Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/fdcb72-eb02-4939-b040-f7f5d52a15a5/1/21Ugs4XNd6SAKTAiQxhvdH59Ddo.roa
File: 21Ugs4XNd6SAKTAiQxhvdH59Ddo.roa (raw, json)
Hash identifier: eFsn2EzDWtZGQNxISdfp0cTAyLD30Z23gt5702L4qCQ=
Subject key identifier: DB:55:20:B3:85:CD:77:A4:80:29:30:22:43:18:6F:74:7E:7D:0D:DA
Certificate issuer: /CN=469ff2033362b8bd4a4c1d1084657e90a2501a13
Certificate serial: 0965C951
Authority key identifier: 46:9F:F2:03:33:62:B8:BD:4A:4C:1D:10:84:65:7E:90:A2:50:1A:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rp_yAzNiuL1KTB0QhGV-kKJQGhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/fdcb72-eb02-4939-b040-f7f5d52a15a5/1/21Ugs4XNd6SAKTAiQxhvdH59Ddo.roa
Signing time: Thu 21 Apr 2022 07:27:30 +0000
ROA not before: Thu 21 Apr 2022 07:27:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18254
IP address blocks: 185.243.43.0/24 maxlen: 24
185.243.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157665617 (0x965c951)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=469ff2033362b8bd4a4c1d1084657e90a2501a13
Validity
Not Before: Apr 21 07:27:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db5520b385cd77a48029302243186f747e7d0dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5f:3a:ec:5c:03:09:ec:22:38:45:10:35:e3:
44:5f:a3:91:13:30:02:59:88:fc:ad:8c:31:65:60:
a9:3f:3c:cb:6b:81:e7:54:ba:30:09:b7:97:72:b0:
72:e8:08:49:09:84:ea:2c:5f:c0:92:1b:da:63:ad:
3d:c9:a2:c0:0b:2f:45:c1:4a:22:24:af:48:3a:e2:
60:97:49:0a:9e:2c:e9:45:c6:12:41:93:a7:c5:7f:
36:14:40:76:fa:0f:14:7d:a5:1e:e6:36:dc:0c:28:
04:aa:1e:fd:ba:0b:8a:46:fc:86:fe:92:71:22:f4:
6a:1e:20:0e:92:c3:d5:57:6f:55:fb:24:54:c9:9b:
d6:94:ca:50:3b:1e:07:e8:05:f2:5b:35:00:dd:38:
6d:41:8d:47:d1:ec:c7:c9:d1:0d:93:c8:4b:0a:88:
03:4a:88:41:c9:43:51:4d:79:ee:6e:71:dc:9a:60:
71:58:79:1e:98:82:ba:5e:1b:3b:9e:96:13:4b:60:
80:7c:13:cb:b6:1a:7f:a8:33:25:83:c8:65:5a:d4:
c5:09:d2:bc:66:32:52:fd:17:d7:bf:50:5a:81:c7:
c3:73:56:7a:d4:19:f5:25:20:e9:a0:f7:69:5a:69:
dc:ec:31:db:1d:11:df:4e:e2:28:85:4a:b0:65:16:
0d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:55:20:B3:85:CD:77:A4:80:29:30:22:43:18:6F:74:7E:7D:0D:DA
X509v3 Authority Key Identifier:
keyid:46:9F:F2:03:33:62:B8:BD:4A:4C:1D:10:84:65:7E:90:A2:50:1A:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rp_yAzNiuL1KTB0QhGV-kKJQGhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fdcb72-eb02-4939-b040-f7f5d52a15a5/1/21Ugs4XNd6SAKTAiQxhvdH59Ddo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fdcb72-eb02-4939-b040-f7f5d52a15a5/1/Rp_yAzNiuL1KTB0QhGV-kKJQGhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.42.0/23
Signature Algorithm: sha256WithRSAEncryption
90:ac:6c:d5:3c:39:55:3b:8c:c2:c3:6b:55:82:78:f9:7a:6b:
e3:1a:46:00:1b:13:92:4a:64:b8:e4:a2:0e:1e:d6:f8:41:3a:
f7:09:4e:e0:4e:d5:1b:b9:a6:0d:d8:1d:1f:3e:45:0a:f4:63:
a4:1a:56:61:fb:86:ed:70:f1:0c:0f:39:af:24:da:f4:da:cd:
17:2d:a0:58:24:08:76:8b:25:55:27:4c:14:1c:33:f5:2a:c3:
e0:95:e5:16:e9:dd:c9:81:71:e6:51:04:f1:70:8c:42:14:31:
64:82:dd:45:4d:f8:1d:a1:00:ad:99:ad:e1:20:48:27:f8:d3:
62:c8:6a:9d:47:c6:eb:be:c8:ce:38:c4:74:ac:72:b4:25:7e:
72:5b:7d:d5:4d:58:a8:d7:be:35:1f:61:0c:94:d2:ae:27:41:
2a:de:c9:18:74:4a:71:ee:85:44:72:47:2e:96:c6:89:f5:8b:
4b:d9:83:12:09:ae:30:d0:a1:1b:f6:15:f3:3c:2c:18:e5:45:
f2:5e:00:48:ad:2b:d6:07:15:26:33:51:5d:56:34:70:0b:49:
7f:f6:77:04:c6:32:21:fc:13:59:67:6d:82:05:87:e3:7e:9e:
13:d7:88:85:bf:34:76:6b:00:84:21:a4:19:ee:40:a0:a2:ec:
16:04:84:8a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECWXJUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NjlmZjIwMzMzNjJiOGJkNGE0YzFkMTA4NDY1N2U5MGEyNTAxYTEzMB4XDTIyMDQy
MTA3MjczMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGI1NTIwYjM4NWNk
NzdhNDgwMjkzMDIyNDMxODZmNzQ3ZTdkMGRkYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1fOuxcAwnsIjhFEDXjRF+jkRMwAlmI/K2MMWVgqT88y2uB
51S6MAm3l3KwcugISQmE6ixfwJIb2mOtPcmiwAsvRcFKIiSvSDriYJdJCp4s6UXG
EkGTp8V/NhRAdvoPFH2lHuY23AwoBKoe/boLikb8hv6ScSL0ah4gDpLD1VdvVfsk
VMmb1pTKUDseB+gF8ls1AN04bUGNR9Hsx8nRDZPISwqIA0qIQclDUU157m5x3Jpg
cVh5HpiCul4bO56WE0tggHwTy7Yaf6gzJYPIZVrUxQnSvGYyUv0X179QWoHHw3NW
etQZ9SUg6aD3aVpp3Owx2x0R307iKIVKsGUWDa8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTbVSCzhc13pIApMCJDGG90fn0N2jAfBgNVHSMEGDAWgBRGn/IDM2K4vUpM
HRCEZX6QolAaEzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JwX3lBek5pdUwxS1RCMFFoR1Yta0tKUUdoTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvZmRjYjcyLWViMDItNDkzOS1iMDQwLWY3ZjVkNTJhMTVhNS8x
LzIxVWdzNFhOZDZTQUtUQWlReGh2ZEg1OURkby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
ZmRjYjcyLWViMDItNDkzOS1iMDQwLWY3ZjVkNTJhMTVhNS8xL1JwX3lBek5pdUwx
S1RCMFFoR1Yta0tKUUdoTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbnzKjANBgkqhkiG9w0BAQsFAAOC
AQEAkKxs1Tw5VTuMwsNrVYJ4+Xpr4xpGABsTkkpkuOSiDh7W+EE69wlO4E7VG7mm
DdgdHz5FCvRjpBpWYfuG7XDxDA85ryTa9NrNFy2gWCQIdoslVSdMFBwz9SrD4JXl
FundyYFx5lEE8XCMQhQxZILdRU34HaEArZmt4SBIJ/jTYshqnUfG677IzjjEdKxy
tCV+clt91U1YqNe+NR9hDJTSridBKt7JGHRKce6FRHJHLpbGifWLS9mDEgmuMNCh
G/YV8zwsGOVF8l4ASK0r1gcVJjNRXVY0cAtJf/Z3BMYyIfwTWWdtggWH436eE9eI
hb80dmsAhCGkGe5AoKLsFgSEig==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:30 2024 by rpki-client on console-fra.rpki-client.org