Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/2da3de-f40c-49bd-af52-a9ae251e2fc5/1/9o0-EQ0PHbrQvA8yjGwRE-XqqCw.roa
File: 9o0-EQ0PHbrQvA8yjGwRE-XqqCw.roa (raw, json)
Hash identifier: q5qCY4y/WAiWL6Bm05vuimhNCiuU8U4TnUioinQxAac=
Subject key identifier: F6:8D:3E:11:0D:0F:1D:BA:D0:BC:0F:32:8C:6C:11:13:E5:EA:A8:2C
Certificate issuer: /CN=4235d69d8d896faec6e7c2171d30dd09b501a03f
Certificate serial: 018CAB27B7EC31904E51FBF54882AA792F2C
Authority key identifier: 42:35:D6:9D:8D:89:6F:AE:C6:E7:C2:17:1D:30:DD:09:B5:01:A0:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QjXWnY2Jb67G58IXHTDdCbUBoD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/2da3de-f40c-49bd-af52-a9ae251e2fc5/1/9o0-EQ0PHbrQvA8yjGwRE-XqqCw.roa
Signing time: Wed 27 Dec 2023 12:02:36 +0000
ROA not before: Wed 27 Dec 2023 12:02:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62388
IP address blocks: 188.212.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ab:27:b7:ec:31:90:4e:51:fb:f5:48:82:aa:79:2f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4235d69d8d896faec6e7c2171d30dd09b501a03f
Validity
Not Before: Dec 27 12:02:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f68d3e110d0f1dbad0bc0f328c6c1113e5eaa82c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1d:b6:42:5c:83:3a:58:67:c9:10:fa:73:1a:
14:55:59:56:01:d7:a0:77:57:be:a2:7c:0a:df:17:
10:64:7b:1b:6f:86:b4:26:f9:c8:4f:2d:e8:8f:81:
b6:ce:7e:f8:99:4d:15:88:87:9c:35:1e:aa:fd:96:
33:59:cf:7c:b4:72:32:5e:e2:00:16:ae:f4:27:4e:
f3:6a:66:2e:7a:0e:f8:69:9d:7a:7d:f2:3d:61:03:
6f:5e:c5:fb:4b:b8:ff:fc:1c:d1:31:1d:c1:16:2b:
4c:13:81:58:21:bf:28:b3:01:a0:f9:40:0d:d3:d0:
95:9f:f9:4e:6a:03:d8:e8:b1:d1:0d:bd:39:d9:35:
fe:f5:2e:87:2d:54:ce:8d:11:6c:0a:1d:76:eb:6c:
21:3f:ca:ff:f5:1e:bd:db:56:cd:e3:8e:a4:bd:6a:
dd:44:bf:8a:d1:0e:b6:5c:87:85:1a:38:f4:0d:f4:
b7:27:31:ab:35:09:c5:ad:2d:14:47:e8:c2:2b:f6:
a6:9c:2d:b7:74:e2:42:72:d9:b6:6a:27:4f:0b:8a:
29:f2:3f:55:97:c6:e1:f4:35:b6:63:53:0c:57:43:
f6:61:27:58:97:35:e1:40:ed:fd:cc:21:c7:dd:05:
55:28:41:8e:85:4b:46:77:2d:80:72:b9:18:7b:7a:
c0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8D:3E:11:0D:0F:1D:BA:D0:BC:0F:32:8C:6C:11:13:E5:EA:A8:2C
X509v3 Authority Key Identifier:
keyid:42:35:D6:9D:8D:89:6F:AE:C6:E7:C2:17:1D:30:DD:09:B5:01:A0:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QjXWnY2Jb67G58IXHTDdCbUBoD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/2da3de-f40c-49bd-af52-a9ae251e2fc5/1/9o0-EQ0PHbrQvA8yjGwRE-XqqCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/2da3de-f40c-49bd-af52-a9ae251e2fc5/1/QjXWnY2Jb67G58IXHTDdCbUBoD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.36.0/24
Signature Algorithm: sha256WithRSAEncryption
82:10:2b:63:d3:a8:45:b6:0b:38:74:60:9b:fb:9c:39:07:11:
63:3a:bc:a1:f4:4f:d1:77:65:66:ad:b0:74:0d:02:c4:6a:d7:
b7:33:9f:54:be:b6:74:73:f5:09:3c:df:a7:a8:24:5c:66:45:
7c:ff:85:30:87:45:17:fb:ba:65:34:7d:a2:00:00:d1:e6:18:
d6:ab:d1:e7:f0:6a:47:a6:03:5a:94:73:55:f9:8a:44:ae:d9:
d5:fc:d9:78:d5:b7:be:ff:a5:3c:95:ef:f5:4a:34:eb:3b:d6:
c9:f4:ee:3d:ce:ca:1b:f1:5c:ae:84:1e:cb:10:9d:a0:d7:5f:
60:f8:54:8b:be:2e:92:00:d1:57:3a:26:49:55:5f:da:b9:a9:
db:51:95:d8:a0:fd:83:2b:d2:28:fe:ac:d4:cf:d4:83:cf:4b:
07:95:af:a2:06:b1:4a:fa:cd:0a:4e:d4:70:98:ea:85:38:31:
e8:a4:b6:9b:19:c7:9b:d2:6c:10:7e:93:4d:cc:fd:54:80:09:
35:5b:44:43:59:12:06:5b:f6:06:d3:2f:41:e2:ec:4d:51:21:
f1:82:d6:d9:d1:52:fe:1d:8c:b5:ff:69:3d:76:e7:3a:4e:80:
76:90:9c:01:25:56:6e:7e:c6:81:fb:e2:64:28:6f:b9:37:8a:
17:70:44:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyrJ7fsMZBOUfv1SIKqeS8sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMzVkNjlkOGQ4OTZmYWVjNmU3YzIxNzFkMzBkZDA5YjUw
MWEwM2YwHhcNMjMxMjI3MTIwMjM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjhkM2UxMTBkMGYxZGJhZDBiYzBmMzI4YzZjMTExM2U1ZWFhODJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAph22QlyDOlhnyRD6cxoUVVlWAdeg
d1e+onwK3xcQZHsbb4a0JvnITy3oj4G2zn74mU0ViIecNR6q/ZYzWc98tHIyXuIA
Fq70J07zamYueg74aZ16ffI9YQNvXsX7S7j//BzRMR3BFitME4FYIb8oswGg+UAN
09CVn/lOagPY6LHRDb052TX+9S6HLVTOjRFsCh1262whP8r/9R6921bN446kvWrd
RL+K0Q62XIeFGjj0DfS3JzGrNQnFrS0UR+jCK/amnC23dOJCctm2aidPC4op8j9V
l8bh9DW2Y1MMV0P2YSdYlzXhQO39zCHH3QVVKEGOhUtGdy2AcrkYe3rABQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPaNPhENDx260LwPMoxsERPl6qgsMB8GA1UdIwQY
MBaAFEI11p2NiW+uxufCFx0w3Qm1AaA/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWpYV25ZMkpiNjdHNThJWEhURGRDYlVCb0Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8yZGEzZGUtZjQwYy00OWJkLWFmNTIt
YTlhZTI1MWUyZmM1LzEvOW8wLUVRMFBIYnJRdkE4eWpHd1JFLVhxcUN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC8yZGEzZGUtZjQwYy00OWJkLWFmNTItYTlhZTI1MWUyZmM1
LzEvUWpYV25ZMkpiNjdHNThJWEhURGRDYlVCb0Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNQkMA0G
CSqGSIb3DQEBCwUAA4IBAQCCECtj06hFtgs4dGCb+5w5BxFjOryh9E/Rd2VmrbB0
DQLEate3M59UvrZ0c/UJPN+nqCRcZkV8/4Uwh0UX+7plNH2iAADR5hjWq9Hn8GpH
pgNalHNV+YpErtnV/Nl41be+/6U8le/1SjTrO9bJ9O49zsob8VyuhB7LEJ2g119g
+FSLvi6SANFXOiZJVV/auanbUZXYoP2DK9Io/qzUz9SDz0sHla+iBrFK+s0KTtRw
mOqFODHopLabGceb0mwQfpNNzP1UgAk1W0RDWRIGW/YG0y9B4uxNUSHxgtbZ0VL+
HYy1/2k9duc6ToB2kJwBJVZufsaB++JkKG+5N4oXcESw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:18 2024 by rpki-client on console-ams.rpki-client.org