Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/fb305e-2dff-4e6b-8635-e886e3761127/1/hmNYWJ7aLmFI9YaX1BWihQwvYpE.roa
File: hmNYWJ7aLmFI9YaX1BWihQwvYpE.roa (raw, json)
Hash identifier: g45JLFgqoctFteW10Ykj6g8ZG3yY/PdOaRC6f+w2nvM=
Subject key identifier: 86:63:58:58:9E:DA:2E:61:48:F5:86:97:D4:15:A2:85:0C:2F:62:91
Certificate issuer: /CN=4eca8de0118f67c17cefa2b3b4917c7efd099794
Certificate serial: 018571F110B9CE0C58479045553D563B19AB
Authority key identifier: 4E:CA:8D:E0:11:8F:67:C1:7C:EF:A2:B3:B4:91:7C:7E:FD:09:97:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TsqN4BGPZ8F876KztJF8fv0Jl5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/fb305e-2dff-4e6b-8635-e886e3761127/1/hmNYWJ7aLmFI9YaX1BWihQwvYpE.roa
Signing time: Mon 02 Jan 2023 10:05:01 +0000
ROA not before: Mon 02 Jan 2023 10:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40994
IP address blocks: 83.138.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f1:10:b9:ce:0c:58:47:90:45:55:3d:56:3b:19:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eca8de0118f67c17cefa2b3b4917c7efd099794
Validity
Not Before: Jan 2 10:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=866358589eda2e6148f58697d415a2850c2f6291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:3a:a2:94:95:d9:ce:38:c6:fa:06:0a:27:f8:
c9:f8:c9:37:e1:d1:6a:c2:f4:5f:80:80:c5:cb:67:
9f:e0:bb:78:29:59:50:ac:ec:ef:06:74:4d:c5:a1:
28:66:82:18:42:8a:f9:36:6d:f2:47:21:70:45:9e:
89:ea:a6:f5:9c:b3:25:17:c4:e4:ae:5e:00:84:e7:
69:22:c2:6b:d0:f1:4d:30:38:72:63:12:4c:a9:b2:
73:b5:03:ea:44:af:94:4d:69:0b:05:27:d3:4b:18:
b0:22:9b:ef:86:28:3b:8c:fc:02:c2:33:72:b2:0d:
83:47:23:61:92:10:99:27:3c:30:77:81:5e:17:2f:
d4:34:89:ca:63:13:23:bf:04:f3:3f:2f:78:c5:78:
25:50:fb:51:b1:2d:10:d5:2c:b9:67:20:2d:0a:4a:
50:1a:de:b4:8d:04:4f:47:98:f6:ba:18:0d:af:e4:
72:b5:2d:d8:19:0e:26:74:de:82:75:fa:d4:c3:ba:
07:54:2c:7d:98:20:4c:b4:40:2a:3a:66:12:d0:f0:
1c:13:36:3d:64:e1:3a:85:72:00:d6:f3:aa:ef:c2:
72:6e:9e:54:f7:9c:6b:63:8e:20:5e:6b:fb:d7:aa:
ba:d3:5a:83:cb:ec:1a:56:91:18:92:39:03:c0:52:
6e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:63:58:58:9E:DA:2E:61:48:F5:86:97:D4:15:A2:85:0C:2F:62:91
X509v3 Authority Key Identifier:
keyid:4E:CA:8D:E0:11:8F:67:C1:7C:EF:A2:B3:B4:91:7C:7E:FD:09:97:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TsqN4BGPZ8F876KztJF8fv0Jl5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/fb305e-2dff-4e6b-8635-e886e3761127/1/hmNYWJ7aLmFI9YaX1BWihQwvYpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/fb305e-2dff-4e6b-8635-e886e3761127/1/TsqN4BGPZ8F876KztJF8fv0Jl5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.55.0/24
Signature Algorithm: sha256WithRSAEncryption
30:f6:34:8b:6f:8d:1d:6e:ff:49:f3:46:e7:d4:2f:6e:0d:01:
10:dc:0c:94:e1:f6:cb:21:aa:b3:68:72:b1:a6:fa:8c:d9:8c:
fa:62:f7:6f:ff:ae:75:ac:03:81:d4:1e:c5:f4:29:82:94:ea:
d4:1b:51:c9:cc:8c:8b:60:d9:1f:4b:c7:73:89:46:80:bc:0e:
d5:3c:59:ad:11:69:3b:25:dd:43:11:33:4f:25:01:1f:9c:af:
8d:aa:40:8b:fc:a7:d6:7d:41:97:7d:48:5e:b2:12:52:93:a2:
d0:23:5f:a8:d9:9c:de:7d:02:b8:5d:8e:ed:01:bc:97:73:a4:
0f:f7:7d:64:8d:39:af:02:c3:98:68:17:ed:19:0b:d7:e8:58:
e6:08:05:0c:06:a4:68:9b:4f:77:36:03:b4:b4:15:27:23:1a:
52:34:a8:82:20:0d:75:2b:15:ea:1b:a7:ca:49:5a:00:c1:0c:
b0:03:1d:57:ac:7b:7b:ca:37:08:b0:dc:e8:0c:b9:f6:48:af:
66:41:f9:bf:e8:5e:87:1d:38:0b:df:50:88:bb:d0:90:f9:b8:
49:c1:71:03:b9:2d:dc:6a:03:d3:96:e4:13:df:2c:42:54:5d:
9a:56:44:4e:a8:1e:c6:91:cb:40:05:b2:01:66:3e:1e:ec:9a:
08:a3:e8:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx8RC5zgxYR5BFVT1WOxmrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlY2E4ZGUwMTE4ZjY3YzE3Y2VmYTJiM2I0OTE3YzdlZmQw
OTk3OTQwHhcNMjMwMTAyMTAwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjYzNTg1ODllZGEyZTYxNDhmNTg2OTdkNDE1YTI4NTBjMmY2MjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhDqilJXZzjjG+gYKJ/jJ+Mk34dFq
wvRfgIDFy2ef4Lt4KVlQrOzvBnRNxaEoZoIYQor5Nm3yRyFwRZ6J6qb1nLMlF8Tk
rl4AhOdpIsJr0PFNMDhyYxJMqbJztQPqRK+UTWkLBSfTSxiwIpvvhig7jPwCwjNy
sg2DRyNhkhCZJzwwd4FeFy/UNInKYxMjvwTzPy94xXglUPtRsS0Q1Sy5ZyAtCkpQ
Gt60jQRPR5j2uhgNr+RytS3YGQ4mdN6CdfrUw7oHVCx9mCBMtEAqOmYS0PAcEzY9
ZOE6hXIA1vOq78Jybp5U95xrY44gXmv716q601qDy+waVpEYkjkDwFJuLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIZjWFie2i5hSPWGl9QVooUML2KRMB8GA1UdIwQY
MBaAFE7KjeARj2fBfO+is7SRfH79CZeUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHNxTjRCR1BaOEY4NzZLenRKRjhmdjBKbDVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9mYjMwNWUtMmRmZi00ZTZiLTg2MzUt
ZTg4NmUzNzYxMTI3LzEvaG1OWVdKN2FMbUZJOVlhWDFCV2loUXd2WXBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9mYjMwNWUtMmRmZi00ZTZiLTg2MzUtZTg4NmUzNzYxMTI3
LzEvVHNxTjRCR1BaOEY4NzZLenRKRjhmdjBKbDVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU4o3MA0G
CSqGSIb3DQEBCwUAA4IBAQAw9jSLb40dbv9J80bn1C9uDQEQ3AyU4fbLIaqzaHKx
pvqM2Yz6Yvdv/651rAOB1B7F9CmClOrUG1HJzIyLYNkfS8dziUaAvA7VPFmtEWk7
Jd1DETNPJQEfnK+NqkCL/KfWfUGXfUheshJSk6LQI1+o2ZzefQK4XY7tAbyXc6QP
931kjTmvAsOYaBftGQvX6FjmCAUMBqRom093NgO0tBUnIxpSNKiCIA11KxXqG6fK
SVoAwQywAx1XrHt7yjcIsNzoDLn2SK9mQfm/6F6HHTgL31CIu9CQ+bhJwXEDuS3c
agPTluQT3yxCVF2aVkROqB7GkctABbIBZj4e7JoIo+gg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:51 2024 by rpki-client on console-fra.rpki-client.org