Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/mYJ1kNn2hlfVoPevJOPQQaFp0tQ.roa
File: mYJ1kNn2hlfVoPevJOPQQaFp0tQ.roa (raw, json)
Hash identifier: R/DGWVQ8300PvOHeB0dm1Nt7cmV3+4UfRaX3hHaP0Iw=
Subject key identifier: 99:82:75:90:D9:F6:86:57:D5:A0:F7:AF:24:E3:D0:41:A1:69:D2:D4
Certificate issuer: /CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Certificate serial: 7F87C0
Authority key identifier: BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/mYJ1kNn2hlfVoPevJOPQQaFp0tQ.roa
Signing time: Sat 01 Jan 2022 03:54:24 +0000
ROA not before: Sat 01 Jan 2022 03:54:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 212.52.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8357824 (0x7f87c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Validity
Not Before: Jan 1 03:54:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99827590d9f68657d5a0f7af24e3d041a169d2d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:13:92:3f:31:1c:20:ac:e7:0a:47:9f:39:db:
84:f4:f0:23:a1:b0:20:07:d0:0c:a8:04:e5:3e:12:
69:c2:ad:47:c9:85:93:e0:f3:e3:9c:08:d8:09:55:
28:d1:a3:79:e6:92:5e:27:21:5c:40:ea:4a:57:ad:
c4:3d:fd:99:02:e9:e9:8e:af:fc:1a:2b:c3:c2:e6:
85:6d:98:24:5d:46:1d:14:cb:33:6f:fc:53:17:6f:
d5:57:a5:16:3b:01:47:a8:eb:de:08:c2:5b:73:fe:
23:d3:31:aa:c8:ef:75:71:7d:60:01:c5:c4:26:14:
37:cc:9f:25:9d:ff:35:d5:50:ee:e4:a0:ea:b9:aa:
14:90:40:94:87:92:80:be:3d:a5:4f:25:e1:0b:ec:
fb:08:20:00:01:28:c2:3a:65:bf:cb:5c:3c:a4:57:
b2:36:6b:5f:6b:c9:22:1c:ac:cb:8b:5a:52:23:3c:
8a:9d:65:26:62:e4:8b:06:4b:e2:13:f1:38:cc:db:
e9:c6:95:2b:3c:8b:9f:e4:c0:26:fb:99:8d:38:a3:
84:48:eb:96:3d:b3:58:3e:e9:60:b1:e2:39:02:81:
14:4e:02:4f:29:3d:18:fa:4b:fd:d1:64:79:ff:b9:
c8:25:16:92:95:26:af:de:89:40:06:e0:95:57:57:
3e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:82:75:90:D9:F6:86:57:D5:A0:F7:AF:24:E3:D0:41:A1:69:D2:D4
X509v3 Authority Key Identifier:
keyid:BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/mYJ1kNn2hlfVoPevJOPQQaFp0tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.14.0/24
Signature Algorithm: sha256WithRSAEncryption
14:63:99:dc:fe:51:46:26:87:ec:ab:82:19:fe:b2:ae:ac:5a:
56:61:18:45:85:47:20:a7:97:2b:23:ec:6c:a3:72:64:d3:7f:
19:c0:50:33:32:32:b5:28:42:00:01:a4:ad:3c:d0:7d:35:14:
ba:78:4c:4f:3b:88:64:29:34:de:fd:98:ba:ee:7f:a0:91:3f:
60:28:74:46:df:81:44:27:42:64:41:5d:d5:c1:98:33:65:5f:
2d:0d:07:8b:43:48:1c:37:29:d3:38:04:bc:33:43:da:9e:2d:
bf:a5:df:4d:28:9f:17:4f:97:87:12:d3:fc:e9:75:d0:99:d9:
a8:e1:4d:5f:aa:00:0e:42:f6:8d:e1:c6:18:cb:a2:15:b2:e0:
ea:73:e1:d0:64:02:50:0c:57:c7:6e:a9:d8:1b:df:ec:cd:42:
67:6e:2f:d4:ad:45:09:27:09:80:00:57:17:e3:e4:dd:7a:f5:
6f:71:1c:e1:f0:50:36:88:ca:03:cd:14:43:98:d0:4d:0f:99:
fe:8c:88:af:ae:8d:e3:88:17:10:68:29:d2:13:0e:22:9d:77:
3c:f2:75:2a:ca:c1:0c:ec:a4:39:46:2b:1a:eb:0e:cb:87:50:
84:1e:9f:9a:c3:5c:f3:ca:58:69:6b:24:e1:50:9b:7a:4a:82:
9b:fd:6b:c6
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDf4fAMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJj
NTM1ZTM4ZjRjNzVhNWRiMDU4ZmY1NjQ2YzJlZDM0MWYzZTg5YTQwHhcNMjIwMTAx
MDM1NDI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5OTgyNzU5MGQ5ZjY4
NjU3ZDVhMGY3YWYyNGUzZDA0MWExNjlkMmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA0ROSPzEcIKznCkefOduE9PAjobAgB9AMqATlPhJpwq1HyYWT
4PPjnAjYCVUo0aN55pJeJyFcQOpKV63EPf2ZAunpjq/8GivDwuaFbZgkXUYdFMsz
b/xTF2/VV6UWOwFHqOveCMJbc/4j0zGqyO91cX1gAcXEJhQ3zJ8lnf811VDu5KDq
uaoUkECUh5KAvj2lTyXhC+z7CCAAASjCOmW/y1w8pFeyNmtfa8kiHKzLi1pSIzyK
nWUmYuSLBkviE/E4zNvpxpUrPIuf5MAm+5mNOKOESOuWPbNYPulgseI5AoEUTgJP
KT0Y+kv90WR5/7nIJRaSlSav3olABuCVV1c+HQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJmCdZDZ9oZX1aD3ryTj0EGhadLUMB8GA1UdIwQYMBaAFLxTXjj0x1pdsFj/
VkbC7TQfPomkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dkZOZU9QVEhXbDJ3V1A5V1JzTHROQjgtaWFRLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83MC9kY2QzNGItYzJjMC00NWEyLTgyZGYtYjk4NmIzNDNiZDRmLzEv
bVlKMWtObjJobGZWb1BldkpPUFFRYUZwMHRRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9k
Y2QzNGItYzJjMC00NWEyLTgyZGYtYjk4NmIzNDNiZDRmLzEvdkZOZU9QVEhXbDJ3
V1A5V1JzTHROQjgtaWFRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1DQOMA0GCSqGSIb3DQEBCwUAA4IB
AQAUY5nc/lFGJofsq4IZ/rKurFpWYRhFhUcgp5crI+xso3Jk038ZwFAzMjK1KEIA
AaStPNB9NRS6eExPO4hkKTTe/Zi67n+gkT9gKHRG34FEJ0JkQV3VwZgzZV8tDQeL
Q0gcNynTOAS8M0Pani2/pd9NKJ8XT5eHEtP86XXQmdmo4U1fqgAOQvaN4cYYy6IV
suDqc+HQZAJQDFfHbqnYG9/szUJnbi/UrUUJJwmAAFcX4+TdevVvcRzh8FA2iMoD
zRRDmNBND5n+jIivro3jiBcQaCnSEw4inXc88nUqysEM7KQ5Risa6w7Lh1CEHp+a
w1zzylhpayThUJt6SoKb/WvG
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:24 2024 by rpki-client on console-ams.rpki-client.org