Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/9j8KSq3CmYhiEk9--VODtrhaJ0Q.roa
File: 9j8KSq3CmYhiEk9--VODtrhaJ0Q.roa (raw, json)
Hash identifier: cgZThY2tbIFCxFasI0ObvM03qz7m1Ek9CkKzp+mALvw=
Subject key identifier: F6:3F:0A:4A:AD:C2:99:88:62:12:4F:7E:F9:53:83:B6:B8:5A:27:44
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 01823B5BD1BB172ABD70F30ED19AE2013E9D
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/9j8KSq3CmYhiEk9--VODtrhaJ0Q.roa
Signing time: Tue 26 Jul 2022 16:34:08 +0000
ROA not before: Tue 26 Jul 2022 16:34:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 185.147.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3b:5b:d1:bb:17:2a:bd:70:f3:0e:d1:9a:e2:01:3e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jul 26 16:34:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f63f0a4aadc2998862124f7ef95383b6b85a2744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9b:12:47:d9:30:6a:5a:b8:55:37:2e:95:88:
10:2d:ec:b4:b1:e5:85:ec:1c:ef:8b:5d:5a:d0:51:
1e:8c:81:73:8c:64:4c:65:02:7d:a2:02:c6:ca:33:
bc:47:e8:43:21:21:7b:fb:f7:07:0d:6f:13:2d:6d:
69:ad:d9:66:b3:c4:75:66:0b:93:32:3e:90:55:d5:
d3:66:b7:24:4d:77:48:fa:e2:b0:8a:8d:09:4a:62:
10:6a:53:fa:ec:d2:78:7c:b9:53:23:a3:16:5b:32:
4e:57:37:2c:ea:d0:eb:5b:3b:67:6a:c0:13:ec:c5:
50:d0:08:87:91:81:d6:d7:0b:76:20:4b:02:62:a5:
ac:9b:12:41:01:34:80:38:23:c3:d7:81:7a:f3:05:
94:64:64:73:9a:2e:e7:3a:df:f8:ce:29:f7:ef:a1:
cd:4f:d8:ae:d0:7d:8e:04:e6:6b:eb:5f:cd:55:15:
8e:36:f0:8c:8e:97:57:5d:8b:b0:4c:be:8f:ae:90:
b1:e7:40:8d:21:50:ae:d9:8f:b1:bf:85:e2:6a:a0:
a6:5b:30:c9:37:a6:6a:d2:a0:8e:85:d4:cf:eb:1a:
2c:b4:15:dc:1a:d5:be:84:f3:ee:eb:b9:26:a8:26:
c2:58:71:1e:32:25:8c:20:ce:1d:6e:5b:57:96:0a:
e4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:3F:0A:4A:AD:C2:99:88:62:12:4F:7E:F9:53:83:B6:B8:5A:27:44
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/9j8KSq3CmYhiEk9--VODtrhaJ0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.35.0/24
Signature Algorithm: sha256WithRSAEncryption
06:fb:77:0e:84:ab:9d:b4:d9:03:8e:75:fa:04:90:e2:c9:c2:
e8:4a:db:69:8b:64:63:5b:58:00:bb:b9:e6:f4:56:74:5e:ea:
8d:d4:95:cd:aa:46:15:60:e2:10:89:88:e5:35:8b:62:55:33:
1e:d0:52:22:83:91:34:44:14:10:35:b3:68:22:e6:48:b9:a6:
0b:97:c9:4a:df:15:5f:f3:1b:67:cb:63:30:3a:14:dc:72:0d:
24:d1:d1:ba:3f:0b:24:49:d2:b6:9e:5d:b2:f0:fd:0a:65:df:
3a:66:ee:32:ed:79:f9:2a:3e:1a:af:2d:0e:c5:e5:a2:c4:3b:
b9:53:2c:04:fc:73:43:e7:27:ef:f4:cf:03:3f:99:19:4e:90:
e5:00:70:84:06:3c:48:be:3c:e6:b4:5d:c1:36:e0:ea:48:59:
30:34:85:42:72:2a:62:a3:7f:43:c2:59:89:72:9b:33:82:53:
f0:d2:44:5a:b8:8b:ad:e6:f6:8a:99:f3:f3:a8:4c:07:97:2c:
7b:f8:13:d7:d4:0b:15:93:83:24:4a:ad:50:39:0e:52:2d:c2:
45:93:0d:d6:70:b6:2b:31:c1:e9:70:9b:e4:2d:70:a9:49:cb:
a6:81:a9:e9:3c:50:26:ad:54:fc:25:09:2f:65:6f:5f:8e:5b:
7f:97:a3:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYI7W9G7Fyq9cPMO0ZriAT6dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0OTE0NTQxZmQxYjk1ZTdjMGFmYzg3NWZiZWY3ODc5NGY1
NTM4NmIwHhcNMjIwNzI2MTYzNDA4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjNmMGE0YWFkYzI5OTg4NjIxMjRmN2VmOTUzODNiNmI4NWEyNzQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZsSR9kwalq4VTculYgQLey0seWF
7Bzvi11a0FEejIFzjGRMZQJ9ogLGyjO8R+hDISF7+/cHDW8TLW1prdlms8R1ZguT
Mj6QVdXTZrckTXdI+uKwio0JSmIQalP67NJ4fLlTI6MWWzJOVzcs6tDrWztnasAT
7MVQ0AiHkYHW1wt2IEsCYqWsmxJBATSAOCPD14F68wWUZGRzmi7nOt/4zin376HN
T9iu0H2OBOZr61/NVRWONvCMjpdXXYuwTL6PrpCx50CNIVCu2Y+xv4XiaqCmWzDJ
N6Zq0qCOhdTP6xostBXcGtW+hPPu67kmqCbCWHEeMiWMIM4dbltXlgrkZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPY/CkqtwpmIYhJPfvlTg7a4WidEMB8GA1UdIwQY
MBaAFFSRRUH9G5XnwK/IdfvveHlPVThrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEt
ZDlmNmQ5NjQyNTM3LzEvOWo4S1NxM0NtWWhpRWs5LS1WT0R0cmhhSjBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS80NjQ2MzEtY2E4ZS00YzZhLWIwOTEtZDlmNmQ5NjQyNTM3
LzEvVkpGRlFmMGJsZWZBcjhoMS0tOTRlVTlWT0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZMjMA0G
CSqGSIb3DQEBCwUAA4IBAQAG+3cOhKudtNkDjnX6BJDiycLoSttpi2RjW1gAu7nm
9FZ0XuqN1JXNqkYVYOIQiYjlNYtiVTMe0FIig5E0RBQQNbNoIuZIuaYLl8lK3xVf
8xtny2MwOhTccg0k0dG6PwskSdK2nl2y8P0KZd86Zu4y7Xn5Kj4ary0OxeWixDu5
UywE/HND5yfv9M8DP5kZTpDlAHCEBjxIvjzmtF3BNuDqSFkwNIVCcipio39DwlmJ
cpszglPw0kRauIut5vaKmfPzqEwHlyx7+BPX1AsVk4MkSq1QOQ5SLcJFkw3WcLYr
McHpcJvkLXCpScumganpPFAmrVT8JQkvZW9fjlt/l6O9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:11 2024 by rpki-client on console-fra.rpki-client.org