Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/TfcnXl7QcyqB9gxzy4Ms412vnks.roa
File: TfcnXl7QcyqB9gxzy4Ms412vnks.roa (raw, json)
Hash identifier: wtIIniEd3EJpbz0w6fGpZ+djhvzC7rmcjutyM/AUSeg=
Subject key identifier: 4D:F7:27:5E:5E:D0:73:2A:81:F6:0C:73:CB:83:2C:E3:5D:AF:9E:4B
Certificate issuer: /CN=72978d1d4e7782816ac42da4788e33cbb2487859
Certificate serial: 01856F9DBE4B8BC4ADF64AD165C4789BFFFC
Authority key identifier: 72:97:8D:1D:4E:77:82:81:6A:C4:2D:A4:78:8E:33:CB:B2:48:78:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpeNHU53goFqxC2keI4zy7JIeFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/TfcnXl7QcyqB9gxzy4Ms412vnks.roa
Signing time: Sun 01 Jan 2023 23:14:46 +0000
ROA not before: Sun 01 Jan 2023 23:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29713
IP address blocks: 185.240.87.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:be:4b:8b:c4:ad:f6:4a:d1:65:c4:78:9b:ff:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72978d1d4e7782816ac42da4788e33cbb2487859
Validity
Not Before: Jan 1 23:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4df7275e5ed0732a81f60c73cb832ce35daf9e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:34:b7:44:0b:20:c3:67:d0:70:55:7e:f5:dc:
b4:87:61:bf:2d:c9:8d:ee:ea:78:c8:69:d0:77:fc:
03:87:8c:71:5d:97:2c:da:27:9c:0b:38:96:82:0c:
3e:7c:4a:6b:fd:99:68:9d:87:9a:8c:0e:27:65:7d:
51:c0:1d:e6:4b:70:08:df:b5:bc:ba:cd:27:7a:54:
3c:b9:a1:e4:c2:1c:2f:5b:99:a2:ff:62:b0:e2:b6:
24:ad:56:96:cc:33:f2:33:c0:0f:aa:34:a1:9e:a6:
31:9e:84:71:2c:ca:88:52:60:74:d8:76:99:1d:bf:
cb:0d:21:1a:3d:b1:d3:7d:37:27:d3:46:5c:20:14:
99:c8:d6:93:73:eb:b1:5d:6e:38:45:32:8a:7c:d9:
72:b1:42:17:14:4c:83:e6:32:88:98:c5:e1:62:bf:
be:50:2c:d9:23:90:43:42:d6:d9:97:93:69:67:9f:
cc:a0:ec:60:fe:93:e2:0f:47:b8:6a:29:8b:d4:a7:
12:fb:86:21:3b:8a:78:35:69:5e:48:24:de:de:e7:
7a:e7:0f:2b:10:1d:a9:f7:36:4e:24:ea:a2:a9:c5:
0d:6b:e0:42:ba:56:36:e7:56:21:0e:f1:fc:3b:38:
a0:bb:cf:da:c3:eb:50:2b:7c:88:6d:6e:b1:f8:4e:
67:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F7:27:5E:5E:D0:73:2A:81:F6:0C:73:CB:83:2C:E3:5D:AF:9E:4B
X509v3 Authority Key Identifier:
keyid:72:97:8D:1D:4E:77:82:81:6A:C4:2D:A4:78:8E:33:CB:B2:48:78:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpeNHU53goFqxC2keI4zy7JIeFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/TfcnXl7QcyqB9gxzy4Ms412vnks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/cpeNHU53goFqxC2keI4zy7JIeFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.87.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:eb:6b:d7:34:00:d6:3f:53:00:47:06:73:cb:44:67:fc:92:
40:da:48:ec:ec:4c:8c:87:52:11:74:d6:3b:b9:7c:8b:e5:f3:
21:46:37:21:a8:09:a8:83:4d:b7:d4:d0:b7:6a:b0:24:86:a9:
45:d0:83:a6:a9:1a:bb:09:a8:ed:ac:64:4d:ce:6b:b3:ab:28:
51:55:6c:0d:f2:51:e9:12:0b:be:3d:cb:f9:14:bd:f2:53:aa:
f4:ba:36:7c:b4:08:86:23:d4:1b:dd:2a:80:88:7f:09:dc:c1:
2d:fe:29:56:c9:ee:7e:6c:7b:61:98:bc:05:5b:5c:65:7f:19:
53:74:43:6d:7d:3a:be:fb:5b:c2:1d:8c:ff:8e:03:34:26:2e:
4c:83:d3:94:ab:b6:59:69:8c:d7:73:c3:89:58:97:ad:cb:7b:
a5:98:55:c9:8d:8a:79:5f:9b:6c:48:f8:23:c9:1f:72:fd:94:
27:84:4b:af:5e:50:49:f5:80:e4:cc:2e:34:8a:23:ba:d1:35:
74:00:f2:0f:69:55:dd:4d:e7:8a:5b:af:b2:b4:80:90:66:46:
32:63:11:5f:e8:3c:c3:c1:2d:16:38:44:b6:7e:73:bd:46:86:
a6:1a:be:23:38:fc:1c:04:16:b0:c0:9d:e8:59:59:7a:b0:a6:
75:43:36:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvnb5Li8St9krRZcR4m//8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyOTc4ZDFkNGU3NzgyODE2YWM0MmRhNDc4OGUzM2NiYjI0
ODc4NTkwHhcNMjMwMTAxMjMxNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGY3Mjc1ZTVlZDA3MzJhODFmNjBjNzNjYjgzMmNlMzVkYWY5ZTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjDS3RAsgw2fQcFV+9dy0h2G/LcmN
7up4yGnQd/wDh4xxXZcs2iecCziWggw+fEpr/ZlonYeajA4nZX1RwB3mS3AI37W8
us0nelQ8uaHkwhwvW5mi/2Kw4rYkrVaWzDPyM8APqjShnqYxnoRxLMqIUmB02HaZ
Hb/LDSEaPbHTfTcn00ZcIBSZyNaTc+uxXW44RTKKfNlysUIXFEyD5jKImMXhYr++
UCzZI5BDQtbZl5NpZ5/MoOxg/pPiD0e4aimL1KcS+4YhO4p4NWleSCTe3ud65w8r
EB2p9zZOJOqiqcUNa+BCulY251YhDvH8Ozigu8/aw+tQK3yIbW6x+E5nzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE33J15e0HMqgfYMc8uDLONdr55LMB8GA1UdIwQY
MBaAFHKXjR1Od4KBasQtpHiOM8uySHhZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3BlTkhVNTNnb0ZxeEMya2VJNHp5N0pJZUZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8yMmU5NmYtMjQ1MS00ZTg2LWEwMzct
OGRiNjJlYTUwOTk1LzEvVGZjblhsN1FjeXFCOWd4enk0TXM0MTJ2bmtzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC8yMmU5NmYtMjQ1MS00ZTg2LWEwMzctOGRiNjJlYTUwOTk1
LzEvY3BlTkhVNTNnb0ZxeEMya2VJNHp5N0pJZUZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufBXMA0G
CSqGSIb3DQEBCwUAA4IBAQA762vXNADWP1MARwZzy0Rn/JJA2kjs7EyMh1IRdNY7
uXyL5fMhRjchqAmog0231NC3arAkhqlF0IOmqRq7CajtrGRNzmuzqyhRVWwN8lHp
Egu+Pcv5FL3yU6r0ujZ8tAiGI9Qb3SqAiH8J3MEt/ilWye5+bHthmLwFW1xlfxlT
dENtfTq++1vCHYz/jgM0Ji5Mg9OUq7ZZaYzXc8OJWJety3ulmFXJjYp5X5tsSPgj
yR9y/ZQnhEuvXlBJ9YDkzC40iiO60TV0APIPaVXdTeeKW6+ytICQZkYyYxFf6DzD
wS0WOES2fnO9RoamGr4jOPwcBBawwJ3oWVl6sKZ1QzZQ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:36 2023 by rpki-client on console-ams.rpki-client.org