Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b55c02-347b-42a8-96ae-d179053d8434/1/U7aYwdu60A47VD2FZPHvmiQM2QA.roa
File: U7aYwdu60A47VD2FZPHvmiQM2QA.roa (raw, json)
Hash identifier: hpsqh8IfA1B4wskLftOP+et32/cazBBcLslZAR0844U=
Subject key identifier: 53:B6:98:C1:DB:BA:D0:0E:3B:54:3D:85:64:F1:EF:9A:24:0C:D9:00
Certificate issuer: /CN=6f0d7a0eb5ca549590a406bc693df1e8d2cbae04
Certificate serial: 0188E79FE9E07783D6DEE9C0713CEBFCDF9E
Authority key identifier: 6F:0D:7A:0E:B5:CA:54:95:90:A4:06:BC:69:3D:F1:E8:D2:CB:AE:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bw16DrXKVJWQpAa8aT3x6NLLrgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b55c02-347b-42a8-96ae-d179053d8434/1/U7aYwdu60A47VD2FZPHvmiQM2QA.roa
Signing time: Fri 23 Jun 2023 09:39:56 +0000
ROA not before: Fri 23 Jun 2023 09:39:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.99.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e7:9f:e9:e0:77:83:d6:de:e9:c0:71:3c:eb:fc:df:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0d7a0eb5ca549590a406bc693df1e8d2cbae04
Validity
Not Before: Jun 23 09:39:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53b698c1dbbad00e3b543d8564f1ef9a240cd900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ed:c9:f0:d9:ee:0a:6f:df:45:19:a1:2c:56:
84:f5:fa:86:af:a8:88:ec:51:d0:44:0e:41:93:7f:
8b:c2:ed:56:b9:6a:a0:dd:8c:eb:1f:86:96:79:f2:
9b:21:8d:84:da:0f:20:50:ca:a2:84:a4:0b:1d:6c:
4b:3a:aa:47:cc:09:cd:29:ea:af:33:de:41:df:cc:
b8:7c:17:3b:30:94:63:ea:05:db:52:f8:1f:56:31:
ac:b0:3a:45:aa:3e:85:a4:fc:48:d6:c9:2a:9d:9b:
0e:c2:e1:4c:97:6d:97:d6:2e:e5:b9:01:f1:9f:ca:
75:1f:a9:dd:2c:ab:47:02:75:ef:24:6c:42:6e:ed:
78:40:bc:90:c4:ba:81:b3:52:fb:08:b3:78:98:55:
b9:ce:14:75:af:e4:10:c5:de:84:d4:37:8a:2a:41:
3d:8d:0b:0c:20:ae:cf:95:4e:d5:cb:84:1e:78:06:
da:e9:16:27:4a:68:1f:1e:5a:01:b2:13:6c:80:f4:
72:4d:4c:66:48:57:4f:af:ed:3a:f8:e9:79:cf:00:
5c:4e:a3:47:04:9e:1c:33:b6:d5:ce:22:85:e8:d5:
5b:40:70:7c:38:1c:37:8d:ad:59:da:6b:36:b9:d9:
3a:d8:5f:c4:c3:ee:d1:3a:0c:2a:10:90:ba:07:09:
47:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B6:98:C1:DB:BA:D0:0E:3B:54:3D:85:64:F1:EF:9A:24:0C:D9:00
X509v3 Authority Key Identifier:
keyid:6F:0D:7A:0E:B5:CA:54:95:90:A4:06:BC:69:3D:F1:E8:D2:CB:AE:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bw16DrXKVJWQpAa8aT3x6NLLrgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b55c02-347b-42a8-96ae-d179053d8434/1/U7aYwdu60A47VD2FZPHvmiQM2QA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b55c02-347b-42a8-96ae-d179053d8434/1/bw16DrXKVJWQpAa8aT3x6NLLrgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.20.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:fc:f9:96:a1:f3:5d:df:08:30:7b:69:a5:7c:a0:89:07:c3:
23:57:36:ca:fe:cd:84:56:92:ab:ea:67:69:db:52:86:0f:8e:
b3:4f:91:7b:7a:0a:ec:5e:61:02:91:74:7b:29:be:39:96:dd:
a5:3b:f8:93:eb:c2:8d:25:bf:77:15:3c:cf:66:3f:4d:87:9e:
71:4a:7d:be:cb:74:99:ec:58:d6:ee:84:81:f0:98:66:8e:bc:
8c:0b:17:d1:54:c2:9c:22:fb:5d:da:b1:60:bf:16:5b:0c:41:
b2:22:58:5d:f1:b3:e4:1c:7a:ff:c8:d9:0d:02:30:1d:50:6a:
ea:8f:45:4e:b7:c5:59:b4:8c:4b:ae:ea:6f:a4:15:47:56:94:
48:bc:86:d1:40:bd:a6:5b:86:f8:14:d8:64:67:51:32:cc:98:
ae:d9:f9:1f:d0:5b:c8:38:1d:48:e9:d9:51:35:be:03:b7:58:
08:97:22:ae:da:d7:6a:4e:6a:6b:c1:31:e4:af:c3:b9:12:d2:
e9:1d:fc:0b:6e:9b:ea:28:32:9c:26:d3:38:85:93:d3:bf:3c:
23:c1:94:51:3b:78:9d:d7:e0:29:09:0f:5a:3e:18:c5:33:37:
34:a6:59:e9:f7:42:43:56:59:22:74:ea:17:06:be:f9:6c:76:
f2:cd:20:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjnn+ngd4PW3unAcTzr/N+eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMGQ3YTBlYjVjYTU0OTU5MGE0MDZiYzY5M2RmMWU4ZDJj
YmFlMDQwHhcNMjMwNjIzMDkzOTU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2I2OThjMWRiYmFkMDBlM2I1NDNkODU2NGYxZWY5YTI0MGNkOTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAse3J8NnuCm/fRRmhLFaE9fqGr6iI
7FHQRA5Bk3+Lwu1WuWqg3YzrH4aWefKbIY2E2g8gUMqihKQLHWxLOqpHzAnNKeqv
M95B38y4fBc7MJRj6gXbUvgfVjGssDpFqj6FpPxI1skqnZsOwuFMl22X1i7luQHx
n8p1H6ndLKtHAnXvJGxCbu14QLyQxLqBs1L7CLN4mFW5zhR1r+QQxd6E1DeKKkE9
jQsMIK7PlU7Vy4QeeAba6RYnSmgfHloBshNsgPRyTUxmSFdPr+06+Ol5zwBcTqNH
BJ4cM7bVziKF6NVbQHB8OBw3ja1Z2ms2udk62F/Ew+7ROgwqEJC6BwlHdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFO2mMHbutAOO1Q9hWTx75okDNkAMB8GA1UdIwQY
MBaAFG8Neg61ylSVkKQGvGk98ejSy64EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYncxNkRyWEtWSldRcEFhOGFUM3g2TkxMcmdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9iNTVjMDItMzQ3Yi00MmE4LTk2YWUt
ZDE3OTA1M2Q4NDM0LzEvVTdhWXdkdTYwQTQ3VkQyRlpQSHZtaVFNMlFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9iNTVjMDItMzQ3Yi00MmE4LTk2YWUtZDE3OTA1M2Q4NDM0
LzEvYncxNkRyWEtWSldRcEFhOGFUM3g2TkxMcmdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWMUMA0G
CSqGSIb3DQEBCwUAA4IBAQDG/PmWofNd3wgwe2mlfKCJB8MjVzbK/s2EVpKr6mdp
21KGD46zT5F7egrsXmECkXR7Kb45lt2lO/iT68KNJb93FTzPZj9Nh55xSn2+y3SZ
7FjW7oSB8JhmjryMCxfRVMKcIvtd2rFgvxZbDEGyIlhd8bPkHHr/yNkNAjAdUGrq
j0VOt8VZtIxLrupvpBVHVpRIvIbRQL2mW4b4FNhkZ1EyzJiu2fkf0FvIOB1I6dlR
Nb4Dt1gIlyKu2tdqTmprwTHkr8O5EtLpHfwLbpvqKDKcJtM4hZPTvzwjwZRRO3id
1+ApCQ9aPhjFMzc0plnp90JDVlkidOoXBr75bHbyzSA3
-----END CERTIFICATE-----
Generated at Thu Aug 3 13:14:45 2023 by rpki-client on console-fra.rpki-client.org