Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/167b5f-2d68-46c8-90f5-9ed2f166feae/1/p8uKJqNq2TseJe9wsAreR1gmDhs.roa
File: p8uKJqNq2TseJe9wsAreR1gmDhs.roa (raw, json)
Hash identifier: GpujA7As6/XULwgdAEODPVk2xQnaHSERbbpm7PBAtlM=
Subject key identifier: A7:CB:8A:26:A3:6A:D9:3B:1E:25:EF:70:B0:0A:DE:47:58:26:0E:1B
Certificate issuer: /CN=b70e414e19b7a35418a33a1af9eccad16e23e8df
Certificate serial: 0D859FAF
Authority key identifier: B7:0E:41:4E:19:B7:A3:54:18:A3:3A:1A:F9:EC:CA:D1:6E:23:E8:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tw5BThm3o1QYozoa-ezK0W4j6N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/167b5f-2d68-46c8-90f5-9ed2f166feae/1/p8uKJqNq2TseJe9wsAreR1gmDhs.roa
Signing time: Sat 01 Jan 2022 12:58:36 +0000
ROA not before: Sat 01 Jan 2022 12:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208226
IP address blocks: 5.42.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226860975 (0xd859faf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b70e414e19b7a35418a33a1af9eccad16e23e8df
Validity
Not Before: Jan 1 12:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7cb8a26a36ad93b1e25ef70b00ade4758260e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:56:62:0e:61:5b:73:3a:6c:0f:ee:56:af:4a:
0e:61:27:21:b8:5f:32:a1:db:0a:81:a4:15:93:55:
f2:45:de:7b:a7:d5:24:44:ef:b6:5b:ac:ca:97:4a:
be:fb:4f:0b:90:25:62:8f:2b:90:fc:00:24:98:74:
e4:27:2c:6a:19:9e:4d:12:7e:34:bd:2f:ca:a7:29:
ae:a0:14:fa:e9:7d:76:e1:22:8d:a4:95:6d:d9:09:
ff:90:26:1e:b5:ae:7d:74:3f:0c:8e:36:21:e7:5f:
1a:4f:f5:05:6b:cd:49:bb:26:63:c6:16:2e:3e:4e:
2b:52:24:6e:ea:37:8d:69:6f:7d:3d:af:7b:b6:c8:
02:68:76:c2:9c:00:21:23:61:8b:ba:c1:09:6e:0c:
d0:0d:e5:d7:b7:8f:5e:c9:4b:fd:20:55:06:17:e0:
8c:f6:0e:9a:7d:0b:a1:b5:b6:2c:93:8a:e5:e1:2c:
20:fe:a6:56:2a:68:58:a3:f6:0d:a9:26:12:06:ea:
ee:6a:b4:e9:fe:e7:1e:f7:11:b4:e1:97:bb:e4:dd:
a7:28:a2:96:81:3c:43:cc:c4:1b:d2:fb:2e:2b:d6:
69:83:26:bd:17:b3:8f:50:09:c6:7c:60:38:5a:10:
b1:e7:92:2a:61:d1:f4:25:da:fa:ab:62:56:44:9a:
1b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:CB:8A:26:A3:6A:D9:3B:1E:25:EF:70:B0:0A:DE:47:58:26:0E:1B
X509v3 Authority Key Identifier:
keyid:B7:0E:41:4E:19:B7:A3:54:18:A3:3A:1A:F9:EC:CA:D1:6E:23:E8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tw5BThm3o1QYozoa-ezK0W4j6N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/167b5f-2d68-46c8-90f5-9ed2f166feae/1/p8uKJqNq2TseJe9wsAreR1gmDhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/167b5f-2d68-46c8-90f5-9ed2f166feae/1/tw5BThm3o1QYozoa-ezK0W4j6N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.158.0/24
Signature Algorithm: sha256WithRSAEncryption
46:36:99:6b:86:30:c8:dd:7e:6b:67:71:86:8a:82:9f:1c:54:
9b:a2:92:03:e3:f8:b6:b5:c9:84:0b:20:e4:89:1f:4c:0a:41:
b8:b9:87:09:38:b0:1b:8d:a1:65:48:ef:35:c9:e1:50:21:91:
11:71:b0:6b:4b:85:6b:56:f3:cf:fe:74:60:c5:b8:24:92:a4:
07:84:4f:14:c8:a4:cc:56:66:19:ed:da:fb:77:13:49:fa:b7:
d0:05:94:07:84:00:31:b5:16:68:8e:64:ef:bd:a9:84:6f:49:
86:00:9a:99:16:97:39:72:fd:fd:13:fe:6b:91:ea:6f:3c:8d:
ae:62:d7:99:79:4a:cb:54:17:cc:cb:06:ae:0e:6a:5c:29:73:
74:8d:7a:7a:6b:92:8d:0f:51:12:ad:ee:16:ba:13:95:88:9f:
db:c2:bc:2e:33:4f:2a:5d:52:9b:ce:6d:1d:11:bd:d0:62:92:
39:f1:22:5f:50:a8:de:a6:50:1e:02:3d:0a:d1:0d:f6:0c:38:
ec:82:a8:a1:82:55:52:f6:ce:f4:b2:d9:6f:3a:21:d6:60:74:
05:0b:20:39:1e:33:26:71:29:21:8a:9a:92:52:94:42:d1:c2:
24:a7:39:2e:a7:66:9f:1a:28:3c:85:19:9d:f5:89:95:8e:8c:
51:09:6c:65
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDYWfrzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NzBlNDE0ZTE5YjdhMzU0MThhMzNhMWFmOWVjY2FkMTZlMjNlOGRmMB4XDTIyMDEw
MTEyNTgzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTdjYjhhMjZhMzZh
ZDkzYjFlMjVlZjcwYjAwYWRlNDc1ODI2MGUxYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMpWYg5hW3M6bA/uVq9KDmEnIbhfMqHbCoGkFZNV8kXee6fV
JETvtlusypdKvvtPC5AlYo8rkPwAJJh05CcsahmeTRJ+NL0vyqcprqAU+ul9duEi
jaSVbdkJ/5AmHrWufXQ/DI42IedfGk/1BWvNSbsmY8YWLj5OK1Ikbuo3jWlvfT2v
e7bIAmh2wpwAISNhi7rBCW4M0A3l17ePXslL/SBVBhfgjPYOmn0LobW2LJOK5eEs
IP6mVipoWKP2DakmEgbq7mq06f7nHvcRtOGXu+TdpyiiloE8Q8zEG9L7LivWaYMm
vRezj1AJxnxgOFoQseeSKmHR9CXa+qtiVkSaG6UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSny4omo2rZOx4l73CwCt5HWCYOGzAfBgNVHSMEGDAWgBS3DkFOGbejVBij
Ohr57MrRbiPo3zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3R3NUJUaG0zbzFRWW96b2EtZXpLMFc0ajZOOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjYvMTY3YjVmLTJkNjgtNDZjOC05MGY1LTllZDJmMTY2ZmVhZS8x
L3A4dUtKcU5xMlRzZUplOXdzQXJlUjFnbURocy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYv
MTY3YjVmLTJkNjgtNDZjOC05MGY1LTllZDJmMTY2ZmVhZS8xL3R3NUJUaG0zbzFR
WW96b2EtZXpLMFc0ajZOOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAUqnjANBgkqhkiG9w0BAQsFAAOC
AQEARjaZa4YwyN1+a2dxhoqCnxxUm6KSA+P4trXJhAsg5IkfTApBuLmHCTiwG42h
ZUjvNcnhUCGREXGwa0uFa1bzz/50YMW4JJKkB4RPFMikzFZmGe3a+3cTSfq30AWU
B4QAMbUWaI5k772phG9JhgCamRaXOXL9/RP+a5HqbzyNrmLXmXlKy1QXzMsGrg5q
XClzdI16emuSjQ9REq3uFroTlYif28K8LjNPKl1Sm85tHRG90GKSOfEiX1Co3qZQ
HgI9CtEN9gw47IKooYJVUvbO9LLZbzoh1mB0BQsgOR4zJnEpIYqaklKUQtHCJKc5
LqdmnxooPIUZnfWJlY6MUQlsZQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:27 2023 by rpki-client on console-fra.rpki-client.org