41:e2:12:
c7:e1:9c:a3:55:ba:4f:5d:bd:f7:11:f1:4e:fd:41:cc:e5:2c:
04:8c:3b:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrnFKaex0je0gzLRf7lM2gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNTE5YjhiYmZiODYxM2MzMGQ1YTUxNzM3ODQ3MjNhZjI2
NmViMzMwHhcNMjMwMTAxMDQzNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzE3MjU2ZTQ4ZGIzNDU5MGMxMGM4MTc5ZTBiNzI0ZmQzNTYwYzQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoLUo6x4sBNQICH8/NTq9m1VKO3BC
+m+3zXUMQLSLjsY3IgTBFUgGh6w+Td3t2gNb+qhSKpizu2H3v6oHEwRf/CvCLFT3
xFY3Mot1HmRevoVvweJ0mrqVyRAOmXXFkezuc2e1uyzhkDIAANjkLrPg4OzAN0v2
OJ8k23FP879ZtSxEVfsPufeGEGKnwFmVxsxuvzabAi5A5UC7pKJRwf/2S6EvxBku
cJnQB7H9i/KL/s7sFX8TQ5j0UjLcyt3nrIYEcAAeJfPcI3KIXS9JytKKB4KqE0Ys
ZFv3mvx89dd1rHKSpnXtxwoEfSonUk7cdurj2ltHWmeAEGT0bE6sn3APTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJwXJW5I2zRZDBDIF54Lck/TVgxHMB8GA1UdIwQY
MBaAFNxRm4u/uGE8MNWlFzeEcjryZuszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0ZHYmk3LTRZVHd3MWFVWE40UnlPdkptNnpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC85ZTdiYzAtM2I3Ny00MDc3LWIyZjEt
NGViNWY2Y2M1M2FhLzEvbkJjbGJramJORmtNRU1nWG5ndHlUOU5XREVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC85ZTdiYzAtM2I3Ny00MDc3LWIyZjEtNGViNWY2Y2M1M2Fh
LzEvM0ZHYmk3LTRZVHd3MWFVWE40UnlPdkptNnpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVQiDMA0G
CSqGSIb3DQEBCwUAA4IBAQBPc5HcYgEM6MZXsGmKp8LKayLjraQgQlOsznbAGblT
yirAqE9pGfrSBz4XoEV9Sv0rlzUtfv+WeOHui5w1OWdatNFT4CFmiaszQsCXYTeg
kwQoGd2lcWBdGFb5LDVV3JILeVpeRQU7X8cPJfRgE5v9/OND/z+K6VNo4BMrXz4N
wtWD9P0j0GFLdeosWbcgeJEzC40UKuWTHU5cH3I9nTJxmNsDjpe/pFhTz4wETij5
a6+rrjfVGyj+f1WrnH1Lqx2eKcZHZAEDBN0wNEXjDjrzFqfEpe2tB23fVJsIjKja
+srpTw8yTqFB4hLH4ZyjVbpPXb33EfFO/UHM5SwEjDt8
-----END CERTIFICATE-----
Generated at Mon Aug 28 07:25:54 2023 by rpki-client on console-ams.rpki-client.org