Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/MyOZ1quz4TkIkkgYdbteFdpqYyw.roa
File: MyOZ1quz4TkIkkgYdbteFdpqYyw.roa (raw, json)
Hash identifier: yUMCv9/jjrKYwZ5lBhkN8M1xFlcNtD2SiUN3DMmfwhE=
Subject key identifier: 33:23:99:D6:AB:B3:E1:39:08:92:48:18:75:BB:5E:15:DA:6A:63:2C
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE902744FCFCEF50B21F830F369C5F
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/MyOZ1quz4TkIkkgYdbteFdpqYyw.roa
Signing time: Mon 02 Jan 2023 09:44:49 +0000
ROA not before: Mon 02 Jan 2023 09:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42962
IP address blocks: 85.237.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:90:27:44:fc:fc:ef:50:b2:1f:83:0f:36:9c:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=332399d6abb3e1390892481875bb5e15da6a632c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bd:14:ab:85:50:86:17:65:1b:7a:94:01:de:
54:96:7e:48:26:a7:f9:83:ef:d8:81:16:12:7f:d0:
b4:13:d4:aa:70:c7:47:5f:0d:9b:47:39:23:03:ac:
6b:95:08:29:55:dc:8a:29:d6:5f:f5:a4:c2:ea:27:
04:bd:90:6c:83:0f:4f:5e:8c:c6:42:02:ae:fe:19:
09:1d:bd:f7:c8:5f:32:d9:00:25:37:17:a8:81:bc:
ee:17:cf:06:31:48:b8:f0:8a:80:31:3f:94:94:1d:
de:e1:97:00:9b:92:38:5d:33:1b:de:4e:5e:ae:04:
05:c5:3b:40:8c:a8:47:2a:35:03:e4:19:0b:1f:b2:
93:76:97:12:a7:cb:37:2d:f5:7e:63:5c:c8:46:a7:
df:ea:b2:32:76:d2:2c:c4:57:53:15:49:65:4b:c3:
9f:1e:92:13:e6:b0:9f:02:b2:18:e7:66:f1:04:95:
7c:c4:7c:e9:72:6b:29:8b:19:20:c2:3c:ae:09:ad:
f8:65:51:cf:e1:e7:9e:11:43:ef:12:75:7e:01:da:
4f:61:64:44:84:d5:30:28:b1:de:93:d1:78:01:5d:
9a:7e:57:95:ae:61:33:29:23:ec:1c:e8:b9:5c:6f:
56:e2:6c:f6:7c:f5:98:b1:b7:cd:8f:b7:1d:ce:18:
89:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:23:99:D6:AB:B3:E1:39:08:92:48:18:75:BB:5E:15:DA:6A:63:2C
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/MyOZ1quz4TkIkkgYdbteFdpqYyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.205.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:f6:a1:0e:c7:93:d6:10:e5:9c:aa:5e:6a:8d:71:e3:d3:39:
f5:49:3d:c1:d5:12:d7:ff:b9:b3:ba:6e:90:bb:dc:2e:be:11:
b5:c5:38:84:cd:64:9d:b0:79:cb:78:73:37:0a:7d:c0:81:8f:
95:b5:0a:e6:28:e3:0d:ad:7f:ec:ca:04:03:0f:f3:49:b6:ad:
bd:e4:5e:2f:47:0e:c8:c2:98:e9:50:af:2f:2a:ea:2e:32:a6:
92:d3:80:68:bb:00:64:bb:1e:3e:e5:78:4d:4e:83:e0:54:9a:
a6:a7:6c:4c:0f:a9:5f:e3:67:b8:bb:32:1a:bb:60:de:1c:2d:
b2:53:06:1c:88:2c:8d:07:1d:45:7d:f8:c7:65:10:49:62:1c:
12:19:36:83:12:56:07:6a:35:83:90:bb:37:60:55:df:1a:f0:
2c:4a:0a:6a:45:9d:7a:e5:07:e6:d3:89:d9:6f:80:44:16:be:
b5:39:1c:cd:30:03:7c:41:b3:7a:1e:d3:da:65:ee:d1:2c:a4:
ef:81:0b:e7:91:fc:18:2d:29:a8:94:e8:26:7b:26:af:e7:82:
11:31:fd:3e:82:8c:59:12:36:c6:1c:8c:e7:90:89:05:64:41:
f1:3a:03:d5:13:2d:57:ac:32:5a:f1:8e:b9:86:13:3a:31:a8:
15:0b:67:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx3pAnRPz871CyH4MPNpxfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MGI2NzM2OGM5MWI4NWU4NDg4OGM1ZWQyZTgyNGQxMzkw
ODEwYmIwHhcNMjMwMTAyMDk0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzIzOTlkNmFiYjNlMTM5MDg5MjQ4MTg3NWJiNWUxNWRhNmE2MzJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvL0Uq4VQhhdlG3qUAd5Uln5IJqf5
g+/YgRYSf9C0E9SqcMdHXw2bRzkjA6xrlQgpVdyKKdZf9aTC6icEvZBsgw9PXozG
QgKu/hkJHb33yF8y2QAlNxeogbzuF88GMUi48IqAMT+UlB3e4ZcAm5I4XTMb3k5e
rgQFxTtAjKhHKjUD5BkLH7KTdpcSp8s3LfV+Y1zIRqff6rIydtIsxFdTFUllS8Of
HpIT5rCfArIY52bxBJV8xHzpcmspixkgwjyuCa34ZVHP4eeeEUPvEnV+AdpPYWRE
hNUwKLHek9F4AV2afleVrmEzKSPsHOi5XG9W4mz2fPWYsbfNj7cdzhiJ8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDMjmdars+E5CJJIGHW7XhXaamMsMB8GA1UdIwQY
MBaAFDkLZzaMkbhehIiMXtLoJNE5CBC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYt
NWM5ZDYyNjI5Yzg2LzEvTXlPWjFxdXo0VGtJa2tnWWRidGVGZHBxWXl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYtNWM5ZDYyNjI5Yzg2
LzEvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVe3NMA0G
CSqGSIb3DQEBCwUAA4IBAQC59qEOx5PWEOWcql5qjXHj0zn1ST3B1RLX/7mzum6Q
u9wuvhG1xTiEzWSdsHnLeHM3Cn3AgY+VtQrmKOMNrX/sygQDD/NJtq295F4vRw7I
wpjpUK8vKuouMqaS04BouwBkux4+5XhNToPgVJqmp2xMD6lf42e4uzIau2DeHC2y
UwYciCyNBx1FffjHZRBJYhwSGTaDElYHajWDkLs3YFXfGvAsSgpqRZ165Qfm04nZ
b4BEFr61ORzNMAN8QbN6HtPaZe7RLKTvgQvnkfwYLSmolOgmeyav54IRMf0+goxZ
EjbGHIznkIkFZEHxOgPVEy1XrDJa8Y65hhM6MagVC2dB
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org