Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/owZTvnhFZuCFZoVbOaCzRf9MInI.roa
File: owZTvnhFZuCFZoVbOaCzRf9MInI.roa (raw, json)
Hash identifier: HARb6O1c6jMzTvsjgIC87+Hb4valuUsEWBSSw7tRx/E=
Subject key identifier: A3:06:53:BE:78:45:66:E0:85:66:85:5B:39:A0:B3:45:FF:4C:22:72
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 043EDBEC
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/owZTvnhFZuCFZoVbOaCzRf9MInI.roa
Signing time: Sat 01 Jan 2022 00:50:49 +0000
ROA not before: Sat 01 Jan 2022 00:50:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211193
IP address blocks: 85.237.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71228396 (0x43edbec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 1 00:50:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a30653be784566e08566855b39a0b345ff4c2272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3c:f4:88:60:14:47:74:43:7e:7d:4c:aa:13:
76:7d:da:e5:e5:73:b2:80:97:44:e9:7a:b0:9c:d4:
02:89:1a:75:9a:cd:fc:27:4a:bc:19:86:02:13:37:
f8:3c:29:0e:f2:68:2c:c8:61:eb:ac:3b:81:f3:89:
82:cb:39:44:30:5f:91:1c:02:dc:f7:9c:6a:b3:04:
a1:4a:28:66:3f:14:42:0b:ef:65:51:cc:ae:a6:fa:
08:da:6d:ef:10:c4:5c:f4:47:54:5b:ba:b6:f3:ec:
70:a5:ed:09:47:d0:ee:51:0c:cd:b4:d7:58:3a:35:
ce:95:03:69:2e:65:d5:6a:f3:47:d0:d9:fc:77:44:
9f:93:c7:db:2d:a4:40:a5:8c:6f:f2:ca:3b:d5:b6:
c6:73:d4:16:a1:c7:b5:6e:7e:d7:95:f6:47:aa:53:
95:ae:35:30:ed:ab:bf:0a:25:63:3e:a4:23:d1:87:
d9:7d:54:fb:a2:55:97:f2:cd:f6:15:da:80:62:4b:
5e:77:43:95:f4:ab:d2:02:aa:2a:44:93:33:40:56:
a0:8e:bf:88:12:19:a0:1e:6a:b7:93:a1:fa:b4:39:
01:26:9f:e0:c0:8e:47:18:47:44:5b:44:33:dd:ff:
10:62:e3:b4:21:d8:5e:64:ac:30:39:f9:eb:b7:77:
e1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:06:53:BE:78:45:66:E0:85:66:85:5B:39:A0:B3:45:FF:4C:22:72
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/owZTvnhFZuCFZoVbOaCzRf9MInI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.213.0/24
Signature Algorithm: sha256WithRSAEncryption
90:33:cd:55:1e:58:e1:67:22:39:70:d4:78:b6:70:dc:39:60:
11:77:5e:e2:af:48:97:2d:38:1c:5e:93:7c:cb:21:22:9c:9a:
96:6a:96:55:35:d8:bd:65:fe:3c:c2:f3:f8:ca:8d:e8:64:67:
14:7b:88:c6:4d:0e:f6:fb:dc:e0:43:6e:dc:b1:20:e3:6d:18:
00:af:58:09:8d:33:4b:9f:6c:81:e8:cc:7c:49:ba:61:b9:7c:
a4:62:67:51:7c:3a:ce:f6:27:1c:d2:6d:bb:ae:d6:af:d5:56:
72:08:06:6c:ab:c4:cd:cf:9e:a8:88:9e:63:04:aa:03:b5:68:
49:10:19:de:54:8d:9c:ca:a3:18:5f:cc:c0:3e:ae:3b:9b:9d:
55:e5:8b:ca:b0:b5:05:a7:f2:57:16:b8:92:fa:5b:fd:9d:db:
c5:a9:c5:2c:84:20:08:8d:08:6c:2e:20:c0:5d:c2:ac:1d:92:
40:19:33:95:b7:75:e5:be:52:de:bd:46:21:f2:7d:e2:bd:d6:
1e:a3:cd:94:2d:45:13:61:a0:8e:bc:27:82:30:bf:13:fe:3a:
95:46:1c:0d:54:69:00:86:1d:45:0d:15:96:f9:15:28:b6:6a:
b1:28:ee:91:7d:1b:f9:15:73:12:d4:a0:c9:ff:83:6e:96:b3:
f5:60:db:be
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBD7b7DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OTBiNjczNjhjOTFiODVlODQ4ODhjNWVkMmU4MjRkMTM5MDgxMGJiMB4XDTIyMDEw
MTAwNTA0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTMwNjUzYmU3ODQ1
NjZlMDg1NjY4NTViMzlhMGIzNDVmZjRjMjI3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQ89IhgFEd0Q359TKoTdn3a5eVzsoCXROl6sJzUAokadZrN
/CdKvBmGAhM3+DwpDvJoLMhh66w7gfOJgss5RDBfkRwC3PecarMEoUooZj8UQgvv
ZVHMrqb6CNpt7xDEXPRHVFu6tvPscKXtCUfQ7lEMzbTXWDo1zpUDaS5l1WrzR9DZ
/HdEn5PH2y2kQKWMb/LKO9W2xnPUFqHHtW5+15X2R6pTla41MO2rvwolYz6kI9GH
2X1U+6JVl/LN9hXagGJLXndDlfSr0gKqKkSTM0BWoI6/iBIZoB5qt5Oh+rQ5ASaf
4MCORxhHRFtEM93/EGLjtCHYXmSsMDn567d34TcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSjBlO+eEVm4IVmhVs5oLNF/0wicjAfBgNVHSMEGDAWgBQ5C2c2jJG4XoSI
jF7S6CTROQgQuzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09RdG5Ob3lSdUY2RWlJeGUwdWdrMFRrSUVMcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvMTZjY2U0LWU5ODEtNGJlNS1iOWY2LTVjOWQ2MjYyOWM4Ni8x
L293WlR2bmhGWnVDRlpvVmJPYUN6UmY5TUluSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
MTZjY2U0LWU5ODEtNGJlNS1iOWY2LTVjOWQ2MjYyOWM4Ni8xL09RdG5Ob3lSdUY2
RWlJeGUwdWdrMFRrSUVMcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFXt1TANBgkqhkiG9w0BAQsFAAOC
AQEAkDPNVR5Y4WciOXDUeLZw3DlgEXde4q9Ily04HF6TfMshIpyalmqWVTXYvWX+
PMLz+MqN6GRnFHuIxk0O9vvc4ENu3LEg420YAK9YCY0zS59sgejMfEm6Ybl8pGJn
UXw6zvYnHNJtu67Wr9VWcggGbKvEzc+eqIieYwSqA7VoSRAZ3lSNnMqjGF/MwD6u
O5udVeWLyrC1BafyVxa4kvpb/Z3bxanFLIQgCI0IbC4gwF3CrB2SQBkzlbd15b5S
3r1GIfJ94r3WHqPNlC1FE2GgjrwngjC/E/46lUYcDVRpAIYdRQ0VlvkVKLZqsSju
kX0b+RVzEtSgyf+Dbpaz9WDbvg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org