Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/vNC0rLin7Ppq7mO5rDLPTjU14hc.roa
File: vNC0rLin7Ppq7mO5rDLPTjU14hc.roa (raw, json)
Hash identifier: etf1F/CClU+ahI1LvckZWhpflMSfZAS/pC5OHOC2cdc=
Subject key identifier: BC:D0:B4:AC:B8:A7:EC:FA:6A:EE:63:B9:AC:32:CF:4E:35:35:E2:17
Certificate issuer: /CN=b06c430b61be7a380191cd5dfd105c3af21482fc
Certificate serial: 0142430A
Authority key identifier: B0:6C:43:0B:61:BE:7A:38:01:91:CD:5D:FD:10:5C:3A:F2:14:82:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sGxDC2G-ejgBkc1d_RBcOvIUgvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/vNC0rLin7Ppq7mO5rDLPTjU14hc.roa
Signing time: Wed 11 May 2022 06:29:01 +0000
ROA not before: Wed 11 May 2022 06:29:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.228.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21119754 (0x142430a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06c430b61be7a380191cd5dfd105c3af21482fc
Validity
Not Before: May 11 06:29:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcd0b4acb8a7ecfa6aee63b9ac32cf4e3535e217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:92:0d:9f:3c:b4:31:ff:3c:a4:be:02:3a:
c3:f5:b1:50:0c:1a:49:b9:17:51:94:62:cc:f8:f5:
ef:2d:cc:7d:75:f8:09:c0:d1:37:f5:90:ba:b6:7e:
e0:bb:09:da:45:a0:6f:a3:1c:58:3b:b8:b8:34:ae:
08:09:8d:10:a0:59:d4:96:58:77:ff:0c:d4:09:f9:
0a:19:fd:b8:35:00:83:4c:4d:5f:1a:80:df:29:95:
00:72:9a:df:35:3e:d1:e5:8b:3c:84:7a:b5:01:fe:
bb:05:12:f9:c1:68:0f:95:4a:d0:f0:ed:58:43:94:
8f:0d:04:cb:15:bd:81:6a:6d:af:36:24:69:25:c7:
dc:d9:d4:39:ff:bb:de:4d:d8:c7:51:00:9f:e0:13:
d1:13:47:69:ff:7f:d2:7a:f9:f6:66:9d:4c:b2:97:
bb:9c:71:0c:e7:cf:25:c4:28:92:c4:c2:28:27:2f:
f4:0d:e5:9a:30:a4:41:29:e9:02:f3:5c:aa:13:23:
e4:81:87:21:ef:c4:57:6f:a8:e9:3f:95:21:b1:13:
8a:72:20:6c:6c:bb:a8:4c:47:05:88:4c:94:d8:8e:
1c:7b:50:f8:d2:8b:ed:95:fe:fe:cb:5e:12:51:80:
1d:4d:59:1e:c9:61:f7:92:38:aa:3e:d7:f4:67:9e:
8b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D0:B4:AC:B8:A7:EC:FA:6A:EE:63:B9:AC:32:CF:4E:35:35:E2:17
X509v3 Authority Key Identifier:
keyid:B0:6C:43:0B:61:BE:7A:38:01:91:CD:5D:FD:10:5C:3A:F2:14:82:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sGxDC2G-ejgBkc1d_RBcOvIUgvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/vNC0rLin7Ppq7mO5rDLPTjU14hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/sGxDC2G-ejgBkc1d_RBcOvIUgvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.168.0/24
Signature Algorithm: sha256WithRSAEncryption
84:0f:e8:a5:48:6d:04:2d:a6:c9:d0:9d:17:8a:71:64:eb:e8:
e9:7c:ea:01:68:fc:5d:e0:08:41:38:d0:88:ec:4b:70:c0:ee:
88:06:80:48:2b:e0:8d:2c:9f:4d:3e:65:40:4d:78:62:2a:7a:
4d:20:25:66:0d:e5:ab:8a:bc:e9:70:27:84:ef:12:c0:19:7a:
ef:10:fb:eb:89:8e:2f:98:cf:d7:ce:15:d2:2f:13:03:7a:d6:
d6:af:e5:ca:f8:38:03:e8:70:6c:df:8a:ea:d0:6a:92:18:be:
ec:ae:ac:7d:7f:fc:7a:c9:4d:b5:7c:4c:58:f5:fc:d9:0e:f1:
59:12:fa:6a:c5:93:7a:c7:89:c7:8c:8b:c4:e6:77:9a:e4:b7:
86:b5:dd:60:ad:d6:3e:68:95:bf:46:15:1e:a6:55:d9:c5:99:
6b:8d:9a:ab:f9:67:ab:75:50:25:6c:68:8d:d2:d5:7c:62:95:
9d:03:b7:0a:cd:ea:a8:b7:81:2b:b1:82:3a:4e:34:71:1c:9c:
ed:7a:9b:6d:c3:32:8a:4d:45:96:f9:bd:bc:a9:5e:20:74:bc:
48:c5:e8:a5:e9:77:2e:6d:20:f8:30:3b:d7:db:3b:1f:3a:7b:
6d:c2:b4:51:75:37:e7:3b:9c:e7:b7:ef:d5:d9:4e:d0:de:70:
58:c9:71:81
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAUJDCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MDZjNDMwYjYxYmU3YTM4MDE5MWNkNWRmZDEwNWMzYWYyMTQ4MmZjMB4XDTIyMDUx
MTA2MjkwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmNkMGI0YWNiOGE3
ZWNmYTZhZWU2M2I5YWMzMmNmNGUzNTM1ZTIxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMdjkg2fPLQx/zykvgI6w/WxUAwaSbkXUZRizPj17y3MfXX4
CcDRN/WQurZ+4LsJ2kWgb6McWDu4uDSuCAmNEKBZ1JZYd/8M1An5Chn9uDUAg0xN
XxqA3ymVAHKa3zU+0eWLPIR6tQH+uwUS+cFoD5VK0PDtWEOUjw0EyxW9gWptrzYk
aSXH3NnUOf+73k3Yx1EAn+AT0RNHaf9/0nr59madTLKXu5xxDOfPJcQoksTCKCcv
9A3lmjCkQSnpAvNcqhMj5IGHIe/EV2+o6T+VIbETinIgbGy7qExHBYhMlNiOHHtQ
+NKL7ZX+/steElGAHU1ZHslh95I4qj7X9Geei4cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS80LSsuKfs+mruY7msMs9ONTXiFzAfBgNVHSMEGDAWgBSwbEMLYb56OAGR
zV39EFw68hSC/DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NHeERDMkctZWpnQmtjMWRfUkJjT3ZJVWd2dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvNGRhNWZjLTMxNzQtNGYxNy1hOWQ1LWY1ODMxMDdjODk4Zi8x
L3ZOQzByTGluN1BwcTdtTzVyRExQVGpVMTRoYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
NGRhNWZjLTMxNzQtNGYxNy1hOWQ1LWY1ODMxMDdjODk4Zi8xL3NHeERDMkctZWpn
QmtjMWRfUkJjT3ZJVWd2dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvkqDANBgkqhkiG9w0BAQsFAAOC
AQEAhA/opUhtBC2mydCdF4pxZOvo6XzqAWj8XeAIQTjQiOxLcMDuiAaASCvgjSyf
TT5lQE14Yip6TSAlZg3lq4q86XAnhO8SwBl67xD764mOL5jP184V0i8TA3rW1q/l
yvg4A+hwbN+K6tBqkhi+7K6sfX/8eslNtXxMWPX82Q7xWRL6asWTeseJx4yLxOZ3
muS3hrXdYK3WPmiVv0YVHqZV2cWZa42aq/lnq3VQJWxojdLVfGKVnQO3Cs3qqLeB
K7GCOk40cRyc7XqbbcMyik1Flvm9vKleIHS8SMXopel3Lm0g+DA719s7Hzp7bcK0
UXU35zuc57fv1dlO0N5wWMlxgQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:12 2024 by rpki-client on console-fra.rpki-client.org