Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5531eb-dc9a-42ad-a5d6-43718f422b1f/1/E5wFlhWaJv0ESByQPbcpF9MheP0.roa
File: E5wFlhWaJv0ESByQPbcpF9MheP0.roa (raw, json)
Hash identifier: hsNLm6hw1LSeNImgs6J+yUJCVGFF+Ng/G+bak8vI/rk=
Subject key identifier: 13:9C:05:96:15:9A:26:FD:04:48:1C:90:3D:B7:29:17:D3:21:78:FD
Certificate issuer: /CN=5b3674275a167a13391f1cb764c8f5c4f19580d1
Certificate serial: 0185730CC0A5049216FEB0083C2B4FF3B4F1
Authority key identifier: 5B:36:74:27:5A:16:7A:13:39:1F:1C:B7:64:C8:F5:C4:F1:95:80:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WzZ0J1oWehM5Hxy3ZMj1xPGVgNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5531eb-dc9a-42ad-a5d6-43718f422b1f/1/E5wFlhWaJv0ESByQPbcpF9MheP0.roa
Signing time: Mon 02 Jan 2023 15:14:53 +0000
ROA not before: Mon 02 Jan 2023 15:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24904
IP address blocks: 185.200.200.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:c0:a5:04:92:16:fe:b0:08:3c:2b:4f:f3:b4:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b3674275a167a13391f1cb764c8f5c4f19580d1
Validity
Not Before: Jan 2 15:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=139c0596159a26fd04481c903db72917d32178fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c1:32:9f:11:12:70:d4:5e:16:6d:4d:6e:27:
66:ea:52:64:81:3c:66:fd:f8:e4:47:e0:3b:49:b5:
70:22:4c:ab:8d:fb:7b:ee:f3:76:cd:8e:34:f5:a1:
04:fb:8e:56:c4:b4:47:52:12:03:7c:cc:7d:52:ed:
b9:3f:7d:5d:72:79:6e:14:54:a1:72:fb:4a:37:8a:
06:bc:ae:0b:8f:38:ca:9d:b2:6b:f7:64:03:42:ed:
7a:4d:68:16:b1:e4:09:29:2a:13:2b:ae:47:a7:08:
ba:84:ee:3a:32:c7:83:90:d4:d2:df:5d:e5:d6:78:
3c:34:1a:69:86:fb:01:0d:b0:9c:bf:41:cb:9d:ef:
3f:86:36:b6:27:29:51:a2:0c:e0:56:3a:9e:50:4b:
ba:ce:57:f8:0b:ae:55:cd:ba:94:0d:d0:2b:32:12:
14:9d:e7:28:fa:a7:25:0c:dd:0c:3f:18:24:e9:25:
62:36:4b:89:49:b5:33:66:58:52:d2:c5:d0:eb:7f:
86:db:2c:28:06:4d:21:a8:de:60:a0:cc:c3:b2:3f:
5d:3e:09:cb:b2:19:da:22:71:2b:01:2c:46:84:a7:
ca:b2:92:31:ab:bd:d5:7c:3c:fc:37:15:d0:73:04:
7a:24:c1:bf:9f:01:60:6c:bc:e8:e5:9f:bd:d1:c3:
12:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9C:05:96:15:9A:26:FD:04:48:1C:90:3D:B7:29:17:D3:21:78:FD
X509v3 Authority Key Identifier:
keyid:5B:36:74:27:5A:16:7A:13:39:1F:1C:B7:64:C8:F5:C4:F1:95:80:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WzZ0J1oWehM5Hxy3ZMj1xPGVgNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5531eb-dc9a-42ad-a5d6-43718f422b1f/1/E5wFlhWaJv0ESByQPbcpF9MheP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5531eb-dc9a-42ad-a5d6-43718f422b1f/1/WzZ0J1oWehM5Hxy3ZMj1xPGVgNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.200.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:f2:a2:cf:3d:e2:24:47:05:ed:10:c1:05:e7:ea:1b:4c:14:
8f:7f:c3:8b:d7:86:97:70:b9:b1:a6:60:d2:35:54:e9:15:cf:
14:e8:a1:ff:69:91:08:56:59:48:ca:50:82:9e:55:a9:8c:68:
a2:34:ef:8f:8e:2a:9e:d8:ad:9c:93:d4:6e:d0:1d:70:47:e6:
95:c9:cf:ab:46:28:62:58:83:88:e6:61:be:df:01:68:a9:15:
04:fc:ce:98:98:5a:cd:78:ef:02:f9:8e:16:f9:a1:2a:15:01:
57:dc:57:dd:a1:36:57:52:6e:2a:60:fe:1c:d3:f8:45:22:21:
7b:6e:59:c2:f0:41:3a:15:5b:ae:37:0b:9d:71:6a:59:82:a0:
f3:68:73:61:71:47:d4:3c:76:6d:e5:2c:13:1a:f6:44:1a:f1:
77:d1:33:c3:42:f2:06:fd:06:de:88:ab:65:60:3f:e6:8a:8e:
3f:37:6c:fd:9b:f7:c2:07:5b:75:e2:ab:6e:29:ce:2c:f2:65:
25:9b:72:64:e2:b3:bf:ed:a5:33:2f:29:a9:d8:a0:7d:bf:e8:
98:10:17:f4:92:93:ca:8d:f6:5d:4e:1e:92:5d:c0:c9:51:67:
e7:99:fb:f6:a2:77:cc:a1:54:5f:b4:8c:8f:e7:a3:68:e9:40:
cb:54:44:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzDMClBJIW/rAIPCtP87TxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViMzY3NDI3NWExNjdhMTMzOTFmMWNiNzY0YzhmNWM0ZjE5
NTgwZDEwHhcNMjMwMTAyMTUxNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzljMDU5NjE1OWEyNmZkMDQ0ODFjOTAzZGI3MjkxN2QzMjE3OGZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsEynxEScNReFm1Nbidm6lJkgTxm
/fjkR+A7SbVwIkyrjft77vN2zY409aEE+45WxLRHUhIDfMx9Uu25P31dcnluFFSh
cvtKN4oGvK4LjzjKnbJr92QDQu16TWgWseQJKSoTK65Hpwi6hO46MseDkNTS313l
1ng8NBpphvsBDbCcv0HLne8/hja2JylRogzgVjqeUEu6zlf4C65VzbqUDdArMhIU
neco+qclDN0MPxgk6SViNkuJSbUzZlhS0sXQ63+G2ywoBk0hqN5goMzDsj9dPgnL
shnaInErASxGhKfKspIxq73VfDz8NxXQcwR6JMG/nwFgbLzo5Z+90cMS7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBOcBZYVmib9BEgckD23KRfTIXj9MB8GA1UdIwQY
MBaAFFs2dCdaFnoTOR8ct2TI9cTxlYDRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3paMEoxb1dlaE01SHh5M1pNajF4UEdWZ05FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81NTMxZWItZGM5YS00MmFkLWE1ZDYt
NDM3MThmNDIyYjFmLzEvRTV3RmxoV2FKdjBFU0J5UVBiY3BGOU1oZVAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi81NTMxZWItZGM5YS00MmFkLWE1ZDYtNDM3MThmNDIyYjFm
LzEvV3paMEoxb1dlaE01SHh5M1pNajF4UEdWZ05FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucjIMA0G
CSqGSIb3DQEBCwUAA4IBAQB98qLPPeIkRwXtEMEF5+obTBSPf8OL14aXcLmxpmDS
NVTpFc8U6KH/aZEIVllIylCCnlWpjGiiNO+Pjiqe2K2ck9Ru0B1wR+aVyc+rRihi
WIOI5mG+3wFoqRUE/M6YmFrNeO8C+Y4W+aEqFQFX3FfdoTZXUm4qYP4c0/hFIiF7
blnC8EE6FVuuNwudcWpZgqDzaHNhcUfUPHZt5SwTGvZEGvF30TPDQvIG/QbeiKtl
YD/mio4/N2z9m/fCB1t14qtuKc4s8mUlm3Jk4rO/7aUzLymp2KB9v+iYEBf0kpPK
jfZdTh6SXcDJUWfnmfv2onfMoVRftIyP56No6UDLVEQL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:55 2024 by rpki-client on console-ams.rpki-client.org