Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/ce5c4a-f572-4b6f-a3a5-80e1be66bb0e/1/XebjzSuP5aVhI4OCwx4lrj3s3EY.roa
File: XebjzSuP5aVhI4OCwx4lrj3s3EY.roa (raw, json)
Hash identifier: DB2Jfp0qmRCvhmgmA1OtLgOiZVuPouz5WgI89a6c2pI=
Subject key identifier: 5D:E6:E3:CD:2B:8F:E5:A5:61:23:83:82:C3:1E:25:AE:3D:EC:DC:46
Certificate issuer: /CN=fb58566d156e997a34b16fc9c07c207b7e73fb53
Certificate serial: 0185718C43E05CB21C5176A0DA12CB92587C
Authority key identifier: FB:58:56:6D:15:6E:99:7A:34:B1:6F:C9:C0:7C:20:7B:7E:73:FB:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-1hWbRVumXo0sW_JwHwge35z-1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/ce5c4a-f572-4b6f-a3a5-80e1be66bb0e/1/XebjzSuP5aVhI4OCwx4lrj3s3EY.roa
Signing time: Mon 02 Jan 2023 08:14:55 +0000
ROA not before: Mon 02 Jan 2023 08:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 185.138.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:43:e0:5c:b2:1c:51:76:a0:da:12:cb:92:58:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb58566d156e997a34b16fc9c07c207b7e73fb53
Validity
Not Before: Jan 2 08:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5de6e3cd2b8fe5a561238382c31e25ae3decdc46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c0:54:32:c7:86:a3:88:95:d4:17:11:75:5e:
0d:7e:b1:b1:da:64:b9:3f:9d:64:2f:bf:5e:c1:a9:
e0:74:1e:43:a8:8c:82:9a:e3:be:e5:c1:61:ce:d7:
64:7d:bf:02:81:72:35:2e:6a:ec:4e:70:4e:97:f6:
23:aa:3a:68:be:06:63:5b:8d:15:c3:86:35:f0:9d:
9e:25:7f:04:1d:f4:81:b8:fd:71:29:12:5d:ea:4a:
b0:a9:a4:cd:08:53:c1:24:47:b8:3d:b0:ce:e6:ca:
2b:dd:ea:37:7f:ec:f1:54:6e:bc:c4:13:1d:2c:12:
06:79:c6:07:48:1d:19:61:5f:e1:f2:11:1a:88:9e:
7d:77:01:3b:02:bb:fb:7d:ed:d7:65:62:40:28:ff:
59:c8:d2:07:9e:84:13:b8:7b:15:f6:16:a0:b5:62:
a7:b7:72:cd:52:02:ff:ee:b4:a1:c3:f2:7c:91:b0:
ae:50:4e:de:53:09:2a:59:52:13:97:80:4b:27:2c:
ed:81:7e:c4:bb:85:09:ab:dc:6b:03:25:57:d4:72:
01:8f:45:1d:74:95:1f:bd:2b:79:77:82:0d:0e:9b:
7a:89:f5:de:5a:3c:60:bb:6e:2d:e9:7f:bb:85:ef:
f5:c0:e3:01:7a:e6:ab:25:96:37:35:e3:51:51:9c:
46:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E6:E3:CD:2B:8F:E5:A5:61:23:83:82:C3:1E:25:AE:3D:EC:DC:46
X509v3 Authority Key Identifier:
keyid:FB:58:56:6D:15:6E:99:7A:34:B1:6F:C9:C0:7C:20:7B:7E:73:FB:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-1hWbRVumXo0sW_JwHwge35z-1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ce5c4a-f572-4b6f-a3a5-80e1be66bb0e/1/XebjzSuP5aVhI4OCwx4lrj3s3EY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ce5c4a-f572-4b6f-a3a5-80e1be66bb0e/1/1-1hWbRVumXo0sW_JwHwge35z-1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.235.0/24
Signature Algorithm: sha256WithRSAEncryption
ea:d1:12:86:1c:4d:52:1d:90:13:90:4a:74:ea:6f:ff:f9:0f:
72:9a:4e:a1:cf:03:0b:c0:a8:b0:a7:10:25:00:5a:97:a1:2f:
fd:bd:d0:49:c5:dc:ac:29:7c:bf:8c:4a:1b:10:04:39:a1:7a:
81:33:b6:51:89:76:a5:52:b6:8d:c5:a0:b6:91:56:2e:7a:1c:
c5:7c:41:88:4a:3e:93:b6:89:38:ce:f4:cd:62:f5:4c:03:ad:
a1:63:9b:bd:bf:d5:13:a4:b4:b7:6a:92:53:11:5d:91:32:10:
ef:22:51:61:3a:4a:b6:61:40:3e:3e:38:2f:74:02:5a:60:63:
9c:78:9d:f3:b4:2f:d2:5f:36:0d:a9:4e:3e:0e:0b:f9:e5:7b:
f3:39:c7:14:69:7e:6b:c8:3a:31:f7:f2:cd:b1:df:fa:14:b1:
87:a5:27:c9:43:6a:ae:15:74:18:32:7e:fa:71:f1:56:2d:85:
d8:2e:97:91:64:0b:0c:96:55:45:b7:70:fb:24:08:69:ec:aa:
08:ab:bc:71:ab:b5:76:50:aa:b5:66:4b:43:49:41:21:39:0e:
5b:e6:63:62:72:f7:86:12:d2:48:06:28:74:33:cb:b1:35:33:
27:90:b7:18:09:a6:39:ae:14:3c:f4:a8:a0:fd:7f:ef:e8:1f:
73:72:bf:f5
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVxjEPgXLIcUXag2hLLklh8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiNTg1NjZkMTU2ZTk5N2EzNGIxNmZjOWMwN2MyMDdiN2U3
M2ZiNTMwHhcNMjMwMTAyMDgxNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGU2ZTNjZDJiOGZlNWE1NjEyMzgzODJjMzFlMjVhZTNkZWNkYzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8BUMseGo4iV1BcRdV4NfrGx2mS5
P51kL79ewangdB5DqIyCmuO+5cFhztdkfb8CgXI1LmrsTnBOl/YjqjpovgZjW40V
w4Y18J2eJX8EHfSBuP1xKRJd6kqwqaTNCFPBJEe4PbDO5sor3eo3f+zxVG68xBMd
LBIGecYHSB0ZYV/h8hEaiJ59dwE7Arv7fe3XZWJAKP9ZyNIHnoQTuHsV9hagtWKn
t3LNUgL/7rShw/J8kbCuUE7eUwkqWVITl4BLJyztgX7Eu4UJq9xrAyVX1HIBj0Ud
dJUfvSt5d4INDpt6ifXeWjxgu24t6X+7he/1wOMBeuarJZY3NeNRUZxGlQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFF3m480rj+WlYSODgsMeJa497NxGMB8GA1UdIwQY
MBaAFPtYVm0Vbpl6NLFvycB8IHt+c/tTMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS0xaFdiUlZ1bVhvMHNXX0p3SHdnZTM1ei0xTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIvY2U1YzRhLWY1NzItNGI2Zi1hM2E1
LTgwZTFiZTY2YmIwZS8xL1hlYmp6U3VQNWFWaEk0T0N3eDRscmozczNFWS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNmIvY2U1YzRhLWY1NzItNGI2Zi1hM2E1LTgwZTFiZTY2YmIw
ZS8xLzEtMWhXYlJWdW1YbzBzV19Kd0h3Z2UzNXotMU0uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5iusw
DQYJKoZIhvcNAQELBQADggEBAOrREoYcTVIdkBOQSnTqb//5D3KaTqHPAwvAqLCn
ECUAWpehL/290EnF3KwpfL+MShsQBDmheoEztlGJdqVSto3FoLaRVi56HMV8QYhK
PpO2iTjO9M1i9UwDraFjm72/1ROktLdqklMRXZEyEO8iUWE6SrZhQD4+OC90Alpg
Y5x4nfO0L9JfNg2pTj4OC/nle/M5xxRpfmvIOjH38s2x3/oUsYelJ8lDaq4VdBgy
fvpx8VYthdgul5FkCwyWVUW3cPskCGnsqgirvHGrtXZQqrVmS0NJQSE5DlvmY2Jy
94YS0kgGKHQzy7E1MyeQtxgJpjmuFDz0qKD9f+/oH3Nyv/U=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:10 2023 by rpki-client on console-ams.rpki-client.org