Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/C710bQpIKp1D-6_m3YURep5dImY.roa
File: C710bQpIKp1D-6_m3YURep5dImY.roa (raw, json)
Hash identifier: bPKJPnxUT0BGPQ2/DwNmcK34+JhDrQWmIxUNotsRapo=
Subject key identifier: 0B:BD:74:6D:0A:48:2A:9D:43:FB:AF:E6:DD:85:11:7A:9E:5D:22:66
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 146F5299
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/C710bQpIKp1D-6_m3YURep5dImY.roa
Signing time: Sat 01 Jan 2022 03:58:57 +0000
ROA not before: Sat 01 Jan 2022 03:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25542
IP address blocks: 185.4.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342839961 (0x146f5299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 03:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bbd746d0a482a9d43fbafe6dd85117a9e5d2266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:13:c0:fa:8b:86:fe:cc:65:4e:16:57:36:f2:
e8:95:00:d9:2d:4e:42:64:16:a1:01:9f:7f:06:06:
7f:26:6d:75:16:31:86:ef:31:ad:be:f8:d9:0d:48:
fd:27:a9:32:35:62:ba:9b:f6:f2:73:fa:17:ae:fe:
2d:03:8f:96:90:7c:82:98:71:e6:83:0b:38:d0:73:
5d:43:af:ff:f7:5a:ce:f2:ed:ba:74:62:02:89:f9:
c0:d4:44:5d:c2:01:9f:9f:a9:e4:49:0d:70:bf:0a:
c5:2b:68:05:83:0b:49:40:4a:9a:aa:43:48:13:15:
96:6a:15:d7:38:5c:c5:49:68:6f:88:ba:57:13:72:
a8:b6:1c:b4:2a:3f:dd:77:eb:5b:e4:c5:b2:50:25:
39:23:40:1f:16:80:d3:d7:0e:ab:3b:d1:29:4c:c3:
c5:1c:fd:a3:de:8f:f6:41:38:6d:07:15:92:bc:ef:
d8:a4:06:cb:9b:d6:96:f5:7d:ea:a5:61:a1:b4:7c:
37:d9:95:00:e7:6f:bf:23:b1:35:74:52:79:a2:69:
37:3a:11:a9:af:48:9d:27:58:f3:76:5f:1f:91:cc:
97:10:93:4f:d9:fe:35:31:ef:5b:db:24:75:9d:de:
af:ae:4c:ce:2e:fa:7d:71:6a:3b:52:6e:f2:39:a3:
c2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BD:74:6D:0A:48:2A:9D:43:FB:AF:E6:DD:85:11:7A:9E:5D:22:66
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/C710bQpIKp1D-6_m3YURep5dImY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.115.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:50:98:02:e0:22:3a:ca:b8:d6:f2:43:e4:b2:f6:68:2b:11:
28:5a:5d:f6:96:0c:34:62:f9:3a:ba:01:25:5a:0a:14:1b:96:
94:99:e5:b2:ca:a0:7f:86:8c:96:9b:1b:68:d7:27:fb:ee:6b:
56:15:9a:37:e9:d4:06:f1:bd:73:98:75:48:7f:ba:6f:df:2d:
bc:a6:7e:28:6b:52:f8:d2:73:8f:ea:01:5a:a4:7e:95:29:c1:
7f:6d:02:88:97:34:0a:ba:28:41:ac:51:99:8f:ed:ab:f3:d6:
c8:9f:76:0f:90:2a:68:1f:17:19:7b:a5:d5:7a:d1:7f:46:40:
13:d3:36:7a:d8:71:7c:a9:4f:cb:22:2f:53:d6:d4:42:d2:9f:
ed:f3:17:5f:2e:53:18:c7:8f:b8:14:c8:1d:25:b5:4a:2f:dd:
d3:66:7d:f7:07:72:c6:69:36:20:51:2b:4f:fc:d2:d9:8c:ac:
75:db:d5:28:c3:51:a1:c3:c3:53:3a:8f:75:33:7a:7f:0a:25:
85:d0:f6:98:e4:f8:bf:1d:62:69:db:15:97:b4:d3:2b:42:a2:
a3:c2:56:e4:18:d0:0a:54:17:57:a1:dd:14:f1:98:23:24:63:
2f:cd:00:9a:ac:d1:c4:82:a3:52:d1:dc:88:df:80:72:e5:07:
8c:51:7a:95
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFG9SmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZjY0MGIwMjMxMTM3NmRjOTZlZWJmZWNhNzU1YzNiMDA2MTE0MGVjMB4XDTIyMDEw
MTAzNTg1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGJiZDc0NmQwYTQ4
MmE5ZDQzZmJhZmU2ZGQ4NTExN2E5ZTVkMjI2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANMTwPqLhv7MZU4WVzby6JUA2S1OQmQWoQGffwYGfyZtdRYx
hu8xrb742Q1I/SepMjViupv28nP6F67+LQOPlpB8gphx5oMLONBzXUOv//dazvLt
unRiAon5wNREXcIBn5+p5EkNcL8KxStoBYMLSUBKmqpDSBMVlmoV1zhcxUlob4i6
VxNyqLYctCo/3XfrW+TFslAlOSNAHxaA09cOqzvRKUzDxRz9o96P9kE4bQcVkrzv
2KQGy5vWlvV96qVhobR8N9mVAOdvvyOxNXRSeaJpNzoRqa9InSdY83ZfH5HMlxCT
T9n+NTHvW9skdZ3er65Mzi76fXFqO1Ju8jmjwocCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQLvXRtCkgqnUP7r+bdhRF6nl0iZjAfBgNVHSMEGDAWgBTPZAsCMRN23Jbu
v+ynVcOwBhFA7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3oyUUxBakVUZHR5VzdyX3NwMVhEc0FZUlFPdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjUvMDBlYzc4LTdlNDQtNDllNC04NDQzLTlkYjViZTRkMGVmZi8x
L0M3MTBiUXBJS3AxRC02X20zWVVSZXA1ZEltWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUv
MDBlYzc4LTdlNDQtNDllNC04NDQzLTlkYjViZTRkMGVmZi8xL3oyUUxBakVUZHR5
VzdyX3NwMVhEc0FZUlFPdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkEczANBgkqhkiG9w0BAQsFAAOC
AQEAOlCYAuAiOsq41vJD5LL2aCsRKFpd9pYMNGL5OroBJVoKFBuWlJnlssqgf4aM
lpsbaNcn++5rVhWaN+nUBvG9c5h1SH+6b98tvKZ+KGtS+NJzj+oBWqR+lSnBf20C
iJc0CrooQaxRmY/tq/PWyJ92D5AqaB8XGXul1XrRf0ZAE9M2ethxfKlPyyIvU9bU
QtKf7fMXXy5TGMePuBTIHSW1Si/d02Z99wdyxmk2IFErT/zS2YysddvVKMNRocPD
UzqPdTN6fwolhdD2mOT4vx1iadsVl7TTK0Kio8JW5BjQClQXV6HdFPGYIyRjL80A
mqzRxIKjUtHciN+AcuUHjFF6lQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:57 2024 by rpki-client on console-ams.rpki-client.org