Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/RB0Ys2ywjB-B_A2SwIoq02zNI7w.roa
File: RB0Ys2ywjB-B_A2SwIoq02zNI7w.roa (raw, json)
Hash identifier: HkIaoeKvjm2Raa9l8tsNnorQRdEC/ChFh/oFVMnZ/d8=
Subject key identifier: 44:1D:18:B3:6C:B0:8C:1F:81:FC:0D:92:C0:8A:2A:D3:6C:CD:23:BC
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DEA0314CE6DBF9FD187D9C710B7ADF
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/RB0Ys2ywjB-B_A2SwIoq02zNI7w.roa
Signing time: Mon 02 Jan 2023 09:44:53 +0000
ROA not before: Mon 02 Jan 2023 09:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 85.237.217.0/24 maxlen: 24
85.237.221.0/24 maxlen: 24
85.237.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:a0:31:4c:e6:db:f9:fd:18:7d:9c:71:0b:7a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=441d18b36cb08c1f81fc0d92c08a2ad36ccd23bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:61:8d:f2:32:3a:87:50:af:47:e5:47:13:df:
9f:9f:e9:a7:3a:8b:df:d4:02:58:2a:e0:3c:39:a0:
73:bf:1f:0c:30:f9:ce:42:0a:fb:e0:a8:f8:61:ac:
b3:43:00:2a:c6:98:60:5e:77:84:4e:ee:03:b5:1d:
be:6e:92:0e:65:40:01:9f:ca:9c:27:9c:ea:cd:87:
1a:12:3f:6c:0e:34:7b:d7:42:8a:c7:2a:0d:f9:11:
87:2a:01:e9:36:57:fd:2c:12:e9:b8:4f:06:5a:20:
01:b9:79:2e:3e:ab:b6:6c:23:a8:6e:b0:2f:b1:3c:
60:96:dd:d1:89:97:b6:e5:45:19:c1:cc:8d:01:bd:
46:8e:80:d4:b9:05:09:a8:8c:55:53:b6:77:6f:1c:
8a:97:c4:c3:bb:50:29:df:b2:da:72:d9:62:c6:94:
28:55:ec:69:d2:ff:87:03:f4:9e:4f:d6:fb:10:4e:
0a:6e:b9:31:97:93:11:2b:3c:77:9a:77:12:15:fd:
0c:a3:21:f0:84:a2:5f:d5:82:14:a3:0a:fd:67:d3:
47:83:bb:3a:cf:66:27:4e:e0:70:e9:6f:74:c3:c9:
fe:af:e7:1f:9f:44:90:6f:e9:62:05:42:53:0d:74:
89:30:61:25:b2:56:ce:3d:03:fb:49:aa:6d:8b:39:
82:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:1D:18:B3:6C:B0:8C:1F:81:FC:0D:92:C0:8A:2A:D3:6C:CD:23:BC
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/RB0Ys2ywjB-B_A2SwIoq02zNI7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.217.0/24
85.237.220.0/23
Signature Algorithm: sha256WithRSAEncryption
83:91:73:34:1b:13:66:3d:39:15:79:b7:3c:c4:f2:a3:ee:dc:
2c:64:36:92:16:de:d6:61:9d:36:23:b6:4f:67:31:ec:36:44:
93:f2:5b:66:9f:c9:9a:9f:6e:66:90:ae:d6:9d:cb:be:2d:5c:
07:b9:1d:5c:e4:2b:d1:18:57:b2:6a:bc:6a:9c:3a:a8:30:fc:
94:54:87:da:71:4c:77:28:90:45:52:0c:3d:b9:f4:99:cf:16:
f0:35:e0:87:1e:19:c4:4f:2a:7a:ed:2a:36:8e:73:a7:1b:67:
e0:e4:9e:de:b5:ec:10:cb:41:ba:f5:d8:06:59:fc:44:db:d9:
38:d4:eb:e1:d9:fb:07:bc:7a:a1:2e:e8:e5:30:47:08:04:b3:
dd:a2:66:68:d9:9b:6d:4c:ce:9a:c8:10:ab:49:4f:b8:16:c3:
b1:09:73:11:87:bb:eb:6a:14:7b:a6:93:e3:19:69:75:fa:d6:
99:da:15:86:43:d6:f0:d6:ea:1d:b2:54:10:ef:b5:1c:ef:ed:
be:c9:de:03:74:d8:c2:9c:5f:0b:5e:b0:ed:a8:dc:81:ea:3c:
d6:ac:a4:99:6d:f3:97:25:03:8d:b5:f1:a4:f9:11:34:12:1a:
47:16:9b:90:b3:b5:80:6a:30:70:f3:a6:4f:7f:98:76:02:43:
df:3d:6d:37
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVx3qAxTObb+f0YfZxxC3rfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MGI2NzM2OGM5MWI4NWU4NDg4OGM1ZWQyZTgyNGQxMzkw
ODEwYmIwHhcNMjMwMTAyMDk0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDFkMThiMzZjYjA4YzFmODFmYzBkOTJjMDhhMmFkMzZjY2QyM2JjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlGGN8jI6h1CvR+VHE9+fn+mnOovf
1AJYKuA8OaBzvx8MMPnOQgr74Kj4YayzQwAqxphgXneETu4DtR2+bpIOZUABn8qc
J5zqzYcaEj9sDjR710KKxyoN+RGHKgHpNlf9LBLpuE8GWiABuXkuPqu2bCOobrAv
sTxglt3RiZe25UUZwcyNAb1GjoDUuQUJqIxVU7Z3bxyKl8TDu1Ap37LactlixpQo
Vexp0v+HA/SeT9b7EE4Kbrkxl5MRKzx3mncSFf0MoyHwhKJf1YIUowr9Z9NHg7s6
z2YnTuBw6W90w8n+r+cfn0SQb+liBUJTDXSJMGElslbOPQP7SaptizmCowIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEQdGLNssIwfgfwNksCKKtNszSO8MB8GA1UdIwQY
MBaAFDkLZzaMkbhehIiMXtLoJNE5CBC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYt
NWM5ZDYyNjI5Yzg2LzEvUkIwWXMyeXdqQi1CX0EyU3dJb3EwMnpOSTd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8xNmNjZTQtZTk4MS00YmU1LWI5ZjYtNWM5ZDYyNjI5Yzg2
LzEvT1F0bk5veVJ1RjZFaUl4ZTB1Z2swVGtJRUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVe3ZAwQB
Ve3cMA0GCSqGSIb3DQEBCwUAA4IBAQCDkXM0GxNmPTkVebc8xPKj7twsZDaSFt7W
YZ02I7ZPZzHsNkST8ltmn8man25mkK7Wncu+LVwHuR1c5CvRGFeyarxqnDqoMPyU
VIfacUx3KJBFUgw9ufSZzxbwNeCHHhnETyp67So2jnOnG2fg5J7etewQy0G69dgG
WfxE29k41Ovh2fsHvHqhLujlMEcIBLPdomZo2ZttTM6ayBCrSU+4FsOxCXMRh7vr
ahR7ppPjGWl1+taZ2hWGQ9bw1uodslQQ77Uc7+2+yd4DdNjCnF8LXrDtqNyB6jzW
rKSZbfOXJQONtfGk+RE0EhpHFpuQs7WAajBw86ZPf5h2AkPfPW03
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org