Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/d11a1f-d2c0-4e04-94b6-5ad6a220bf4e/1/YTvAifJ7IueI_4joX1EsgkJ7Dr8.roa
File: YTvAifJ7IueI_4joX1EsgkJ7Dr8.roa (raw, json)
Hash identifier: Ph94W4oqskzJtze0tjevuMIQOhIDSjkYYypGhNQBHNY=
Subject key identifier: 61:3B:C0:89:F2:7B:22:E7:88:FF:88:E8:5F:51:2C:82:42:7B:0E:BF
Certificate issuer: /CN=be96a9409d995e702b212c93f6d4c99a9db26e4a
Certificate serial: 0184D1E8BB5928BDFF906AEF1E47E2002B2B
Authority key identifier: BE:96:A9:40:9D:99:5E:70:2B:21:2C:93:F6:D4:C9:9A:9D:B2:6E:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vpapQJ2ZXnArISyT9tTJmp2ybko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/d11a1f-d2c0-4e04-94b6-5ad6a220bf4e/1/YTvAifJ7IueI_4joX1EsgkJ7Dr8.roa
Signing time: Fri 02 Dec 2022 08:16:41 +0000
ROA not before: Fri 02 Dec 2022 08:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8236
IP address blocks: 195.244.80.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d1:e8:bb:59:28:bd:ff:90:6a:ef:1e:47:e2:00:2b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be96a9409d995e702b212c93f6d4c99a9db26e4a
Validity
Not Before: Dec 2 08:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=613bc089f27b22e788ff88e85f512c82427b0ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:74:b6:da:4d:32:55:a4:b9:c8:ce:24:13:ac:
fd:a2:c4:59:69:8d:89:dd:61:48:f4:cd:26:a8:db:
36:4d:b5:9f:2c:3a:72:a1:e6:6f:4a:c8:6f:fd:63:
d9:e3:05:40:c0:8c:9b:12:f2:6b:ab:0e:dd:ea:c3:
11:df:7a:59:46:c6:2c:65:2e:3d:b0:b4:3d:60:e2:
fe:08:10:c3:3b:47:20:01:6d:75:90:64:84:d1:cc:
ec:67:39:31:20:f1:3b:5d:48:5d:b2:a1:df:3f:8b:
52:2f:9d:f9:1c:d9:81:ec:02:98:7d:27:35:f2:c9:
05:da:47:40:a2:90:39:0c:c7:35:91:a4:81:57:0f:
27:3d:4a:dc:db:77:41:c0:a0:82:5b:d9:fa:a5:04:
29:33:68:d3:05:5d:1e:b7:a5:fc:e3:ed:16:69:87:
6c:1f:d5:70:e5:1c:49:2c:01:df:50:a9:14:41:38:
7e:0e:8d:70:6b:7e:bb:0e:04:df:96:5c:a5:af:ac:
bc:7e:ad:09:fe:69:0d:d4:ef:ed:d5:90:c1:8f:3f:
ff:a1:cc:39:54:64:aa:a0:20:f3:b2:d3:5e:4f:07:
d4:a4:e3:12:99:88:24:f2:c4:ec:2d:c7:f2:7c:e9:
16:80:90:6d:cd:ea:8e:ef:7e:bb:2d:44:f4:b8:f5:
35:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:3B:C0:89:F2:7B:22:E7:88:FF:88:E8:5F:51:2C:82:42:7B:0E:BF
X509v3 Authority Key Identifier:
keyid:BE:96:A9:40:9D:99:5E:70:2B:21:2C:93:F6:D4:C9:9A:9D:B2:6E:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vpapQJ2ZXnArISyT9tTJmp2ybko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/d11a1f-d2c0-4e04-94b6-5ad6a220bf4e/1/YTvAifJ7IueI_4joX1EsgkJ7Dr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/d11a1f-d2c0-4e04-94b6-5ad6a220bf4e/1/vpapQJ2ZXnArISyT9tTJmp2ybko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.80.0/21
Signature Algorithm: sha256WithRSAEncryption
87:7b:51:0b:eb:92:35:65:fa:6b:c7:05:56:16:2c:7c:65:3b:
04:e2:5c:09:68:0d:83:d5:3a:8c:a7:ae:e2:a1:04:79:c9:2f:
31:b8:30:c4:08:42:78:7a:1f:e9:e1:93:bb:8e:23:c5:b4:08:
6f:95:f2:2b:91:b4:ef:b6:30:6d:22:74:92:cd:20:40:7a:57:
ed:9d:e6:f3:9d:79:ad:d5:52:3c:81:87:7c:41:64:66:6b:1d:
46:90:95:8d:8c:31:f1:6b:7f:f5:4e:ca:42:d9:ed:49:44:ab:
69:b3:e8:30:85:91:a3:b2:8b:69:a9:8d:c3:e4:96:c0:d9:3d:
e3:02:ff:bc:ae:be:88:e6:79:b1:51:1d:43:72:08:ce:a2:cb:
67:01:ba:04:00:64:e9:6a:ba:81:f0:c4:dc:e2:d1:74:36:dc:
65:da:b0:91:ed:52:04:81:33:61:e1:66:2c:a2:a4:68:78:95:
78:12:62:e1:0a:c3:5b:8f:cd:6a:c2:96:a4:3e:80:1b:2b:52:
7b:89:4c:d7:0e:96:99:16:a6:6b:39:e2:50:cb:56:4e:cf:d6:
57:e9:23:3c:7f:3d:22:a6:df:07:72:5e:4a:3d:8c:c8:d2:d3:
b8:04:d5:4a:07:2f:eb:0b:2d:22:e8:c6:77:fd:86:b5:75:83:
bc:d0:09:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTR6LtZKL3/kGrvHkfiACsrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlOTZhOTQwOWQ5OTVlNzAyYjIxMmM5M2Y2ZDRjOTlhOWRi
MjZlNGEwHhcNMjIxMjAyMDgxNjQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTNiYzA4OWYyN2IyMmU3ODhmZjg4ZTg1ZjUxMmM4MjQyN2IwZWJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nS22k0yVaS5yM4kE6z9osRZaY2J
3WFI9M0mqNs2TbWfLDpyoeZvSshv/WPZ4wVAwIybEvJrqw7d6sMR33pZRsYsZS49
sLQ9YOL+CBDDO0cgAW11kGSE0czsZzkxIPE7XUhdsqHfP4tSL535HNmB7AKYfSc1
8skF2kdAopA5DMc1kaSBVw8nPUrc23dBwKCCW9n6pQQpM2jTBV0et6X84+0WaYds
H9Vw5RxJLAHfUKkUQTh+Do1wa367DgTfllylr6y8fq0J/mkN1O/t1ZDBjz//ocw5
VGSqoCDzstNeTwfUpOMSmYgk8sTsLcfyfOkWgJBtzeqO7367LUT0uPU1QQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGE7wInyeyLniP+I6F9RLIJCew6/MB8GA1UdIwQY
MBaAFL6WqUCdmV5wKyEsk/bUyZqdsm5KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnBhcFFKMlpYbkFySVN5VDl0VEptcDJ5YmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9kMTFhMWYtZDJjMC00ZTA0LTk0YjYt
NWFkNmEyMjBiZjRlLzEvWVR2QWlmSjdJdWVJXzRqb1gxRXNna0o3RHI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC9kMTFhMWYtZDJjMC00ZTA0LTk0YjYtNWFkNmEyMjBiZjRl
LzEvdnBhcFFKMlpYbkFySVN5VDl0VEptcDJ5YmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDw/RQMA0G
CSqGSIb3DQEBCwUAA4IBAQCHe1EL65I1ZfprxwVWFix8ZTsE4lwJaA2D1TqMp67i
oQR5yS8xuDDECEJ4eh/p4ZO7jiPFtAhvlfIrkbTvtjBtInSSzSBAelftnebznXmt
1VI8gYd8QWRmax1GkJWNjDHxa3/1TspC2e1JRKtps+gwhZGjsotpqY3D5JbA2T3j
Av+8rr6I5nmxUR1DcgjOostnAboEAGTparqB8MTc4tF0Ntxl2rCR7VIEgTNh4WYs
oqRoeJV4EmLhCsNbj81qwpakPoAbK1J7iUzXDpaZFqZrOeJQy1ZOz9ZX6SM8fz0i
pt8Hcl5KPYzI0tO4BNVKBy/rCy0i6MZ3/Ya1dYO80Am3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:40 2024 by rpki-client on console-fra.rpki-client.org