Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YS7xVYZ7CIey8o9d-6U5p6F5OYk.roa
File: YS7xVYZ7CIey8o9d-6U5p6F5OYk.roa (raw, json)
Hash identifier: WgxYLdna+eWGuSPcUheWo/wqMH0aQ1+kjjrX1u1+RLA=
Subject key identifier: 61:2E:F1:55:86:7B:08:87:B2:F2:8F:5D:FB:A5:39:A7:A1:79:39:89
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 04D02050
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YS7xVYZ7CIey8o9d-6U5p6F5OYk.roa
Signing time: Tue 07 Jun 2022 12:11:02 +0000
ROA not before: Tue 07 Jun 2022 12:11:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 194.105.21.0/24 maxlen: 24
45.152.242.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80748624 (0x4d02050)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jun 7 12:11:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=612ef155867b0887b2f28f5dfba539a7a1793989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c2:3f:fa:d2:22:ca:5b:62:97:5a:10:58:1b:
50:83:52:a8:04:ee:cf:99:50:84:98:98:3f:45:27:
71:91:f0:f4:5d:59:7d:e4:2b:71:c0:57:b4:21:ab:
d7:82:7f:a5:97:5f:1d:2f:07:56:a4:47:7e:39:59:
62:11:6c:a8:b2:2a:ac:80:27:68:49:8d:25:39:8c:
b6:df:80:42:bc:b7:6e:f8:36:c1:a8:fc:29:e5:01:
e8:60:a6:00:7e:96:68:1b:40:8f:b5:ad:e4:33:9a:
62:9c:08:3c:31:e8:b9:22:05:1c:22:ad:49:9e:ea:
64:74:e2:3d:c4:68:96:6d:22:bc:17:e3:68:5f:31:
b9:66:50:df:e7:88:46:75:5f:54:29:8e:cb:44:ce:
f0:bd:f1:e8:ff:52:85:40:fe:31:18:d3:7a:34:69:
4a:d1:4c:42:0c:1a:9a:28:82:0a:4f:e2:d5:20:5a:
4e:ee:6f:8b:2f:2f:f6:36:a7:07:30:d3:c7:70:ea:
a8:37:24:1a:37:99:a2:68:a6:cc:36:f1:98:e4:7f:
bd:26:84:fe:0a:39:eb:50:9b:5c:1a:c6:62:1a:ef:
a3:19:12:92:a2:ba:37:8c:fc:d8:49:88:23:96:cc:
d3:cc:97:73:f2:99:8d:23:a2:f5:37:ea:83:57:47:
86:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:2E:F1:55:86:7B:08:87:B2:F2:8F:5D:FB:A5:39:A7:A1:79:39:89
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YS7xVYZ7CIey8o9d-6U5p6F5OYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.242.0/23
194.105.21.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:89:b2:5b:d9:5b:1c:da:4e:73:66:b2:f8:2b:bf:f8:2b:6a:
21:31:f6:97:f8:e6:58:bf:08:03:c0:3b:ea:01:19:61:81:d7:
c5:dd:1f:1f:81:b7:53:4f:81:b8:31:70:73:fa:a8:8d:4f:81:
56:98:9e:60:bb:67:f6:74:8c:ba:5d:18:b4:af:88:c0:6a:f5:
55:b6:4f:4b:43:8b:90:4d:df:dc:b5:06:28:c2:c9:57:8b:95:
62:ae:a6:57:aa:8b:55:6e:07:12:ed:23:60:30:3f:1c:62:9a:
a0:42:ce:57:d9:68:5c:4c:2a:d6:11:9a:47:23:27:8d:02:fe:
c6:a9:9c:dc:cf:e9:26:3e:9d:75:95:1e:17:cd:11:20:1b:f7:
da:77:66:a0:a6:8e:55:b3:8b:e9:6b:29:63:d4:b7:12:9b:96:
57:63:f8:6a:80:c7:84:a8:8c:f6:6c:3e:57:f5:cd:93:bd:02:
0f:c5:19:cb:11:97:80:71:8d:2c:6b:ca:c8:11:2f:f2:fb:23:
bc:b5:d6:a6:8a:17:dc:3e:62:d2:c2:20:cc:65:34:bb:38:cb:
42:5c:e0:c5:ea:34:99:9c:5b:5d:3e:79:b6:ee:89:96:2d:89:
b6:c3:f5:2c:73:07:bd:4d:bf:bb:99:e9:28:3b:cc:17:85:22:
d4:2f:50:70
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBNAgUDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MmVkNGEyZmIxODBkZjVmOTlkNGJmOGM3N2NjOWEwNmVmMjYwNThjMB4XDTIyMDYw
NzEyMTEwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjEyZWYxNTU4Njdi
MDg4N2IyZjI4ZjVkZmJhNTM5YTdhMTc5Mzk4OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKbCP/rSIspbYpdaEFgbUINSqATuz5lQhJiYP0UncZHw9F1Z
feQrccBXtCGr14J/pZdfHS8HVqRHfjlZYhFsqLIqrIAnaEmNJTmMtt+AQry3bvg2
waj8KeUB6GCmAH6WaBtAj7Wt5DOaYpwIPDHouSIFHCKtSZ7qZHTiPcRolm0ivBfj
aF8xuWZQ3+eIRnVfVCmOy0TO8L3x6P9ShUD+MRjTejRpStFMQgwamiiCCk/i1SBa
Tu5viy8v9janBzDTx3DqqDckGjeZomimzDbxmOR/vSaE/go561CbXBrGYhrvoxkS
kqK6N4z82EmII5bM08yXc/KZjSOi9Tfqg1dHhgsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRhLvFVhnsIh7Lyj137pTmnoXk5iTAfBgNVHSMEGDAWgBSC7UovsYDfX5nU
v4x3zJoG7yYFjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2d1MUtMN0dBMzEtWjFMLU1kOHlhQnU4bUJZdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvMDMwMWJjLWM3ZmUtNDZlOS1iN2EwLTQ1MjZmNjI2M2JjZS8x
L1lTN3hWWVo3Q0lleThvOWQtNlU1cDZGNU9Zay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
MDMwMWJjLWM3ZmUtNDZlOS1iN2EwLTQ1MjZmNjI2M2JjZS8xL2d1MUtMN0dBMzEt
WjFMLU1kOHlhQnU4bUJZdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAS2Y8gMEAMJpFTANBgkqhkiG9w0B
AQsFAAOCAQEAp4myW9lbHNpOc2ay+Cu/+CtqITH2l/jmWL8IA8A76gEZYYHXxd0f
H4G3U0+BuDFwc/qojU+BVpieYLtn9nSMul0YtK+IwGr1VbZPS0OLkE3f3LUGKMLJ
V4uVYq6mV6qLVW4HEu0jYDA/HGKaoELOV9loXEwq1hGaRyMnjQL+xqmc3M/pJj6d
dZUeF80RIBv32ndmoKaOVbOL6WspY9S3EpuWV2P4aoDHhKiM9mw+V/XNk70CD8UZ
yxGXgHGNLGvKyBEv8vsjvLXWpooX3D5i0sIgzGU0uzjLQlzgxeo0mZxbXT55tu6J
li2JtsP1LHMHvU2/u5npKDvMF4Ui1C9QcA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org