Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/a792c2-f60b-4434-a1d1-d143d33d78d2/1/tw47GNmTZrjPWL35egmoBkYJhEw.roa
File: tw47GNmTZrjPWL35egmoBkYJhEw.roa (raw, json)
Hash identifier: S1CiwroLJFppp4FVAx+GNzmZIvQlkfEHvcwoaTgLluw=
Subject key identifier: B7:0E:3B:18:D9:93:66:B8:CF:58:BD:F9:7A:09:A8:06:46:09:84:4C
Certificate issuer: /CN=690d8581c464c996bcf826bc25654a5504957f8d
Certificate serial: 01856F8B9BFA2E11A06FA552912D863747B3
Authority key identifier: 69:0D:85:81:C4:64:C9:96:BC:F8:26:BC:25:65:4A:55:04:95:7F:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQ2FgcRkyZa8-Ca8JWVKVQSVf40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/a792c2-f60b-4434-a1d1-d143d33d78d2/1/tw47GNmTZrjPWL35egmoBkYJhEw.roa
Signing time: Sun 01 Jan 2023 22:54:58 +0000
ROA not before: Sun 01 Jan 2023 22:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44285
IP address blocks: 185.170.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:9b:fa:2e:11:a0:6f:a5:52:91:2d:86:37:47:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690d8581c464c996bcf826bc25654a5504957f8d
Validity
Not Before: Jan 1 22:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b70e3b18d99366b8cf58bdf97a09a8064609844c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cc:c3:ba:92:a2:79:cf:d0:a5:d3:45:d0:6b:
c4:61:d7:48:ec:9f:65:0b:12:f3:27:72:ef:1e:06:
99:2b:a0:e9:4e:81:fd:8c:70:cc:62:5d:25:38:4a:
ea:9b:a8:d0:a9:2a:3e:b7:83:74:bf:a4:74:43:a1:
f7:8a:47:55:db:7e:c9:64:78:b7:80:21:5c:50:cf:
05:30:09:d6:d7:1b:1c:f2:5d:b4:74:02:29:db:01:
62:6b:da:cd:90:e0:79:cb:ae:c1:6b:38:ba:c3:33:
72:1a:c2:0a:69:3c:63:ee:68:ca:cf:c6:d4:a5:b8:
e3:c0:b7:5c:93:92:fd:25:95:a6:2a:8f:e7:58:19:
f0:17:7b:d7:52:7b:0f:c0:fd:56:cc:1c:47:aa:11:
46:e4:3a:6b:3a:a4:ae:13:c8:69:be:5a:f8:e2:8e:
be:85:c3:4c:c3:2e:c8:84:44:96:2e:d0:02:56:c2:
59:e5:ca:b0:92:5d:13:ff:f5:66:2e:c8:a8:bf:e8:
dd:c8:96:29:82:fc:23:df:76:aa:3c:1e:98:e3:a0:
c9:89:f1:4c:0e:fc:fb:fb:5a:2f:e2:ce:31:77:89:
f1:57:d5:8a:10:9b:c4:06:f0:09:91:d3:29:41:e7:
2d:20:41:04:ec:ed:de:ab:cf:35:c2:15:59:7a:02:
26:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0E:3B:18:D9:93:66:B8:CF:58:BD:F9:7A:09:A8:06:46:09:84:4C
X509v3 Authority Key Identifier:
keyid:69:0D:85:81:C4:64:C9:96:BC:F8:26:BC:25:65:4A:55:04:95:7F:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQ2FgcRkyZa8-Ca8JWVKVQSVf40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/a792c2-f60b-4434-a1d1-d143d33d78d2/1/tw47GNmTZrjPWL35egmoBkYJhEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/a792c2-f60b-4434-a1d1-d143d33d78d2/1/aQ2FgcRkyZa8-Ca8JWVKVQSVf40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.8.0/24
Signature Algorithm: sha256WithRSAEncryption
80:92:ec:f5:2c:6c:01:22:50:08:67:31:29:0a:28:aa:7d:6c:
18:40:88:cb:ac:95:34:9c:4f:4e:1b:7f:b1:26:c9:65:ac:b2:
f0:44:c6:d8:27:36:2a:00:ed:55:d9:80:ab:0d:c3:d0:85:55:
f3:22:82:c9:44:c5:a7:ac:9c:27:27:4d:4a:cd:20:3c:71:76:
8d:7e:a9:c6:28:5d:71:09:07:ab:ba:6d:a3:c3:bd:87:a0:58:
5e:5d:0e:ea:61:4c:e0:a2:f3:38:b3:7b:a6:29:14:2a:bd:c2:
64:90:8d:b6:37:bb:68:cf:35:41:2e:34:d8:e6:7a:a9:f6:5c:
15:09:04:df:ff:32:ad:e9:8a:6d:c6:be:f4:19:b8:d3:38:c3:
ce:23:ef:52:02:80:de:36:4d:d8:32:2e:ec:de:82:21:e9:36:
3e:6b:bf:ba:cf:54:16:24:53:0c:c4:b3:29:fe:1d:ab:24:f5:
e6:ee:54:76:ec:e1:24:27:68:9b:cd:75:7a:ea:be:82:16:3d:
07:da:43:c0:d9:e1:f3:15:67:af:23:49:5a:7a:90:37:f6:ea:
46:67:f1:cd:31:86:04:7f:91:49:19:bf:d7:87:7b:a6:2d:1a:
15:95:b7:50:da:98:27:7c:d3:e8:5f:d7:2d:57:e4:52:7d:b9:
4f:a2:ab:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvi5v6LhGgb6VSkS2GN0ezMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MGQ4NTgxYzQ2NGM5OTZiY2Y4MjZiYzI1NjU0YTU1MDQ5
NTdmOGQwHhcNMjMwMTAxMjI1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzBlM2IxOGQ5OTM2NmI4Y2Y1OGJkZjk3YTA5YTgwNjQ2MDk4NDRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8zDupKiec/QpdNF0GvEYddI7J9l
CxLzJ3LvHgaZK6DpToH9jHDMYl0lOErqm6jQqSo+t4N0v6R0Q6H3ikdV237JZHi3
gCFcUM8FMAnW1xsc8l20dAIp2wFia9rNkOB5y67Bazi6wzNyGsIKaTxj7mjKz8bU
pbjjwLdck5L9JZWmKo/nWBnwF3vXUnsPwP1WzBxHqhFG5DprOqSuE8hpvlr44o6+
hcNMwy7IhESWLtACVsJZ5cqwkl0T//VmLsiov+jdyJYpgvwj33aqPB6Y46DJifFM
Dvz7+1ov4s4xd4nxV9WKEJvEBvAJkdMpQectIEEE7O3eq881whVZegImDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLcOOxjZk2a4z1i9+XoJqAZGCYRMMB8GA1UdIwQY
MBaAFGkNhYHEZMmWvPgmvCVlSlUElX+NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVEyRmdjUmt5WmE4LUNhOEpXVktWUVNWZjQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9hNzkyYzItZjYwYi00NDM0LWExZDEt
ZDE0M2QzM2Q3OGQyLzEvdHc0N0dObVRacmpQV0wzNWVnbW9Ca1lKaEV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9hNzkyYzItZjYwYi00NDM0LWExZDEtZDE0M2QzM2Q3OGQy
LzEvYVEyRmdjUmt5WmE4LUNhOEpXVktWUVNWZjQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaoIMA0G
CSqGSIb3DQEBCwUAA4IBAQCAkuz1LGwBIlAIZzEpCiiqfWwYQIjLrJU0nE9OG3+x
JsllrLLwRMbYJzYqAO1V2YCrDcPQhVXzIoLJRMWnrJwnJ01KzSA8cXaNfqnGKF1x
CQerum2jw72HoFheXQ7qYUzgovM4s3umKRQqvcJkkI22N7tozzVBLjTY5nqp9lwV
CQTf/zKt6Yptxr70GbjTOMPOI+9SAoDeNk3YMi7s3oIh6TY+a7+6z1QWJFMMxLMp
/h2rJPXm7lR27OEkJ2ibzXV66r6CFj0H2kPA2eHzFWevI0laepA39upGZ/HNMYYE
f5FJGb/Xh3umLRoVlbdQ2pgnfNPoX9ctV+RSfblPoqsm
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:50 2023 by rpki-client on console-ams.rpki-client.org