Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/MrF8HbOx8amHRo6sxcIZWWjG5_Y.roa
File: MrF8HbOx8amHRo6sxcIZWWjG5_Y.roa (raw, json)
Hash identifier: CUfLpuoy3st6B/fxMwLgnzxC3QL91E3b7FIGIYgZi4Q=
Subject key identifier: 32:B1:7C:1D:B3:B1:F1:A9:87:46:8E:AC:C5:C2:19:59:68:C6:E7:F6
Certificate issuer: /CN=64347465bc925c8e756ddfaa609eda02cc52d031
Certificate serial: 018C4B709CE3E296AA86E9F06F204A42F819
Authority key identifier: 64:34:74:65:BC:92:5C:8E:75:6D:DF:AA:60:9E:DA:02:CC:52:D0:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/MrF8HbOx8amHRo6sxcIZWWjG5_Y.roa
Signing time: Fri 08 Dec 2023 21:58:40 +0000
ROA not before: Fri 08 Dec 2023 21:58:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216398
IP address blocks: 185.97.64.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4b:70:9c:e3:e2:96:aa:86:e9:f0:6f:20:4a:42:f8:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64347465bc925c8e756ddfaa609eda02cc52d031
Validity
Not Before: Dec 8 21:58:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32b17c1db3b1f1a987468eacc5c2195968c6e7f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b6:78:15:67:b4:3b:06:21:c0:cc:d0:08:5c:
ac:f1:67:04:9c:df:3d:c9:a4:59:8a:eb:e4:27:82:
78:2f:a0:09:74:31:f1:d9:21:cd:ed:46:e9:33:4e:
35:d6:ee:08:25:f0:59:4e:58:a8:b7:ec:1e:d9:5c:
c0:9f:31:32:18:34:3e:92:08:2c:6e:12:00:5f:b0:
40:54:0e:99:4c:77:e5:46:e4:1b:5f:ba:3a:50:2c:
4b:1c:95:3b:0d:c9:fe:f9:f2:29:56:08:f1:46:39:
bf:13:16:bc:aa:1d:09:dd:de:48:1b:dc:53:67:fe:
90:ac:e3:cf:3b:ee:99:d5:43:9f:f0:9e:2e:30:f7:
41:0c:68:a1:02:97:66:59:bf:5f:ad:05:a5:61:8f:
4a:ba:be:66:c7:79:6c:8a:01:c1:ca:4f:90:65:c9:
42:93:e2:5c:8d:2a:2f:9e:bc:81:74:70:3d:86:ca:
3d:c5:a3:81:88:2e:56:f8:a1:b3:68:8e:fd:bb:cc:
4b:65:7d:f8:74:5a:2e:be:7c:a3:8d:c4:a4:83:04:
8a:cf:3b:b5:a8:16:84:6c:63:87:af:84:8f:57:23:
67:fa:0b:03:15:20:aa:84:94:f4:69:9f:b8:fe:a7:
51:58:b9:49:35:f8:20:7b:36:00:74:66:d6:a4:c1:
d7:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B1:7C:1D:B3:B1:F1:A9:87:46:8E:AC:C5:C2:19:59:68:C6:E7:F6
X509v3 Authority Key Identifier:
keyid:64:34:74:65:BC:92:5C:8E:75:6D:DF:AA:60:9E:DA:02:CC:52:D0:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/MrF8HbOx8amHRo6sxcIZWWjG5_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.64.0/22
Signature Algorithm: sha256WithRSAEncryption
c4:c9:ce:b9:7e:83:36:49:e0:b8:a0:35:4c:d7:da:17:0d:7e:
d1:11:96:66:7a:d2:3e:3e:38:d7:28:71:15:bb:b2:5e:92:91:
d2:5d:69:a2:52:e8:82:57:c3:8b:02:9a:75:13:1d:a3:f6:38:
2f:7b:ea:b1:15:bb:e2:33:ed:02:0b:69:3b:83:f4:a1:cb:aa:
b5:f7:77:62:7d:2c:e1:5a:ce:78:11:32:ab:41:6c:76:5c:ea:
f4:7c:b2:f6:7d:9c:91:0f:23:84:1a:e6:28:44:3d:7b:6d:43:
c5:94:bb:07:8a:81:0d:83:be:91:a4:be:88:3d:11:b2:1a:b7:
fd:ce:79:c1:16:fe:dc:b1:9e:98:e0:3b:00:92:d3:ac:fd:f2:
e0:71:13:8b:ec:78:b3:4c:12:49:53:f8:fd:31:1b:3d:77:11:
d5:95:f4:cb:47:15:ac:3b:3a:89:d9:53:0e:7a:25:1a:b8:ed:
2d:db:e4:04:ed:59:43:c9:d7:68:23:19:47:6c:d9:4c:0a:85:
49:7f:ba:7b:19:11:6b:05:84:02:fb:1d:19:50:e4:4d:2a:22:
ea:a9:af:07:89:52:b9:13:e7:9f:74:34:af:d0:2b:59:f6:1f:
b0:db:12:61:eb:c4:dc:52:87:01:70:93:95:87:1f:de:0c:b1:
e4:79:64:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxLcJzj4paqhunwbyBKQvgZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0MzQ3NDY1YmM5MjVjOGU3NTZkZGZhYTYwOWVkYTAyY2M1
MmQwMzEwHhcNMjMxMjA4MjE1ODQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmIxN2MxZGIzYjFmMWE5ODc0NjhlYWNjNWMyMTk1OTY4YzZlN2Y2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjbZ4FWe0OwYhwMzQCFys8WcEnN89
yaRZiuvkJ4J4L6AJdDHx2SHN7UbpM0411u4IJfBZTliot+we2VzAnzEyGDQ+kggs
bhIAX7BAVA6ZTHflRuQbX7o6UCxLHJU7Dcn++fIpVgjxRjm/Exa8qh0J3d5IG9xT
Z/6QrOPPO+6Z1UOf8J4uMPdBDGihApdmWb9frQWlYY9Kur5mx3lsigHByk+QZclC
k+JcjSovnryBdHA9hso9xaOBiC5W+KGzaI79u8xLZX34dFouvnyjjcSkgwSKzzu1
qBaEbGOHr4SPVyNn+gsDFSCqhJT0aZ+4/qdRWLlJNfggezYAdGbWpMHXgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDKxfB2zsfGph0aOrMXCGVloxuf2MB8GA1UdIwQY
MBaAFGQ0dGW8klyOdW3fqmCe2gLMUtAxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkRSMFpieVNYSTUxYmQtcVlKN2FBc3hTMERFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9iMWZmN2ItYjc2Ni00N2M3LWJlMGQt
YzBhN2I3Mzc3ZWFiLzEvTXJGOEhiT3g4YW1IUm82c3hjSVpXV2pHNV9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi9iMWZmN2ItYjc2Ni00N2M3LWJlMGQtYzBhN2I3Mzc3ZWFi
LzEvWkRSMFpieVNYSTUxYmQtcVlKN2FBc3hTMERFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWFAMA0G
CSqGSIb3DQEBCwUAA4IBAQDEyc65foM2SeC4oDVM19oXDX7REZZmetI+PjjXKHEV
u7JekpHSXWmiUuiCV8OLApp1Ex2j9jgve+qxFbviM+0CC2k7g/Shy6q193difSzh
Ws54ETKrQWx2XOr0fLL2fZyRDyOEGuYoRD17bUPFlLsHioENg76RpL6IPRGyGrf9
znnBFv7csZ6Y4DsAktOs/fLgcROL7HizTBJJU/j9MRs9dxHVlfTLRxWsOzqJ2VMO
eiUauO0t2+QE7VlDyddoIxlHbNlMCoVJf7p7GRFrBYQC+x0ZUORNKiLqqa8HiVK5
E+efdDSv0CtZ9h+w2xJh68TcUocBcJOVhx/eDLHkeWQ/
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:02 2024 by rpki-client on console-ams.rpki-client.org