Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/ce5c4a-f572-4b6f-a3a5-80e1be66bb0e/1/zprKhj-q0VLUVqCn4K8tC1-bmY8.roa
File: zprKhj-q0VLUVqCn4K8tC1-bmY8.roa (raw, json)
Hash identifier: TBpYL13zNtEBrNW5AMgu0ltwWASBVnv+B76q2sFuzdU=
Subject key identifier: CE:9A:CA:86:3F:AA:D1:52:D4:56:A0:A7:E0:AF:2D:0B:5F:9B:99:8F
Certificate issuer: /CN=fb58566d156e997a34b16fc9c07c207b7e73fb53
Certificate serial: 038F1F89
Authority key identifier: FB:58:56:6D:15:6E:99:7A:34:B1:6F:C9:C0:7C:20:7B:7E:73:FB:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-1hWbRVumXo0sW_JwHwge35z-1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/ce5c4a-f572-4b6f-a3a5-80e1be66bb0e/1/zprKhj-q0VLUVqCn4K8tC1-bmY8.roa
Signing time: Sat 01 Jan 2022 11:04:43 +0000
ROA not before: Sat 01 Jan 2022 11:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.138.232.0/23 maxlen: 24
185.138.234.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59711369 (0x38f1f89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb58566d156e997a34b16fc9c07c207b7e73fb53
Validity
Not Before: Jan 1 11:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce9aca863faad152d456a0a7e0af2d0b5f9b998f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e1:75:7d:28:af:1e:be:28:38:66:d0:d4:b3:
9f:04:c7:23:84:09:43:8e:29:64:9a:de:39:ed:f0:
81:e5:3c:c5:8e:13:63:18:9e:eb:2e:52:d6:89:8f:
c7:4c:5d:d5:26:23:48:7a:e5:b4:e5:12:49:16:09:
56:0a:7f:ed:8e:47:06:3f:36:21:a9:2c:43:9f:3d:
8d:28:ae:4a:e5:f9:a7:7b:9a:21:c1:65:ac:24:b4:
12:a2:59:db:74:62:2e:ba:ea:84:a7:88:9f:4f:01:
82:87:54:fa:e7:be:63:a2:8d:17:eb:f9:8b:b0:5e:
07:c9:76:53:d1:3b:1c:e9:fc:81:4d:72:23:4a:b5:
fb:54:92:5e:72:34:14:ef:05:f1:20:21:eb:a9:bb:
2b:73:69:38:01:9b:bf:7d:b8:c7:92:08:f6:b8:8b:
05:7d:d1:b5:97:62:ec:ec:aa:d3:52:29:26:fe:84:
a1:4e:80:7d:21:fb:02:74:ef:af:6b:70:ef:e9:83:
a8:d1:be:98:69:fc:4b:92:de:ee:98:24:b1:fe:ac:
6c:b4:0a:20:de:7e:55:78:5c:8a:0a:23:0c:24:88:
aa:f8:1a:a2:03:b0:3d:1c:35:89:d6:32:f2:60:61:
21:9b:54:a0:53:de:65:b9:2a:10:4a:11:71:65:23:
fd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9A:CA:86:3F:AA:D1:52:D4:56:A0:A7:E0:AF:2D:0B:5F:9B:99:8F
X509v3 Authority Key Identifier:
keyid:FB:58:56:6D:15:6E:99:7A:34:B1:6F:C9:C0:7C:20:7B:7E:73:FB:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-1hWbRVumXo0sW_JwHwge35z-1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ce5c4a-f572-4b6f-a3a5-80e1be66bb0e/1/zprKhj-q0VLUVqCn4K8tC1-bmY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ce5c4a-f572-4b6f-a3a5-80e1be66bb0e/1/1-1hWbRVumXo0sW_JwHwge35z-1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.232.0/22
Signature Algorithm: sha256WithRSAEncryption
61:ed:84:91:11:53:5c:de:9c:c1:76:fd:18:0f:f0:aa:96:43:
f8:7c:5d:18:ed:81:6b:56:b2:c7:46:45:d0:2c:86:41:dc:0c:
79:28:05:b3:c6:07:7b:1e:78:35:f7:e0:01:62:41:ae:1f:41:
01:92:02:24:ef:17:07:5a:b7:71:fb:5b:94:b7:67:e8:7f:05:
1d:57:99:c8:4b:f4:7b:87:d5:b0:31:a9:8c:55:bc:82:f1:6a:
c1:76:38:db:70:cb:5f:f8:b1:1c:ff:cf:7b:bd:34:c9:13:55:
6b:d0:ef:7a:e1:0f:ce:5f:4b:b6:bb:bd:1c:3c:3e:19:dd:44:
c0:27:4c:2b:90:18:b6:7f:75:67:8b:6e:a4:f1:f4:aa:57:54:
08:d7:96:10:d2:a6:c7:d9:cf:4d:24:91:8f:95:ec:68:e7:09:
a5:21:10:60:ee:4f:64:b0:d9:5d:f5:e1:21:58:e0:7f:e5:10:
ff:a5:8a:56:5b:82:c0:27:46:b5:0f:62:5c:57:bc:04:5d:62:
37:7c:04:76:7d:24:be:b5:fe:df:92:0a:7c:16:f5:6f:8f:eb:
3d:47:03:10:03:f3:3b:95:32:48:7f:7f:bf:be:7c:4e:43:ea:
9f:61:cb:7f:38:65:bb:1d:56:07:81:93:a6:9e:54:f2:dc:28:
36:6a:51:fa
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEA48fiTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YjU4NTY2ZDE1NmU5OTdhMzRiMTZmYzljMDdjMjA3YjdlNzNmYjUzMB4XDTIyMDEw
MTExMDQ0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2U5YWNhODYzZmFh
ZDE1MmQ0NTZhMGE3ZTBhZjJkMGI1ZjliOTk4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOPhdX0orx6+KDhm0NSznwTHI4QJQ44pZJreOe3wgeU8xY4T
Yxie6y5S1omPx0xd1SYjSHrltOUSSRYJVgp/7Y5HBj82IaksQ589jSiuSuX5p3ua
IcFlrCS0EqJZ23RiLrrqhKeIn08BgodU+ue+Y6KNF+v5i7BeB8l2U9E7HOn8gU1y
I0q1+1SSXnI0FO8F8SAh66m7K3NpOAGbv324x5II9riLBX3RtZdi7Oyq01IpJv6E
oU6AfSH7AnTvr2tw7+mDqNG+mGn8S5Le7pgksf6sbLQKIN5+VXhcigojDCSIqvga
ogOwPRw1idYy8mBhIZtUoFPeZbkqEEoRcWUj/QsCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBTOmsqGP6rRUtRWoKfgry0LX5uZjzAfBgNVHSMEGDAWgBT7WFZtFW6ZejSx
b8nAfCB7fnP7UzAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtMWhXYlJWdW1YbzBzV19Kd0h3Z2UzNXotMU0uY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzZiL2NlNWM0YS1mNTcyLTRiNmYtYTNhNS04MGUxYmU2NmJiMGUv
MS96cHJLaGotcTBWTFVWcUNuNEs4dEMxLWJtWTgucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZi
L2NlNWM0YS1mNTcyLTRiNmYtYTNhNS04MGUxYmU2NmJiMGUvMS8xLTFoV2JSVnVt
WG8wc1dfSndId2dlMzV6LTFNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYroMA0GCSqGSIb3DQEBCwUA
A4IBAQBh7YSREVNc3pzBdv0YD/CqlkP4fF0Y7YFrVrLHRkXQLIZB3Ax5KAWzxgd7
Hng19+ABYkGuH0EBkgIk7xcHWrdx+1uUt2fofwUdV5nIS/R7h9WwMamMVbyC8WrB
djjbcMtf+LEc/897vTTJE1Vr0O964Q/OX0u2u70cPD4Z3UTAJ0wrkBi2f3Vni26k
8fSqV1QI15YQ0qbH2c9NJJGPlexo5wmlIRBg7k9ksNld9eEhWOB/5RD/pYpWW4LA
J0a1D2JcV7wEXWI3fAR2fSS+tf7fkgp8FvVvj+s9RwMQA/M7lTJIf3+/vnxOQ+qf
Yct/OGW7HVYHgZOmnlTy3Cg2alH6
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:30 2023 by rpki-client on console-fra.rpki-client.org