Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/76602c-c1ac-46a3-81bc-deeff3b2ae8a/1/nQylAYhsjd6Bxbyn4NbkEfcTJlM.roa
File: nQylAYhsjd6Bxbyn4NbkEfcTJlM.roa (raw, json)
Hash identifier: yB/U8ue9JmAI4PPIy5rbQHXXiKl9UonrNcDNGhYANYQ=
Subject key identifier: 9D:0C:A5:01:88:6C:8D:DE:81:C5:BC:A7:E0:D6:E4:11:F7:13:26:53
Certificate issuer: /CN=d860f6f2c318559e65959cd5f28d159a0842d72a
Certificate serial: 01870BB6DF0C4E6F03686635CE29FB59E178
Authority key identifier: D8:60:F6:F2:C3:18:55:9E:65:95:9C:D5:F2:8D:15:9A:08:42:D7:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GD28sMYVZ5llZzV8o0VmghC1yo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/76602c-c1ac-46a3-81bc-deeff3b2ae8a/1/nQylAYhsjd6Bxbyn4NbkEfcTJlM.roa
Signing time: Wed 22 Mar 2023 23:45:46 +0000
ROA not before: Wed 22 Mar 2023 23:45:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199242
IP address blocks: 185.234.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0b:b6:df:0c:4e:6f:03:68:66:35:ce:29:fb:59:e1:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d860f6f2c318559e65959cd5f28d159a0842d72a
Validity
Not Before: Mar 22 23:45:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d0ca501886c8dde81c5bca7e0d6e411f7132653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f1:30:fe:75:06:d1:77:09:ca:61:1c:75:98:
8d:a6:57:07:34:b0:0d:c4:0e:fb:3b:20:2d:77:1b:
e3:70:ae:24:8b:e1:2a:82:7d:bd:08:fb:6a:aa:c1:
ad:d8:81:c0:cc:90:41:95:c6:ff:61:fd:7f:48:47:
ed:34:57:3d:14:b4:f3:de:67:78:8e:97:1e:24:d2:
9e:84:b7:66:31:fb:b3:90:8d:26:d6:b3:65:0a:e4:
04:bc:38:fe:45:84:b5:10:0d:5e:9a:cf:98:1b:f0:
35:88:33:9f:7f:48:02:5d:d2:49:ea:60:c8:76:6e:
6c:61:30:a8:18:6a:4f:73:0d:b4:2e:e9:5f:52:a1:
25:29:b5:4f:f2:33:73:6d:ac:23:03:1b:7e:14:7a:
9b:40:3f:78:b6:ed:1e:59:e1:ce:fa:43:63:62:64:
c9:65:1d:52:3c:32:e0:b0:3b:9f:23:89:06:f5:90:
3e:aa:1c:86:15:cd:b4:6a:67:80:6f:32:18:e6:c3:
17:8e:a1:5b:9e:e9:56:f5:0b:c0:1a:91:89:0e:b6:
bd:cc:93:bd:2f:46:32:97:8d:95:c7:bc:b9:b2:69:
82:e3:46:bc:af:db:25:91:3e:0c:24:1e:aa:81:4a:
da:f1:2d:72:b1:ad:fa:a3:b3:dd:49:23:1e:14:8f:
4a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0C:A5:01:88:6C:8D:DE:81:C5:BC:A7:E0:D6:E4:11:F7:13:26:53
X509v3 Authority Key Identifier:
keyid:D8:60:F6:F2:C3:18:55:9E:65:95:9C:D5:F2:8D:15:9A:08:42:D7:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GD28sMYVZ5llZzV8o0VmghC1yo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/76602c-c1ac-46a3-81bc-deeff3b2ae8a/1/nQylAYhsjd6Bxbyn4NbkEfcTJlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/76602c-c1ac-46a3-81bc-deeff3b2ae8a/1/2GD28sMYVZ5llZzV8o0VmghC1yo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.12.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:54:a2:9b:d9:f0:3d:57:4f:f1:6c:13:42:3b:7d:6f:f9:d4:
11:37:67:14:cc:61:90:ee:f1:2b:cc:6d:7a:80:94:cf:80:0d:
55:32:1f:f4:09:c4:c2:aa:4a:9f:47:5e:63:0a:84:3f:0d:fb:
25:29:b5:48:c4:88:c7:d3:e4:9c:3e:0b:05:e4:5f:83:f0:ac:
ed:3e:bc:ae:40:5e:a0:e0:42:ef:d3:8a:ca:c1:99:15:29:07:
ff:13:82:64:12:e9:29:8a:71:42:7b:42:f0:1c:29:73:58:b1:
89:b7:00:d2:dd:96:c4:55:5e:ad:12:09:d1:1d:be:96:da:6f:
6a:67:7f:46:e5:f4:90:b4:b6:66:a2:54:2b:48:64:0d:36:af:
e2:5d:d4:cb:3a:fd:d1:a7:09:cb:6f:f7:6c:7f:83:6d:2c:46:
ce:36:80:e6:b8:f0:c7:57:15:eb:e1:2a:14:e3:27:dc:f1:c8:
19:e1:e7:e2:7e:45:3d:c7:e3:35:59:bd:8f:1b:3c:5b:28:9c:
da:79:9e:e3:26:12:bc:8c:eb:60:85:f4:00:f3:a1:39:45:de:
cc:94:ac:c1:35:32:4c:d4:4a:46:41:d5:ed:6c:09:53:81:5c:
f9:9f:f4:0d:b3:7d:ca:1f:0a:cc:8b:3f:3f:56:28:83:88:01:
48:4b:e6:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcLtt8MTm8DaGY1zin7WeF4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NjBmNmYyYzMxODU1OWU2NTk1OWNkNWYyOGQxNTlhMDg0
MmQ3MmEwHhcNMjMwMzIyMjM0NTQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDBjYTUwMTg4NmM4ZGRlODFjNWJjYTdlMGQ2ZTQxMWY3MTMyNjUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlPEw/nUG0XcJymEcdZiNplcHNLAN
xA77OyAtdxvjcK4ki+Eqgn29CPtqqsGt2IHAzJBBlcb/Yf1/SEftNFc9FLTz3md4
jpceJNKehLdmMfuzkI0m1rNlCuQEvDj+RYS1EA1ems+YG/A1iDOff0gCXdJJ6mDI
dm5sYTCoGGpPcw20LulfUqElKbVP8jNzbawjAxt+FHqbQD94tu0eWeHO+kNjYmTJ
ZR1SPDLgsDufI4kG9ZA+qhyGFc20ameAbzIY5sMXjqFbnulW9QvAGpGJDra9zJO9
L0Yyl42Vx7y5smmC40a8r9slkT4MJB6qgUra8S1ysa36o7PdSSMeFI9KkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ0MpQGIbI3egcW8p+DW5BH3EyZTMB8GA1UdIwQY
MBaAFNhg9vLDGFWeZZWc1fKNFZoIQtcqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkdEMjhzTVlWWjVsbFp6VjhvMFZtZ2hDMXlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi83NjYwMmMtYzFhYy00NmEzLTgxYmMt
ZGVlZmYzYjJhZThhLzEvblF5bEFZaHNqZDZCeGJ5bjROYmtFZmNUSmxNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi83NjYwMmMtYzFhYy00NmEzLTgxYmMtZGVlZmYzYjJhZThh
LzEvMkdEMjhzTVlWWjVsbFp6VjhvMFZtZ2hDMXlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueoMMA0G
CSqGSIb3DQEBCwUAA4IBAQBeVKKb2fA9V0/xbBNCO31v+dQRN2cUzGGQ7vErzG16
gJTPgA1VMh/0CcTCqkqfR15jCoQ/DfslKbVIxIjH0+ScPgsF5F+D8KztPryuQF6g
4ELv04rKwZkVKQf/E4JkEukpinFCe0LwHClzWLGJtwDS3ZbEVV6tEgnRHb6W2m9q
Z39G5fSQtLZmolQrSGQNNq/iXdTLOv3RpwnLb/dsf4NtLEbONoDmuPDHVxXr4SoU
4yfc8cgZ4efifkU9x+M1Wb2PGzxbKJzaeZ7jJhK8jOtghfQA86E5Rd7MlKzBNTJM
1EpGQdXtbAlTgVz5n/QNs33KHwrMiz8/ViiDiAFIS+Z9
-----END CERTIFICATE-----
Generated at Tue Nov 7 13:31:18 2023 by rpki-client on console-ams.rpki-client.org