Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/huIuWzc-HnbKSX4rQTIbIZbDApc.roa
File: huIuWzc-HnbKSX4rQTIbIZbDApc.roa (raw, json)
Hash identifier: TkTTZjtfFlPNCb/+x/V5tC0q6hhpGo/Xo9TcmVQPTRI=
Subject key identifier: 86:E2:2E:5B:37:3E:1E:76:CA:49:7E:2B:41:32:1B:21:96:C3:02:97
Certificate issuer: /CN=a663abd479cbff76082304bf60d03adc3187d936
Certificate serial: 018CC26D15C998B2DC152BD3E29727C57BF2
Authority key identifier: A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/huIuWzc-HnbKSX4rQTIbIZbDApc.roa
Signing time: Mon 01 Jan 2024 00:29:37 +0000
ROA not before: Mon 01 Jan 2024 00:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13213
IP address blocks: 185.198.91.0/24 maxlen: 24
185.198.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:15:c9:98:b2:dc:15:2b:d3:e2:97:27:c5:7b:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a663abd479cbff76082304bf60d03adc3187d936
Validity
Not Before: Jan 1 00:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86e22e5b373e1e76ca497e2b41321b2196c30297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b4:c3:f3:f6:28:f4:10:75:25:ed:94:b8:0c:
be:96:13:96:40:a8:be:76:9e:a0:d3:1c:e3:73:04:
ed:b2:23:24:df:b0:f6:37:84:5b:16:10:e5:18:0c:
80:f4:f5:b6:a0:52:e8:02:2d:c1:b8:6d:21:52:db:
6d:17:09:1c:a8:4c:6c:1d:57:87:c6:dd:2c:37:7c:
4b:00:77:3e:ea:00:4a:40:42:43:f6:b0:f8:19:00:
a9:2d:b6:4a:b0:45:27:98:3e:e1:c2:f8:e5:11:7f:
46:ca:de:8a:20:9d:d0:6a:4b:1c:8a:bd:c8:3a:db:
59:b0:b4:33:f3:9d:18:ec:54:55:d6:28:73:4c:67:
32:7b:74:a5:1e:d0:63:4a:28:36:9e:71:bd:9d:23:
56:1c:a5:e6:48:9e:a7:87:2e:40:6b:e5:1c:a4:e1:
5a:b3:ba:3b:11:84:a4:ed:42:a7:4a:0d:3d:2f:8d:
07:25:b5:b7:28:38:38:6b:87:d0:c0:f9:a5:02:b8:
35:51:f4:98:ef:10:43:7a:f9:04:97:a4:6c:a4:9a:
0a:30:e9:3e:5c:40:d8:c9:29:1b:ce:29:d4:9a:f2:
e3:0a:54:f5:aa:7b:8d:5c:53:ed:6d:1a:c1:28:f3:
00:df:65:c4:17:6c:76:5a:9e:44:f6:9f:48:d1:20:
44:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E2:2E:5B:37:3E:1E:76:CA:49:7E:2B:41:32:1B:21:96:C3:02:97
X509v3 Authority Key Identifier:
keyid:A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/huIuWzc-HnbKSX4rQTIbIZbDApc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/pmOr1HnL_3YIIwS_YNA63DGH2TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.89.0/24
185.198.91.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:1a:20:d3:3c:ba:ab:70:1c:f8:ac:c1:65:ea:89:b5:92:89:
8e:a2:6b:9f:3b:cd:7d:90:fb:16:5e:2e:48:76:fb:4a:f1:6d:
8d:da:9b:fb:ec:61:72:8a:03:bd:d3:87:53:3f:f2:f6:1c:8c:
6e:fc:20:49:ac:b2:73:9e:73:84:c9:e2:0a:a8:08:32:7d:98:
e5:f6:c6:fb:cb:1e:80:c8:20:6e:56:a5:87:47:8f:d4:08:0c:
06:a3:a4:1f:74:d1:a9:f3:43:76:fe:5e:44:b5:14:d9:22:ec:
5b:20:84:eb:05:df:0e:09:55:03:30:13:1f:22:3c:18:e2:3a:
19:6d:34:c5:e9:d4:ba:3e:8d:0e:c6:14:10:60:33:da:4f:4d:
8d:a7:3e:b5:1d:e5:c8:44:ac:47:d1:87:3c:2e:e4:61:51:46:
ba:a8:5a:49:eb:e3:cc:df:a3:ed:58:41:93:bd:7f:bd:aa:e1:
91:2f:5c:c6:d8:94:5f:2e:07:4a:ef:9a:df:87:e1:64:9c:33:
d9:93:3f:4e:39:ad:ee:f0:a1:0f:3c:a4:fd:1e:ed:59:bb:e8:
73:30:1b:bb:65:f8:06:53:e7:e7:c9:99:7e:d4:50:ce:6a:eb:
8f:7e:a9:07:0c:d6:47:8b:e6:0d:c2:0d:78:33:82:78:cd:c3:
95:a5:e8:25
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzCbRXJmLLcFSvT4pcnxXvyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NjNhYmQ0NzljYmZmNzYwODIzMDRiZjYwZDAzYWRjMzE4
N2Q5MzYwHhcNMjQwMTAxMDAyOTM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmUyMmU1YjM3M2UxZTc2Y2E0OTdlMmI0MTMyMWIyMTk2YzMwMjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrTD8/Yo9BB1Je2UuAy+lhOWQKi+
dp6g0xzjcwTtsiMk37D2N4RbFhDlGAyA9PW2oFLoAi3BuG0hUtttFwkcqExsHVeH
xt0sN3xLAHc+6gBKQEJD9rD4GQCpLbZKsEUnmD7hwvjlEX9Gyt6KIJ3Qakscir3I
OttZsLQz850Y7FRV1ihzTGcye3SlHtBjSig2nnG9nSNWHKXmSJ6nhy5Aa+UcpOFa
s7o7EYSk7UKnSg09L40HJbW3KDg4a4fQwPmlArg1UfSY7xBDevkEl6RspJoKMOk+
XEDYySkbzinUmvLjClT1qnuNXFPtbRrBKPMA32XEF2x2Wp5E9p9I0SBEYQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIbiLls3Ph52ykl+K0EyGyGWwwKXMB8GA1UdIwQY
MBaAFKZjq9R5y/92CCMEv2DQOtwxh9k2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG1PcjFIbkxfM1lJSXdTX1lOQTYzREdIMlRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9mNDI3MjQtZDAwOS00ODdkLWE3OWMt
YmZhMDRmNmNkZTUwLzEvaHVJdVd6Yy1IbmJLU1g0clFUSWJJWmJEQXBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9mNDI3MjQtZDAwOS00ODdkLWE3OWMtYmZhMDRmNmNkZTUw
LzEvcG1PcjFIbkxfM1lJSXdTX1lOQTYzREdIMlRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAucZZAwQA
ucZbMA0GCSqGSIb3DQEBCwUAA4IBAQCmGiDTPLqrcBz4rMFl6om1komOomufO819
kPsWXi5IdvtK8W2N2pv77GFyigO904dTP/L2HIxu/CBJrLJznnOEyeIKqAgyfZjl
9sb7yx6AyCBuVqWHR4/UCAwGo6QfdNGp80N2/l5EtRTZIuxbIITrBd8OCVUDMBMf
IjwY4joZbTTF6dS6Po0OxhQQYDPaT02Npz61HeXIRKxH0Yc8LuRhUUa6qFpJ6+PM
36PtWEGTvX+9quGRL1zG2JRfLgdK75rfh+FknDPZkz9OOa3u8KEPPKT9Hu1Zu+hz
MBu7ZfgGU+fnyZl+1FDOauuPfqkHDNZHi+YNwg14M4J4zcOVpegl
-----END CERTIFICATE-----
Generated at Mon Feb 12 15:17:07 2024 by rpki-client on console-ams.rpki-client.org