Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c45a9b-5096-4e75-9389-bd9b42f48dde/1/xyp2o38ix-PqkhCiGNIDPXH30Cs.roa
File: xyp2o38ix-PqkhCiGNIDPXH30Cs.roa (raw, json)
Hash identifier: YPzqGepBkte/0sPvYgPJx6uvIOWsJ/8Lh4rhoJTA9EE=
Subject key identifier: C7:2A:76:A3:7F:22:C7:E3:EA:92:10:A2:18:D2:03:3D:71:F7:D0:2B
Certificate issuer: /CN=13ecf10b887f085887de8b2db64917ee2e424545
Certificate serial: 01845DE83A93DA2D751AA1ED519AE32B3881
Authority key identifier: 13:EC:F1:0B:88:7F:08:58:87:DE:8B:2D:B6:49:17:EE:2E:42:45:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-zxC4h_CFiH3osttkkX7i5CRUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c45a9b-5096-4e75-9389-bd9b42f48dde/1/xyp2o38ix-PqkhCiGNIDPXH30Cs.roa
Signing time: Wed 09 Nov 2022 19:40:11 +0000
ROA not before: Wed 09 Nov 2022 19:40:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 194.150.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:e8:3a:93:da:2d:75:1a:a1:ed:51:9a:e3:2b:38:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ecf10b887f085887de8b2db64917ee2e424545
Validity
Not Before: Nov 9 19:40:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c72a76a37f22c7e3ea9210a218d2033d71f7d02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:38:a2:70:65:c8:ca:5b:4b:f5:34:fc:01:f7:
79:c5:84:cf:71:29:14:97:cd:6e:39:ad:0d:90:e1:
fe:fc:f7:c9:3f:c5:41:34:42:9f:57:ff:8d:21:ef:
1b:aa:02:f9:3c:6f:39:a2:a1:5f:55:4d:39:44:23:
f2:70:6e:c6:46:6c:58:0d:c6:79:07:8c:2d:20:d5:
24:2b:f9:64:b4:12:15:d2:38:da:69:d9:90:21:ed:
0b:f3:25:9b:15:86:a7:e2:de:d8:c6:94:7b:95:d7:
27:17:0b:78:07:e8:6a:06:c1:40:cc:19:c4:68:8e:
5a:33:9e:1c:ce:49:2b:29:4a:ad:82:5b:8f:94:8a:
71:e9:03:ef:c7:a4:e8:cc:38:fa:f6:50:f4:7b:72:
c3:02:37:9f:e6:39:c2:b2:65:9d:d3:4e:28:a5:f4:
eb:ce:87:b0:29:5d:0e:b9:4c:d9:ca:50:8b:06:57:
49:3c:4b:49:19:be:21:fa:72:dc:b9:86:1b:03:fd:
81:40:9f:00:c0:3c:24:4e:11:be:56:e5:1b:11:ad:
5e:fc:59:71:24:98:dd:c9:ea:9e:b7:ef:11:f7:6b:
02:d2:d9:5b:cd:41:f5:bb:1f:10:35:2c:3e:1a:dc:
d3:1a:2b:14:5e:50:5a:48:bf:c4:b2:f9:1d:e6:d4:
8d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2A:76:A3:7F:22:C7:E3:EA:92:10:A2:18:D2:03:3D:71:F7:D0:2B
X509v3 Authority Key Identifier:
keyid:13:EC:F1:0B:88:7F:08:58:87:DE:8B:2D:B6:49:17:EE:2E:42:45:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-zxC4h_CFiH3osttkkX7i5CRUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c45a9b-5096-4e75-9389-bd9b42f48dde/1/xyp2o38ix-PqkhCiGNIDPXH30Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c45a9b-5096-4e75-9389-bd9b42f48dde/1/E-zxC4h_CFiH3osttkkX7i5CRUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.211.0/24
Signature Algorithm: sha256WithRSAEncryption
94:e9:54:69:35:74:98:b1:43:b1:05:7d:32:64:c2:a4:ab:2d:
4d:b1:be:9f:1a:87:32:e3:eb:a9:2c:86:81:24:39:d5:10:18:
e5:24:db:ac:bf:40:97:24:57:63:2d:80:63:8f:06:64:a9:d6:
66:60:1e:41:f5:fa:62:9b:54:9c:81:5b:fd:b8:9c:03:49:32:
1b:0c:55:84:ba:dd:bd:6d:a1:f8:41:e0:0f:4c:be:f6:9b:1e:
be:79:6e:5f:3a:81:14:a9:3d:9d:e1:6c:c9:b5:b6:8c:14:16:
52:a0:d7:30:b6:de:24:41:78:07:14:7e:4a:22:cd:19:ea:b4:
98:1f:cb:c5:31:1d:54:be:13:07:bf:ef:d6:d4:13:f6:a0:7a:
0c:f8:10:10:53:2f:1e:89:7e:29:58:7e:27:58:7d:a3:a8:2a:
c3:3b:2f:af:1a:3c:78:a9:c7:1d:18:65:96:93:dc:33:02:0b:
f6:6b:e4:77:63:85:b6:e0:9f:0c:0f:67:3f:60:fe:8a:25:ba:
e7:84:22:93:90:9c:ba:4d:36:d9:1f:f9:c0:23:96:08:8e:57:
54:6a:73:1d:b9:5a:e2:6c:5e:78:30:54:f9:8a:b7:9f:95:c2:
2b:97:39:6e:83:0b:5b:d6:b7:6e:4b:13:97:64:c1:ef:3a:1d:
e0:5e:cf:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRd6DqT2i11GqHtUZrjKziBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzZWNmMTBiODg3ZjA4NTg4N2RlOGIyZGI2NDkxN2VlMmU0
MjQ1NDUwHhcNMjIxMTA5MTk0MDExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzJhNzZhMzdmMjJjN2UzZWE5MjEwYTIxOGQyMDMzZDcxZjdkMDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTiicGXIyltL9TT8Afd5xYTPcSkU
l81uOa0NkOH+/PfJP8VBNEKfV/+NIe8bqgL5PG85oqFfVU05RCPycG7GRmxYDcZ5
B4wtINUkK/lktBIV0jjaadmQIe0L8yWbFYan4t7YxpR7ldcnFwt4B+hqBsFAzBnE
aI5aM54czkkrKUqtgluPlIpx6QPvx6TozDj69lD0e3LDAjef5jnCsmWd004opfTr
zoewKV0OuUzZylCLBldJPEtJGb4h+nLcuYYbA/2BQJ8AwDwkThG+VuUbEa1e/Flx
JJjdyeqet+8R92sC0tlbzUH1ux8QNSw+GtzTGisUXlBaSL/Esvkd5tSN+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMcqdqN/Isfj6pIQohjSAz1x99ArMB8GA1UdIwQY
MBaAFBPs8QuIfwhYh96LLbZJF+4uQkVFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRS16eEM0aF9DRmlIM29zdHRra1g3aTVDUlVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9jNDVhOWItNTA5Ni00ZTc1LTkzODkt
YmQ5YjQyZjQ4ZGRlLzEveHlwMm8zOGl4LVBxa2hDaUdOSURQWEgzMENzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9jNDVhOWItNTA5Ni00ZTc1LTkzODktYmQ5YjQyZjQ4ZGRl
LzEvRS16eEM0aF9DRmlIM29zdHRra1g3aTVDUlVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpbTMA0G
CSqGSIb3DQEBCwUAA4IBAQCU6VRpNXSYsUOxBX0yZMKkqy1Nsb6fGocy4+upLIaB
JDnVEBjlJNusv0CXJFdjLYBjjwZkqdZmYB5B9fpim1ScgVv9uJwDSTIbDFWEut29
baH4QeAPTL72mx6+eW5fOoEUqT2d4WzJtbaMFBZSoNcwtt4kQXgHFH5KIs0Z6rSY
H8vFMR1UvhMHv+/W1BP2oHoM+BAQUy8eiX4pWH4nWH2jqCrDOy+vGjx4qccdGGWW
k9wzAgv2a+R3Y4W24J8MD2c/YP6KJbrnhCKTkJy6TTbZH/nAI5YIjldUanMduVri
bF54MFT5ireflcIrlzlugwtb1rduSxOXZMHvOh3gXs86
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:39 2023 by rpki-client on console-fra.rpki-client.org