Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/45d55e-1fc0-4e37-8362-17d216d726d3/1/35sCUOsN0y3KEHa7nVHlwa7UUe0.roa
File: 35sCUOsN0y3KEHa7nVHlwa7UUe0.roa (raw, json)
Hash identifier: JQDY21h6r8RBeR7HtuWntvuPpsTB4lj3FIz6mm+dRis=
Subject key identifier: DF:9B:02:50:EB:0D:D3:2D:CA:10:76:BB:9D:51:E5:C1:AE:D4:51:ED
Certificate issuer: /CN=d48ed48289684d480402ce8ee4b2f53681a588c5
Certificate serial: 0186C62312C8CFA3544383CFDDE6673B72EE
Authority key identifier: D4:8E:D4:82:89:68:4D:48:04:02:CE:8E:E4:B2:F5:36:81:A5:88:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1I7UgoloTUgEAs6O5LL1NoGliMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/45d55e-1fc0-4e37-8362-17d216d726d3/1/35sCUOsN0y3KEHa7nVHlwa7UUe0.roa
Signing time: Thu 09 Mar 2023 11:30:32 +0000
ROA not before: Thu 09 Mar 2023 11:30:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 193.162.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c6:23:12:c8:cf:a3:54:43:83:cf:dd:e6:67:3b:72:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48ed48289684d480402ce8ee4b2f53681a588c5
Validity
Not Before: Mar 9 11:30:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df9b0250eb0dd32dca1076bb9d51e5c1aed451ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7a:12:62:95:2f:90:44:81:a1:b8:05:14:f4:
e9:97:a3:46:09:7c:34:00:fd:5d:b5:1d:3b:21:f8:
a5:88:cc:b5:83:99:0c:00:9e:cf:a2:43:df:1b:d0:
24:5e:fc:d0:6e:f3:6b:2b:37:7b:9b:ee:8e:ee:4d:
1d:ec:8f:cd:b1:74:f0:42:cf:9c:0d:d5:15:d8:07:
44:48:e7:98:78:a4:a8:72:d3:d2:0a:64:69:c3:c6:
a2:f1:8d:15:f9:1d:1f:2c:fc:ee:08:d1:6b:df:42:
09:71:d8:d1:dc:d1:be:1c:12:14:9c:60:ba:a4:af:
f7:17:61:60:b6:e3:7a:d9:f3:50:e4:ac:9f:77:a4:
66:6e:9e:95:2b:a5:80:50:ee:e0:63:3f:99:70:19:
0a:17:0f:f0:fc:bd:df:df:12:45:e4:5c:3f:43:22:
68:2a:c9:7e:90:c6:7e:10:7c:e4:b9:02:3a:1a:72:
e1:64:6a:27:c8:83:59:72:60:2f:2f:26:0d:0f:fc:
c0:80:00:36:a7:8d:ba:2b:5d:4d:71:9d:18:74:b7:
84:96:44:8a:3d:3d:f0:b3:f6:60:a7:37:95:33:0c:
0b:28:8e:42:40:21:9b:33:ff:5a:51:32:d5:5f:28:
45:31:f1:f0:fb:ae:2e:e9:b6:1f:20:22:ba:40:7b:
06:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9B:02:50:EB:0D:D3:2D:CA:10:76:BB:9D:51:E5:C1:AE:D4:51:ED
X509v3 Authority Key Identifier:
keyid:D4:8E:D4:82:89:68:4D:48:04:02:CE:8E:E4:B2:F5:36:81:A5:88:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1I7UgoloTUgEAs6O5LL1NoGliMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/45d55e-1fc0-4e37-8362-17d216d726d3/1/35sCUOsN0y3KEHa7nVHlwa7UUe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/45d55e-1fc0-4e37-8362-17d216d726d3/1/1I7UgoloTUgEAs6O5LL1NoGliMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.128.0/24
Signature Algorithm: sha256WithRSAEncryption
59:c2:05:5c:82:28:8e:61:d6:fd:27:32:3f:22:e2:ed:b5:42:
15:0f:a5:4c:cd:5d:76:49:4e:c0:4c:17:10:0c:3e:7b:46:0f:
1f:99:32:24:4b:78:3d:1f:79:f8:3e:e3:f1:90:6b:a2:93:ef:
d5:b3:aa:33:58:46:04:22:89:64:31:8f:cd:97:f4:e9:08:2e:
f4:ad:03:2a:ff:c3:3d:0b:7e:3b:f7:d5:73:b9:b4:a1:2a:d7:
9d:cd:6a:55:c4:1f:28:57:8c:05:28:55:6e:9b:96:6b:05:ea:
88:15:37:bd:4e:ab:f4:9c:3a:dd:43:18:a1:5f:b5:88:dc:88:
8e:90:11:20:72:dd:9b:76:60:c4:f2:d1:e6:4c:5c:ef:05:e4:
0a:81:05:8d:55:93:e1:84:9c:36:80:76:41:7e:dc:7f:ed:fb:
bf:3e:e4:2a:3a:15:42:84:ec:30:47:8e:d6:99:bb:5e:74:b3:
e5:9b:ce:c7:7c:f1:42:7c:43:01:51:63:3f:34:6d:e5:bb:22:
8d:91:b1:1f:11:48:98:ec:7f:25:32:e9:9a:36:03:89:6c:d3:
d4:7a:89:60:00:a5:01:73:40:1b:51:06:29:26:ad:2d:19:fa:
9b:80:bf:5e:62:7c:68:64:5a:b0:52:8c:a2:75:3d:c6:70:4a:
82:ca:d6:ba
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbGIxLIz6NUQ4PP3eZnO3LuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0OGVkNDgyODk2ODRkNDgwNDAyY2U4ZWU0YjJmNTM2ODFh
NTg4YzUwHhcNMjMwMzA5MTEzMDMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjliMDI1MGViMGRkMzJkY2ExMDc2YmI5ZDUxZTVjMWFlZDQ1MWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3oSYpUvkESBobgFFPTpl6NGCXw0
AP1dtR07IfiliMy1g5kMAJ7PokPfG9AkXvzQbvNrKzd7m+6O7k0d7I/NsXTwQs+c
DdUV2AdESOeYeKSoctPSCmRpw8ai8Y0V+R0fLPzuCNFr30IJcdjR3NG+HBIUnGC6
pK/3F2FgtuN62fNQ5Kyfd6Rmbp6VK6WAUO7gYz+ZcBkKFw/w/L3f3xJF5Fw/QyJo
Ksl+kMZ+EHzkuQI6GnLhZGonyINZcmAvLyYND/zAgAA2p426K11NcZ0YdLeElkSK
PT3ws/ZgpzeVMwwLKI5CQCGbM/9aUTLVXyhFMfHw+64u6bYfICK6QHsG6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN+bAlDrDdMtyhB2u51R5cGu1FHtMB8GA1UdIwQY
MBaAFNSO1IKJaE1IBALOjuSy9TaBpYjFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUk3VWdvbG9UVWdFQXM2TzVMTDFOb0dsaU1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni80NWQ1NWUtMWZjMC00ZTM3LTgzNjIt
MTdkMjE2ZDcyNmQzLzEvMzVzQ1VPc04weTNLRUhhN25WSGx3YTdVVWUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni80NWQ1NWUtMWZjMC00ZTM3LTgzNjItMTdkMjE2ZDcyNmQz
LzEvMUk3VWdvbG9UVWdFQXM2TzVMTDFOb0dsaU1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaKAMA0G
CSqGSIb3DQEBCwUAA4IBAQBZwgVcgiiOYdb9JzI/IuLttUIVD6VMzV12SU7ATBcQ
DD57Rg8fmTIkS3g9H3n4PuPxkGuik+/Vs6ozWEYEIolkMY/Nl/TpCC70rQMq/8M9
C34799VzubShKtedzWpVxB8oV4wFKFVum5ZrBeqIFTe9Tqv0nDrdQxihX7WI3IiO
kBEgct2bdmDE8tHmTFzvBeQKgQWNVZPhhJw2gHZBftx/7fu/PuQqOhVChOwwR47W
mbtedLPlm87HfPFCfEMBUWM/NG3luyKNkbEfEUiY7H8lMumaNgOJbNPUeolgAKUB
c0AbUQYpJq0tGfqbgL9eYnxoZFqwUoyidT3GcEqCyta6
-----END CERTIFICATE-----
Generated at Fri Dec 8 13:11:03 2023 by rpki-client on console-fra.rpki-client.org