Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/rwdfD7KhDteX14-G8KfRmzeem1Q.roa
File: rwdfD7KhDteX14-G8KfRmzeem1Q.roa (raw, json)
Hash identifier: dFxXV0s9KWX5Mtww36eVlzNyOzP/MLV5uJZpfDT2aww=
Subject key identifier: AF:07:5F:0F:B2:A1:0E:D7:97:D7:8F:86:F0:A7:D1:9B:37:9E:9B:54
Certificate issuer: /CN=45c491362b2e386197b9a0746124288bc0bcf031
Certificate serial: 0168C420
Authority key identifier: 45:C4:91:36:2B:2E:38:61:97:B9:A0:74:61:24:28:8B:C0:BC:F0:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RcSRNisuOGGXuaB0YSQoi8C88DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/rwdfD7KhDteX14-G8KfRmzeem1Q.roa
Signing time: Sat 01 Jan 2022 12:56:19 +0000
ROA not before: Sat 01 Jan 2022 12:56:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60591
IP address blocks: 85.209.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23643168 (0x168c420)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45c491362b2e386197b9a0746124288bc0bcf031
Validity
Not Before: Jan 1 12:56:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af075f0fb2a10ed797d78f86f0a7d19b379e9b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:24:f4:b1:0e:21:49:a5:fd:d4:b7:84:ec:b4:
9e:ff:36:07:bd:c1:ef:c6:e9:3e:96:4b:0e:23:33:
62:f7:2d:e7:73:53:21:56:cd:1a:fb:ba:f7:47:93:
77:a4:02:7f:a1:e1:50:ff:b3:ba:4b:92:64:16:13:
b1:03:3d:d4:d5:cd:ec:bb:28:c4:c4:6a:11:c5:0d:
d5:06:b0:f1:3f:93:a6:86:90:eb:03:59:e2:37:4e:
11:6d:c7:55:9c:85:cd:86:6e:39:7b:3e:0e:03:57:
62:8b:14:ba:f3:c4:1e:18:17:8d:eb:f4:85:37:a3:
53:85:41:42:5d:67:15:8b:1e:cb:89:08:ca:94:1c:
81:34:07:96:77:a7:3b:7f:74:97:69:bf:31:7b:2a:
5d:af:dd:c9:03:b2:82:be:c0:a0:00:57:05:c2:9a:
23:b2:dc:e1:00:e0:fd:5c:ac:7d:04:82:c8:0c:b5:
55:a9:ca:8b:55:d9:85:c7:76:a3:42:ed:5f:ec:bd:
a2:04:bc:ad:9b:d4:6e:1e:e8:88:29:52:3e:93:a1:
f2:25:54:1a:7a:f2:7d:89:58:ad:ee:0e:3f:f5:10:
ff:03:19:f7:b6:98:19:eb:01:33:81:88:56:03:64:
b8:6e:9d:e8:36:c4:84:43:da:10:05:96:f9:5d:97:
aa:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:07:5F:0F:B2:A1:0E:D7:97:D7:8F:86:F0:A7:D1:9B:37:9E:9B:54
X509v3 Authority Key Identifier:
keyid:45:C4:91:36:2B:2E:38:61:97:B9:A0:74:61:24:28:8B:C0:BC:F0:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RcSRNisuOGGXuaB0YSQoi8C88DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/rwdfD7KhDteX14-G8KfRmzeem1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/RcSRNisuOGGXuaB0YSQoi8C88DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.148.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:4e:9b:4a:9e:07:44:ce:0a:41:61:2b:ae:e5:a5:4d:3c:53:
92:08:8b:1c:4d:b7:1c:0f:8d:62:79:2b:6f:e0:b3:72:4f:19:
6b:c4:88:e8:85:20:10:e9:12:eb:93:f8:f2:09:f1:5b:ae:d4:
ed:61:a4:ba:bf:1f:d8:6b:76:90:c7:41:8a:db:85:d3:22:01:
96:db:2c:b0:57:86:12:90:7c:0e:69:69:3d:23:a0:a1:0a:71:
92:e9:fd:61:9b:43:17:3b:7a:23:fe:f5:07:be:67:eb:0d:2d:
9a:0d:28:f1:f5:ad:b7:4e:b0:a6:39:d6:cb:00:c2:71:14:a9:
07:f7:57:4f:82:d5:4b:26:42:47:fd:d1:96:54:d8:c2:e2:fb:
e2:b7:ef:6d:f8:ff:24:64:e0:05:9e:57:35:87:c6:f5:f5:af:
99:82:09:a6:b7:b9:5a:16:57:74:3b:e1:44:29:6b:98:3f:96:
d8:05:e2:e9:88:18:e8:22:3b:dc:f8:90:d5:2f:de:36:f4:08:
92:b3:37:c1:6e:38:ac:b3:fc:5b:2a:ae:81:ee:97:7a:8d:33:
ca:22:72:1c:bd:b0:66:5c:1c:77:b7:75:67:35:22:ca:f5:d6:
36:bc:0f:9a:b9:f1:da:df:26:55:d7:91:e9:b7:6c:0e:ed:8c:
74:8e:5a:83
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAWjEIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NWM0OTEzNjJiMmUzODYxOTdiOWEwNzQ2MTI0Mjg4YmMwYmNmMDMxMB4XDTIyMDEw
MTEyNTYxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWYwNzVmMGZiMmEx
MGVkNzk3ZDc4Zjg2ZjBhN2QxOWIzNzllOWI1NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL8k9LEOIUml/dS3hOy0nv82B73B78bpPpZLDiMzYvct53NT
IVbNGvu690eTd6QCf6HhUP+zukuSZBYTsQM91NXN7LsoxMRqEcUN1Qaw8T+TpoaQ
6wNZ4jdOEW3HVZyFzYZuOXs+DgNXYosUuvPEHhgXjev0hTejU4VBQl1nFYsey4kI
ypQcgTQHlnenO390l2m/MXsqXa/dyQOygr7AoABXBcKaI7Lc4QDg/VysfQSCyAy1
VanKi1XZhcd2o0LtX+y9ogS8rZvUbh7oiClSPpOh8iVUGnryfYlYre4OP/UQ/wMZ
97aYGesBM4GIVgNkuG6d6DbEhEPaEAWW+V2XqlsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSvB18PsqEO15fXj4bwp9GbN56bVDAfBgNVHSMEGDAWgBRFxJE2Ky44YZe5
oHRhJCiLwLzwMTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JjU1JOaXN1T0dHWHVhQjBZU1FvaThDODhERS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvODZjMTgxLTRmNWMtNDVmYy1iYWFjLTFmOWExOWMzN2UwOC8x
L3J3ZGZEN0toRHRlWDE0LUc4S2ZSbXplZW0xUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
ODZjMTgxLTRmNWMtNDVmYy1iYWFjLTFmOWExOWMzN2UwOC8xL1JjU1JOaXN1T0dH
WHVhQjBZU1FvaThDODhERS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFXRlDANBgkqhkiG9w0BAQsFAAOC
AQEApU6bSp4HRM4KQWErruWlTTxTkgiLHE23HA+NYnkrb+Czck8Za8SI6IUgEOkS
65P48gnxW67U7WGkur8f2Gt2kMdBituF0yIBltsssFeGEpB8DmlpPSOgoQpxkun9
YZtDFzt6I/71B75n6w0tmg0o8fWtt06wpjnWywDCcRSpB/dXT4LVSyZCR/3RllTY
wuL74rfvbfj/JGTgBZ5XNYfG9fWvmYIJpre5WhZXdDvhRClrmD+W2AXi6YgY6CI7
3PiQ1S/eNvQIkrM3wW44rLP8Wyquge6Xeo0zyiJyHL2wZlwcd7d1ZzUiyvXWNrwP
mrnx2t8mVdeR6bdsDu2MdI5agw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:08 2024 by rpki-client on console-ams.rpki-client.org