Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/xOAerDYjaXff9FWLYIvrk18oCgg.roa
File: xOAerDYjaXff9FWLYIvrk18oCgg.roa (raw, json)
Hash identifier: TAPgxKpxVk87GcV2C/fKKAwG4jdBiCuh/Uf6OmFUKcI=
Subject key identifier: C4:E0:1E:AC:36:23:69:77:DF:F4:55:8B:60:8B:EB:93:5F:28:0A:08
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 04416D1B
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/xOAerDYjaXff9FWLYIvrk18oCgg.roa
Signing time: Sat 01 Jan 2022 00:50:51 +0000
ROA not before: Sat 01 Jan 2022 00:50:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212219
IP address blocks: 185.89.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71396635 (0x4416d1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 1 00:50:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4e01eac36236977dff4558b608beb935f280a08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:00:67:c1:49:c4:61:b8:f0:07:e3:db:fd:c0:
0e:0c:98:c2:37:22:23:02:3b:61:c7:fa:e7:7b:5d:
22:bc:c8:f6:59:db:dc:b0:ae:3a:1d:76:91:d6:c9:
8e:7a:3c:2c:b8:3b:81:0a:2c:d4:46:ad:1f:22:5d:
c8:12:e6:61:3e:0d:83:aa:5d:14:eb:48:88:b8:ee:
fc:09:68:f0:31:b5:7a:e8:59:7a:2f:cc:9e:73:8a:
bf:aa:04:91:49:13:ad:b3:63:88:95:89:9c:1b:f8:
58:7c:87:a0:27:ca:ca:09:83:38:93:65:18:15:56:
04:83:ad:2c:f6:ab:07:0e:46:9d:df:8c:93:d8:21:
0c:db:d7:b3:ec:1c:69:63:96:71:e6:c2:0b:18:fb:
e0:dd:3d:48:6f:ba:e3:d0:7b:95:b6:b6:90:a8:33:
0c:c6:e6:3c:38:dd:2a:5f:3a:cd:11:a0:b5:9e:a6:
de:5d:7c:d1:ef:8f:3e:0d:df:14:cc:00:64:c4:32:
cc:3c:97:e2:0a:d6:64:f5:28:04:f5:1e:ad:06:8d:
6a:e9:19:96:6d:09:50:d4:0d:dd:51:ff:68:c0:0a:
29:c2:ef:b4:27:f3:4f:2a:f8:09:e3:b0:ea:d6:45:
25:cf:82:4b:06:f6:fb:33:2a:b7:49:1a:d0:40:23:
0f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E0:1E:AC:36:23:69:77:DF:F4:55:8B:60:8B:EB:93:5F:28:0A:08
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/xOAerDYjaXff9FWLYIvrk18oCgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.78.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:a9:56:39:20:40:a9:39:c6:5e:dc:b1:39:f4:c5:61:9e:ed:
fd:2b:e5:1d:68:71:b4:f7:2a:f0:c7:b1:c2:98:bd:ce:a7:44:
5c:4a:27:21:17:24:65:a5:b7:78:ef:4a:48:a3:c2:d9:45:8d:
da:9d:2e:c8:a3:a4:13:4f:06:c0:5b:58:96:1d:75:49:63:91:
81:63:80:ed:ce:b6:6d:b3:58:68:a9:d9:42:4a:7f:a6:8c:dd:
d2:5d:73:19:98:c5:4d:bb:5d:5a:64:69:af:19:d4:9d:5c:e4:
8a:5b:49:b8:6c:e2:3c:ae:d3:18:dc:06:31:ed:fa:c8:bb:51:
f4:52:14:f4:9e:ea:ba:f5:07:69:e5:23:07:4f:a8:23:77:c1:
75:76:bc:75:18:0d:ab:e8:cb:41:a1:cf:e8:4e:2e:0c:d0:70:
38:45:dc:83:4d:07:88:9c:71:b1:9f:ee:a7:84:bc:ec:a2:77:
da:34:f8:7f:63:80:08:b5:b4:20:59:60:8f:d9:a8:89:83:ad:
a8:d9:60:72:92:9d:d1:df:78:8f:5f:e1:4d:66:67:21:86:5c:
5b:c4:d5:e9:ff:e9:bf:83:4f:c5:ed:a7:b6:32:fc:0d:08:b0:
c1:be:87:91:4b:50:c2:72:d3:69:19:90:29:45:d2:6f:83:7f:
99:0c:35:3b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBEFtGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OTBiNjczNjhjOTFiODVlODQ4ODhjNWVkMmU4MjRkMTM5MDgxMGJiMB4XDTIyMDEw
MTAwNTA1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzRlMDFlYWMzNjIz
Njk3N2RmZjQ1NThiNjA4YmViOTM1ZjI4MGEwODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM0AZ8FJxGG48Afj2/3ADgyYwjciIwI7Ycf653tdIrzI9lnb
3LCuOh12kdbJjno8LLg7gQos1EatHyJdyBLmYT4Ng6pdFOtIiLju/Alo8DG1euhZ
ei/MnnOKv6oEkUkTrbNjiJWJnBv4WHyHoCfKygmDOJNlGBVWBIOtLParBw5Gnd+M
k9ghDNvXs+wcaWOWcebCCxj74N09SG+649B7lba2kKgzDMbmPDjdKl86zRGgtZ6m
3l180e+PPg3fFMwAZMQyzDyX4grWZPUoBPUerQaNaukZlm0JUNQN3VH/aMAKKcLv
tCfzTyr4CeOw6tZFJc+CSwb2+zMqt0ka0EAjD2cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTE4B6sNiNpd9/0VYtgi+uTXygKCDAfBgNVHSMEGDAWgBQ5C2c2jJG4XoSI
jF7S6CTROQgQuzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09RdG5Ob3lSdUY2RWlJeGUwdWdrMFRrSUVMcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvMTZjY2U0LWU5ODEtNGJlNS1iOWY2LTVjOWQ2MjYyOWM4Ni8x
L3hPQWVyRFlqYVhmZjlGV0xZSXZyazE4b0NnZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
MTZjY2U0LWU5ODEtNGJlNS1iOWY2LTVjOWQ2MjYyOWM4Ni8xL09RdG5Ob3lSdUY2
RWlJeGUwdWdrMFRrSUVMcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlZTjANBgkqhkiG9w0BAQsFAAOC
AQEAt6lWOSBAqTnGXtyxOfTFYZ7t/SvlHWhxtPcq8Mexwpi9zqdEXEonIRckZaW3
eO9KSKPC2UWN2p0uyKOkE08GwFtYlh11SWORgWOA7c62bbNYaKnZQkp/pozd0l1z
GZjFTbtdWmRprxnUnVzkiltJuGziPK7TGNwGMe36yLtR9FIU9J7quvUHaeUjB0+o
I3fBdXa8dRgNq+jLQaHP6E4uDNBwOEXcg00HiJxxsZ/up4S87KJ32jT4f2OACLW0
IFlgj9moiYOtqNlgcpKd0d94j1/hTWZnIYZcW8TV6f/pv4NPxe2ntjL8DQiwwb6H
kUtQwnLTaRmQKUXSb4N/mQw1Ow==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:08 2023 by rpki-client on console-ams.rpki-client.org