Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f8aba4-e1cf-4144-9bfa-a8888e58a780/1/QwNmP-gfaGyUZwexyQSzYg8wt4U.roa
File: QwNmP-gfaGyUZwexyQSzYg8wt4U.roa (raw, json)
Hash identifier: F4/FQbfjlUMxIzthdfzVEk7YadxWziS7IVB3oAitOqY=
Subject key identifier: 43:03:66:3F:E8:1F:68:6C:94:67:07:B1:C9:04:B3:62:0F:30:B7:85
Certificate issuer: /CN=cccb42889e5ac899c12f3486bda045a90eeff779
Certificate serial: 14B588EA
Authority key identifier: CC:CB:42:88:9E:5A:C8:99:C1:2F:34:86:BD:A0:45:A9:0E:EF:F7:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zMtCiJ5ayJnBLzSGvaBFqQ7v93k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f8aba4-e1cf-4144-9bfa-a8888e58a780/1/QwNmP-gfaGyUZwexyQSzYg8wt4U.roa
Signing time: Sat 01 Jan 2022 01:59:09 +0000
ROA not before: Sat 01 Jan 2022 01:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201011
IP address blocks: 185.89.36.0/22 maxlen: 24
2a05:d4c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 347441386 (0x14b588ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cccb42889e5ac899c12f3486bda045a90eeff779
Validity
Not Before: Jan 1 01:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4303663fe81f686c946707b1c904b3620f30b785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:27:9e:17:e0:58:cd:f2:ef:89:5c:80:9c:46:
45:07:27:6d:aa:47:ac:b2:16:fc:d2:db:06:95:d3:
ac:80:af:e1:16:13:6d:96:6e:16:c5:56:30:f3:ef:
e1:31:07:88:e9:2e:b4:95:7f:5f:d3:6e:3a:e3:5a:
b2:fa:b8:5e:d3:26:61:92:11:0b:30:a7:09:21:26:
3d:85:ea:c8:ec:d5:63:25:8a:60:be:be:f6:56:46:
d9:8c:83:54:59:f3:3b:1a:ca:45:a6:08:6b:70:e5:
40:d5:ab:40:1c:de:a5:ef:1e:be:88:0d:cf:dd:b8:
8a:5b:dd:c6:0f:b4:a7:b8:2a:aa:43:8f:67:7a:13:
61:f0:71:aa:d2:f4:12:7e:7b:40:da:f4:a0:ff:3b:
fe:89:4b:4c:3b:c0:5a:2f:90:11:9c:b0:8b:bb:dd:
1a:d1:6a:b4:1b:b7:07:bc:4e:04:12:d8:0f:1a:51:
ac:28:12:d8:d8:e9:2d:89:89:23:83:b5:7e:3f:33:
30:2d:a0:ec:a4:27:df:47:4b:46:83:87:98:72:3e:
2a:57:65:75:7a:40:98:bd:1a:ff:d3:82:65:1e:95:
e0:31:74:ea:ed:be:8d:7e:02:14:68:bc:91:30:40:
dc:e8:d0:9c:ef:49:5f:f0:ab:f2:ba:56:98:60:3f:
0e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:03:66:3F:E8:1F:68:6C:94:67:07:B1:C9:04:B3:62:0F:30:B7:85
X509v3 Authority Key Identifier:
keyid:CC:CB:42:88:9E:5A:C8:99:C1:2F:34:86:BD:A0:45:A9:0E:EF:F7:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zMtCiJ5ayJnBLzSGvaBFqQ7v93k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f8aba4-e1cf-4144-9bfa-a8888e58a780/1/QwNmP-gfaGyUZwexyQSzYg8wt4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f8aba4-e1cf-4144-9bfa-a8888e58a780/1/zMtCiJ5ayJnBLzSGvaBFqQ7v93k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.36.0/22
IPv6:
2a05:d4c0::/29
Signature Algorithm: sha256WithRSAEncryption
3a:63:99:d2:a9:07:0f:94:59:05:0c:b5:76:b9:b0:c9:39:8f:
24:f4:55:03:5e:09:f4:21:79:03:05:b4:d2:65:0c:6d:91:ef:
86:8b:5e:b2:25:51:73:14:32:e5:97:ea:df:2c:01:c4:d2:d0:
19:a8:82:1f:b8:f3:38:04:66:fc:d6:59:08:10:50:98:8d:58:
73:82:82:64:6c:60:a1:f1:96:f7:34:8a:2d:b8:3b:63:ac:65:
08:df:97:29:58:3d:33:59:fa:21:82:e6:63:31:16:65:b2:0a:
1c:4e:72:aa:8a:07:f9:8c:6e:8c:60:ec:a6:8f:55:2f:b2:9c:
fb:13:ca:70:49:cf:7c:fa:e8:e3:7c:0c:9c:e4:9f:af:08:a4:
03:c2:31:fe:f4:88:a4:2a:2f:a2:11:8c:87:ff:89:e5:17:16:
99:cd:b9:c1:54:87:da:0d:96:4b:a2:44:f9:21:e3:39:04:5f:
69:5f:ff:c5:ad:ca:1f:71:99:e9:43:e4:4f:37:90:ec:2c:4c:
4d:b6:1c:df:47:dd:aa:32:9b:68:a0:d4:47:68:1f:99:e9:9b:
88:d5:e7:9b:48:37:72:d8:17:ba:70:de:06:15:36:d1:8d:9c:
ce:8d:f8:80:f4:be:aa:e9:1a:10:bb:80:98:2c:8c:0b:38:00:
ea:64:f3:78
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFLWI6jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Y2NiNDI4ODllNWFjODk5YzEyZjM0ODZiZGEwNDVhOTBlZWZmNzc5MB4XDTIyMDEw
MTAxNTkwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDMwMzY2M2ZlODFm
Njg2Yzk0NjcwN2IxYzkwNGIzNjIwZjMwYjc4NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKsnnhfgWM3y74lcgJxGRQcnbapHrLIW/NLbBpXTrICv4RYT
bZZuFsVWMPPv4TEHiOkutJV/X9NuOuNasvq4XtMmYZIRCzCnCSEmPYXqyOzVYyWK
YL6+9lZG2YyDVFnzOxrKRaYIa3DlQNWrQBzepe8evogNz924ilvdxg+0p7gqqkOP
Z3oTYfBxqtL0En57QNr0oP87/olLTDvAWi+QEZywi7vdGtFqtBu3B7xOBBLYDxpR
rCgS2NjpLYmJI4O1fj8zMC2g7KQn30dLRoOHmHI+KldldXpAmL0a/9OCZR6V4DF0
6u2+jX4CFGi8kTBA3OjQnO9JX/Cr8rpWmGA/DgECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRDA2Y/6B9obJRnB7HJBLNiDzC3hTAfBgNVHSMEGDAWgBTMy0KInlrImcEv
NIa9oEWpDu/3eTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pNdENpSjVheUpuQkx6U0d2YUJGcVE3djkzay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvZjhhYmE0LWUxY2YtNDE0NC05YmZhLWE4ODg4ZTU4YTc4MC8x
L1F3Tm1QLWdmYUd5VVp3ZXh5UVN6WWc4d3Q0VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
ZjhhYmE0LWUxY2YtNDE0NC05YmZhLWE4ODg4ZTU4YTc4MC8xL3pNdENpSjVheUpu
Qkx6U0d2YUJGcVE3djkzay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlZJDANBAIAAjAHAwUDKgXUwDAN
BgkqhkiG9w0BAQsFAAOCAQEAOmOZ0qkHD5RZBQy1drmwyTmPJPRVA14J9CF5AwW0
0mUMbZHvhotesiVRcxQy5Zfq3ywBxNLQGaiCH7jzOARm/NZZCBBQmI1Yc4KCZGxg
ofGW9zSKLbg7Y6xlCN+XKVg9M1n6IYLmYzEWZbIKHE5yqooH+YxujGDspo9VL7Kc
+xPKcEnPfPro43wMnOSfrwikA8Ix/vSIpCovohGMh/+J5RcWmc25wVSH2g2WS6JE
+SHjOQRfaV//xa3KH3GZ6UPkTzeQ7CxMTbYc30fdqjKbaKDUR2gfmembiNXnm0g3
ctgXunDeBhU20Y2czo34gPS+qukaELuAmCyMCzgA6mTzeA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:45 2024 by rpki-client on console-fra.rpki-client.org