Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/oo_u_XuK74mSPcy9k9GkmMh0r-E.roa
File: oo_u_XuK74mSPcy9k9GkmMh0r-E.roa (raw, json)
Hash identifier: FngxlluXi2pgc/2PgCVExVAD4TQFV0nzUYGqFBRSlC0=
Subject key identifier: A2:8F:EE:FD:7B:8A:EF:89:92:3D:CC:BD:93:D1:A4:98:C8:74:AF:E1
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 1477501B
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/oo_u_XuK74mSPcy9k9GkmMh0r-E.roa
Signing time: Sat 01 Jan 2022 03:59:01 +0000
ROA not before: Sat 01 Jan 2022 03:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49127
IP address blocks: 83.98.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343363611 (0x1477501b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 03:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a28feefd7b8aef89923dccbd93d1a498c874afe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:52:52:02:6d:d1:84:bd:6b:16:91:06:5d:2f:
2e:30:9b:13:bd:1b:a4:52:8a:8c:b7:d9:9e:fa:23:
21:7b:4b:f9:0d:ac:4b:9b:91:42:da:2e:ec:97:fa:
46:cb:d5:f1:98:b2:55:e0:50:f2:b0:38:2d:4b:34:
6c:05:49:39:2e:37:55:e6:82:7c:de:47:32:3b:9a:
13:5a:dd:46:bf:95:75:26:77:04:e5:73:21:a0:d8:
4c:48:bb:ea:e5:cd:09:cc:1b:98:84:a3:ce:c0:82:
30:cc:6a:00:d6:b4:bf:e8:cf:3d:e5:e9:bd:60:1a:
46:09:0c:d5:06:88:3c:31:54:23:fa:09:26:ee:44:
86:4e:b3:29:ef:31:c6:46:6d:8f:56:cd:d5:01:27:
f5:bf:2b:a6:ab:04:79:95:60:89:0f:81:4c:e3:d7:
52:33:f8:55:0e:2e:ba:16:0b:19:d0:88:7e:3d:c2:
37:d5:b1:83:c6:fa:96:15:ce:55:a1:3d:b3:7c:53:
cf:fa:66:90:ca:92:1c:75:f3:34:a4:80:76:a2:96:
46:94:06:ff:df:df:74:b2:a8:26:f9:1d:8a:5f:27:
48:f1:c4:23:4f:f0:16:16:e3:1f:07:b8:fe:d6:dc:
cb:30:6f:9e:ef:51:48:a0:a2:13:75:e0:b7:1b:a2:
75:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:8F:EE:FD:7B:8A:EF:89:92:3D:CC:BD:93:D1:A4:98:C8:74:AF:E1
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/oo_u_XuK74mSPcy9k9GkmMh0r-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.98.157.0/24
Signature Algorithm: sha256WithRSAEncryption
64:06:81:15:10:54:08:c6:33:98:84:d5:1a:97:24:a9:fc:23:
1d:14:1c:9f:be:be:bf:0c:4f:6d:82:b2:55:ed:4b:97:57:da:
5a:d3:48:50:b2:15:6a:80:b0:bb:8b:92:83:7d:89:c5:3b:c5:
58:f9:52:f7:fb:51:97:fc:64:6e:81:86:b0:8e:4c:46:3e:de:
26:85:5d:da:34:37:86:10:b7:95:d4:a6:0f:9b:bd:03:e8:64:
e4:80:cc:fc:87:a7:b8:61:52:87:0e:fd:df:83:49:7c:9d:ed:
5a:49:17:dd:31:27:f0:5c:86:c1:76:3b:90:66:06:2e:80:7d:
f7:ec:68:5c:17:aa:3c:62:73:01:14:21:c2:d5:60:d3:8f:bb:
08:e2:80:b9:9e:c3:af:2f:16:36:4c:43:27:b0:5b:69:b8:7d:
74:a7:8c:6f:4c:ae:e4:1c:83:5a:44:2e:27:7c:94:bd:23:21:
3f:e9:57:af:d8:db:2f:c5:a4:03:47:96:19:67:82:85:17:bf:
6a:81:04:0e:2d:00:6e:e0:11:ef:00:90:70:2f:b4:05:16:ee:
44:92:fa:bf:c8:4a:12:31:21:cc:bc:8e:a6:da:45:f5:6e:14:
b3:31:a3:d9:2c:7b:47:b6:84:5d:3a:d5:6a:6e:ea:e1:09:7d:
ed:1a:48:6c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFHdQGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZjY0MGIwMjMxMTM3NmRjOTZlZWJmZWNhNzU1YzNiMDA2MTE0MGVjMB4XDTIyMDEw
MTAzNTkwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTI4ZmVlZmQ3Yjhh
ZWY4OTkyM2RjY2JkOTNkMWE0OThjODc0YWZlMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMBSUgJt0YS9axaRBl0vLjCbE70bpFKKjLfZnvojIXtL+Q2s
S5uRQtou7Jf6RsvV8ZiyVeBQ8rA4LUs0bAVJOS43VeaCfN5HMjuaE1rdRr+VdSZ3
BOVzIaDYTEi76uXNCcwbmISjzsCCMMxqANa0v+jPPeXpvWAaRgkM1QaIPDFUI/oJ
Ju5Ehk6zKe8xxkZtj1bN1QEn9b8rpqsEeZVgiQ+BTOPXUjP4VQ4uuhYLGdCIfj3C
N9Wxg8b6lhXOVaE9s3xTz/pmkMqSHHXzNKSAdqKWRpQG/9/fdLKoJvkdil8nSPHE
I0/wFhbjHwe4/tbcyzBvnu9RSKCiE3Xgtxuidb8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSij+79e4rviZI9zL2T0aSYyHSv4TAfBgNVHSMEGDAWgBTPZAsCMRN23Jbu
v+ynVcOwBhFA7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3oyUUxBakVUZHR5VzdyX3NwMVhEc0FZUlFPdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjUvMDBlYzc4LTdlNDQtNDllNC04NDQzLTlkYjViZTRkMGVmZi8x
L29vX3VfWHVLNzRtU1BjeTlrOUdrbU1oMHItRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUv
MDBlYzc4LTdlNDQtNDllNC04NDQzLTlkYjViZTRkMGVmZi8xL3oyUUxBakVUZHR5
VzdyX3NwMVhEc0FZUlFPdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFNinTANBgkqhkiG9w0BAQsFAAOC
AQEAZAaBFRBUCMYzmITVGpckqfwjHRQcn76+vwxPbYKyVe1Ll1faWtNIULIVaoCw
u4uSg32JxTvFWPlS9/tRl/xkboGGsI5MRj7eJoVd2jQ3hhC3ldSmD5u9A+hk5IDM
/IenuGFShw7934NJfJ3tWkkX3TEn8FyGwXY7kGYGLoB99+xoXBeqPGJzARQhwtVg
04+7COKAuZ7Dry8WNkxDJ7Bbabh9dKeMb0yu5ByDWkQuJ3yUvSMhP+lXr9jbL8Wk
A0eWGWeChRe/aoEEDi0AbuAR7wCQcC+0BRbuRJL6v8hKEjEhzLyOptpF9W4UszGj
2Sx7R7aEXTrVam7q4Ql97RpIbA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org