Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/APlCaz46YIPi7KX7hvMa_VCquiQ.roa
File: APlCaz46YIPi7KX7hvMa_VCquiQ.roa (raw, json)
Hash identifier: cTCX3YzAlThuceM1rDR6R50SLj01DzBPROL63a/lF4E=
Subject key identifier: 00:F9:42:6B:3E:3A:60:83:E2:EC:A5:FB:86:F3:1A:FD:50:AA:BA:24
Certificate issuer: /CN=43b0105bccb9e6093120767354a8b8493cbe4cd6
Certificate serial: 01856BAEE2E81DC2ACE4924FF6342B246A5E
Authority key identifier: 43:B0:10:5B:CC:B9:E6:09:31:20:76:73:54:A8:B8:49:3C:BE:4C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7AQW8y55gkxIHZzVKi4STy-TNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/APlCaz46YIPi7KX7hvMa_VCquiQ.roa
Signing time: Sun 01 Jan 2023 04:55:01 +0000
ROA not before: Sun 01 Jan 2023 04:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34688
IP address blocks: 194.116.252.0/23 maxlen: 23
194.187.72.0/22 maxlen: 22
46.250.160.0/19 maxlen: 19
185.2.60.0/22 maxlen: 22
46.250.168.0/24 maxlen: 24
2a01:5e00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:e2:e8:1d:c2:ac:e4:92:4f:f6:34:2b:24:6a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b0105bccb9e6093120767354a8b8493cbe4cd6
Validity
Not Before: Jan 1 04:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00f9426b3e3a6083e2eca5fb86f31afd50aaba24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ce:a8:64:25:53:bf:bc:2d:02:29:1c:c6:0f:
84:3a:b9:da:e7:dc:aa:59:ee:1a:9c:27:18:06:d8:
93:e8:79:86:53:9f:a6:1b:6f:4b:a5:95:64:3a:73:
45:e3:e5:66:66:ef:1b:b6:11:61:56:87:22:d4:73:
00:cd:31:28:83:10:47:3b:4c:d5:c9:d2:e2:9b:8e:
c8:67:88:96:6c:e5:58:6b:5e:9c:95:55:2e:48:fa:
72:1e:66:61:95:13:ee:40:ff:62:4f:8d:67:59:07:
a9:1e:56:8f:08:c0:df:78:85:37:40:74:af:9b:f3:
d3:8c:7b:83:c9:a0:47:43:2e:a2:c1:97:c5:9d:fa:
5d:ec:3f:a5:88:d6:89:0e:49:c2:9e:84:e4:18:17:
35:b8:59:74:73:8f:1b:92:81:e5:e7:cb:5e:ff:03:
a1:63:57:5e:1d:29:07:42:32:86:54:d2:a6:39:ea:
b6:a2:7b:ce:46:13:2b:5e:14:3b:45:ef:22:e9:68:
48:2e:00:d7:c4:a0:f2:ab:61:d4:28:f4:2d:0c:1d:
d7:22:24:37:95:d1:e5:d5:6d:2b:e4:4c:96:aa:1f:
2c:be:30:d1:29:0c:9e:01:b3:5a:76:56:0b:88:52:
e4:c0:84:a5:53:8c:43:e7:1a:74:34:94:55:ce:e8:
c8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F9:42:6B:3E:3A:60:83:E2:EC:A5:FB:86:F3:1A:FD:50:AA:BA:24
X509v3 Authority Key Identifier:
keyid:43:B0:10:5B:CC:B9:E6:09:31:20:76:73:54:A8:B8:49:3C:BE:4C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7AQW8y55gkxIHZzVKi4STy-TNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/APlCaz46YIPi7KX7hvMa_VCquiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/Q7AQW8y55gkxIHZzVKi4STy-TNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.250.160.0/19
185.2.60.0/22
194.116.252.0/23
194.187.72.0/22
IPv6:
2a01:5e00::/32
Signature Algorithm: sha256WithRSAEncryption
21:4f:17:a8:99:45:4d:6a:66:5b:0f:f3:2b:be:68:cc:2b:82:
4c:d4:ef:7e:af:3c:d5:44:2b:27:28:e9:e8:f2:f5:22:4a:10:
5e:5c:36:48:57:51:8e:b1:b9:08:e4:17:df:85:e9:db:1a:39:
a2:71:b4:99:b1:09:87:b3:85:a0:57:fa:82:9c:7d:40:15:2d:
87:48:9a:3f:f4:a6:3f:83:c6:49:61:26:2e:3c:58:8a:1b:a9:
11:ce:8c:cd:20:1b:e7:ef:51:80:25:9c:ca:00:ef:68:29:d2:
70:10:67:2a:c6:12:d0:da:97:e5:ac:86:09:1a:75:28:62:1d:
91:0f:7d:b4:70:30:e2:b0:87:99:32:23:f7:6f:61:c0:b3:14:
e1:2c:a7:d3:c1:d7:c1:dc:4d:ba:11:69:ff:0a:7c:24:33:01:
d3:8f:85:53:b6:3b:f1:6f:7e:86:ca:af:6d:a6:47:77:48:be:
cb:30:65:3b:e7:5d:56:7d:fe:2a:2d:78:1e:17:aa:7c:de:05:
c1:85:54:68:13:61:24:66:c3:61:dd:fd:f6:77:63:95:fb:e7:
d5:ec:76:1e:10:cb:8d:f3:31:24:74:58:79:d0:11:f7:0e:28:
22:25:0e:34:fa:e7:58:67:ff:6b:fe:bd:a2:78:56:c6:92:89:
23:71:f3:61
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAYVrruLoHcKs5JJP9jQrJGpeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzYjAxMDViY2NiOWU2MDkzMTIwNzY3MzU0YThiODQ5M2Ni
ZTRjZDYwHhcNMjMwMTAxMDQ1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGY5NDI2YjNlM2E2MDgzZTJlY2E1ZmI4NmYzMWFmZDUwYWFiYTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuc6oZCVTv7wtAikcxg+EOrna59yq
We4anCcYBtiT6HmGU5+mG29LpZVkOnNF4+VmZu8bthFhVoci1HMAzTEogxBHO0zV
ydLim47IZ4iWbOVYa16clVUuSPpyHmZhlRPuQP9iT41nWQepHlaPCMDfeIU3QHSv
m/PTjHuDyaBHQy6iwZfFnfpd7D+liNaJDknCnoTkGBc1uFl0c48bkoHl58te/wOh
Y1deHSkHQjKGVNKmOeq2onvORhMrXhQ7Re8i6WhILgDXxKDyq2HUKPQtDB3XIiQ3
ldHl1W0r5EyWqh8svjDRKQyeAbNadlYLiFLkwISlU4xD5xp0NJRVzujIoQIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFAD5Qms+OmCD4uyl+4bzGv1QqrokMB8GA1UdIwQY
MBaAFEOwEFvMueYJMSB2c1SouEk8vkzWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTdBUVc4eTU1Z2t4SUhaelZLaTRTVHktVE5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9mNzVjNjUtODg1ZS00MTdkLTgwNzYt
YmY3ZDhmY2E0NmUxLzEvQVBsQ2F6NDZZSVBpN0tYN2h2TWFfVkNxdWlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9mNzVjNjUtODg1ZS00MTdkLTgwNzYtYmY3ZDhmY2E0NmUx
LzEvUTdBUVc4eTU1Z2t4SUhaelZLaTRTVHktVE5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQFLvqgAwQC
uQI8AwQBwnT8AwQCwrtIMA0EAgACMAcDBQAqAV4AMA0GCSqGSIb3DQEBCwUAA4IB
AQAhTxeomUVNamZbD/MrvmjMK4JM1O9+rzzVRCsnKOno8vUiShBeXDZIV1GOsbkI
5BffhenbGjmicbSZsQmHs4WgV/qCnH1AFS2HSJo/9KY/g8ZJYSYuPFiKG6kRzozN
IBvn71GAJZzKAO9oKdJwEGcqxhLQ2pflrIYJGnUoYh2RD320cDDisIeZMiP3b2HA
sxThLKfTwdfB3E26EWn/CnwkMwHTj4VTtjvxb36Gyq9tpkd3SL7LMGU7511Wff4q
LXgeF6p83gXBhVRoE2EkZsNh3f32d2OV++fV7HYeEMuN8zEkdFh50BH3DigiJQ40
+udYZ/9r/r2ieFbGkokjcfNh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:17 2024 by rpki-client on console-fra.rpki-client.org