Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/WF9luZ1jB4T1TPM_x4eZRoUJKXo.roa
File: WF9luZ1jB4T1TPM_x4eZRoUJKXo.roa (raw, json)
Hash identifier: Du4zhP7JpAOmuSvgpVQ7zEXVXG8BdCt8/KDRdKXKVyM=
Subject key identifier: 58:5F:65:B9:9D:63:07:84:F5:4C:F3:3F:C7:87:99:46:85:09:29:7A
Certificate issuer: /CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Certificate serial: 0187068D445242A958CECAD78DD8960064ED
Authority key identifier: BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/WF9luZ1jB4T1TPM_x4eZRoUJKXo.roa
Signing time: Tue 21 Mar 2023 23:42:13 +0000
ROA not before: Tue 21 Mar 2023 23:42:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199242
IP address blocks: 212.52.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:06:8d:44:52:42:a9:58:ce:ca:d7:8d:d8:96:00:64:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Validity
Not Before: Mar 21 23:42:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=585f65b99d630784f54cf33fc78799468509297a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3c:ff:6b:c7:44:14:70:89:e5:c5:a7:cf:4c:
75:34:a4:2b:51:4f:82:b4:f3:04:f5:e1:5e:03:6c:
a4:19:81:30:08:57:4b:5d:51:e8:97:0e:83:6b:8c:
66:0d:f9:9c:67:4e:16:46:42:1a:eb:7e:93:ed:72:
dd:a1:ab:c8:71:bc:da:57:f7:c6:1b:87:28:09:59:
51:96:b5:97:93:8f:40:c6:f7:f6:eb:d1:d0:d0:68:
bf:96:93:7e:4a:76:72:c7:ff:6e:84:cf:58:1a:1e:
2b:59:b4:28:49:3c:88:6a:bd:b9:9d:5e:b0:5f:06:
57:c8:d0:41:39:03:18:57:1d:08:36:b6:ca:ac:c3:
9b:28:7a:9b:db:c4:89:68:c9:9c:26:b8:9d:14:57:
0b:18:ac:79:0a:7e:16:0a:85:8a:51:ff:7e:92:5c:
31:48:d9:07:57:3c:c6:6c:aa:12:49:79:d0:1e:d2:
f4:64:ce:4d:1c:b7:ee:d9:3f:c5:40:6f:0f:aa:55:
95:12:d3:66:f2:a2:2a:83:c1:69:9a:14:8f:3e:f7:
85:d0:b5:7d:54:d4:d6:fd:10:09:f0:15:2f:f7:ac:
c0:31:48:90:07:02:f7:6a:4f:64:bd:e6:e2:05:d5:
65:ef:57:02:3d:b8:82:4e:0c:4b:b3:01:e8:14:e0:
5f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5F:65:B9:9D:63:07:84:F5:4C:F3:3F:C7:87:99:46:85:09:29:7A
X509v3 Authority Key Identifier:
keyid:BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/WF9luZ1jB4T1TPM_x4eZRoUJKXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.14.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:23:c1:47:41:43:03:9a:51:73:e0:af:05:17:9c:75:21:f2:
3c:f3:47:b6:44:56:e4:8c:5d:3d:6c:79:d4:c3:36:9c:d3:91:
96:9e:00:07:62:d9:ff:8d:08:43:97:0b:a2:62:b7:ee:44:96:
e9:66:e8:cd:2e:ac:44:12:a7:50:be:14:9b:cf:10:15:40:88:
34:95:94:1d:3b:ae:42:2a:23:67:c3:87:e8:3c:68:a2:e1:d1:
a3:fc:11:ec:ac:16:33:0f:e8:5c:94:dc:03:c8:d0:69:34:c4:
15:f9:7b:23:03:1b:b9:eb:da:c8:d1:cb:36:76:11:3e:90:f2:
e5:f9:aa:0b:e3:eb:27:90:5d:c9:c4:22:91:47:56:c0:62:bb:
9c:ad:65:74:4b:fb:17:74:d7:10:02:d6:21:78:3b:fd:f7:e6:
3f:c2:71:77:e2:e1:4c:a5:8e:fd:83:11:e7:bf:13:27:14:7a:
a6:d4:9f:88:69:bb:38:b4:b8:47:92:e9:cf:30:02:f3:e1:51:
7c:6b:49:6e:99:46:4a:a8:08:15:9e:b9:19:23:49:20:6e:d7:
1a:5a:3c:22:7e:b1:b8:c0:48:ec:f4:2d:7b:dd:10:0d:ab:2d:
a8:09:3e:65:5c:16:d4:34:5b:08:61:7c:de:9c:24:0f:a2:60:
67:00:4e:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcGjURSQqlYzsrXjdiWAGTtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjNTM1ZTM4ZjRjNzVhNWRiMDU4ZmY1NjQ2YzJlZDM0MWYz
ZTg5YTQwHhcNMjMwMzIxMjM0MjEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODVmNjViOTlkNjMwNzg0ZjU0Y2YzM2ZjNzg3OTk0Njg1MDkyOTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTz/a8dEFHCJ5cWnz0x1NKQrUU+C
tPME9eFeA2ykGYEwCFdLXVHolw6Da4xmDfmcZ04WRkIa636T7XLdoavIcbzaV/fG
G4coCVlRlrWXk49Axvf269HQ0Gi/lpN+SnZyx/9uhM9YGh4rWbQoSTyIar25nV6w
XwZXyNBBOQMYVx0INrbKrMObKHqb28SJaMmcJridFFcLGKx5Cn4WCoWKUf9+klwx
SNkHVzzGbKoSSXnQHtL0ZM5NHLfu2T/FQG8PqlWVEtNm8qIqg8FpmhSPPveF0LV9
VNTW/RAJ8BUv96zAMUiQBwL3ak9kvebiBdVl71cCPbiCTgxLswHoFOBfiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFhfZbmdYweE9UzzP8eHmUaFCSl6MB8GA1UdIwQY
MBaAFLxTXjj0x1pdsFj/VkbC7TQfPomkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkZOZU9QVEhXbDJ3V1A5V1JzTHROQjgtaWFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9kY2QzNGItYzJjMC00NWEyLTgyZGYt
Yjk4NmIzNDNiZDRmLzEvV0Y5bHVaMWpCNFQxVFBNX3g0ZVpSb1VKS1hvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC9kY2QzNGItYzJjMC00NWEyLTgyZGYtYjk4NmIzNDNiZDRm
LzEvdkZOZU9QVEhXbDJ3V1A5V1JzTHROQjgtaWFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1DQOMA0G
CSqGSIb3DQEBCwUAA4IBAQBeI8FHQUMDmlFz4K8FF5x1IfI880e2RFbkjF09bHnU
wzac05GWngAHYtn/jQhDlwuiYrfuRJbpZujNLqxEEqdQvhSbzxAVQIg0lZQdO65C
KiNnw4foPGii4dGj/BHsrBYzD+hclNwDyNBpNMQV+XsjAxu569rI0cs2dhE+kPLl
+aoL4+snkF3JxCKRR1bAYrucrWV0S/sXdNcQAtYheDv99+Y/wnF34uFMpY79gxHn
vxMnFHqm1J+Iabs4tLhHkunPMALz4VF8a0lumUZKqAgVnrkZI0kgbtcaWjwifrG4
wEjs9C173RANqy2oCT5lXBbUNFsIYXzenCQPomBnAE4b
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:24 2024 by rpki-client on console-ams.rpki-client.org