Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/26srehTYTWw9GgBBkVv5kQ7Ke0k.roa
File: 26srehTYTWw9GgBBkVv5kQ7Ke0k.roa (raw, json)
Hash identifier: TpzRnWtEnzSgcd8gGpntWYTc3pXuOTJ9gQIZSq7EHKM=
Subject key identifier: DB:AB:2B:7A:14:D8:4D:6C:3D:1A:00:41:91:5B:F9:91:0E:CA:7B:49
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE9398D8BC9A34BBE89C87FD1AC92C
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/26srehTYTWw9GgBBkVv5kQ7Ke0k.roa
Signing time: Mon 02 Jan 2023 09:44:50 +0000
ROA not before: Mon 02 Jan 2023 09:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51659
IP address blocks: 85.237.206.0/24 maxlen: 24
85.237.206.0/23 maxlen: 23
85.237.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:93:98:d8:bc:9a:34:bb:e8:9c:87:fd:1a:c9:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbab2b7a14d84d6c3d1a0041915bf9910eca7b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b3:0d:89:4f:a9:e7:37:02:72:71:58:0a:99:
d1:eb:94:ed:5f:55:68:14:7c:55:d1:ff:74:e8:1e:
b7:b3:23:f3:ee:25:39:f8:30:73:28:30:7f:81:24:
e9:19:d5:4f:14:c5:9f:4c:68:e0:58:7a:dc:da:e4:
08:62:76:8e:ef:da:ad:78:84:ad:a3:e1:46:46:bf:
c2:ca:19:97:5d:2b:02:cf:d4:6e:28:dc:a2:cb:e6:
36:33:b5:27:42:1e:b7:f1:65:b5:d9:78:aa:40:4c:
d4:34:10:3a:83:7b:d8:b2:5f:9b:5c:6b:35:2a:23:
54:bf:6c:d4:2f:75:01:75:e5:d2:e1:87:7c:52:7b:
5a:46:70:eb:c7:84:77:c5:a8:67:aa:c9:46:c0:5f:
e9:8e:a6:d1:dc:0a:09:24:c9:5a:4f:11:c6:38:a4:
58:a7:52:1a:c2:c7:4f:d0:3a:80:06:33:d2:6e:4d:
cf:a4:04:c5:aa:9a:a5:33:80:65:92:35:73:df:4d:
54:40:52:01:a0:97:14:7a:d6:ee:f3:71:02:ea:4e:
38:91:d7:81:62:38:9f:a4:0b:f8:47:bb:40:11:2b:
ed:0c:15:ce:27:f1:2c:31:84:27:26:66:d6:02:2e:
42:5e:73:44:b4:16:6a:20:69:f8:7a:65:8d:1f:00:
15:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:AB:2B:7A:14:D8:4D:6C:3D:1A:00:41:91:5B:F9:91:0E:CA:7B:49
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/26srehTYTWw9GgBBkVv5kQ7Ke0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.206.0/23
Signature Algorithm: sha256WithRSAEncryption
96:37:c1:1e:35:8b:76:db:11:6b:86:e6:00:64:df:21:74:48:
b9:77:f2:7e:72:0d:d4:4c:d8:27:ee:af:17:97:ad:93:ff:da:
e6:ab:a4:5b:83:22:fd:41:e6:ff:7e:d5:c9:c9:4e:e8:4c:ff:
03:3b:3a:f1:fd:3b:45:de:18:55:b9:64:28:9e:14:85:a5:84:
48:0c:80:56:de:6b:d7:40:fd:44:b4:32:0e:57:4b:30:eb:e8:
ec:56:d7:a2:72:f9:22:dd:59:5d:a7:3b:9f:8f:cc:69:fa:0a:
9a:aa:82:a8:fd:79:36:88:87:9e:6b:10:dc:71:65:db:90:9b:
d2:3b:f4:4d:73:c1:f2:56:88:df:cf:55:59:c8:cf:d1:34:ef:
50:cd:90:99:fe:88:55:f3:9f:28:f3:d4:e6:94:ec:99:75:64:
1d:4f:a5:41:56:38:05:a3:9b:17:0c:de:d2:a9:cc:ef:70:17:
7e:64:57:ac:74:cc:4d:51:fb:d4:17:56:54:60:fa:2b:d3:85:
08:7d:00:56:d9:fd:55:7c:2d:7a:6d:44:eb:28:8e:6b:92:ee:
de:e9:b4:91:2d:65:c8:68:9c:f1:bd:dc:ca:dc:d4:0b:2b:1a:
48:69:d7:57:b5:a6:ee:b8:ca:b6:b6:9b:a5:84:84:90:9c:fa:
09:22:80:ac
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx3pOY2LyaNLvonIf9GsksMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MGI2NzM2OGM5MWI4NWU4NDg4OGM1ZWQyZTgyNGQxMzkw
ODEwYmIwHhcNMjMwMTAyMDk0NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYmFiMmI3YTE0ZDg0ZDZjM2QxYTAwNDE5MTViZjk5MTBlY2E3YjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibMNiU+p5zcCcnFYCpnR65TtX1Vo
FHxV0f906B63syPz7iU5+DBzKDB/gSTpGdVPFMWfTGjgWHrc2uQIYnaO79qteISt
o+FGRr/CyhmXXSsCz9RuKNyiy+Y2M7UnQh638WW12XiqQEzUNBA6g3vYsl+bXGs1
KiNUv2zUL3UBdeXS4Yd8UntaRnDrx4R3xahnqslGwF/pjqbR3AoJJMlaTxHGOKRY
p1IawsdP0DqABjPSbk3PpATFqpqlM4BlkjVz301UQFIBoJcUetbu83EC6k44kdeB
YjifpAv4R7tAESvtDBXOJ/EsMYQnJmbWAi5CXnNEtBZqIGn4emWNHwAVUwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNurK3oU2E1sPRoAQZFb+ZEOyntJMB8GA1UdIwQY
MBaAFDkLZzaMkbhehIiMXtLoJNE5CBC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYt
NWM5ZDYyNjI5Yzg2LzEvMjZzcmVoVFlUV3c5R2dCQmtWdjVrUTdLZTBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYtNWM5ZDYyNjI5Yzg2
LzEvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVe3OMA0G
CSqGSIb3DQEBCwUAA4IBAQCWN8EeNYt22xFrhuYAZN8hdEi5d/J+cg3UTNgn7q8X
l62T/9rmq6RbgyL9Qeb/ftXJyU7oTP8DOzrx/TtF3hhVuWQonhSFpYRIDIBW3mvX
QP1EtDIOV0sw6+jsVteicvki3Vldpzufj8xp+gqaqoKo/Xk2iIeeaxDccWXbkJvS
O/RNc8HyVojfz1VZyM/RNO9QzZCZ/ohV858o89TmlOyZdWQdT6VBVjgFo5sXDN7S
qczvcBd+ZFesdMxNUfvUF1ZUYPor04UIfQBW2f1VfC16bUTrKI5rku7e6bSRLWXI
aJzxvdzK3NQLKxpIaddXtabuuMq2tpulhISQnPoJIoCs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:46 2024 by rpki-client on console-fra.rpki-client.org