Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9f86f3-7465-43be-b72a-a79c759bdb7d/1/Z_h1VIBBCgYrvOi20WQSYwjnMV0.roa
File: Z_h1VIBBCgYrvOi20WQSYwjnMV0.roa (raw, json)
Hash identifier: d5PMDMsooSJdYquiN3fDZB8eYLCbtNY5I3naBrDePNU=
Subject key identifier: 67:F8:75:54:80:41:0A:06:2B:BC:E8:B6:D1:64:12:63:08:E7:31:5D
Certificate issuer: /CN=273c2a39983bcd03551853447847c1e1861ec732
Certificate serial: 01857356110083FC6426F0F1B00E11197227
Authority key identifier: 27:3C:2A:39:98:3B:CD:03:55:18:53:44:78:47:C1:E1:86:1E:C7:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JzwqOZg7zQNVGFNEeEfB4YYexzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/9f86f3-7465-43be-b72a-a79c759bdb7d/1/Z_h1VIBBCgYrvOi20WQSYwjnMV0.roa
Signing time: Mon 02 Jan 2023 16:34:58 +0000
ROA not before: Mon 02 Jan 2023 16:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48510
IP address blocks: 185.171.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:11:00:83:fc:64:26:f0:f1:b0:0e:11:19:72:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=273c2a39983bcd03551853447847c1e1861ec732
Validity
Not Before: Jan 2 16:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67f8755480410a062bbce8b6d164126308e7315d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:58:61:6c:97:a5:de:11:b0:9b:e6:83:82:54:
0f:43:6f:69:49:8f:84:95:18:ec:42:bb:8b:3a:c2:
d4:a2:0b:63:d6:12:10:d7:d9:84:a5:1f:00:71:59:
cc:44:70:d9:0a:e0:c7:8f:69:f4:ef:95:4d:64:18:
69:46:00:1a:ee:bc:3c:05:fd:01:e7:3b:8f:18:94:
50:55:db:7a:ce:1a:ed:01:ba:4c:97:89:99:f1:75:
98:0f:0a:63:78:b6:78:58:18:d3:d5:20:54:92:ed:
7b:0a:7e:36:7b:ac:da:41:12:87:44:ac:26:53:53:
10:af:d4:ab:1a:ee:a7:a8:77:b7:83:c7:6b:d6:94:
d2:e9:86:3f:4b:0d:c8:66:c1:11:a3:f2:84:7b:0f:
82:dc:5b:20:86:3d:71:f5:ce:d3:06:f0:aa:20:98:
00:95:9b:96:24:7d:70:43:77:84:50:e5:a1:90:97:
ed:1c:7d:af:5d:ee:ed:24:cb:2a:4c:a6:12:6a:62:
7b:27:05:96:d5:88:dd:0b:47:26:cb:e9:d8:63:89:
c1:94:8b:65:40:b9:da:3e:2b:29:e2:72:0a:fd:62:
07:a8:4f:6b:1d:e6:e9:93:28:96:9f:01:68:de:cb:
9d:a8:e5:34:d3:09:b2:9c:d0:54:7e:0a:5e:6f:a7:
c4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F8:75:54:80:41:0A:06:2B:BC:E8:B6:D1:64:12:63:08:E7:31:5D
X509v3 Authority Key Identifier:
keyid:27:3C:2A:39:98:3B:CD:03:55:18:53:44:78:47:C1:E1:86:1E:C7:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JzwqOZg7zQNVGFNEeEfB4YYexzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9f86f3-7465-43be-b72a-a79c759bdb7d/1/Z_h1VIBBCgYrvOi20WQSYwjnMV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9f86f3-7465-43be-b72a-a79c759bdb7d/1/JzwqOZg7zQNVGFNEeEfB4YYexzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.147.0/24
Signature Algorithm: sha256WithRSAEncryption
34:b0:bc:d6:ce:4f:84:29:4e:65:6a:57:40:8e:ff:6b:96:95:
f3:7e:e4:ba:fd:d2:87:ed:76:a2:ba:8e:3f:be:d2:37:18:8b:
e7:b7:3b:2f:42:98:cf:44:13:fd:42:f6:40:28:fc:b1:90:46:
fc:17:fd:a8:52:e2:f0:b4:b4:9d:44:9f:01:c4:ab:ab:69:6a:
50:ef:f5:0b:f9:cb:f5:3c:9a:b9:59:c8:91:26:b2:aa:9d:54:
3d:e9:c5:07:5a:9b:43:44:26:9b:85:f3:f4:19:01:8b:a3:13:
c4:ca:40:3e:30:e0:b6:fd:45:e7:aa:47:7b:09:1d:57:b8:9b:
fe:1a:34:4f:8c:2d:0d:15:0f:60:4b:40:bd:8f:36:6d:ea:30:
73:bb:be:00:30:ba:71:83:f1:c9:5f:87:cd:0d:fa:d2:85:0c:
b0:7b:7f:7d:67:30:9e:4f:71:19:b6:64:49:d5:10:31:a1:fe:
28:0e:c9:9f:56:8d:52:ba:9c:c9:2b:1b:d0:8a:d0:bb:72:25:
f9:b2:bd:57:f3:53:b5:66:f6:76:f0:65:5f:1f:e1:ee:5a:a0:
73:93:d0:df:61:63:5e:a3:b0:9b:d9:3b:15:73:bb:dd:96:c6:
a3:e8:0f:40:ec:17:f5:d6:af:85:a9:d1:3e:aa:96:22:51:8e:
c2:6e:c8:ce
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzVhEAg/xkJvDxsA4RGXInMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3M2MyYTM5OTgzYmNkMDM1NTE4NTM0NDc4NDdjMWUxODYx
ZWM3MzIwHhcNMjMwMTAyMTYzNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2N2Y4NzU1NDgwNDEwYTA2MmJiY2U4YjZkMTY0MTI2MzA4ZTczMTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FhhbJel3hGwm+aDglQPQ29pSY+E
lRjsQruLOsLUogtj1hIQ19mEpR8AcVnMRHDZCuDHj2n075VNZBhpRgAa7rw8Bf0B
5zuPGJRQVdt6zhrtAbpMl4mZ8XWYDwpjeLZ4WBjT1SBUku17Cn42e6zaQRKHRKwm
U1MQr9SrGu6nqHe3g8dr1pTS6YY/Sw3IZsERo/KEew+C3Fsghj1x9c7TBvCqIJgA
lZuWJH1wQ3eEUOWhkJftHH2vXe7tJMsqTKYSamJ7JwWW1YjdC0cmy+nYY4nBlItl
QLnaPisp4nIK/WIHqE9rHebpkyiWnwFo3sudqOU00wmynNBUfgpeb6fEWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGf4dVSAQQoGK7zottFkEmMI5zFdMB8GA1UdIwQY
MBaAFCc8KjmYO80DVRhTRHhHweGGHscyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSnp3cU9aZzd6UU5WR0ZORWVFZkI0WVlleHpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy85Zjg2ZjMtNzQ2NS00M2JlLWI3MmEt
YTc5Yzc1OWJkYjdkLzEvWl9oMVZJQkJDZ1lydk9pMjBXUVNZd2puTVYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy85Zjg2ZjMtNzQ2NS00M2JlLWI3MmEtYTc5Yzc1OWJkYjdk
LzEvSnp3cU9aZzd6UU5WR0ZORWVFZkI0WVlleHpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuauTMA0G
CSqGSIb3DQEBCwUAA4IBAQA0sLzWzk+EKU5laldAjv9rlpXzfuS6/dKH7Xaiuo4/
vtI3GIvntzsvQpjPRBP9QvZAKPyxkEb8F/2oUuLwtLSdRJ8BxKuraWpQ7/UL+cv1
PJq5WciRJrKqnVQ96cUHWptDRCabhfP0GQGLoxPEykA+MOC2/UXnqkd7CR1XuJv+
GjRPjC0NFQ9gS0C9jzZt6jBzu74AMLpxg/HJX4fNDfrShQywe399ZzCeT3EZtmRJ
1RAxof4oDsmfVo1SupzJKxvQitC7ciX5sr1X81O1ZvZ28GVfH+HuWqBzk9DfYWNe
o7Cb2TsVc7vdlsaj6A9A7Bf11q+FqdE+qpYiUY7CbsjO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:49 2024 by rpki-client on console-fra.rpki-client.org