Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/qM-lERRLhkTHYXt6h0cZOXrgb8k.roa
File: qM-lERRLhkTHYXt6h0cZOXrgb8k.roa (raw, json)
Hash identifier: IuPIPxJ73WVdHz4+4wrF5t9TPwDMQAs6o0myQ+eoNpA=
Subject key identifier: A8:CF:A5:11:14:4B:86:44:C7:61:7B:7A:87:47:19:39:7A:E0:6F:C9
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 01856DD406DE15C419324D6CBFB3E6259736
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/qM-lERRLhkTHYXt6h0cZOXrgb8k.roa
Signing time: Sun 01 Jan 2023 14:54:49 +0000
ROA not before: Sun 01 Jan 2023 14:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25542
IP address blocks: 185.4.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:06:de:15:c4:19:32:4d:6c:bf:b3:e6:25:97:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 14:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8cfa511144b8644c7617b7a874719397ae06fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:31:47:75:01:2e:bf:06:21:97:ed:76:00:22:
0d:78:22:fc:d5:18:26:e6:13:45:7d:9c:9a:a0:a8:
1f:c3:f5:f3:72:2d:a9:3f:1c:4c:b8:22:aa:51:90:
13:75:5a:84:89:55:e9:e7:75:81:41:d2:c0:96:73:
d8:84:0a:d1:d0:41:9f:08:2e:5d:2e:46:19:c0:47:
ba:d9:bf:58:a9:71:ea:96:fa:91:cf:49:20:e2:8c:
cc:c1:c1:66:dd:c2:e0:3c:3a:d9:82:27:82:90:1b:
cf:d6:62:80:1e:1a:35:d2:03:0a:24:b5:0f:80:8b:
21:bc:61:76:8d:2f:cb:07:16:52:47:04:42:b5:65:
18:a9:80:57:c4:e2:3e:1b:47:6b:09:31:4a:21:eb:
15:25:ad:f6:25:21:69:4c:4e:18:d7:fa:b8:71:c3:
6d:dd:ac:3f:13:7c:36:00:b5:fe:08:9b:84:0c:2a:
00:6f:22:36:6b:2a:86:7a:64:ea:14:26:63:00:52:
c4:c3:1a:37:d0:74:84:b1:b8:06:f2:dc:49:c9:88:
3d:5d:93:f4:03:4b:e0:e4:36:e0:17:05:17:80:60:
89:c0:98:9b:b2:d6:ae:6f:ac:c6:59:70:ca:d5:41:
6f:b0:c1:d0:7c:9c:66:3c:30:b7:b2:f3:40:e9:b3:
b6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CF:A5:11:14:4B:86:44:C7:61:7B:7A:87:47:19:39:7A:E0:6F:C9
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/qM-lERRLhkTHYXt6h0cZOXrgb8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.115.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:83:3a:cb:af:b4:39:60:dd:74:05:e8:1f:10:0c:12:e0:8a:
93:d0:7e:e6:2a:f5:22:5a:aa:da:10:72:a5:d3:25:8a:1a:25:
59:28:7e:fa:f9:cf:9d:4b:ae:a7:f9:a4:89:4b:e9:c4:de:63:
3d:fb:ac:3f:ac:d4:95:53:e2:c8:19:1f:0d:f8:f6:32:57:49:
ff:77:41:d9:7e:66:39:7e:45:e1:06:14:49:de:0f:bd:26:8c:
64:2b:02:68:33:e0:1a:93:08:ad:ff:04:1b:30:0f:49:a6:0b:
ae:ef:6a:f5:07:21:44:2d:c7:10:de:4b:0a:b8:2b:a3:35:9f:
16:51:39:00:a0:8c:39:71:48:14:4e:fb:b0:96:a6:91:66:4f:
8c:00:bb:d7:88:88:3c:30:d7:2e:ad:3e:50:98:8a:2d:8f:3b:
5e:2f:6f:80:03:9a:fa:35:6d:34:17:62:e5:ea:86:5a:98:d7:
de:33:75:92:10:a8:4b:42:40:c7:73:e3:5a:59:b3:4c:72:63:
3b:f1:61:3a:f2:fb:d4:55:1b:db:06:2c:1b:ba:1d:22:f3:32:
ee:73:d4:9a:b8:9d:91:dd:b5:b6:5f:22:0f:65:cb:bf:b5:22:
4a:68:45:9c:00:34:89:15:19:ee:ae:8a:7e:06:98:ae:61:4f:
57:7f:2f:1d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt1AbeFcQZMk1sv7PmJZc2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNjQwYjAyMzExMzc2ZGM5NmVlYmZlY2E3NTVjM2IwMDYx
MTQwZWMwHhcNMjMwMTAxMTQ1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGNmYTUxMTE0NGI4NjQ0Yzc2MTdiN2E4NzQ3MTkzOTdhZTA2ZmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzFHdQEuvwYhl+12ACINeCL81Rgm
5hNFfZyaoKgfw/Xzci2pPxxMuCKqUZATdVqEiVXp53WBQdLAlnPYhArR0EGfCC5d
LkYZwEe62b9YqXHqlvqRz0kg4ozMwcFm3cLgPDrZgieCkBvP1mKAHho10gMKJLUP
gIshvGF2jS/LBxZSRwRCtWUYqYBXxOI+G0drCTFKIesVJa32JSFpTE4Y1/q4ccNt
3aw/E3w2ALX+CJuEDCoAbyI2ayqGemTqFCZjAFLEwxo30HSEsbgG8txJyYg9XZP0
A0vg5DbgFwUXgGCJwJibstaub6zGWXDK1UFvsMHQfJxmPDC3svNA6bO2FQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKjPpREUS4ZEx2F7eodHGTl64G/JMB8GA1UdIwQY
MBaAFM9kCwIxE3bclu6/7KdVw7AGEUDsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejJRTEFqRVRkdHlXN3Jfc3AxWERzQVlSUU93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMGVjNzgtN2U0NC00OWU0LTg0NDMt
OWRiNWJlNGQwZWZmLzEvcU0tbEVSUkxoa1RIWVh0NmgwY1pPWHJnYjhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMGVjNzgtN2U0NC00OWU0LTg0NDMtOWRiNWJlNGQwZWZm
LzEvejJRTEFqRVRkdHlXN3Jfc3AxWERzQVlSUU93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQRzMA0G
CSqGSIb3DQEBCwUAA4IBAQBsgzrLr7Q5YN10BegfEAwS4IqT0H7mKvUiWqraEHKl
0yWKGiVZKH76+c+dS66n+aSJS+nE3mM9+6w/rNSVU+LIGR8N+PYyV0n/d0HZfmY5
fkXhBhRJ3g+9JoxkKwJoM+Aakwit/wQbMA9Jpguu72r1ByFELccQ3ksKuCujNZ8W
UTkAoIw5cUgUTvuwlqaRZk+MALvXiIg8MNcurT5QmIotjzteL2+AA5r6NW00F2Ll
6oZamNfeM3WSEKhLQkDHc+NaWbNMcmM78WE68vvUVRvbBiwbuh0i8zLuc9SauJ2R
3bW2XyIPZcu/tSJKaEWcADSJFRnurop+BpiuYU9Xfy8d
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:57 2024 by rpki-client on console-ams.rpki-client.org