Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/ec3573-cebb-4b75-a0f2-7ad81b246141/1/0ZbkQnIyBGc1kiHe88imfEJxJMk.roa
File: 0ZbkQnIyBGc1kiHe88imfEJxJMk.roa (raw, json)
Hash identifier: giYzFTVMLQxc0MhpyiRkAlcg/x2TD5bR2b10XbGd0VA=
Subject key identifier: D1:96:E4:42:72:32:04:67:35:92:21:DE:F3:C8:A6:7C:42:71:24:C9
Certificate issuer: /CN=e841b55bfbf8946e4feb951c345ebd2376945adf
Certificate serial: 070FA779
Authority key identifier: E8:41:B5:5B:FB:F8:94:6E:4F:EB:95:1C:34:5E:BD:23:76:94:5A:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6EG1W_v4lG5P65UcNF69I3aUWt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/ec3573-cebb-4b75-a0f2-7ad81b246141/1/0ZbkQnIyBGc1kiHe88imfEJxJMk.roa
Signing time: Sat 01 Jan 2022 11:05:03 +0000
ROA not before: Sat 01 Jan 2022 11:05:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60350
IP address blocks: 194.99.38.0/23 maxlen: 24
194.99.50.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118466425 (0x70fa779)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e841b55bfbf8946e4feb951c345ebd2376945adf
Validity
Not Before: Jan 1 11:05:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d196e44272320467359221def3c8a67c427124c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bf:3b:97:6a:0c:6f:12:a8:4b:43:9b:14:61:
ad:26:47:1b:fe:82:9f:e7:02:30:8b:9e:37:c4:f9:
7e:d8:ed:e9:00:75:17:28:b6:09:ce:e3:7d:c3:cc:
0b:c5:59:99:ec:3c:97:e6:98:bc:b3:d4:90:78:c5:
d9:45:7f:69:e7:3e:09:67:03:62:b4:61:20:d2:45:
e7:e1:1b:00:66:73:f1:ce:29:ca:82:e5:df:57:91:
85:5a:f4:d5:5a:a3:a9:20:f4:28:93:84:a1:da:8f:
89:42:6f:94:b7:e6:df:c2:5b:a9:10:cb:73:91:c3:
1f:cb:b1:66:65:6d:ed:f5:0e:97:59:53:1f:75:f4:
1b:75:87:14:ae:da:84:24:c6:25:30:09:03:fe:5d:
48:c2:6a:10:2d:51:cc:8a:97:ea:84:99:7e:34:29:
ed:79:d4:d9:a6:96:51:86:c3:79:56:98:b8:5b:14:
18:6a:fb:4f:89:71:d1:51:52:ed:0a:08:1b:5f:98:
b5:3a:a4:e6:ba:78:84:da:aa:d3:72:29:63:98:9f:
1d:34:31:83:e5:d7:49:f5:48:fc:50:8f:a9:8e:47:
d1:3b:66:73:16:c7:44:1f:73:b6:5d:75:d3:88:e3:
d8:d7:59:86:9d:eb:13:20:65:44:0f:9b:64:bc:c2:
93:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:96:E4:42:72:32:04:67:35:92:21:DE:F3:C8:A6:7C:42:71:24:C9
X509v3 Authority Key Identifier:
keyid:E8:41:B5:5B:FB:F8:94:6E:4F:EB:95:1C:34:5E:BD:23:76:94:5A:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6EG1W_v4lG5P65UcNF69I3aUWt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ec3573-cebb-4b75-a0f2-7ad81b246141/1/0ZbkQnIyBGc1kiHe88imfEJxJMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ec3573-cebb-4b75-a0f2-7ad81b246141/1/6EG1W_v4lG5P65UcNF69I3aUWt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.38.0/23
194.99.50.0/23
Signature Algorithm: sha256WithRSAEncryption
14:c7:bd:8f:1a:80:c3:27:9c:24:51:bd:ef:de:a5:e3:70:25:
60:5f:b1:40:da:19:14:3d:fb:6f:07:a6:3f:43:42:22:62:e6:
f1:d1:f6:3c:44:9b:ca:23:1e:d0:d9:a7:b3:82:a3:6b:09:84:
15:25:54:2c:1c:be:3d:4b:00:fb:7f:69:04:1c:c2:ee:93:71:
23:d3:0d:16:31:6a:7b:3e:63:a0:e0:65:7d:2a:f1:29:d3:e5:
ea:84:55:4f:2d:59:9e:93:bb:fa:8d:0e:1f:e7:02:d0:4d:23:
5e:23:14:4c:39:29:c2:dd:89:4f:6a:7f:31:f4:df:b2:d0:6f:
04:07:09:c4:12:95:0d:99:a0:f0:69:66:98:83:0b:af:03:2b:
06:32:da:dd:9c:4d:2c:b3:26:7a:f6:3a:a6:cb:a2:1f:8d:b2:
14:3e:28:9c:4a:36:24:ba:bd:e0:51:51:22:70:12:21:ba:c7:
1a:dd:cb:23:aa:4a:de:be:80:8f:cf:9e:72:16:50:6b:9d:fb:
cc:b5:89:e4:17:b2:76:fd:85:43:bd:72:13:0d:5d:b9:bf:97:
a5:c9:e2:81:a3:87:22:0e:d3:29:7d:f5:94:d0:02:71:53:d6:
e0:87:34:83:74:bf:f9:59:d0:87:36:e3:e6:f2:b4:b8:a2:0f:
90:e2:b2:60
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBw+neTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ODQxYjU1YmZiZjg5NDZlNGZlYjk1MWMzNDVlYmQyMzc2OTQ1YWRmMB4XDTIyMDEw
MTExMDUwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDE5NmU0NDI3MjMy
MDQ2NzM1OTIyMWRlZjNjOGE2N2M0MjcxMjRjOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKO/O5dqDG8SqEtDmxRhrSZHG/6Cn+cCMIueN8T5ftjt6QB1
Fyi2Cc7jfcPMC8VZmew8l+aYvLPUkHjF2UV/aec+CWcDYrRhINJF5+EbAGZz8c4p
yoLl31eRhVr01VqjqSD0KJOEodqPiUJvlLfm38JbqRDLc5HDH8uxZmVt7fUOl1lT
H3X0G3WHFK7ahCTGJTAJA/5dSMJqEC1RzIqX6oSZfjQp7XnU2aaWUYbDeVaYuFsU
GGr7T4lx0VFS7QoIG1+YtTqk5rp4hNqq03IpY5ifHTQxg+XXSfVI/FCPqY5H0Ttm
cxbHRB9ztl1104jj2NdZhp3rEyBlRA+bZLzCk5kCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTRluRCcjIEZzWSId7zyKZ8QnEkyTAfBgNVHSMEGDAWgBToQbVb+/iUbk/r
lRw0Xr0jdpRa3zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZFRzFXX3Y0bEc1UDY1VWNORjY5STNhVVd0OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGQvZWMzNTczLWNlYmItNGI3NS1hMGYyLTdhZDgxYjI0NjE0MS8x
LzBaYmtRbkl5QkdjMWtpSGU4OGltZkVKeEpNay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQv
ZWMzNTczLWNlYmItNGI3NS1hMGYyLTdhZDgxYjI0NjE0MS8xLzZFRzFXX3Y0bEc1
UDY1VWNORjY5STNhVVd0OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAcJjJgMEAcJjMjANBgkqhkiG9w0B
AQsFAAOCAQEAFMe9jxqAwyecJFG9796l43AlYF+xQNoZFD37bwemP0NCImLm8dH2
PESbyiMe0Nmns4KjawmEFSVULBy+PUsA+39pBBzC7pNxI9MNFjFqez5joOBlfSrx
KdPl6oRVTy1ZnpO7+o0OH+cC0E0jXiMUTDkpwt2JT2p/MfTfstBvBAcJxBKVDZmg
8GlmmIMLrwMrBjLa3ZxNLLMmevY6psuiH42yFD4onEo2JLq94FFRInASIbrHGt3L
I6pK3r6Aj8+echZQa537zLWJ5Beydv2FQ71yEw1dub+XpcnigaOHIg7TKX31lNAC
cVPW4Ic0g3S/+VnQhzbj5vK0uKIPkOKyYA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:07 2024 by rpki-client on console-ams.rpki-client.org