Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/bba89c-225f-4e61-bc57-45a5f56c86eb/1/MyuAOuVvJKxbTcvhoSk-K1GrztU.roa
File: MyuAOuVvJKxbTcvhoSk-K1GrztU.roa (raw, json)
Hash identifier: NIblR2ZL21bccOScEelx5ZeyAS3pfdWkD1TsqrOk13Y=
Subject key identifier: 33:2B:80:3A:E5:6F:24:AC:5B:4D:CB:E1:A1:29:3E:2B:51:AB:CE:D5
Certificate issuer: /CN=0af4a2b44775ac18375cd834d3e9218d289f6384
Certificate serial: 8BD767
Authority key identifier: 0A:F4:A2:B4:47:75:AC:18:37:5C:D8:34:D3:E9:21:8D:28:9F:63:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CvSitEd1rBg3XNg00-khjSifY4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/bba89c-225f-4e61-bc57-45a5f56c86eb/1/MyuAOuVvJKxbTcvhoSk-K1GrztU.roa
Signing time: Sat 01 Jan 2022 02:54:39 +0000
ROA not before: Sat 01 Jan 2022 02:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26548
IP address blocks: 2.59.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9164647 (0x8bd767)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0af4a2b44775ac18375cd834d3e9218d289f6384
Validity
Not Before: Jan 1 02:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=332b803ae56f24ac5b4dcbe1a1293e2b51abced5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:db:26:b9:48:df:6b:d6:ad:46:91:e7:22:bb:
52:c9:64:7e:d4:97:2d:86:03:54:ba:5c:0d:a0:12:
a0:c7:d1:c8:22:71:d5:ab:9c:ff:9f:f9:89:1e:56:
ef:fa:bc:f0:82:17:70:22:fd:1d:d2:f2:ce:6c:f8:
5f:e3:40:8e:9f:31:c3:e8:0c:82:c2:50:23:e3:2a:
f1:2d:e5:84:bd:e8:99:fb:b5:e2:b3:60:68:e1:e6:
4b:44:d3:3b:f4:a6:3e:41:eb:6f:b5:32:9e:4c:3d:
59:94:ed:dc:49:f9:e6:fd:df:16:67:28:d1:3d:ee:
35:49:fd:24:cb:ba:21:26:40:b9:93:84:32:98:4a:
1d:f2:08:f8:08:b6:ee:5e:a1:2a:84:11:5d:ca:ba:
82:89:d2:52:51:ed:49:57:15:bf:1f:96:9b:e4:85:
35:3a:37:a3:db:32:6a:b5:bb:1f:ce:65:ed:39:8e:
8f:2c:14:ec:83:0e:de:6d:70:d7:cf:40:5c:cf:2e:
f3:ce:69:1a:a5:b8:86:fc:ad:21:4c:5d:6b:51:58:
f8:c3:91:58:64:28:32:47:e2:77:9d:8f:da:2e:81:
94:bf:c5:a0:cc:1a:56:e6:ba:6c:e6:62:1a:a5:19:
cb:17:9b:5f:b3:36:52:1d:2f:9c:54:c8:62:e3:fe:
d7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:2B:80:3A:E5:6F:24:AC:5B:4D:CB:E1:A1:29:3E:2B:51:AB:CE:D5
X509v3 Authority Key Identifier:
keyid:0A:F4:A2:B4:47:75:AC:18:37:5C:D8:34:D3:E9:21:8D:28:9F:63:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CvSitEd1rBg3XNg00-khjSifY4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/bba89c-225f-4e61-bc57-45a5f56c86eb/1/MyuAOuVvJKxbTcvhoSk-K1GrztU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/bba89c-225f-4e61-bc57-45a5f56c86eb/1/CvSitEd1rBg3XNg00-khjSifY4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.248.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:b9:21:18:ee:51:b3:4a:4b:c1:c4:63:2b:d3:32:ab:8e:1a:
d3:d8:75:cc:97:e5:f5:40:a9:4c:76:77:c2:b3:e9:01:d9:e4:
b5:68:17:1b:c0:d0:0f:ea:fe:1b:27:fa:fa:be:86:f4:97:d0:
ef:5f:57:f3:df:c6:7d:80:1e:dc:26:73:65:6c:0a:a8:ae:97:
ff:d6:a3:09:13:aa:c4:bb:38:77:a6:11:75:78:fe:53:c1:ae:
34:ac:da:05:2d:43:0a:5b:a3:65:d9:38:ce:44:d7:93:3a:2b:
b4:c2:fd:f4:e1:e8:a7:65:63:ba:9c:3d:f6:42:9d:a3:83:3f:
d2:30:13:88:74:fe:5c:1c:31:37:80:c1:3a:de:7b:ea:c3:ba:
f9:45:c0:23:a8:2b:35:1d:64:22:3f:09:45:11:0e:a1:cc:68:
49:11:8b:7c:f1:e8:33:48:7a:36:5f:51:60:8f:2d:38:74:15:
a7:1d:b5:bc:95:e0:0e:77:f0:06:b4:b0:93:75:5f:58:d8:07:
55:6c:82:ac:11:d7:ec:94:90:f5:08:5d:23:b4:bd:65:f0:c1:
54:a3:3a:44:f4:b9:ff:9d:51:d5:6e:df:00:fe:8b:61:01:a9:
ea:15:fe:4e:fd:10:c8:a4:df:3e:7e:02:0b:f5:6f:c5:5a:33:
e9:ec:20:20
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAIvXZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YWY0YTJiNDQ3NzVhYzE4Mzc1Y2Q4MzRkM2U5MjE4ZDI4OWY2Mzg0MB4XDTIyMDEw
MTAyNTQzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzMyYjgwM2FlNTZm
MjRhYzViNGRjYmUxYTEyOTNlMmI1MWFiY2VkNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ7bJrlI32vWrUaR5yK7UslkftSXLYYDVLpcDaASoMfRyCJx
1auc/5/5iR5W7/q88IIXcCL9HdLyzmz4X+NAjp8xw+gMgsJQI+Mq8S3lhL3omfu1
4rNgaOHmS0TTO/SmPkHrb7Uynkw9WZTt3En55v3fFmco0T3uNUn9JMu6ISZAuZOE
MphKHfII+Ai27l6hKoQRXcq6gonSUlHtSVcVvx+Wm+SFNTo3o9syarW7H85l7TmO
jywU7IMO3m1w189AXM8u885pGqW4hvytIUxda1FY+MORWGQoMkfid52P2i6BlL/F
oMwaVua6bOZiGqUZyxebX7M2Uh0vnFTIYuP+17UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQzK4A65W8krFtNy+GhKT4rUavO1TAfBgNVHSMEGDAWgBQK9KK0R3WsGDdc
2DTT6SGNKJ9jhDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0N2U2l0RWQxckJnM1hOZzAwLWtoalNpZlk0US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTcvYmJhODljLTIyNWYtNGU2MS1iYzU3LTQ1YTVmNTZjODZlYi8x
L015dUFPdVZ2Skt4YlRjdmhvU2stSzFHcnp0VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcv
YmJhODljLTIyNWYtNGU2MS1iYzU3LTQ1YTVmNTZjODZlYi8xL0N2U2l0RWQxckJn
M1hOZzAwLWtoalNpZlk0US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgI7+DANBgkqhkiG9w0BAQsFAAOC
AQEAT7khGO5Rs0pLwcRjK9Myq44a09h1zJfl9UCpTHZ3wrPpAdnktWgXG8DQD+r+
Gyf6+r6G9JfQ719X89/GfYAe3CZzZWwKqK6X/9ajCROqxLs4d6YRdXj+U8GuNKza
BS1DClujZdk4zkTXkzortML99OHop2Vjupw99kKdo4M/0jATiHT+XBwxN4DBOt57
6sO6+UXAI6grNR1kIj8JRREOocxoSRGLfPHoM0h6Nl9RYI8tOHQVpx21vJXgDnfw
BrSwk3VfWNgHVWyCrBHX7JSQ9QhdI7S9ZfDBVKM6RPS5/51R1W7fAP6LYQGp6hX+
Tv0QyKTfPn4CC/VvxVoz6ewgIA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:45 2024 by rpki-client on console-ams.rpki-client.org