Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/434e80-299c-4ca5-badd-ab95f7c7a476/1/vYUIWNcYSkKaKNUFDNSo0rDum9k.roa
File: vYUIWNcYSkKaKNUFDNSo0rDum9k.roa (raw, json)
Hash identifier: UjR3BFzterVRfpe33oaU+x+EHWXbTX/R9QdX46Bbg4Y=
Subject key identifier: BD:85:08:58:D7:18:4A:42:9A:28:D5:05:0C:D4:A8:D2:B0:EE:9B:D9
Certificate issuer: /CN=983dd29a579875009dbc4139668b148b8884b637
Certificate serial: 01FE0B24
Authority key identifier: 98:3D:D2:9A:57:98:75:00:9D:BC:41:39:66:8B:14:8B:88:84:B6:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mD3SmleYdQCdvEE5ZosUi4iEtjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/434e80-299c-4ca5-badd-ab95f7c7a476/1/vYUIWNcYSkKaKNUFDNSo0rDum9k.roa
Signing time: Sat 01 Jan 2022 11:05:14 +0000
ROA not before: Sat 01 Jan 2022 11:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43872
IP address blocks: 185.179.120.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33426212 (0x1fe0b24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=983dd29a579875009dbc4139668b148b8884b637
Validity
Not Before: Jan 1 11:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd850858d7184a429a28d5050cd4a8d2b0ee9bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1c:1a:dd:26:06:d9:e9:e6:77:63:bc:47:b1:
24:92:b5:f6:0d:38:54:84:3f:f7:68:f5:69:bb:47:
ef:48:6c:5e:a1:90:18:a6:b5:0f:43:1c:72:19:2f:
d2:6e:20:5b:b6:99:a8:c2:8a:ac:a0:41:dc:19:f8:
06:68:0a:ab:b7:e0:b1:6c:e7:9e:a5:70:b3:77:60:
34:74:e4:0a:ac:02:86:b9:de:64:85:96:bc:9a:d7:
0b:89:45:07:76:1a:f3:51:72:d9:8f:b9:8d:0d:4f:
eb:f0:40:16:74:c0:18:3c:7e:b3:33:e4:33:eb:a7:
f2:2d:3c:1e:f5:37:ee:fe:b5:9a:61:48:8b:20:31:
e6:6f:61:3b:a1:e2:0b:0f:86:08:c4:be:9f:68:66:
e6:b4:c4:f3:45:2a:6c:2f:e2:27:3a:04:e8:22:91:
ea:e9:77:4d:99:88:e2:a9:bb:61:b5:23:4f:30:b5:
67:f1:2f:37:c6:87:9f:be:5f:18:66:28:ff:be:6b:
b1:27:46:0e:c6:33:d9:fb:6f:e9:b5:86:c5:87:77:
10:b5:44:27:0a:f8:2e:cf:52:da:67:03:82:c7:39:
a0:19:ad:13:13:bb:97:00:08:55:08:69:45:fc:b8:
90:db:84:c7:05:38:ff:12:22:ba:4b:b7:f8:4c:ee:
cc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:85:08:58:D7:18:4A:42:9A:28:D5:05:0C:D4:A8:D2:B0:EE:9B:D9
X509v3 Authority Key Identifier:
keyid:98:3D:D2:9A:57:98:75:00:9D:BC:41:39:66:8B:14:8B:88:84:B6:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mD3SmleYdQCdvEE5ZosUi4iEtjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/434e80-299c-4ca5-badd-ab95f7c7a476/1/vYUIWNcYSkKaKNUFDNSo0rDum9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/434e80-299c-4ca5-badd-ab95f7c7a476/1/mD3SmleYdQCdvEE5ZosUi4iEtjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.120.0/22
Signature Algorithm: sha256WithRSAEncryption
65:56:d8:fa:50:29:49:09:b2:2f:fb:bb:9f:db:23:6f:06:97:
de:c8:a7:1c:db:e2:02:12:7c:a8:f8:57:61:bd:90:32:1e:00:
97:51:4b:5d:cf:9a:f6:33:eb:91:0e:3a:d5:10:cd:14:a1:19:
94:e5:52:0f:fd:3b:3a:8f:e1:e7:6b:fd:bf:99:fe:37:21:6a:
83:50:df:c8:44:40:c4:02:99:6d:76:9f:e1:2b:0e:da:f4:3a:
64:ac:11:6f:75:4c:55:f2:e8:6d:0a:e3:fe:ff:34:30:59:85:
ce:39:38:2a:12:f6:4a:8c:23:8a:f6:43:7e:b9:22:35:79:5c:
3b:6c:f8:3b:58:c5:5d:95:55:fa:0d:51:14:29:0d:bf:48:71:
45:53:e6:bf:a7:78:e0:99:29:0c:69:3d:a1:33:0e:b8:c7:9c:
50:bf:0e:83:1d:44:a7:28:7d:e6:0f:85:e4:c4:70:c7:c9:18:
6e:7c:da:21:58:5a:8f:af:2f:05:4a:31:f0:32:23:82:d2:79:
ca:a3:fa:95:58:a6:0a:92:1a:69:fe:0f:cc:da:a0:77:7b:cb:
d7:fc:d7:7c:3b:9a:0a:50:f1:8f:25:40:b3:05:f0:21:90:bf:
f3:92:cc:80:f1:c6:62:89:8a:4a:37:92:50:13:72:e1:62:70:
7d:2f:d6:b3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAf4LJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ODNkZDI5YTU3OTg3NTAwOWRiYzQxMzk2NjhiMTQ4Yjg4ODRiNjM3MB4XDTIyMDEw
MTExMDUxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmQ4NTA4NThkNzE4
NGE0MjlhMjhkNTA1MGNkNGE4ZDJiMGVlOWJkOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALccGt0mBtnp5ndjvEexJJK19g04VIQ/92j1abtH70hsXqGQ
GKa1D0Mcchkv0m4gW7aZqMKKrKBB3Bn4BmgKq7fgsWznnqVws3dgNHTkCqwChrne
ZIWWvJrXC4lFB3Ya81Fy2Y+5jQ1P6/BAFnTAGDx+szPkM+un8i08HvU37v61mmFI
iyAx5m9hO6HiCw+GCMS+n2hm5rTE80UqbC/iJzoE6CKR6ul3TZmI4qm7YbUjTzC1
Z/EvN8aHn75fGGYo/75rsSdGDsYz2ftv6bWGxYd3ELVEJwr4Ls9S2mcDgsc5oBmt
ExO7lwAIVQhpRfy4kNuExwU4/xIiuku3+EzuzFUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS9hQhY1xhKQpoo1QUM1KjSsO6b2TAfBgNVHSMEGDAWgBSYPdKaV5h1AJ28
QTlmixSLiIS2NzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21EM1NtbGVZZFFDZHZFRTVab3NVaTRpRXRqYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzkvNDM0ZTgwLTI5OWMtNGNhNS1iYWRkLWFiOTVmN2M3YTQ3Ni8x
L3ZZVUlXTmNZU2tLYUtOVUZETlNvMHJEdW05ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkv
NDM0ZTgwLTI5OWMtNGNhNS1iYWRkLWFiOTVmN2M3YTQ3Ni8xL21EM1NtbGVZZFFD
ZHZFRTVab3NVaTRpRXRqYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmzeDANBgkqhkiG9w0BAQsFAAOC
AQEAZVbY+lApSQmyL/u7n9sjbwaX3sinHNviAhJ8qPhXYb2QMh4Al1FLXc+a9jPr
kQ461RDNFKEZlOVSD/07Oo/h52v9v5n+NyFqg1DfyERAxAKZbXaf4SsO2vQ6ZKwR
b3VMVfLobQrj/v80MFmFzjk4KhL2SowjivZDfrkiNXlcO2z4O1jFXZVV+g1RFCkN
v0hxRVPmv6d44JkpDGk9oTMOuMecUL8Ogx1Epyh95g+F5MRwx8kYbnzaIVhaj68v
BUox8DIjgtJ5yqP6lVimCpIaaf4PzNqgd3vL1/zXfDuaClDxjyVAswXwIZC/85LM
gPHGYomKSjeSUBNy4WJwfS/Wsw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:52 2025 by rpki-client